$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: rb9XcwqQzcHN6LPLNBwIet43NewVcVLHiozw6fDb3zU= Subject key identifier: F9:13:63:87:5D:89:B9:AE:01:2B:04:A8:77:BE:39:2F:4C:F5:5A:34 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 7E19CCC39976DCA531FB0A18DF87628E1FA7E587 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Wed 16 Apr 2025 00:10:10 +0000 ROA not before: Wed 16 Apr 2025 00:10:10 +0000 ROA not after: Wed 21 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 18 Apr 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:19:cc:c3:99:76:dc:a5:31:fb:0a:18:df:87:62:8e:1f:a7:e5:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Apr 16 00:10:10 2025 GMT Not After : May 21 23:59:59 2025 GMT Subject: serialNumber=ff2f5ea8ab9f1a07f609bf1b7849f51c3274e02f3c7c901a0e0e9ba16af3fa89, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:df:74:ec:0d:84:c1:ba:f4:b5:21:1e:6b:7c: e5:67:dc:2d:67:ba:57:d0:b7:ee:67:d7:0e:ff:8d: e3:40:57:2c:e9:61:cc:1b:ff:90:64:70:81:4d:5b: 7a:7d:4c:6d:77:d5:5e:b3:b8:f7:82:bc:ba:92:e0: 8d:b6:88:97:48:08:f3:f3:f7:54:1d:8e:6a:a2:49: 06:d3:56:fe:5f:26:e9:b5:3f:a6:d0:f2:21:ef:53: 09:d5:27:7d:56:1e:db:11:3e:f3:7c:55:1a:51:61: 70:46:ce:ff:c0:c8:5f:74:75:33:52:ae:ce:61:f8: 65:71:20:9c:81:a6:44:11:d2:74:0d:72:94:b0:dc: e6:c0:66:40:f6:ca:12:3d:0b:53:7d:d2:11:21:d2: f1:3f:ba:da:09:aa:02:d6:ad:d1:cb:f8:34:50:c9: e8:da:72:a8:c7:16:de:36:61:ef:99:db:3a:c8:70: 07:56:38:42:75:03:c9:05:4e:15:51:08:e2:c7:53: fd:7f:c9:ab:b4:b9:2a:86:75:13:54:99:1d:c5:88: e9:9c:46:c3:e7:a2:1f:4d:32:62:9c:40:04:c3:50: c0:61:02:05:b0:5a:7d:7f:3b:c4:9c:76:9c:ac:5a: c5:c6:9d:7a:08:8b:19:d3:a1:3f:83:31:1d:3c:fe: fa:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:13:63:87:5D:89:B9:AE:01:2B:04:A8:77:BE:39:2F:4C:F5:5A:34 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption 41:7f:44:20:ca:1a:43:7a:0b:f5:b0:7c:37:1e:74:f9:61:b9: dd:36:88:e6:c2:1a:97:76:87:29:d7:3e:8e:40:06:d2:27:8f: 7f:bd:6c:78:4e:db:f2:b2:a9:c3:e8:29:bd:f5:2a:6e:cb:cd: c5:34:49:9b:94:5d:76:c6:44:a1:fc:a7:d6:24:12:c3:40:fb: 6e:94:d0:49:99:62:48:ef:22:e1:f4:2a:3e:2b:53:16:37:55: c0:60:7c:c6:1f:8d:41:8c:7a:09:97:60:c6:b4:45:ab:6e:2e: 85:67:36:0f:42:42:cf:14:4b:8a:33:bb:1d:55:11:91:5a:9c: a3:2b:d3:6d:e5:41:62:ad:97:e2:e6:16:a7:2a:2c:6b:89:90: d1:a9:74:7c:36:77:bb:41:e9:f7:70:62:4a:db:01:0c:d5:47: f5:8c:d8:01:5b:67:ad:8c:d5:6e:6c:fb:27:12:72:ba:5e:df: 4b:fe:d2:a2:0d:fe:31:5e:e9:4a:11:89:f7:d1:e3:9d:72:f7: c9:5f:b6:4b:b4:30:8c:be:9a:b4:26:c3:f2:6a:77:94:99:6a: d4:cb:15:c9:1a:96:1c:17:f9:7f:d3:21:7f:d4:2d:51:10:e8: 2f:13:0a:6b:83:46:f7:71:17:65:20:2f:0e:d5:18:48:bf:a7: f9:90:46:de -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUfhnMw5l23KUx+woY34dijh+n5YcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNDE2MDAxMDEwWhcNMjUwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZjJmNWVhOGFiOWYxYTA3ZjYwOWJmMWI3ODQ5ZjUxYzMy NzRlMDJmM2M3YzkwMWEwZTBlOWJhMTZhZjNmYTg5MS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC833TsDYTBuvS1IR5rfOVn3C1nulfQt+5n1w7/jeNAVyzp Ycwb/5BkcIFNW3p9TG131V6zuPeCvLqS4I22iJdICPPz91QdjmqiSQbTVv5fJum1 P6bQ8iHvUwnVJ31WHtsRPvN8VRpRYXBGzv/AyF90dTNSrs5h+GVxIJyBpkQR0nQN cpSw3ObAZkD2yhI9C1N90hEh0vE/utoJqgLWrdHL+DRQyejacqjHFt42Ye+Z2zrI cAdWOEJ1A8kFThVRCOLHU/1/yau0uSqGdRNUmR3FiOmcRsPnoh9NMmKcQATDUMBh AgWwWn1/O8ScdpysWsXGnXoIixnToT+DMR08/vpnAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU+RNjh12Jua4BKwSod745L0z1WjQwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQBBf0QgyhpDegv1sHw3HnT5Ybnd NojmwhqXdocp1z6OQAbSJ49/vWx4TtvysqnD6Cm99Spuy83FNEmblF12xkSh/KfW JBLDQPtulNBJmWJI7yLh9Co+K1MWN1XAYHzGH41BjHoJl2DGtEWrbi6FZzYPQkLP FEuKM7sdVRGRWpyjK9Nt5UFirZfi5hanKixriZDRqXR8Nne7Qen3cGJK2wEM1Uf1 jNgBW2etjNVubPsnEnK6Xt9L/tKiDf4xXulKEYn30eOdcvfJX7ZLtDCMvpq0JsPy aneUmWrUyxXJGpYcF/l/0yF/1C1REOgvEwprg0b3cRdlIC8O1RhIv6f5kEbe -----END CERTIFICATE-----Generated at Thu Apr 17 09:03:25 2025 by rpki-client