$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d48cd169-d456-4d40-abbf-bbdf7ede92be.roa File: d48cd169-d456-4d40-abbf-bbdf7ede92be.roa (raw, json) Hash identifier: 5HJYseJ9QXqWAEugdve91d2rPn+XG4lS4chckbDHJfI= Subject key identifier: BC:64:10:A7:5F:5D:C6:72:3E:6D:34:C4:E8:61:8A:2E:FE:AF:D1:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32C04C025DA86F9E83E5599A306A17812A7B9A10 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d48cd169-d456-4d40-abbf-bbdf7ede92be.roa Signing time: Tue 25 Mar 2025 17:32:10 +0000 ROA not before: Tue 25 Mar 2025 17:32:10 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:c0:4c:02:5d:a8:6f:9e:83:e5:59:9a:30:6a:17:81:2a:7b:9a:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 25 17:32:10 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:f7:e9:b1:7e:32:8d:c6:43:87:6c:22:12:da: 5a:65:ae:ec:5e:a6:2a:fa:04:4e:2e:9d:30:51:2f: 7d:9c:27:4e:f5:07:b4:bf:55:10:7d:76:77:4a:9b: 61:88:31:13:cd:5b:25:e8:77:be:1a:ae:1d:3c:e3: c0:72:97:be:41:2c:da:f6:15:68:b2:3c:36:0b:e2: 79:6a:18:4a:68:98:80:7e:8c:94:ec:12:37:cf:00: 0b:25:c4:11:47:41:ac:0e:f4:9a:17:a0:34:34:75: a5:a1:6e:df:b8:05:77:49:77:bf:d0:54:5f:6c:5c: fd:a7:7e:e3:b9:cb:3a:b8:6d:f8:2d:78:ab:18:99: b6:17:ef:a5:78:3c:f9:19:d7:a5:2b:c2:ba:72:f2: 15:eb:88:bf:a9:3f:14:71:53:fd:bf:b5:82:45:f8: 38:0e:13:5a:12:ba:d3:1f:fa:0e:82:a8:8b:66:90: 8c:fb:fc:ae:5a:28:0a:9b:65:8c:87:08:ce:2e:26: da:43:97:fb:10:28:93:98:13:4c:85:3f:46:31:10: b8:a7:d7:fa:1b:ba:8c:c6:89:31:f6:b6:e4:bc:f7: 17:9e:f7:96:77:e5:8b:3b:86:d4:e3:65:1e:10:c4: d6:80:e9:77:67:22:e3:34:ef:70:4b:ee:01:36:98: 85:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:64:10:A7:5F:5D:C6:72:3E:6D:34:C4:E8:61:8A:2E:FE:AF:D1:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d48cd169-d456-4d40-abbf-bbdf7ede92be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 6f:23:bb:b6:95:78:19:2b:f3:8c:b3:e7:34:22:18:95:d3:05: fd:12:c4:c9:13:6f:28:ba:97:d3:da:43:85:bc:60:cf:8d:c4: 60:1b:9c:95:33:85:39:6f:61:58:f0:90:c7:a1:ad:3e:17:e1: a1:6b:76:14:35:5c:35:27:aa:b6:c0:88:23:61:d1:7c:40:b7: d4:90:45:73:f0:ba:80:7f:6e:28:d1:d4:8a:7c:08:50:69:af: 9a:c1:6f:6d:8d:18:43:78:ad:c8:3e:eb:a5:74:c8:16:b0:73: 47:d2:7c:e3:2b:81:f7:7a:21:fe:24:13:58:0b:04:e8:7d:e8: 75:07:94:a8:26:3e:42:e0:e9:a6:57:cb:69:e6:8a:de:a1:e3: 60:c1:e7:32:d6:7e:a9:8e:80:08:dd:d6:39:c6:c3:80:be:f3: 03:98:e6:d0:e1:2a:d9:06:44:49:99:28:2b:95:bf:a4:8f:04: b4:fe:77:66:e6:33:6d:89:5b:36:d4:70:20:8c:ad:68:88:4f: ea:13:f3:d0:6e:bc:9c:ae:1d:e3:3c:4a:e3:71:6f:d7:d7:35: 0b:09:ae:c0:e5:37:ca:49:36:8b:5a:e9:91:5d:c7:7c:c7:bc: 72:da:71:d1:3d:21:cc:88:b7:81:f1:7e:ca:76:e8:45:eb:63: fe:4e:c9:4e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMsBMAl2ob56D5VmaMGoXgSp7mhAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI1MTczMjEwWhcNMjUwNDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZmJjYjNhODllNmFjODMwOGQ2ODlmODczM2QyMDFkYTk2 NWI0YTk0NmRkNWMxNjhkMTA4YWY2Y2Y3YzA0MGM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCV9+mxfjKNxkOHbCIS2lplruxepir6BE4unTBRL32cJ071 B7S/VRB9dndKm2GIMRPNWyXod74arh0848Byl75BLNr2FWiyPDYL4nlqGEpomIB+ jJTsEjfPAAslxBFHQawO9JoXoDQ0daWhbt+4BXdJd7/QVF9sXP2nfuO5yzq4bfgt eKsYmbYX76V4PPkZ16Urwrpy8hXriL+pPxRxU/2/tYJF+DgOE1oSutMf+g6CqItm kIz7/K5aKAqbZYyHCM4uJtpDl/sQKJOYE0yFP0YxELin1/obuozGiTH2tuS89xee 95Z35Ys7htTjZR4QxNaA6XdnIuM073BL7gE2mIUPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvGQQp19dxnI+bTTE6GGKLv6v0aIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0OGNkMTY5LWQ0NTYtNGQ0MC1hYmJmLWJiZGY3ZWRlOTJiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84gMAwDQYJKoZIhvcNAQELBQADggEBAG8ju7aVeBkr84yz5zQiGJXT Bf0SxMkTbyi6l9PaQ4W8YM+NxGAbnJUzhTlvYVjwkMehrT4X4aFrdhQ1XDUnqrbA iCNh0XxAt9SQRXPwuoB/bijR1Ip8CFBpr5rBb22NGEN4rcg+66V0yBawc0fSfOMr gfd6If4kE1gLBOh96HUHlKgmPkLg6aZXy2nmit6h42DB5zLWfqmOgAjd1jnGw4C+ 8wOY5tDhKtkGREmZKCuVv6SPBLT+d2bmM22JWzbUcCCMrWiIT+oT89BuvJyuHeM8 SuNxb9fXNQsJrsDlN8pJNota6ZFdx3zHvHLacdE9IcyIt4Hxfsp26EXrY/5OyU4= -----END CERTIFICATE-----Generated at Sat Apr 5 11:20:40 2025 by rpki-client