$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa File: 53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa (raw, json) Hash identifier: o92OpGOF6yub6pFgJbTmSEoyB8ZnHi4hogof4e4uaKg= Subject key identifier: 4B:6B:C1:C5:61:7E:15:A2:AE:17:FD:84:62:8D:9E:42:C7:18:D7:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0EAFF96D25194B1994DF002316D9241430BDEEDA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa Signing time: Fri 28 Mar 2025 15:21:14 +0000 ROA not before: Fri 28 Mar 2025 15:21:14 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff2:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:af:f9:6d:25:19:4b:19:94:df:00:23:16:d9:24:14:30:bd:ee:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:21:14 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=0cd6af7456d370fe520960ff6de126a7ecc53d6a077304fb6250900111585667, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c8:94:46:e4:7f:0a:b6:b0:91:f5:b0:17:5c: cf:93:4a:42:00:43:e2:69:fe:19:e4:6f:dc:a1:77: a1:ec:7c:b8:d6:14:06:f5:ab:dc:7c:df:0f:a8:5c: ae:11:35:1d:d5:72:e6:5a:c6:b1:4c:35:d2:79:6b: f2:0f:c5:a9:c8:c9:1f:c0:fe:eb:ab:fe:20:d1:8d: 17:d7:5a:b8:e3:59:9d:be:cb:ed:05:5e:c9:a4:bf: df:28:a6:55:fa:91:b4:78:7f:04:70:0d:ee:1d:a9: 14:48:31:05:3a:fe:90:90:a8:49:25:e1:b7:0f:f9: 4c:9f:95:8c:28:2f:fe:06:f5:c0:b8:87:b6:80:27: 17:09:69:11:e4:59:c3:a9:6a:dd:52:01:db:9b:0c: 56:e5:de:56:b8:4d:5a:42:db:ee:05:d3:d9:c6:33: 87:e6:ae:d5:20:ef:40:9c:10:2b:1e:ef:f0:8d:87: 1d:fb:13:06:e1:e2:ca:9d:f0:89:b8:c6:d4:98:a1: 6a:b2:9f:7b:b1:cd:f6:76:4f:44:29:bd:c6:0b:6a: 10:a2:1c:4e:47:4e:30:df:6a:64:47:83:fa:ba:93: 95:af:8a:86:18:96:d7:46:cd:78:6c:43:af:2e:7b: a1:73:d6:4b:3b:61:65:49:13:27:70:55:4e:db:25: 7c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:6B:C1:C5:61:7E:15:A2:AE:17:FD:84:62:8D:9E:42:C7:18:D7:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:2000::/40 Signature Algorithm: sha256WithRSAEncryption 70:76:59:7f:28:0d:30:49:7a:20:ab:5d:39:b4:5f:b4:fd:72: 31:23:0a:d6:e5:08:49:f4:99:67:b8:76:36:f9:e3:a4:68:78: 89:00:0c:13:77:e6:89:03:93:68:a4:53:66:9d:ea:b8:1c:30: f6:02:e0:eb:a9:2e:5b:26:8b:0f:48:42:31:1c:a1:57:05:42: f4:f1:ca:74:b4:89:89:83:88:7b:26:b7:1a:21:ea:38:f2:25: 52:03:c2:a8:23:f9:72:15:b5:8f:83:08:7b:a7:cb:d1:d3:de: be:d2:f0:30:de:ba:f1:ad:b0:1d:4f:c6:61:87:44:48:af:6e: 66:d5:70:c5:24:8a:5c:bd:23:68:69:39:8d:9f:17:6f:13:22: 1c:fb:5e:a0:f8:b9:80:77:69:89:d3:2f:49:c7:2e:3f:f0:60: 72:8e:8e:1e:70:db:26:24:5d:9f:e2:b3:7f:57:38:f1:4f:84: 6f:dd:62:91:dc:8a:a3:be:ef:37:54:68:30:b7:4d:3e:e8:20: 21:d0:6b:0c:9b:71:39:83:07:c8:25:e2:cf:23:4a:66:6a:e0: 7d:cd:54:af:27:01:a4:d4:a9:3f:39:96:03:ae:4a:6b:33:fe: b9:c8:01:51:96:0a:56:f2:d5:5c:69:95:be:04:52:54:63:3f: 3b:bd:f3:63 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDq/5bSUZSxmU3wAjFtkkFDC97towDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTUyMTE0WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwY2Q2YWY3NDU2ZDM3MGZlNTIwOTYwZmY2ZGUxMjZhN2Vj YzUzZDZhMDc3MzA0ZmI2MjUwOTAwMTExNTg1NjY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqyJRG5H8KtrCR9bAXXM+TSkIAQ+Jp/hnkb9yhd6HsfLjW FAb1q9x83w+oXK4RNR3VcuZaxrFMNdJ5a/IPxanIyR/A/uur/iDRjRfXWrjjWZ2+ y+0FXsmkv98oplX6kbR4fwRwDe4dqRRIMQU6/pCQqEkl4bcP+UyflYwoL/4G9cC4 h7aAJxcJaRHkWcOpat1SAdubDFbl3la4TVpC2+4F09nGM4fmrtUg70CcECse7/CN hx37Ewbh4sqd8Im4xtSYoWqyn3uxzfZ2T0QpvcYLahCiHE5HTjDfamRHg/q6k5Wv ioYYltdGzXhsQ68ue6Fz1ks7YWVJEydwVU7bJXzjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUS2vBxWF+FaKuF/2EYo2eQscY17UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzYzJjZDNjLTUzYWYtNDg4MC1hYjcyLThkNDBlNzA4OGM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/yIDANBgkqhkiG9w0BAQsFAAOCAQEAcHZZfygNMEl6IKtdObRftP1y MSMK1uUISfSZZ7h2NvnjpGh4iQAME3fmiQOTaKRTZp3quBww9gLg66kuWyaLD0hC MRyhVwVC9PHKdLSJiYOIeya3GiHqOPIlUgPCqCP5chW1j4MIe6fL0dPevtLwMN66 8a2wHU/GYYdESK9uZtVwxSSKXL0jaGk5jZ8XbxMiHPteoPi5gHdpidMvSccuP/Bg co6OHnDbJiRdn+Kzf1c48U+Eb91ikdyKo77vN1RoMLdNPuggIdBrDJtxOYMHyCXi zyNKZmrgfc1UrycBpNSpPzmWA65KazP+ucgBUZYKVvLVXGmVvgRSVGM/O73zYw== -----END CERTIFICATE-----Generated at Wed Apr 16 17:04:48 2025 by rpki-client