$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa File: 6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa (raw, json) Hash identifier: 26iSH7NORxtkjx+0X8pyeTN7E7LRG+LuhykcjQ5/p4k= Subject key identifier: 38:F1:29:52:92:60:B4:5B:EB:01:E8:41:05:24:96:2B:9C:ED:2F:2B Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 6914BC89092C91DD73736F647D3A18DFDE9136A1 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa Signing time: Mon 17 Mar 2025 15:10:26 +0000 ROA not before: Mon 17 Mar 2025 15:10:26 +0000 ROA not after: Mon 21 Apr 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:14:bc:89:09:2c:91:dd:73:73:6f:64:7d:3a:18:df:de:91:36:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Mar 17 15:10:26 2025 GMT Not After : Apr 21 23:59:59 2025 GMT Subject: CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7e:26:10:6a:31:1d:be:e8:dd:95:44:2c:c1: 12:71:2d:16:77:36:9a:6c:c2:3e:87:75:6b:61:8f: a2:a3:59:40:bb:44:bb:0b:96:90:51:3d:0c:92:04: 7d:f5:42:c9:36:91:a9:94:08:93:fc:92:96:fb:64: 78:dd:7f:06:20:35:d6:a8:ae:b2:25:03:f0:e5:a9: 90:f5:b2:74:ff:74:4e:27:e3:52:44:5b:1c:2c:45: 7e:82:ca:22:1e:81:f6:9d:5b:f2:55:ef:5d:a3:6d: be:fe:38:6f:fa:c0:84:88:59:5d:28:cc:5d:1a:b3: 16:5b:a2:b5:20:9d:b8:1a:d8:db:53:94:f8:b7:1a: 2d:15:20:29:db:0a:08:94:16:4b:13:92:37:0c:bb: 55:52:f2:b8:3b:5f:40:94:c2:b9:31:70:62:04:7e: 3e:5b:9a:e2:e4:59:e9:4f:c3:4f:73:c4:fd:c0:d0: ab:a5:0d:94:a3:33:f1:b5:cc:c8:fa:7f:b9:b9:87: ab:cf:1e:e5:fd:09:54:bf:81:54:27:24:70:7c:96: e2:f6:ca:e4:4e:15:fa:f5:a7:ec:10:ee:9d:7f:84: 87:9c:d1:2d:90:4b:a9:ff:47:8c:9c:04:1e:a1:25: 25:8f:3c:ab:b6:74:d4:ac:d1:c4:c2:ad:97:b6:a2: 26:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F1:29:52:92:60:B4:5B:EB:01:E8:41:05:24:96:2B:9C:ED:2F:2B X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/6ba0c1f3-2b2e-4d8a-bef1-52e07a4a5a4e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 1f:20:0f:3d:8c:0f:83:14:d9:fb:5a:c3:51:bc:86:ae:46:ff: 4b:e0:67:7a:ef:c1:3c:7b:e4:dd:ba:a7:5e:4f:85:a6:6c:c3: 14:65:50:5d:1e:45:4f:ae:e6:a4:68:97:ac:92:97:af:b9:9b: ea:84:85:8d:8a:46:e3:17:a8:4a:d3:e0:21:e8:1d:ce:0a:21: 33:9a:de:00:fe:21:fe:f9:9f:5b:1d:32:21:d4:c3:3d:2c:b8: fa:ed:6a:ac:93:42:94:42:f3:89:40:d1:07:6b:1e:eb:f1:22: 50:8f:cf:44:f8:19:d1:4d:db:a0:02:c5:8a:18:e4:16:12:54: 2d:a4:0b:55:62:ee:1b:ca:20:96:fd:05:b5:10:2f:3e:c6:c9: 71:1e:4f:3f:cd:e0:46:a9:96:73:de:fc:23:11:61:06:fc:5a: e1:bd:96:d9:ac:df:08:f0:4d:6a:89:ac:7d:28:d1:06:2f:02: 23:dd:7a:d3:f0:91:3c:27:61:ad:b8:76:54:48:75:3e:89:2c: 78:34:aa:5e:b6:7e:87:bb:6f:47:08:e2:d7:b8:86:21:07:4f: 21:e2:66:34:8f:e6:5b:08:10:c3:a6:97:86:61:56:29:2b:b0: 94:4d:2f:97:ec:cb:66:2b:04:dd:a8:2b:f0:c4:9c:a8:dc:b1: 36:76:10:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaRS8iQkskd1zc29kfToY396RNqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwMzE3MTUxMDI2WhcNMjUwNDIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDMwNTJhMTdkNmQwNGM3OTZjNmJiYThiZDRkNTRjNmQz ZTZjMmUwOWZkMzcyMzVmZGZkYzk3MjdjOTYyMzNkMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5fiYQajEdvujdlUQswRJxLRZ3Nppswj6HdWthj6KjWUC7 RLsLlpBRPQySBH31Qsk2kamUCJP8kpb7ZHjdfwYgNdaorrIlA/DlqZD1snT/dE4n 41JEWxwsRX6CyiIegfadW/JV712jbb7+OG/6wISIWV0ozF0asxZborUgnbga2NtT lPi3Gi0VICnbCgiUFksTkjcMu1VS8rg7X0CUwrkxcGIEfj5bmuLkWelPw09zxP3A 0KulDZSjM/G1zMj6f7m5h6vPHuX9CVS/gVQnJHB8luL2yuROFfr1p+wQ7p1/hIec 0S2QS6n/R4ycBB6hJSWPPKu2dNSs0cTCrZe2oibnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOPEpUpJgtFvrAehBBSSWK5ztLyswHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzZiYTBjMWYzLTJiMmUtNGQ4YS1iZWYxLTUyZTA3YTRhNWE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBAB8gDz2MD4MU2ftaw1G8hq5G /0vgZ3rvwTx75N26p15PhaZswxRlUF0eRU+u5qRol6ySl6+5m+qEhY2KRuMXqErT 4CHoHc4KITOa3gD+If75n1sdMiHUwz0suPrtaqyTQpRC84lA0QdrHuvxIlCPz0T4 GdFN26ACxYoY5BYSVC2kC1Vi7hvKIJb9BbUQLz7GyXEeTz/N4EaplnPe/CMRYQb8 WuG9ltms3wjwTWqJrH0o0QYvAiPdetPwkTwnYa24dlRIdT6JLHg0ql62foe7b0cI 4te4hiEHTyHiZjSP5lsIEMOml4ZhVikrsJRNL5fsy2YrBN2oK/DEnKjcsTZ2EE0= -----END CERTIFICATE-----Generated at Sat Apr 5 11:02:24 2025 by rpki-client