$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9222ea42-a8d2-4777-9833-1b122c425c55.roa File: 9222ea42-a8d2-4777-9833-1b122c425c55.roa (raw, json) Hash identifier: UE/Ia7HxVczx57i/4Y6DlaQMB880OZspUtCfkKD5nOg= Subject key identifier: AC:F7:64:94:96:58:D7:25:3F:D3:CA:75:DB:1D:30:A3:BD:21:D7:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46C24DE403332CE00503984F42DD2C64AADF7355 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9222ea42-a8d2-4777-9833-1b122c425c55.roa Signing time: Fri 28 Mar 2025 15:51:50 +0000 ROA not before: Fri 28 Mar 2025 15:51:50 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 07 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:c2:4d:e4:03:33:2c:e0:05:03:98:4f:42:dd:2c:64:aa:df:73:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:51:50 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:41:3b:9a:e4:eb:93:e4:df:60:a0:c1:0a:bf: ad:b8:31:0c:81:01:d6:93:92:60:84:30:aa:70:fd: 1f:31:b6:96:01:e9:13:eb:ed:d0:4e:26:70:61:b2: 21:d1:31:ff:2a:2a:a6:33:7c:53:1f:7c:f1:c4:de: da:4b:75:4e:c1:64:98:2e:68:ed:23:36:65:64:b1: 72:f0:e0:7b:cb:59:fc:a6:8e:71:6b:cc:39:a1:14: 35:f6:0f:c0:1c:30:76:26:0e:2e:39:df:57:52:f8: 36:3a:0a:d1:ca:7f:1b:24:97:b2:06:36:3e:be:fc: 7c:1c:b4:5b:d6:73:5f:55:ef:59:7b:46:fb:dc:5d: 28:70:bd:d6:5d:cb:0f:4e:bb:37:ec:33:15:cc:3f: 39:f0:59:b6:ff:b4:79:3c:47:5d:fe:bb:d9:17:28: 20:61:ec:ff:d0:ef:a0:59:f4:5d:2c:ed:7a:93:25: a2:86:89:84:ab:5a:5e:21:e9:5f:e7:7a:dd:bf:92: 37:4d:d3:77:fb:04:23:4c:e6:9a:73:8f:37:05:f5: 32:72:48:db:7b:14:4b:e4:d9:16:88:20:f2:bf:30: fd:51:a2:3c:c2:27:91:1b:74:56:98:3e:56:54:1e: 97:8c:d8:e7:65:29:d8:87:86:55:97:77:12:f4:5a: 6d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F7:64:94:96:58:D7:25:3F:D3:CA:75:DB:1D:30:A3:BD:21:D7:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9222ea42-a8d2-4777-9833-1b122c425c55.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:1000::/40 Signature Algorithm: sha256WithRSAEncryption 3a:20:2e:b0:28:4d:9a:f1:87:c9:39:c1:09:08:fe:a3:f7:8f: f3:4a:8d:3c:fb:17:44:f7:6d:bf:88:b0:16:d1:7e:80:95:8c: bb:55:80:c1:83:f9:13:eb:94:f2:83:de:88:d5:d3:f2:6e:eb: 08:ac:2b:0b:03:45:c5:c1:2f:b0:f8:78:1a:5f:05:10:e8:54: 89:d2:f9:d4:2f:71:90:ba:25:c3:97:e5:db:97:20:98:85:46: 6f:30:69:2c:35:34:b9:b7:80:42:15:bc:c6:33:88:ed:7c:0a: ae:56:91:fd:e9:18:d3:37:69:b7:26:2c:9b:b1:ee:14:2d:36: da:03:e4:b9:f1:41:4a:d3:6b:5e:74:90:40:65:ee:10:b3:63: 99:f1:22:d4:10:56:a5:59:1c:21:92:fc:b2:40:48:27:39:6d: bf:c5:0e:b9:46:b9:83:0e:97:17:03:01:7c:48:71:be:5e:7c: c0:b5:8e:43:c3:16:ec:54:22:eb:75:4d:df:51:36:68:05:04: 3e:43:12:ea:52:1b:52:b2:1d:0a:a7:40:76:01:af:f7:d9:5b: ba:e5:be:30:59:9d:26:81:8f:95:02:c6:5f:22:73:8c:48:25: 07:bd:6f:e7:60:29:30:7f:22:21:57:0f:8d:b6:44:de:3c:f1: b2:4c:31:01 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURsJN5AMzLOAFA5hPQt0sZKrfc1UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTU1MTUwWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWVhMjM3MTdlMTJmMzM5YmNmY2Y2ODJhZDUyNGU3NjUx ZTczNWU3MTkwYWM5MGI0NjEzMjQzOTg5OGViNThhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQQTua5OuT5N9goMEKv624MQyBAdaTkmCEMKpw/R8xtpYB 6RPr7dBOJnBhsiHRMf8qKqYzfFMffPHE3tpLdU7BZJguaO0jNmVksXLw4HvLWfym jnFrzDmhFDX2D8AcMHYmDi4531dS+DY6CtHKfxskl7IGNj6+/HwctFvWc19V71l7 RvvcXShwvdZdyw9OuzfsMxXMPznwWbb/tHk8R13+u9kXKCBh7P/Q76BZ9F0s7XqT JaKGiYSrWl4h6V/net2/kjdN03f7BCNM5ppzjzcF9TJySNt7FEvk2RaIIPK/MP1R ojzCJ5EbdFaYPlZUHpeM2OdlKdiHhlWXdxL0Wm2jAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrPdklJZY1yU/08p12x0wo70h1wAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyMjJlYTQyLWE4ZDItNDc3Ny05ODMzLTFiMTIyYzQyNWM1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/3EDANBgkqhkiG9w0BAQsFAAOCAQEAOiAusChNmvGHyTnBCQj+o/eP 80qNPPsXRPdtv4iwFtF+gJWMu1WAwYP5E+uU8oPeiNXT8m7rCKwrCwNFxcEvsPh4 Gl8FEOhUidL51C9xkLolw5fl25cgmIVGbzBpLDU0ubeAQhW8xjOI7XwKrlaR/ekY 0zdptyYsm7HuFC022gPkufFBStNrXnSQQGXuELNjmfEi1BBWpVkcIZL8skBIJzlt v8UOuUa5gw6XFwMBfEhxvl58wLWOQ8MW7FQi63VN31E2aAUEPkMS6lIbUrIdCqdA dgGv99lbuuW+MFmdJoGPlQLGXyJzjEglB71v52ApMH8iIVcPjbZE3jzxskwxAQ== -----END CERTIFICATE-----Generated at Sun Apr 6 00:31:38 2025 by rpki-client