$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64723cbc-d56d-452c-bbec-adf5cc27193a.roa File: 64723cbc-d56d-452c-bbec-adf5cc27193a.roa (raw, json) Hash identifier: mKgnbzogP9zawVX0fZO0TXtFixCeqTkcZjgMjIOpPaY= Subject key identifier: 76:6B:B1:53:82:4E:A5:4D:AA:E6:15:9B:39:0E:5E:15:AB:93:78:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31BCC7160019B0DB29F7AAA6160F3F0B25521C29 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64723cbc-d56d-452c-bbec-adf5cc27193a.roa Signing time: Fri 28 Mar 2025 17:20:20 +0000 ROA not before: Fri 28 Mar 2025 17:20:20 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f25:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:bc:c7:16:00:19:b0:db:29:f7:aa:a6:16:0f:3f:0b:25:52:1c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 17:20:20 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:63:bf:4e:12:f0:31:50:1b:06:03:86:73:9d: cc:09:5c:71:a3:0c:dd:be:cf:2b:eb:18:76:bf:4c: 5d:98:1f:bf:82:9c:ca:e2:8f:eb:23:c4:83:05:bc: 80:2b:e2:0c:a9:b0:fc:9e:ed:d6:df:3a:28:c4:83: 84:35:e3:2f:28:6d:f9:83:c0:60:5a:19:31:ab:a0: 12:45:22:44:ca:57:9f:80:c7:2a:55:5e:2a:25:a6: 17:09:5b:01:b4:59:61:90:1e:0e:cb:a4:ce:2c:6a: d2:71:ca:12:0a:ef:a9:a4:e6:9f:b9:c5:92:51:37: 53:55:d8:19:fa:59:fa:42:9a:49:57:d0:5e:4b:f4: c1:6f:16:13:89:dc:c3:3a:36:a9:fc:00:15:27:2e: 5e:5a:12:a2:66:77:94:9f:37:ab:5b:fb:a9:02:38: 63:21:ab:72:d3:5d:66:be:1a:44:ff:00:d3:b0:3a: 32:6e:70:30:70:ed:2a:4d:7e:40:94:34:3d:cc:e9: 31:91:34:da:81:f2:a7:2e:33:a9:07:3a:6f:45:d7: 37:98:28:44:bd:6f:c6:a9:2c:10:33:f6:7a:e9:4b: 3b:09:41:52:53:13:14:9e:17:fc:1c:47:dc:6a:af: 40:4e:b0:93:fb:69:d4:f5:ac:a3:7d:20:9b:35:f9: 0d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6B:B1:53:82:4E:A5:4D:AA:E6:15:9B:39:0E:5E:15:AB:93:78:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64723cbc-d56d-452c-bbec-adf5cc27193a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:4000::/36 Signature Algorithm: sha256WithRSAEncryption d4:e1:bf:41:e0:0d:3a:fc:dd:12:bf:ec:49:53:d1:99:4a:c8: e3:66:c6:75:0a:30:f8:2d:cb:8a:d8:d8:9b:71:5c:0a:65:88: 7d:77:2d:ee:f6:dc:52:12:a1:1f:cc:a1:14:d1:5c:03:56:32: b3:98:30:d6:11:f2:68:13:d1:1a:3b:83:76:4d:c2:0f:68:f9: 6f:36:91:09:11:db:25:8b:bd:7e:f4:74:3f:d6:a6:a5:e9:26: 50:27:6a:1d:f3:fa:c8:22:1a:52:6a:0c:2d:8e:25:a4:c1:5e: 12:fd:c1:33:c1:ef:53:1f:e9:0a:d7:3c:8a:f6:2e:2c:35:ef: f3:9f:7f:90:40:a9:3e:7c:5e:1e:24:3b:ce:6b:98:d6:e4:a9: 58:89:90:fc:ca:09:0c:ea:fb:fd:9b:8b:1a:9e:9b:c3:4f:0e: 62:a7:be:30:05:8e:ea:91:50:b4:36:6e:8d:e0:4b:c0:87:5d: 75:70:f0:16:56:68:94:3b:a5:3f:6f:12:77:cc:ec:e8:d1:f8: b7:c5:7b:15:35:eb:a0:c3:b7:1c:8e:88:f9:b3:ca:80:85:a4: 3a:b2:78:f2:56:34:3f:66:7c:2e:06:fb:0c:73:9e:3e:0a:fa: c8:ba:a1:1a:37:e0:fa:98:11:ea:20:58:a0:48:80:b1:40:87: ef:9e:d2:6d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMbzHFgAZsNsp96qmFg8/CyVSHCkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTcyMDIwWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWFkZTIwYTQwNDQ5MzFkOGEyMDhkNjM1ZGM1MzM3ZGFk YTFlYWRjMDY1YWJhYjFkZTJiN2JlZmZiYzZiNThhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzY79OEvAxUBsGA4ZzncwJXHGjDN2+zyvrGHa/TF2YH7+C nMrij+sjxIMFvIAr4gypsPye7dbfOijEg4Q14y8obfmDwGBaGTGroBJFIkTKV5+A xypVXiolphcJWwG0WWGQHg7LpM4satJxyhIK76mk5p+5xZJRN1NV2Bn6WfpCmklX 0F5L9MFvFhOJ3MM6Nqn8ABUnLl5aEqJmd5SfN6tb+6kCOGMhq3LTXWa+GkT/ANOw OjJucDBw7SpNfkCUND3M6TGRNNqB8qcuM6kHOm9F1zeYKES9b8apLBAz9nrpSzsJ QVJTExSeF/wcR9xqr0BOsJP7adT1rKN9IJs1+Q0ZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdmuxU4JOpU2q5hWbOQ5eFauTeDkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NzIzY2JjLWQ1NmQtNDUyYy1iYmVjLWFkZjVjYzI3MTkzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lQDANBgkqhkiG9w0BAQsFAAOCAQEA1OG/QeANOvzdEr/sSVPRmUrI 42bGdQow+C3LitjYm3FcCmWIfXct7vbcUhKhH8yhFNFcA1Yys5gw1hHyaBPRGjuD dk3CD2j5bzaRCRHbJYu9fvR0P9ampekmUCdqHfP6yCIaUmoMLY4lpMFeEv3BM8Hv Ux/pCtc8ivYuLDXv859/kECpPnxeHiQ7zmuY1uSpWImQ/MoJDOr7/ZuLGp6bw08O Yqe+MAWO6pFQtDZujeBLwIdddXDwFlZolDulP28Sd8zs6NH4t8V7FTXroMO3HI6I +bPKgIWkOrJ48lY0P2Z8Lgb7DHOePgr6yLqhGjfg+pgR6iBYoEiAsUCH757SbQ== -----END CERTIFICATE-----Generated at Sat Apr 5 11:17:51 2025 by rpki-client