$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f6e828c-dab6-49f6-836d-72e1c0db4fa8.roa File: 7f6e828c-dab6-49f6-836d-72e1c0db4fa8.roa (raw, json) Hash identifier: bPmYwHo2+42rsh/jhvGQYToHftj+AA32pP7lwxhI/8M= Subject key identifier: 61:3B:90:D9:28:1C:B9:4C:66:95:C6:FF:F9:4F:24:02:97:30:D6:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 124300DA859134F098150CDFAA0F8A6B9E455E39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f6e828c-dab6-49f6-836d-72e1c0db4fa8.roa Signing time: Fri 28 Mar 2025 15:41:04 +0000 ROA not before: Fri 28 Mar 2025 15:41:04 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:e0c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:43:00:da:85:91:34:f0:98:15:0c:df:aa:0f:8a:6b:9e:45:5e:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:41:04 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b0:7a:c7:df:59:30:7b:76:3c:4a:b8:bc:d6: d0:73:31:be:fc:96:d7:f4:cb:bb:dc:32:89:23:49: 95:20:19:35:bb:0d:4e:02:32:f6:3c:b7:52:87:e7: 98:64:32:1f:4e:5f:83:60:48:e7:61:50:5d:05:f4: d6:dd:69:5d:50:62:b9:42:db:50:1b:62:7c:8a:46: bd:c2:bc:8e:f2:fc:4f:0c:97:cd:b8:2c:d9:2d:36: 91:30:ba:3d:38:56:1c:aa:ea:3f:00:82:6a:b4:b4: 71:76:20:0c:27:71:cb:33:05:f4:d2:8b:fc:b7:c0: ee:34:3e:31:0e:8d:8c:50:56:6d:45:1f:e4:dd:61: d4:fa:e8:24:c9:e4:90:9e:77:c8:fa:a5:f2:b9:f6: 45:a4:04:6e:37:67:1f:cc:0b:d3:c0:ac:3f:74:c2: 5e:6b:14:56:ef:4b:7e:e3:4d:ad:e9:f1:ee:c1:42: 78:a8:e0:31:e5:8d:44:0d:ff:11:f1:bb:39:07:cf: 9b:2e:34:8e:0b:9f:65:b3:07:87:c2:29:14:00:9e: 7e:7b:8f:99:4e:9f:2c:04:fa:34:bc:88:43:4f:7b: 9c:7e:05:3a:fb:cb:dc:4b:f1:9a:7a:fd:e2:e1:0b: 1e:98:14:5f:ad:71:eb:62:a1:94:4e:be:45:3b:bc: f2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:3B:90:D9:28:1C:B9:4C:66:95:C6:FF:F9:4F:24:02:97:30:D6:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7f6e828c-dab6-49f6-836d-72e1c0db4fa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:e0c0::/46 Signature Algorithm: sha256WithRSAEncryption d8:40:3e:46:60:4d:71:a6:f0:8e:5d:7e:81:2e:8e:ce:92:e4: f4:d9:38:6f:a3:cf:92:ff:a2:b4:bf:9d:d6:6d:03:05:0e:ca: 4d:e4:73:f6:89:3b:e3:34:66:a4:27:7f:78:d5:d4:4e:29:3f: 10:fa:d4:32:41:61:d9:53:c2:cf:4c:74:35:6d:5a:d4:1b:e0: 5c:40:d7:dc:d6:27:a0:5e:67:32:a7:ff:3b:94:b2:d1:70:72: b5:fc:6c:ca:a1:d8:b9:1d:bc:13:36:86:9f:50:51:b5:69:22: e6:78:25:66:1c:e0:e5:af:a7:d3:ee:b8:82:f8:fb:61:e6:83: 96:b5:df:fc:95:33:86:84:35:e6:21:fa:57:b0:e7:20:3b:18: fe:34:20:00:48:5d:1a:6e:fd:1c:bc:71:9c:b1:b7:2e:50:01: 17:3a:0f:a5:a3:e0:e2:1a:0a:fa:90:3c:f4:6c:a1:38:ab:02: e4:80:76:b2:a3:d7:4d:6d:dd:ac:40:16:5d:04:2c:11:f4:39: 65:b0:2f:4e:12:37:ed:f7:e9:b7:04:f3:62:e0:c6:bd:d2:6a: 79:9b:3f:1e:bd:78:c4:e6:b8:cb:23:d8:23:92:66:43:b0:5b: 0f:b8:32:18:4d:b9:50:d0:52:f5:3f:82:71:85:c1:34:a4:3d: 4c:c3:fe:3d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEkMA2oWRNPCYFQzfqg+Ka55FXjkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTU0MTA0WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGViMDUwMDYzNmVhYzUyMzk4YTc1ZWFmMTQyMTNmOGYy ZGMxNjU4MTVlYWY2YTJjN2EzMjJiNjJkNzNjM2Y5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOsHrH31kwe3Y8Sri81tBzMb78ltf0y7vcMokjSZUgGTW7 DU4CMvY8t1KH55hkMh9OX4NgSOdhUF0F9NbdaV1QYrlC21AbYnyKRr3CvI7y/E8M l824LNktNpEwuj04Vhyq6j8Agmq0tHF2IAwnccszBfTSi/y3wO40PjEOjYxQVm1F H+TdYdT66CTJ5JCed8j6pfK59kWkBG43Zx/MC9PArD90wl5rFFbvS37jTa3p8e7B Qnio4DHljUQN/xHxuzkHz5suNI4Ln2WzB4fCKRQAnn57j5lOnywE+jS8iENPe5x+ BTr7y9xL8Zp6/eLhCx6YFF+tcetioZROvkU7vPKzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYTuQ2SgcuUxmlcb/+U8kApcw1hIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdmNmU4MjhjLWRhYjYtNDlmNi04MzZkLTcyZTFjMGRiNGZhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/74MAwDQYJKoZIhvcNAQELBQADggEBANhAPkZgTXGm8I5dfoEujs6S 5PTZOG+jz5L/orS/ndZtAwUOyk3kc/aJO+M0ZqQnf3jV1E4pPxD61DJBYdlTws9M dDVtWtQb4FxA19zWJ6BeZzKn/zuUstFwcrX8bMqh2LkdvBM2hp9QUbVpIuZ4JWYc 4OWvp9PuuIL4+2Hmg5a13/yVM4aENeYh+lew5yA7GP40IABIXRpu/Ry8cZyxty5Q ARc6D6Wj4OIaCvqQPPRsoTirAuSAdrKj101t3axAFl0ELBH0OWWwL04SN+336bcE 82Lgxr3SanmbPx69eMTmuMsj2COSZkOwWw+4MhhNuVDQUvU/gnGFwTSkPUzD/j0= -----END CERTIFICATE-----Generated at Sat Apr 5 11:06:38 2025 by rpki-client