$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a975cd8-96d0-40e0-b0ac-ae7d8cda8ba4.roa File: 1a975cd8-96d0-40e0-b0ac-ae7d8cda8ba4.roa (raw, json) Hash identifier: mlOPNaJu00O20WJuNE8TVmo9ucTAIOlsqhbhu2B1i20= Subject key identifier: DD:B4:0B:ED:87:A2:99:2D:51:A7:68:71:79:35:10:41:BA:9F:33:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C940E1E61D6295E0E934D582E67B270311B14B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a975cd8-96d0-40e0-b0ac-ae7d8cda8ba4.roa Signing time: Mon 31 Mar 2025 15:30:28 +0000 ROA not before: Mon 31 Mar 2025 15:30:28 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f2f:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 06 Apr 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:94:0e:1e:61:d6:29:5e:0e:93:4d:58:2e:67:b2:70:31:1b:14:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:30:28 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:73:13:6c:a1:5b:63:94:fc:68:41:48:e5:79: 44:9a:d5:81:59:3b:e5:c9:52:d5:8d:a2:1b:e5:c3: 9a:d5:7b:fe:b7:21:b8:19:75:c5:d7:32:89:78:7b: ee:ca:59:61:fb:31:db:f2:fe:c2:f8:94:63:5c:90: d7:c5:1a:b8:c4:d0:c5:89:c5:0a:d7:f7:f5:67:80: 09:ad:65:34:34:e0:10:ae:70:f6:ea:dc:df:d4:ed: f2:e4:09:22:76:89:79:4b:5d:41:03:04:4d:ba:4a: a3:32:69:41:71:5d:1f:4d:b5:bc:70:3c:3a:94:46: fd:e8:ec:66:de:86:7c:16:08:3b:a5:01:55:96:bc: 63:9e:d0:aa:14:6d:29:a6:71:44:2d:75:dc:8a:99: 26:41:9b:68:8e:82:7c:ed:e7:c4:1c:de:aa:77:9c: d3:85:66:6b:7c:f9:5d:00:5b:f4:32:af:e5:fa:a7: 33:21:62:ea:25:51:ff:de:f3:17:70:01:c2:25:c8: d6:b5:54:f3:c1:68:c0:f3:74:97:17:50:ec:31:90: 04:05:88:f5:1e:e4:fe:9a:fc:f0:96:71:8d:b8:45: 70:a7:c3:60:9f:2b:45:a7:d8:ce:72:96:95:77:c0: 38:64:d2:85:f5:15:62:4d:6f:05:d7:1b:ec:68:04: 14:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:B4:0B:ED:87:A2:99:2D:51:A7:68:71:79:35:10:41:BA:9F:33:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a975cd8-96d0-40e0-b0ac-ae7d8cda8ba4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2f:8000::/36 Signature Algorithm: sha256WithRSAEncryption 67:08:8b:3f:cf:bf:63:79:a4:aa:6b:b7:6f:46:00:24:16:33: cb:3d:aa:ef:06:58:5b:03:2c:6c:0b:75:ac:cc:8c:51:f9:13: 8e:cf:2e:63:7e:45:b8:97:dc:3f:1c:53:bc:5a:db:0d:08:29: 1d:f3:89:be:1e:be:7d:c1:97:c6:29:e2:97:ce:f6:13:4a:22: 99:9b:e8:34:2a:d5:ad:3a:cc:9f:3b:52:35:90:e7:67:75:9d: 93:d7:fa:44:07:b5:bb:ec:09:2d:7c:2f:3f:6a:77:15:45:c0: d5:b5:1d:61:bd:35:ec:30:2d:62:d2:44:64:c6:6c:b8:42:65: 92:5b:eb:3f:f4:d1:d1:69:78:d2:73:bf:dc:0a:3e:9c:fe:33: 2f:f8:e8:d4:b1:a4:52:3e:98:d7:17:91:31:5b:b6:b9:61:84: bf:bb:72:55:79:62:fb:e0:dd:dc:37:9e:ae:31:52:81:84:42: c5:74:3c:d7:b0:9f:c0:8a:bd:44:1a:af:63:99:96:c9:71:98: 6d:85:ab:55:95:54:1b:54:70:e6:e3:2a:07:e8:a4:bd:d7:a0: 8f:a0:8f:ea:51:65:41:d6:81:f7:8c:0a:5b:0d:22:2d:8b:90: 23:13:36:de:89:d6:2a:37:f2:6e:5e:73:70:2f:bf:ea:89:d7: d9:18:75:48 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPJQOHmHWKV4Ok01YLmeycDEbFLgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMDI4WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzFhZWI1ZTI1NWU5NzUzMzY5ZDdjMmRkNDc4NjJmNGM3 MTM5MWU0NmI5OTY0ZDBhODhjMzNiMDI1NmIxNDViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVcxNsoVtjlPxoQUjleUSa1YFZO+XJUtWNohvlw5rVe/63 IbgZdcXXMol4e+7KWWH7Mdvy/sL4lGNckNfFGrjE0MWJxQrX9/VngAmtZTQ04BCu cPbq3N/U7fLkCSJ2iXlLXUEDBE26SqMyaUFxXR9NtbxwPDqURv3o7GbehnwWCDul AVWWvGOe0KoUbSmmcUQtddyKmSZBm2iOgnzt58Qc3qp3nNOFZmt8+V0AW/Qyr+X6 pzMhYuolUf/e8xdwAcIlyNa1VPPBaMDzdJcXUOwxkAQFiPUe5P6a/PCWcY24RXCn w2CfK0Wn2M5ylpV3wDhk0oX1FWJNbwXXG+xoBBRpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3bQL7YeimS1Rp2hxeTUQQbqfM+MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhOTc1Y2Q4LTk2ZDAtNDBlMC1iMGFjLWFlN2Q4Y2RhOGJhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8vgDANBgkqhkiG9w0BAQsFAAOCAQEAZwiLP8+/Y3mkqmu3b0YAJBYz yz2q7wZYWwMsbAt1rMyMUfkTjs8uY35FuJfcPxxTvFrbDQgpHfOJvh6+fcGXxini l872E0oimZvoNCrVrTrMnztSNZDnZ3Wdk9f6RAe1u+wJLXwvP2p3FUXA1bUdYb01 7DAtYtJEZMZsuEJlklvrP/TR0Wl40nO/3Ao+nP4zL/jo1LGkUj6Y1xeRMVu2uWGE v7tyVXli++Dd3DeerjFSgYRCxXQ817CfwIq9RBqvY5mWyXGYbYWrVZVUG1Rw5uMq B+ikvdegj6CP6lFlQdaB94wKWw0iLYuQIxM23onWKjfybl5zcC+/6onX2Rh1SA== -----END CERTIFICATE-----Generated at Fri Apr 4 23:35:57 2025 by rpki-client