$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/108d085e-526f-4fe5-98e5-3f2d0043cc64.roa File: 108d085e-526f-4fe5-98e5-3f2d0043cc64.roa (raw, json) Hash identifier: KIT7dfiD19ehfwOKDk/MCfgH/v1Zu0ShmJHD7tIPf08= Subject key identifier: 55:D3:69:0A:63:74:75:BB:8A:16:58:1C:E1:89:F0:8D:1A:59:D4:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1119C7091E6E4391B7D42F0801D7348DE3686BF4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/108d085e-526f-4fe5-98e5-3f2d0043cc64.roa Signing time: Fri 28 Mar 2025 15:40:31 +0000 ROA not before: Fri 28 Mar 2025 15:40:31 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffb:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:19:c7:09:1e:6e:43:91:b7:d4:2f:08:01:d7:34:8d:e3:68:6b:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:40:31 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=1dd0fc0bab1125cbacf8b83e33dd56e532eb4073a3d1f68c26003850f75fcb96, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e2:14:91:a0:4e:05:fb:d9:96:b2:21:4a:2f: 91:c0:22:84:d8:e6:d6:20:15:0c:74:c1:d1:fa:cd: 6a:d4:7a:24:69:8d:5e:e6:eb:c3:27:be:27:f9:bb: f0:a9:1f:ae:53:d9:98:83:fe:07:4e:a2:91:09:d2: ca:d3:e4:74:5b:f9:30:2f:9d:6d:57:db:49:81:ff: 87:48:41:ff:d6:2c:84:ab:9a:aa:89:1f:43:55:ef: d8:7f:6d:ed:0c:41:c4:2f:c3:38:fc:15:61:7c:49: 76:a2:b5:25:38:cf:80:3a:30:99:b4:be:8f:af:a2: 61:f3:c2:9c:ec:43:0d:6b:01:9b:c4:5b:9c:76:59: 1c:62:a9:ab:e4:34:b6:a5:f5:f2:4e:00:d2:22:98: 75:b7:06:49:46:1d:61:df:22:c5:53:61:93:4c:e4: c7:8a:93:60:b8:91:47:75:84:b0:00:eb:ff:be:c8: 06:8c:f2:76:ed:bf:10:3f:b0:59:8c:88:28:19:ce: 4c:c3:13:b9:c4:d3:ea:cc:ee:d6:94:23:90:d7:1a: 1d:f9:6d:ea:3c:94:e0:b0:9d:c0:a9:ad:9a:ba:32: 8a:66:0a:c5:06:9f:7e:00:99:e8:cf:44:99:a6:d4: b9:91:1b:50:0f:b5:8a:c2:f7:5f:6c:d8:c3:43:5f: bd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D3:69:0A:63:74:75:BB:8A:16:58:1C:E1:89:F0:8D:1A:59:D4:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/108d085e-526f-4fe5-98e5-3f2d0043cc64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:8080::/48 Signature Algorithm: sha256WithRSAEncryption 03:07:bc:d6:40:22:d9:4b:87:49:07:1a:e4:2f:f1:29:c7:d3: c4:8e:45:40:c6:4a:1d:fc:85:28:35:a9:e3:53:12:7b:d0:aa: fd:56:b7:c9:37:64:ff:65:bc:fc:a2:59:75:f9:c6:f3:d3:87: 5a:18:a1:b5:53:e5:fa:2f:0a:02:8f:02:74:75:9c:f5:c3:68: c8:3c:dd:b1:56:8e:96:9f:f9:45:ac:33:28:c9:2f:27:89:19: d4:fa:07:fd:01:93:22:ca:8a:37:a1:4d:4b:20:01:58:da:d9: 6f:89:4f:11:96:64:1b:74:8e:b4:42:fe:da:d1:26:9e:4d:05: 6a:a6:7a:f6:40:54:46:7a:b0:f0:35:28:b7:78:43:60:c9:17: b0:c8:03:ab:79:de:76:df:1a:f3:e2:bc:8c:19:09:c6:54:11: 52:50:7f:66:d6:e5:20:e8:b8:a8:8f:38:b8:f9:f8:cc:74:85: 90:7a:fb:d8:aa:0d:96:e4:28:38:60:ed:52:ee:ec:db:77:0f: 0a:67:b7:9b:0f:96:c9:30:19:52:6d:c7:25:95:73:86:c9:4e: 8c:38:1d:2e:64:49:8f:3f:c1:1d:7f:10:72:19:dd:36:a9:84: e4:93:39:dd:53:06:0f:9b:cd:4c:0b:9e:1c:95:3d:97:b0:79: a2:82:92:ee -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUERnHCR5uQ5G31C8IAdc0jeNoa/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTU0MDMxWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGQwZmMwYmFiMTEyNWNiYWNmOGI4M2UzM2RkNTZlNTMy ZWI0MDczYTNkMWY2OGMyNjAwMzg1MGY3NWZjYjk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM4hSRoE4F+9mWsiFKL5HAIoTY5tYgFQx0wdH6zWrUeiRp jV7m68Mnvif5u/CpH65T2ZiD/gdOopEJ0srT5HRb+TAvnW1X20mB/4dIQf/WLISr mqqJH0NV79h/be0MQcQvwzj8FWF8SXaitSU4z4A6MJm0vo+vomHzwpzsQw1rAZvE W5x2WRxiqavkNLal9fJOANIimHW3BklGHWHfIsVTYZNM5MeKk2C4kUd1hLAA6/++ yAaM8nbtvxA/sFmMiCgZzkzDE7nE0+rM7taUI5DXGh35beo8lOCwncCprZq6Mopm CsUGn34AmejPRJmm1LmRG1APtYrC919s2MNDX71LAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVdNpCmN0dbuKFlgc4YnwjRpZ1KcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwOGQwODVlLTUyNmYtNGZlNS05OGU1LTNmMmQwMDQzY2M2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/7gIAwDQYJKoZIhvcNAQELBQADggEBAAMHvNZAItlLh0kHGuQv8SnH 08SORUDGSh38hSg1qeNTEnvQqv1Wt8k3ZP9lvPyiWXX5xvPTh1oYobVT5fovCgKP AnR1nPXDaMg83bFWjpaf+UWsMyjJLyeJGdT6B/0BkyLKijehTUsgAVja2W+JTxGW ZBt0jrRC/trRJp5NBWqmevZAVEZ6sPA1KLd4Q2DJF7DIA6t53nbfGvPivIwZCcZU EVJQf2bW5SDouKiPOLj5+Mx0hZB6+9iqDZbkKDhg7VLu7Nt3Dwpnt5sPlskwGVJt xyWVc4bJTow4HS5kSY8/wR1/EHIZ3TaphOSTOd1TBg+bzUwLnhyVPZeweaKCku4= -----END CERTIFICATE-----Generated at Wed Apr 16 16:52:27 2025 by rpki-client