$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa File: 2420c225-afa1-4f5a-9de5-881837f8bf95.roa (raw, json) Hash identifier: V9TEyiJMmo26p5GJce2vf5FJdRdb63krhu4MVT4ctlk= Subject key identifier: FE:92:6D:70:76:16:9A:EC:2B:17:1B:DA:D9:2D:34:4A:75:D8:89:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EC01EAC9DF3AC35C7202F0B0CFF7F784CCD554B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa Signing time: Fri 28 Mar 2025 16:41:37 +0000 ROA not before: Fri 28 Mar 2025 16:41:37 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f12:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c0:1e:ac:9d:f3:ac:35:c7:20:2f:0b:0c:ff:7f:78:4c:cd:55:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 16:41:37 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=ccff7ebeab72fd356a0641b4a7b6428efae5a337873bb251da5c939d06ceab16, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:58:5f:e7:28:86:bd:11:4c:02:ee:e3:e6:1a: 3b:98:5a:f8:a5:c7:97:0b:bf:1b:1c:61:15:db:a9: a2:e4:66:09:39:9b:d3:56:44:38:59:26:37:57:3c: b1:61:bb:26:67:86:8f:d2:94:6d:10:d7:bd:a1:79: cb:99:c4:7f:10:31:ea:5c:5f:7c:12:bb:7d:81:e0: 0b:03:c3:90:79:07:2b:60:64:a7:ce:df:e0:30:da: 4f:86:3b:e3:48:8d:5e:21:9d:f8:22:5a:26:b3:ab: 49:ea:90:9f:0a:89:2a:d5:0f:ae:7f:a0:04:ba:e3: 3d:80:d0:1c:a5:c4:e9:1d:ac:b9:37:6e:6f:ef:a0: 91:48:89:68:84:70:55:b9:2e:8f:7f:60:83:af:e9: c5:bd:76:40:8b:43:1f:ed:32:de:bc:a8:67:93:f4: e5:9e:16:4e:19:b0:c9:45:de:91:90:d0:d9:e1:9a: a3:ba:79:43:6c:9b:04:3e:8d:c3:22:ee:fa:be:22: e4:0c:29:d8:65:61:16:c4:4f:e7:73:7e:f3:4b:87: 0d:85:18:3a:da:e0:7b:97:04:c6:f5:6a:21:6d:a4: 8e:24:b3:c0:34:ed:13:e0:55:7c:52:43:5c:c1:72: fd:51:47:cd:5f:be:d4:ed:44:3b:58:3d:4a:07:cc: dd:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:92:6D:70:76:16:9A:EC:2B:17:1B:DA:D9:2D:34:4A:75:D8:89:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12:c00::/38 Signature Algorithm: sha256WithRSAEncryption a4:37:bc:c3:e0:f2:59:bf:8a:e7:54:66:fe:12:f6:d6:62:1c: b4:02:27:d3:59:df:f8:87:79:0a:1c:6b:9d:ef:b7:d2:37:34: 69:70:f6:32:36:b1:ab:11:71:38:58:0e:95:31:b7:82:89:f4: 8c:35:1e:f3:22:84:f6:95:6c:0f:3d:d4:71:59:1f:cd:0e:58: 9b:f6:4b:35:cf:b6:13:b1:d2:1a:ed:1a:c8:cc:60:5b:30:76: 1f:a2:d6:bb:eb:08:61:1b:86:df:71:73:a4:ca:d4:31:d4:4e: cf:d4:aa:0e:0e:05:db:ee:ac:80:2c:0c:8f:41:a0:2b:3e:73: 9c:33:d2:08:7f:b1:e3:ea:2f:fc:68:15:61:78:c7:72:bb:7c: 5b:82:34:e5:c8:b1:73:9a:37:9d:2f:64:52:bf:3b:ea:d4:3f: f2:36:d0:98:89:07:cc:93:aa:29:f4:e0:d5:b7:dd:6f:53:02: a1:c4:68:64:f5:5a:04:8f:fc:06:2a:98:ef:92:f9:99:f6:d9: 9e:06:96:cf:b2:ca:d7:b4:1f:c8:00:fa:f5:22:6b:b5:cb:31: 95:08:82:8c:57:83:8a:b1:e1:66:2f:d3:b1:17:9c:f6:07:36: 06:af:e9:00:79:4c:00:9d:2e:6c:d2:7e:30:f8:aa:e5:7c:6b: b5:49:ab:a3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTsAerJ3zrDXHIC8LDP9/eEzNVUswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTY0MTM3WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2ZmN2ViZWFiNzJmZDM1NmEwNjQxYjRhN2I2NDI4ZWZh ZTVhMzM3ODczYmIyNTFkYTVjOTM5ZDA2Y2VhYjE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPWF/nKIa9EUwC7uPmGjuYWvilx5cLvxscYRXbqaLkZgk5 m9NWRDhZJjdXPLFhuyZnho/SlG0Q172hecuZxH8QMepcX3wSu32B4AsDw5B5Bytg ZKfO3+Aw2k+GO+NIjV4hnfgiWiazq0nqkJ8KiSrVD65/oAS64z2A0BylxOkdrLk3 bm/voJFIiWiEcFW5Lo9/YIOv6cW9dkCLQx/tMt68qGeT9OWeFk4ZsMlF3pGQ0Nnh mqO6eUNsmwQ+jcMi7vq+IuQMKdhlYRbET+dzfvNLhw2FGDra4HuXBMb1aiFtpI4k s8A07RPgVXxSQ1zBcv1RR81fvtTtRDtYPUoHzN0lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/pJtcHYWmuwrFxva2S00SnXYiQ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MjBjMjI1LWFmYTEtNGY1YS05ZGU1LTg4MTgzN2Y4YmY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8SDDANBgkqhkiG9w0BAQsFAAOCAQEApDe8w+DyWb+K51Rm/hL21mIc tAIn01nf+Id5Chxrne+30jc0aXD2MjaxqxFxOFgOlTG3gon0jDUe8yKE9pVsDz3U cVkfzQ5Ym/ZLNc+2E7HSGu0ayMxgWzB2H6LWu+sIYRuG33FzpMrUMdROz9SqDg4F 2+6sgCwMj0GgKz5znDPSCH+x4+ov/GgVYXjHcrt8W4I05cixc5o3nS9kUr876tQ/ 8jbQmIkHzJOqKfTg1bfdb1MCocRoZPVaBI/8BiqY75L5mfbZngaWz7LK17QfyAD6 9SJrtcsxlQiCjFeDirHhZi/TsRec9gc2Bq/pAHlMAJ0ubNJ+MPiq5XxrtUmrow== -----END CERTIFICATE-----Generated at Wed Apr 16 17:05:59 2025 by rpki-client