$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36214bab-b031-4d64-b155-eacb4b742ac6.roa File: 36214bab-b031-4d64-b155-eacb4b742ac6.roa (raw, json) Hash identifier: y6PXz4xchVJPJRfpXlCaFgZ0NU+5eRUMk1tJFkO7X7s= Subject key identifier: CD:22:E8:AA:63:D9:F3:C8:D3:0D:CD:F1:1A:84:1D:83:67:2B:1F:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1DBADECF3781F695A2E9D216595EE58A009C77BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36214bab-b031-4d64-b155-eacb4b742ac6.roa Signing time: Fri 28 Mar 2025 15:31:17 +0000 ROA not before: Fri 28 Mar 2025 15:31:17 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff4:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:ba:de:cf:37:81:f6:95:a2:e9:d2:16:59:5e:e5:8a:00:9c:77:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:31:17 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=37c4a978ea3945d0b6989834eb2fd13c0105e7f582c42302169a4b22f148a39f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ee:5d:e2:08:32:74:a6:bf:98:af:4c:90:cb: 79:f0:f2:59:01:e7:bd:1f:e2:3d:59:de:33:39:2a: 6f:cd:8b:dd:c1:85:08:27:55:23:50:b9:60:7f:3d: 39:eb:32:00:a6:7c:7a:d4:57:cf:a4:dd:52:c6:fe: 1e:53:f3:03:9c:30:71:02:45:01:39:d5:d5:11:3f: 24:7c:02:af:7c:40:3e:30:78:e7:43:6c:57:83:4e: 82:0a:8e:92:ae:9d:6c:e1:1f:56:78:d7:32:57:fd: a1:88:ff:ad:ad:f0:45:50:36:8c:2e:66:ab:d0:3c: 3a:76:05:7a:33:5b:5d:40:91:42:25:3c:34:c3:c5: 7d:a0:6b:45:8a:2c:35:a0:5d:e1:4c:6c:83:64:49: e7:09:a9:fc:55:06:b9:cc:a4:21:d5:da:82:2b:36: 0f:87:aa:d8:cd:7f:27:5a:c3:08:1d:4c:2f:78:c3: 9a:bb:57:6e:22:5d:5c:fe:0b:23:9a:e9:a3:47:db: cd:29:36:54:eb:ee:4b:81:2f:96:b1:b6:35:2d:4a: cc:dd:35:e1:93:6d:01:5b:c3:33:f9:0e:10:e3:16: 39:34:f2:aa:a4:ca:f2:5d:78:80:a5:3f:40:98:67: 0d:62:a9:b0:31:0d:fb:56:1e:15:9c:20:f1:21:45: 7d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:22:E8:AA:63:D9:F3:C8:D3:0D:CD:F1:1A:84:1D:83:67:2B:1F:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36214bab-b031-4d64-b155-eacb4b742ac6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:2000::/40 Signature Algorithm: sha256WithRSAEncryption 31:7f:7f:fe:3c:ca:e6:ff:e5:25:59:a4:69:a1:38:ff:7f:f7: 6d:c8:83:ef:46:72:62:8a:20:25:77:76:79:f6:ae:5c:e7:f3: 45:4f:3d:8a:a6:c8:7c:f0:03:56:c8:81:0a:09:18:55:09:f4: 71:e6:ac:4c:cc:be:d6:20:50:28:a6:5c:7a:57:58:a3:2b:a7: 0c:44:5e:42:b1:5b:f2:5c:a0:7d:a3:c2:f7:b2:0c:6e:a1:49: b5:7d:00:58:37:85:b3:7e:8c:0c:57:16:07:73:47:31:88:9d: c0:3a:89:c5:14:cf:f9:e1:51:d7:f4:6e:66:51:7e:bc:e2:a4: c7:51:c9:a3:49:2e:f0:96:e0:b0:bc:53:d7:f2:f4:0b:f4:13: 5a:26:61:4c:82:ec:c1:85:1b:24:39:5b:b9:21:fd:eb:c0:3a: 05:05:a2:55:e3:3a:bf:de:43:07:1b:e3:71:7f:1d:63:d3:dd: ec:3f:bb:6a:89:05:f1:18:36:b8:42:3e:46:0d:d9:11:0c:05: d4:00:8f:6e:dd:9b:1e:50:6b:c4:15:5b:15:54:ec:8b:dd:7c: 5d:19:7c:6c:45:19:9b:04:ce:fb:14:e9:35:00:c0:ad:54:90: 34:8c:82:dc:ef:a5:0f:b3:41:d4:9d:bc:f6:74:7c:57:ac:f0: 5f:16:37:58 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHbrezzeB9pWi6dIWWV7ligCcd74wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTUzMTE3WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2M0YTk3OGVhMzk0NWQwYjY5ODk4MzRlYjJmZDEzYzAx MDVlN2Y1ODJjNDIzMDIxNjlhNGIyMmYxNDhhMzlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF7l3iCDJ0pr+Yr0yQy3nw8lkB570f4j1Z3jM5Km/Ni93B hQgnVSNQuWB/PTnrMgCmfHrUV8+k3VLG/h5T8wOcMHECRQE51dURPyR8Aq98QD4w eOdDbFeDToIKjpKunWzhH1Z41zJX/aGI/62t8EVQNowuZqvQPDp2BXozW11AkUIl PDTDxX2ga0WKLDWgXeFMbINkSecJqfxVBrnMpCHV2oIrNg+HqtjNfydawwgdTC94 w5q7V24iXVz+CyOa6aNH280pNlTr7kuBL5axtjUtSszdNeGTbQFbwzP5DhDjFjk0 8qqkyvJdeIClP0CYZw1iqbAxDftWHhWcIPEhRX3BAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUzSLoqmPZ88jTDc3xGoQdg2crH8AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2MjE0YmFiLWIwMzEtNGQ2NC1iMTU1LWVhY2I0Yjc0MmFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0IDANBgkqhkiG9w0BAQsFAAOCAQEAMX9//jzK5v/lJVmkaaE4/3/3 bciD70ZyYoogJXd2efauXOfzRU89iqbIfPADVsiBCgkYVQn0ceasTMy+1iBQKKZc eldYoyunDEReQrFb8lygfaPC97IMbqFJtX0AWDeFs36MDFcWB3NHMYidwDqJxRTP +eFR1/RuZlF+vOKkx1HJo0ku8JbgsLxT1/L0C/QTWiZhTILswYUbJDlbuSH968A6 BQWiVeM6v95DBxvjcX8dY9Pd7D+7aokF8Rg2uEI+Rg3ZEQwF1ACPbt2bHlBrxBVb FVTsi918XRl8bEUZmwTO+xTpNQDArVSQNIyC3O+lD7NB1J289nR8V6zwXxY3WA== -----END CERTIFICATE-----Generated at Wed Apr 16 17:15:32 2025 by rpki-client