$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4bcbc762-63cb-4216-960c-cf87023fe104.roa File: 4bcbc762-63cb-4216-960c-cf87023fe104.roa (raw, json) Hash identifier: AJ2N+syCgi/yhqxmGgLnTblsPrzhnd+hYwLf9gQCa4g= Subject key identifier: D6:8C:0C:7C:71:41:A2:36:72:87:72:72:17:BA:55:C6:E3:12:DD:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B401A21C26D8218B3B59EE2E71441643794C724 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4bcbc762-63cb-4216-960c-cf87023fe104.roa Signing time: Tue 25 Mar 2025 17:11:16 +0000 ROA not before: Tue 25 Mar 2025 17:11:16 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff2:50c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:40:1a:21:c2:6d:82:18:b3:b5:9e:e2:e7:14:41:64:37:94:c7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 25 17:11:16 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: serialNumber=2870d0dbf42513a8ed389fd87aad34c33ff583d098767f8c7bf57f468d362422, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:18:11:45:86:e8:9e:13:df:53:45:c2:da:33: aa:21:fd:96:48:d7:16:28:bb:b1:c8:a7:ab:d6:1a: 1e:0a:27:2f:a2:50:60:af:76:a1:08:27:a4:e8:0d: 0f:ba:e7:6b:e2:ee:82:cc:8a:d5:07:51:02:0b:e0: 83:4b:d8:13:8b:a0:ca:8b:a0:f7:79:d7:00:51:96: b8:73:d7:b8:aa:54:18:e2:48:8f:a0:b0:52:c9:52: 0c:00:5f:5d:e1:38:e3:b6:3b:4f:4b:20:a8:9f:49: 82:12:9e:dc:09:2f:b2:2a:9f:9d:55:10:ae:e5:5c: 79:da:75:61:a9:1e:44:52:0a:6a:f3:91:be:61:9d: bc:e3:0e:2d:61:76:6f:78:b3:d5:e2:31:f8:d8:25: b7:2e:67:d0:8d:c2:3c:0a:2a:dd:cc:2a:a5:52:b5: bc:c7:09:7e:de:93:79:ed:03:4e:4d:6e:20:66:9f: 22:8e:47:3d:5e:48:5f:5c:c4:09:f2:a4:8b:f1:59: 33:65:cf:5b:2a:fb:af:70:4e:e3:1a:11:37:2d:8f: 24:09:98:6a:d7:c2:5f:1c:ff:30:6a:9e:c7:1d:08: fc:57:4a:51:13:e9:ee:c3:ed:e0:76:2f:00:b9:e6: 89:55:52:3e:a8:53:ef:6f:c6:b8:c7:31:bd:b2:a4: 0e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:8C:0C:7C:71:41:A2:36:72:87:72:72:17:BA:55:C6:E3:12:DD:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4bcbc762-63cb-4216-960c-cf87023fe104.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:50c0::/48 Signature Algorithm: sha256WithRSAEncryption 52:ad:b8:eb:e7:8e:0d:04:93:58:c0:41:f7:c1:fb:38:f4:8e: 95:a1:6e:70:24:f1:60:55:54:82:2f:a5:ad:4a:9f:18:59:09: 66:c2:43:9b:aa:81:d1:3f:e1:ba:d5:29:1b:3f:f3:66:63:6b: c9:62:bf:5a:87:1f:5f:76:d8:65:5b:da:a4:54:b5:eb:54:60: 68:b2:49:ae:a9:b6:0e:1b:57:97:28:21:d7:f7:28:1c:9c:33: 46:6e:21:4e:97:73:f6:f5:78:67:79:1d:15:b1:87:67:2b:e4: db:36:9f:a3:b2:ba:02:b8:b0:70:72:cc:65:5c:d7:cf:a9:da: 5b:b0:ac:85:9a:47:e0:aa:44:90:96:47:8d:d5:38:6a:af:8c: 3e:e5:c0:ec:16:04:b1:95:64:90:f1:65:80:7b:51:2b:93:3a: 2c:77:96:6b:c3:78:f8:68:67:0a:46:58:3d:b4:a3:c8:a9:7f: 19:4c:5e:e5:ad:34:fe:b9:95:1e:ca:6a:51:24:e6:f1:13:2c: d2:8f:9b:c1:74:4f:c5:ae:94:c2:66:46:6c:89:bd:62:61:51: b0:cc:08:1c:d9:dd:ec:8d:fe:b3:41:cc:09:ba:7c:37:b2:0f: cb:09:d0:cc:16:3a:aa:d1:60:fc:e7:84:98:59:39:62:cf:02: db:fd:78:a1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUG0AaIcJtghiztZ7i5xRBZDeUxyQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI1MTcxMTE2WhcNMjUwNDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODcwZDBkYmY0MjUxM2E4ZWQzODlmZDg3YWFkMzRjMzNm ZjU4M2QwOTg3NjdmOGM3YmY1N2Y0NjhkMzYyNDIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLGBFFhuieE99TRcLaM6oh/ZZI1xYou7HIp6vWGh4KJy+i UGCvdqEIJ6ToDQ+652vi7oLMitUHUQIL4INL2BOLoMqLoPd51wBRlrhz17iqVBji SI+gsFLJUgwAX13hOOO2O09LIKifSYISntwJL7Iqn51VEK7lXHnadWGpHkRSCmrz kb5hnbzjDi1hdm94s9XiMfjYJbcuZ9CNwjwKKt3MKqVStbzHCX7ek3ntA05NbiBm nyKORz1eSF9cxAnypIvxWTNlz1sq+69wTuMaETctjyQJmGrXwl8c/zBqnscdCPxX SlET6e7D7eB2LwC55olVUj6oU+9vxrjHMb2ypA6vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1owMfHFBojZyh3JyF7pVxuMS3SEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiY2JjNzYyLTYzY2ItNDIxNi05NjBjLWNmODcwMjNmZTEwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yUMAwDQYJKoZIhvcNAQELBQADggEBAFKtuOvnjg0Ek1jAQffB+zj0 jpWhbnAk8WBVVIIvpa1KnxhZCWbCQ5uqgdE/4brVKRs/82Zja8liv1qHH1922GVb 2qRUtetUYGiySa6ptg4bV5coIdf3KBycM0ZuIU6Xc/b1eGd5HRWxh2cr5Ns2n6Oy ugK4sHByzGVc18+p2luwrIWaR+CqRJCWR43VOGqvjD7lwOwWBLGVZJDxZYB7USuT Oix3lmvDePhoZwpGWD20o8ipfxlMXuWtNP65lR7KalEk5vETLNKPm8F0T8WulMJm RmyJvWJhUbDMCBzZ3eyN/rNBzAm6fDeyD8sJ0MwWOqrRYPznhJhZOWLPAtv9eKE= -----END CERTIFICATE-----Generated at Wed Apr 16 17:12:50 2025 by rpki-client