$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa File: 35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa (raw, json) Hash identifier: j6/nm4V4CjpVzsjtDZSdV8woMMI/YkYY47ryzNnrKQc= Subject key identifier: EC:83:F6:B9:D4:80:F5:C9:9F:31:67:D5:DC:A0:89:48:0E:C5:50:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 332542F598AA179C4141773F2109FAD08EEF80BA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa Signing time: Fri 28 Mar 2025 17:21:05 +0000 ROA not before: Fri 28 Mar 2025 17:21:05 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1f:4800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:25:42:f5:98:aa:17:9c:41:41:77:3f:21:09:fa:d0:8e:ef:80:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 17:21:05 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=ba1a24f8be0a739b757cf07a452cf1d0e6d85c2306809002597449baf12ce69a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:5e:99:54:38:d0:74:6a:6a:29:a5:02:e3:10: 3c:d3:3e:9d:0e:fa:19:92:68:dd:b3:18:77:5b:7c: 88:a4:19:8b:4a:58:9f:db:b8:40:d2:44:6c:7e:3f: 51:e1:e6:83:43:9c:47:9b:52:17:9d:52:aa:9a:39: 03:53:60:2a:c9:eb:b1:a6:cd:b5:8a:aa:70:32:b5: c1:07:ac:eb:f2:22:c4:b6:c4:fc:7e:f1:45:37:16: 26:05:a5:79:df:97:8d:d3:b4:ee:51:cc:aa:9e:5f: 41:10:e7:3a:b8:ae:d1:3c:72:6b:51:3d:9a:15:9f: 0b:f7:c4:e4:8a:06:9f:6e:a3:82:aa:8d:8a:b0:d2: 61:27:c7:cc:ff:e7:c1:37:3c:11:3d:ca:f1:2e:fd: 5d:2e:20:61:a7:d6:31:ae:90:9f:ed:48:19:bf:cf: fb:c9:4b:78:02:dc:65:7e:e1:78:c6:33:25:3b:c0: 9d:5f:ee:c7:72:24:00:dd:90:57:d2:04:c5:db:b3: fa:08:f8:91:b9:0d:0d:be:68:d2:b0:f2:4a:95:7e: 6f:30:dd:d9:d7:c5:0a:dc:af:da:22:7e:1b:b8:9e: 09:c1:21:c8:7b:2c:e9:cd:a1:61:db:ba:7c:e9:96: 82:b4:1a:3d:86:05:c4:20:6c:38:3f:a1:fc:f0:8d: 4a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:83:F6:B9:D4:80:F5:C9:9F:31:67:D5:DC:A0:89:48:0E:C5:50:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35df84bd-f85e-41cd-99b1-3f7a9ebb1480.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:4800::/37 Signature Algorithm: sha256WithRSAEncryption 3e:9e:96:c6:f7:6b:94:e5:2e:ed:f6:ad:13:a8:09:35:1b:71: db:79:9a:b8:0b:1e:f3:e0:b8:2c:ff:3b:ac:ae:e9:c9:b3:e4: 25:51:55:3f:e2:a9:99:a9:c8:91:65:26:67:87:75:95:2b:73: 9e:59:bf:f7:e6:e1:2d:92:53:4b:9b:91:d4:54:e9:f8:aa:a9: 70:13:6c:36:f3:52:cc:3a:88:fd:d2:63:a0:c6:75:bc:88:b1: b7:8c:99:36:3a:17:66:2e:8b:d4:ce:cd:50:46:a4:3a:1c:b6: 55:96:b8:49:59:61:5b:35:14:fe:7b:8c:02:a2:6c:76:57:38: 29:50:28:e6:9d:cb:72:65:81:6c:92:b7:0f:44:49:fd:00:ef: a1:3f:76:b0:04:d5:c6:fd:ff:d7:0d:10:7a:24:4f:6a:0e:dc: be:3b:55:85:a3:94:3c:32:cf:d3:81:17:94:ad:66:fe:a7:57: 6b:2c:6f:2c:1d:0f:27:c0:73:f1:c7:be:0f:7f:b0:93:a9:98: ba:a8:61:4b:81:ca:4a:1d:14:d8:3e:58:c6:bd:62:7d:a7:0f: 6c:f1:0d:d7:16:cf:2b:af:4c:c7:8e:0f:05:89:61:72:94:9c: 6b:26:f9:ae:ae:a8:e4:e5:79:ca:2c:92:04:c0:65:91:a1:80: 52:49:6a:75 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMyVC9ZiqF5xBQXc/IQn60I7vgLowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTcyMTA1WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTFhMjRmOGJlMGE3MzliNzU3Y2YwN2E0NTJjZjFkMGU2 ZDg1YzIzMDY4MDkwMDI1OTc0NDliYWYxMmNlNjlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuXplUONB0amoppQLjEDzTPp0O+hmSaN2zGHdbfIikGYtK WJ/buEDSRGx+P1Hh5oNDnEebUhedUqqaOQNTYCrJ67GmzbWKqnAytcEHrOvyIsS2 xPx+8UU3FiYFpXnfl43TtO5RzKqeX0EQ5zq4rtE8cmtRPZoVnwv3xOSKBp9uo4Kq jYqw0mEnx8z/58E3PBE9yvEu/V0uIGGn1jGukJ/tSBm/z/vJS3gC3GV+4XjGMyU7 wJ1f7sdyJADdkFfSBMXbs/oI+JG5DQ2+aNKw8kqVfm8w3dnXxQrcr9oifhu4ngnB Ich7LOnNoWHbunzploK0Gj2GBcQgbDg/ofzwjUpxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7IP2udSA9cmfMWfV3KCJSA7FUN8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ZGY4NGJkLWY4NWUtNDFjZC05OWIxLTNmN2E5ZWJiMTQ4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8fSDANBgkqhkiG9w0BAQsFAAOCAQEAPp6WxvdrlOUu7fatE6gJNRtx 23mauAse8+C4LP87rK7pybPkJVFVP+KpmanIkWUmZ4d1lStznlm/9+bhLZJTS5uR 1FTp+KqpcBNsNvNSzDqI/dJjoMZ1vIixt4yZNjoXZi6L1M7NUEakOhy2VZa4SVlh WzUU/nuMAqJsdlc4KVAo5p3LcmWBbJK3D0RJ/QDvoT92sATVxv3/1w0QeiRPag7c vjtVhaOUPDLP04EXlK1m/qdXayxvLB0PJ8Bz8ce+D3+wk6mYuqhhS4HKSh0U2D5Y xr1ifacPbPEN1xbPK69Mx44PBYlhcpScayb5rq6o5OV5yiySBMBlkaGAUklqdQ== -----END CERTIFICATE-----Generated at Wed Apr 16 16:46:51 2025 by rpki-client