$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5180825-f4db-42bc-bd8c-961e4aa170db.roa File: b5180825-f4db-42bc-bd8c-961e4aa170db.roa (raw, json) Hash identifier: VXY36YIqquege/tcbVXJlAAR9RMb6r6OMSH70gD1PdY= Subject key identifier: D0:D7:37:E7:D1:0D:0B:75:4B:37:B3:75:9A:EF:39:1A:00:0A:0F:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26BB674ED41C32EE0CC0599FC14B0582D6F48093 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5180825-f4db-42bc-bd8c-961e4aa170db.roa Signing time: Tue 25 Mar 2025 18:01:32 +0000 ROA not before: Tue 25 Mar 2025 18:01:32 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:bb:67:4e:d4:1c:32:ee:0c:c0:59:9f:c1:4b:05:82:d6:f4:80:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 25 18:01:32 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0d:8d:44:56:67:b9:e4:53:76:cd:c2:c2:54: 05:06:d4:2e:96:cd:44:98:77:a6:1d:50:f6:f5:02: c9:8f:c4:e8:9b:ac:9c:e5:91:fe:26:4f:13:e8:62: 85:2d:a2:ba:63:9b:c1:3a:d1:b1:be:78:09:1b:9b: 17:59:f0:bd:a4:31:60:62:c5:d3:83:e7:ee:55:de: 38:9a:28:f7:d0:e6:a9:2e:c1:c1:03:7f:04:b7:22: cb:93:19:82:63:39:c0:8b:a1:1a:e8:76:3f:04:ad: 19:4c:97:50:2b:a7:1f:d4:21:cd:1f:10:40:fe:6f: 06:df:6a:19:0a:9c:bb:4c:72:1f:b0:07:dc:c2:89: f4:c8:3d:67:ff:f8:4a:9e:12:fb:54:fc:f8:e1:67: d1:c7:7d:dc:8b:f9:05:f3:39:65:52:f4:e4:65:5e: 71:25:54:df:5e:76:75:20:1d:f0:d6:20:f8:37:23: e2:c6:f2:53:76:f6:d2:56:fc:93:a8:71:07:60:bc: 6a:98:40:bd:7a:86:07:51:54:7b:21:67:f5:79:e6: 25:d5:6a:e9:86:0e:5b:db:c8:05:9f:ac:ff:aa:ba: dd:dc:0f:00:72:92:7b:36:f8:e1:3d:42:d7:91:11: bb:a7:59:b5:16:80:6a:00:07:b6:de:e9:ed:f1:23: 68:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:D7:37:E7:D1:0D:0B:75:4B:37:B3:75:9A:EF:39:1A:00:0A:0F:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b5180825-f4db-42bc-bd8c-961e4aa170db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:c040::/48 Signature Algorithm: sha256WithRSAEncryption 96:ac:b6:2f:a0:68:7f:1d:ce:5e:a8:76:94:72:80:7c:b9:80: fd:8f:e9:4e:af:51:a4:0b:e0:b1:1e:fd:e2:80:21:3a:52:cf: ab:65:54:09:e7:19:8e:56:a0:69:10:08:3a:7c:9e:5a:71:09: 0b:c9:83:26:44:c6:f5:b3:cc:4b:17:36:7c:7a:ac:be:12:4c: fd:d4:ca:25:48:ea:86:72:3d:55:2e:bc:e7:27:7b:8a:d4:ee: 98:2f:48:c8:7f:93:f8:d7:73:24:a7:b0:de:a0:e2:bc:fe:f8: dd:96:97:95:15:8d:0b:41:4d:a5:ae:b2:0a:e8:31:c0:33:7e: d8:1d:f7:05:85:14:1f:87:76:07:82:c4:66:9f:30:4a:82:e4: 2f:eb:34:80:b6:34:e2:b3:40:52:98:c5:6b:f4:96:e2:9d:22: b5:f3:cd:b7:03:78:aa:91:85:92:2d:8e:d3:81:92:d4:66:61: 25:4a:fb:e5:fb:53:c6:e5:e5:5a:68:19:52:aa:9f:20:c7:5b: 05:ac:5b:95:02:10:4b:7b:9f:93:08:77:f2:10:89:d8:99:eb: 60:e0:4b:2e:36:5e:f3:85:65:7e:e0:9a:01:0d:65:7d:0c:25: b3:13:42:2f:5d:d7:ce:91:24:7a:18:eb:bb:4a:a5:b9:79:26: 66:f1:7e:19 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJrtnTtQcMu4MwFmfwUsFgtb0gJMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI1MTgwMTMyWhcNMjUwNDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDBmMDkwZDZmNTlhYzU0MjUwYmE3NGVlNDA0ZTkxZTk2 YjMzODI0Njg4OWRjYzg5YTg1ZTNjYzJjZjFhYjU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCDY1EVme55FN2zcLCVAUG1C6WzUSYd6YdUPb1AsmPxOib rJzlkf4mTxPoYoUtorpjm8E60bG+eAkbmxdZ8L2kMWBixdOD5+5V3jiaKPfQ5qku wcEDfwS3IsuTGYJjOcCLoRrodj8ErRlMl1Arpx/UIc0fEED+bwbfahkKnLtMch+w B9zCifTIPWf/+EqeEvtU/PjhZ9HHfdyL+QXzOWVS9ORlXnElVN9ednUgHfDWIPg3 I+LG8lN29tJW/JOocQdgvGqYQL16hgdRVHshZ/V55iXVaumGDlvbyAWfrP+qut3c DwBykns2+OE9QteREbunWbUWgGoAB7be6e3xI2jfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0Nc359ENC3VLN7N1mu85GgAKD2wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I1MTgwODI1LWY0ZGItNDJiYy1iZDhjLTk2MWU0YWExNzBkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/0wEAwDQYJKoZIhvcNAQELBQADggEBAJasti+gaH8dzl6odpRygHy5 gP2P6U6vUaQL4LEe/eKAITpSz6tlVAnnGY5WoGkQCDp8nlpxCQvJgyZExvWzzEsX Nnx6rL4STP3UyiVI6oZyPVUuvOcne4rU7pgvSMh/k/jXcySnsN6g4rz++N2Wl5UV jQtBTaWusgroMcAzftgd9wWFFB+HdgeCxGafMEqC5C/rNIC2NOKzQFKYxWv0luKd IrXzzbcDeKqRhZItjtOBktRmYSVK++X7U8bl5VpoGVKqnyDHWwWsW5UCEEt7n5MI d/IQidiZ62DgSy42XvOFZX7gmgENZX0MJbMTQi9d186RJHoY67tKpbl5Jmbxfhk= -----END CERTIFICATE-----Generated at Sat Apr 5 11:12:55 2025 by rpki-client