$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7526745b-a80d-41a5-acf1-d54e33c2859e.roa File: 7526745b-a80d-41a5-acf1-d54e33c2859e.roa (raw, json) Hash identifier: 5U/8LvNY1ML+7u3l/WC0Zt3+vlLZ/EXcI1ULB9KvzII= Subject key identifier: FD:A7:48:BB:56:FD:19:81:C5:12:7C:E5:9C:B6:E9:71:75:8B:B4:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4944CD69D9B5CA1353D747522A14CD4592DE67BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7526745b-a80d-41a5-acf1-d54e33c2859e.roa Signing time: Fri 28 Mar 2025 16:10:15 +0000 ROA not before: Fri 28 Mar 2025 16:10:15 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:44:cd:69:d9:b5:ca:13:53:d7:47:52:2a:14:cd:45:92:de:67:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 16:10:15 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:fe:85:96:4d:1f:d2:f1:cc:0b:e1:6d:3d:34: bf:4e:1f:14:b6:eb:1b:54:3e:43:7f:e5:7e:97:e7: 36:96:2c:46:e1:2a:df:28:da:77:d2:7e:02:7d:ce: dd:f4:cb:38:1d:cf:9a:23:ca:9a:f6:38:b5:07:1e: d7:1d:b2:aa:ba:d6:f8:1d:28:61:ad:53:60:2e:d3: ae:04:99:10:98:d5:cb:25:09:06:23:44:2e:54:54: 05:48:ed:04:54:42:69:42:7a:3b:aa:21:9a:b7:16: 2b:cb:d7:63:9d:01:0e:82:3c:61:3d:d2:04:33:e1: d9:06:90:e9:8a:10:f1:c0:ef:0e:65:26:62:86:8f: 30:23:ca:c9:ef:61:3c:61:70:f6:2d:78:6d:43:98: 48:69:6a:33:98:24:68:6b:92:9b:77:75:2c:f0:6c: 9b:b6:15:e1:c9:a2:1b:6e:92:2e:30:8f:04:30:a5: 69:b8:1e:aa:a0:72:6d:44:1c:07:c1:f6:0e:8e:99: 2f:16:bf:72:8f:e8:76:3c:1d:e1:57:67:70:a6:32: 22:d5:44:ec:0b:55:af:38:57:ad:39:73:58:05:ec: ff:1b:32:be:cb:27:b6:65:4d:fa:ff:20:f4:d9:bf: 56:d4:b0:42:51:0f:98:b8:f5:e9:c6:2b:75:96:15: 64:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:A7:48:BB:56:FD:19:81:C5:12:7C:E5:9C:B6:E9:71:75:8B:B4:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7526745b-a80d-41a5-acf1-d54e33c2859e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:4000::/40 Signature Algorithm: sha256WithRSAEncryption 4e:b0:92:94:24:63:38:cb:af:0b:b3:ff:11:75:f6:5c:4d:f5: f7:70:00:cf:a2:3c:d1:0e:64:19:57:c0:57:8d:3a:ac:47:67: 6f:2c:55:22:58:bc:43:bf:fe:6a:b5:39:b7:08:ac:0e:19:ef: 78:f6:96:cb:6d:9a:79:cb:e3:1a:78:f3:25:97:06:ff:84:9b: 50:a6:42:a0:9b:69:29:da:fa:f2:db:17:62:3d:3b:e9:0b:54: 4f:f5:b8:e3:1f:2e:92:f9:ca:02:82:38:87:55:fb:67:8e:5e: 31:46:e9:87:1c:06:c8:24:5d:43:00:31:74:75:a1:d2:81:88: 10:1c:85:c1:68:ce:d8:93:fd:a2:fc:3c:c0:55:8c:7e:a8:ed: 1c:39:ef:ce:81:ad:f2:04:96:bc:fc:3e:0a:99:12:3a:4d:8b: f0:ad:08:a7:83:15:a2:08:68:89:eb:05:c0:4b:5e:5d:53:3e: e5:b6:e8:05:bb:ce:d2:4e:46:29:9d:07:cf:e2:94:db:80:8a: fd:da:0b:83:9b:3c:f9:b7:d8:79:85:2b:51:d6:8e:76:5e:b0: be:47:b9:71:99:dc:07:fb:d6:f3:c9:fc:9b:46:12:e4:2b:d5: c5:44:29:dc:62:f7:19:2c:2a:65:cd:4e:6c:ff:aa:bd:ee:d8: c9:db:40:b3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSUTNadm1yhNT10dSKhTNRZLeZ7wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTYxMDE1WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NjQwNTVmNGZmODc5NGZiZDJlZWNjYWJlNmIwOWQ5MDgz ZjEwODQxZDZlNTY2YTNhNDcxYWIwN2JjMGZkNTlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb/oWWTR/S8cwL4W09NL9OHxS26xtUPkN/5X6X5zaWLEbh Kt8o2nfSfgJ9zt30yzgdz5ojypr2OLUHHtcdsqq61vgdKGGtU2Au064EmRCY1csl CQYjRC5UVAVI7QRUQmlCejuqIZq3FivL12OdAQ6CPGE90gQz4dkGkOmKEPHA7w5l JmKGjzAjysnvYTxhcPYteG1DmEhpajOYJGhrkpt3dSzwbJu2FeHJohtuki4wjwQw pWm4Hqqgcm1EHAfB9g6OmS8Wv3KP6HY8HeFXZ3CmMiLVROwLVa84V605c1gF7P8b Mr7LJ7ZlTfr/IPTZv1bUsEJRD5i49enGK3WWFWS7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/adIu1b9GYHFEnzlnLbpcXWLtA0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1MjY3NDViLWE4MGQtNDFhNS1hY2YxLWQ1NGUzM2MyODU5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9pQDANBgkqhkiG9w0BAQsFAAOCAQEATrCSlCRjOMuvC7P/EXX2XE31 93AAz6I80Q5kGVfAV406rEdnbyxVIli8Q7/+arU5twisDhnvePaWy22aecvjGnjz JZcG/4SbUKZCoJtpKdr68tsXYj076QtUT/W44x8ukvnKAoI4h1X7Z45eMUbphxwG yCRdQwAxdHWh0oGIEByFwWjO2JP9ovw8wFWMfqjtHDnvzoGt8gSWvPw+CpkSOk2L 8K0Ip4MVoghoiesFwEteXVM+5bboBbvO0k5GKZ0Hz+KU24CK/doLg5s8+bfYeYUr UdaOdl6wvke5cZncB/vW88n8m0YS5CvVxUQp3GL3GSwqZc1ObP+qve7YydtAsw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:08:29 2025 by rpki-client