$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc263c4-eedd-4628-860d-5b0a2aeb2d2a.roa File: efc263c4-eedd-4628-860d-5b0a2aeb2d2a.roa (raw, json) Hash identifier: DkhhmHmHNQotfiPQUyA6LZNMyWlRbS/WrVJYr9HZ87A= Subject key identifier: E2:E4:35:DA:E8:36:2A:2C:5F:DA:CE:E1:85:F3:B9:DA:75:E4:FA:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F29BEA539FD3424D49F52EADE7329C3A4250458 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc263c4-eedd-4628-860d-5b0a2aeb2d2a.roa Signing time: Fri 28 Mar 2025 17:11:49 +0000 ROA not before: Fri 28 Mar 2025 17:11:49 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:29:be:a5:39:fd:34:24:d4:9f:52:ea:de:73:29:c3:a4:25:04:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 17:11:49 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9f:8a:40:c4:40:ef:b3:40:a9:c4:4e:44:da: 40:fe:0f:5c:3e:60:22:fb:2e:1e:c0:1a:25:1d:47: c7:fe:3b:b8:cb:38:8e:9b:bb:7d:72:de:5f:2a:fc: 82:f1:6b:10:d5:65:67:91:90:9e:2e:d9:2d:b7:ca: 28:78:79:5a:82:02:12:7d:32:ea:fc:07:a5:8c:5d: 14:13:74:90:8d:5e:4b:94:51:42:17:03:69:ab:d2: b1:5f:81:b3:35:2f:69:db:b2:35:24:84:e6:85:9b: 4d:77:f2:f9:3a:65:3a:33:af:e7:84:cd:b0:bd:50: 73:b5:94:d3:c7:8f:3c:6f:0d:ac:8c:4f:32:54:97: eb:c7:5e:a4:05:13:95:64:0d:f6:3d:fe:c4:20:90: 23:8f:08:05:d3:15:ff:ab:1c:39:59:fa:28:88:a7: a0:b3:86:f4:9a:44:2c:14:70:e2:77:65:20:27:64: 3e:a5:fc:b3:db:d8:bc:2f:f8:b0:5b:20:04:df:37: 17:94:d7:d4:87:b2:75:71:cb:f9:fa:6f:cf:28:03: 04:d9:54:44:bd:fb:59:f2:ca:21:34:64:53:9f:96: 83:f4:59:43:4f:e6:09:ce:13:83:20:a4:77:d2:1a: 6a:92:d4:ff:5a:bc:98:3f:17:52:1e:6d:ea:56:f8: 98:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:E4:35:DA:E8:36:2A:2C:5F:DA:CE:E1:85:F3:B9:DA:75:E4:FA:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc263c4-eedd-4628-860d-5b0a2aeb2d2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e:4000::/36 Signature Algorithm: sha256WithRSAEncryption a7:45:72:dd:39:cf:15:72:89:86:60:20:d3:ff:67:0d:b2:43: d5:e1:e9:d6:8c:37:62:6b:9c:b6:eb:5a:cd:50:2b:ae:69:a9: 67:28:bf:57:e2:df:5f:b1:dd:df:49:73:d7:fe:09:a2:d0:2f: b6:e1:b4:64:a7:da:ef:2a:5e:74:c9:ae:9e:6d:51:59:5e:bc: cd:d0:e0:79:32:68:e4:37:58:55:12:e6:64:1e:74:2f:86:de: ec:82:50:c8:c6:74:78:7c:6f:d8:22:e0:e7:d0:74:38:82:66: ea:ae:e5:8d:fa:d8:16:37:6b:99:86:f4:29:34:f5:58:76:42: ce:e4:16:57:82:f3:41:0c:4f:a9:05:8f:32:2c:e5:27:b6:74: 75:45:2c:6b:fa:aa:a9:b9:e0:ce:a0:43:1e:11:77:60:8a:03: 2e:8d:a5:2b:6b:ba:22:25:fa:2a:e9:bf:c5:0f:f5:bf:dc:ec: 5d:64:05:fd:3d:2c:83:78:a3:cf:e5:e5:a6:23:69:2e:2f:59: 6b:ba:6c:37:84:b9:05:70:25:c5:8d:e8:1f:29:d9:77:70:b9: fc:8a:25:49:4c:d6:b6:d9:26:a6:c4:4e:08:c4:21:d5:e2:c2: 8f:86:52:47:9c:41:a2:c8:0e:30:ba:0f:d6:a0:56:11:ed:b6: 89:07:a7:af -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfym+pTn9NCTUn1Lq3nMpw6QlBFgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTcxMTQ5WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzFiYjRkNWFmNjNlNzZmMTc4ZDYyZDJmYjU0NTcwM2Yy YzI4YjhhMDE3YzE0NTlhNTJkM2IzN2MyZGZkZDU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDin4pAxEDvs0CpxE5E2kD+D1w+YCL7Lh7AGiUdR8f+O7jL OI6bu31y3l8q/ILxaxDVZWeRkJ4u2S23yih4eVqCAhJ9Mur8B6WMXRQTdJCNXkuU UUIXA2mr0rFfgbM1L2nbsjUkhOaFm0138vk6ZTozr+eEzbC9UHO1lNPHjzxvDayM TzJUl+vHXqQFE5VkDfY9/sQgkCOPCAXTFf+rHDlZ+iiIp6CzhvSaRCwUcOJ3ZSAn ZD6l/LPb2Lwv+LBbIATfNxeU19SHsnVxy/n6b88oAwTZVES9+1nyyiE0ZFOfloP0 WUNP5gnOE4MgpHfSGmqS1P9avJg/F1IebepW+JjLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4uQ12ug2Kixf2s7hhfO52nXk+lcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmYzI2M2M0LWVlZGQtNDYyOC04NjBkLTViMGEyYWViMmQyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8eQDANBgkqhkiG9w0BAQsFAAOCAQEAp0Vy3TnPFXKJhmAg0/9nDbJD 1eHp1ow3YmuctutazVArrmmpZyi/V+LfX7Hd30lz1/4JotAvtuG0ZKfa7ypedMmu nm1RWV68zdDgeTJo5DdYVRLmZB50L4be7IJQyMZ0eHxv2CLg59B0OIJm6q7ljfrY FjdrmYb0KTT1WHZCzuQWV4LzQQxPqQWPMizlJ7Z0dUUsa/qqqbngzqBDHhF3YIoD Lo2lK2u6IiX6Kum/xQ/1v9zsXWQF/T0sg3ijz+XlpiNpLi9Za7psN4S5BXAlxY3o HynZd3C5/IolSUzWttkmpsROCMQh1eLCj4ZSR5xBosgOMLoP1qBWEe22iQenrw== -----END CERTIFICATE-----Generated at Sat Apr 5 11:19:49 2025 by rpki-client