$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38153cce-e525-47a5-af36-a8f25ad480b4.roa File: 38153cce-e525-47a5-af36-a8f25ad480b4.roa (raw, json) Hash identifier: kzTurfUVaBpulbL8k1df9TTKpZ2A8FfNvwFBUOR7rJo= Subject key identifier: 36:54:56:92:AB:69:3C:33:BD:2A:FB:24:89:16:0D:4A:3D:3A:A1:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3161A22BF08EB21C2EFBA512A8C4679C7135BECB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38153cce-e525-47a5-af36-a8f25ad480b4.roa Signing time: Mon 31 Mar 2025 15:30:35 +0000 ROA not before: Mon 31 Mar 2025 15:30:35 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f21:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:61:a2:2b:f0:8e:b2:1c:2e:fb:a5:12:a8:c4:67:9c:71:35:be:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:30:35 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=640c34d8d8bfcb69cc92b7f2debf84a189aa7235ac2c5218cc55841751c6a2b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e0:66:22:f7:44:93:09:d8:27:44:d0:55:a6: 5e:91:5b:68:f7:5f:c9:df:b1:48:cc:48:ea:77:43: 8c:6f:1a:32:f8:e2:2c:19:2d:33:26:30:cf:ed:78: 35:3d:21:d4:50:00:82:8b:90:c2:91:96:fd:9a:d2: 6b:c8:dd:a2:7b:f2:b0:bb:c1:bd:8b:51:05:fe:37: c1:4c:f2:a3:4f:9e:d9:cc:18:05:4d:29:d4:d0:76: 0c:56:f7:3f:42:af:a5:67:56:76:2b:6c:69:4b:f5: 53:93:ce:41:e9:41:a4:76:1b:31:41:91:b1:95:37: 10:b7:83:86:a1:1c:46:a2:31:85:49:2d:aa:c8:c2: d0:18:cc:a5:9c:56:41:e3:85:67:b1:bc:41:2b:50: 3c:bf:86:f4:21:bf:b9:15:ff:ce:52:1e:58:da:b7: 2f:f4:f4:67:b4:71:46:aa:b4:92:41:51:6a:3a:3d: 02:54:82:13:b2:97:83:0d:82:9d:10:97:0e:93:1e: fe:3b:9d:c3:f9:14:80:62:f4:83:ca:e5:dd:0c:f3: 96:a6:47:b7:2c:08:78:65:4a:bd:82:c3:ab:dd:00: c5:a5:21:3a:3b:03:9a:70:05:c7:a2:b8:13:f0:1c: 27:9b:a7:77:5a:33:68:3a:4b:18:c6:0f:32:94:d4: 21:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:54:56:92:AB:69:3C:33:BD:2A:FB:24:89:16:0D:4A:3D:3A:A1:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38153cce-e525-47a5-af36-a8f25ad480b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f21:8000::/36 Signature Algorithm: sha256WithRSAEncryption 5a:16:70:eb:22:eb:c7:2d:7e:87:2c:28:d6:bc:dc:2c:7a:75: f6:75:4f:58:37:03:81:eb:92:4c:31:fa:33:f9:91:d1:47:40: be:aa:ea:51:c8:6b:4b:4e:a0:ed:ea:f8:09:5f:dc:86:9c:04: 50:7b:73:08:29:46:00:ce:67:9d:b1:54:56:3f:b8:c0:84:d6: 3a:db:3e:58:b1:30:7a:0b:a1:38:f0:f2:47:a3:85:b4:c9:a1: c5:34:87:15:f3:c9:fd:4e:93:6a:85:3e:e2:a3:19:71:7a:f9: 91:8f:ac:0a:ff:eb:e0:ea:54:93:02:0d:c4:84:c0:7a:58:b4: 68:23:06:e0:d3:b2:7b:41:7a:1e:f1:d0:e4:d7:40:b6:36:86: 1d:67:92:99:68:fa:79:34:20:af:39:f0:12:6c:a3:59:a5:f4: 19:11:7f:5b:2c:73:84:ed:e6:eb:5b:fe:1f:2b:be:01:25:3e: bc:86:d5:e1:b3:67:6e:8c:4f:fb:3d:83:89:cd:34:d3:22:a8: ed:c2:96:05:43:d5:08:1f:3f:25:c7:2f:f7:a1:4a:ab:eb:d7: 6e:2e:38:b6:1a:8d:b1:64:a0:1d:10:34:1f:06:9d:0c:74:4e: 53:92:c8:c6:54:e7:be:8a:97:d8:d1:0f:68:31:d2:82:24:3c: 93:27:0a:0b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMWGiK/COshwu+6USqMRnnHE1vsswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMDM1WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDBjMzRkOGQ4YmZjYjY5Y2M5MmI3ZjJkZWJmODRhMTg5 YWE3MjM1YWMyYzUyMThjYzU1ODQxNzUxYzZhMmI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC64GYi90STCdgnRNBVpl6RW2j3X8nfsUjMSOp3Q4xvGjL4 4iwZLTMmMM/teDU9IdRQAIKLkMKRlv2a0mvI3aJ78rC7wb2LUQX+N8FM8qNPntnM GAVNKdTQdgxW9z9Cr6VnVnYrbGlL9VOTzkHpQaR2GzFBkbGVNxC3g4ahHEaiMYVJ LarIwtAYzKWcVkHjhWexvEErUDy/hvQhv7kV/85SHljaty/09Ge0cUaqtJJBUWo6 PQJUghOyl4MNgp0Qlw6THv47ncP5FIBi9IPK5d0M85amR7csCHhlSr2Cw6vdAMWl ITo7A5pwBceiuBPwHCebp3daM2g6SxjGDzKU1CExAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNlRWkqtpPDO9KvskiRYNSj06oVkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MTUzY2NlLWU1MjUtNDdhNS1hZjM2LWE4ZjI1YWQ0ODBiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8hgDANBgkqhkiG9w0BAQsFAAOCAQEAWhZw6yLrxy1+hywo1rzcLHp1 9nVPWDcDgeuSTDH6M/mR0UdAvqrqUchrS06g7er4CV/chpwEUHtzCClGAM5nnbFU Vj+4wITWOts+WLEweguhOPDyR6OFtMmhxTSHFfPJ/U6TaoU+4qMZcXr5kY+sCv/r 4OpUkwINxITAeli0aCMG4NOye0F6HvHQ5NdAtjaGHWeSmWj6eTQgrznwEmyjWaX0 GRF/WyxzhO3m61v+Hyu+ASU+vIbV4bNnboxP+z2Dic000yKo7cKWBUPVCB8/Jccv 96FKq+vXbi44thqNsWSgHRA0HwadDHROU5LIxlTnvoqX2NEPaDHSgiQ8kycKCw== -----END CERTIFICATE-----Generated at Wed Apr 16 17:11:42 2025 by rpki-client