$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5dbc6e6b-7d6a-44fc-9de5-03134fd3cea4.roa File: 5dbc6e6b-7d6a-44fc-9de5-03134fd3cea4.roa (raw, json) Hash identifier: XM4eRzLYtVduGss/JUbIl4WeHO2BgPkYKlGGgKWjgFw= Subject key identifier: 1C:12:8B:68:2C:DA:DE:E5:BB:14:78:B7:41:33:2B:D4:C1:71:25:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F32300231DB6CD51B3F47C8D250A9B1F26AFBF9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5dbc6e6b-7d6a-44fc-9de5-03134fd3cea4.roa Signing time: Mon 31 Mar 2025 15:30:19 +0000 ROA not before: Mon 31 Mar 2025 15:30:19 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1f:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:32:30:02:31:db:6c:d5:1b:3f:47:c8:d2:50:a9:b1:f2:6a:fb:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:30:19 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=ab027281860cbb898f5df2e2c49c0a5202f1102afbca9637899623604290203a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3a:a5:c8:3f:58:8e:8c:24:fd:0b:00:ce:1e: d2:91:62:e8:e6:c4:b5:f4:82:84:97:d3:cf:20:97: 5e:de:d1:5f:ba:6b:c1:6c:11:aa:cb:3f:d0:ee:e2: 6c:a6:83:ec:15:d7:f5:98:e3:39:62:f7:70:7d:bb: d0:c3:d1:f4:fa:e9:44:58:8f:fc:4c:66:8a:b5:b4: c1:e4:dd:da:5a:d1:0d:8d:4d:72:b0:45:53:9b:fc: b4:be:42:4c:64:30:1c:12:af:43:a2:4a:5b:a4:86: c1:13:8e:ce:d1:f5:d2:37:fd:20:4b:75:59:b9:ae: 62:0a:de:02:f8:e1:aa:f5:a7:1b:1e:2b:62:5b:47: 13:4f:86:f1:25:d7:3a:8b:30:ec:37:b3:5f:e0:91: 5a:8d:e3:30:6b:fe:de:13:e1:c0:f0:cf:63:00:23: 69:4e:f2:30:ac:3a:f7:66:40:68:70:24:49:4e:4f: df:20:09:30:d5:16:62:cb:fb:bd:a6:06:ac:91:0e: 0f:f4:81:b9:71:f6:61:e4:b9:28:ec:18:dc:1c:45: 47:75:81:a6:cc:0a:3d:35:4f:ba:23:0c:1a:14:19: 00:61:0f:af:d4:1d:70:9f:1f:ed:a0:a4:bf:cd:a2: 5e:fe:cf:0f:49:8a:39:38:86:73:93:a0:6c:6f:53: a3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:12:8B:68:2C:DA:DE:E5:BB:14:78:B7:41:33:2B:D4:C1:71:25:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5dbc6e6b-7d6a-44fc-9de5-03134fd3cea4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:8000::/36 Signature Algorithm: sha256WithRSAEncryption 73:1a:dc:05:e1:75:35:b6:79:4c:a0:52:3d:98:40:e6:37:27: 4b:00:1a:ed:a9:ad:ef:f2:1c:a0:82:7c:a6:b7:f1:a1:e4:d9: e1:25:1e:90:67:53:de:27:36:be:4e:5e:2a:9a:10:79:5e:28: 0e:0f:0b:36:cb:9b:8e:d2:2e:28:cb:98:d9:2f:18:3c:58:40: d6:43:c7:f8:4f:25:a7:92:25:28:56:d0:77:8c:d1:19:b1:42: 79:34:03:31:24:88:25:c5:83:fd:a4:d6:9c:4b:05:39:d7:6d: 37:8e:6b:37:8d:5b:0e:28:93:5a:a1:3c:74:66:6f:5b:d5:eb: 30:bf:2a:09:11:27:ac:6c:2f:f0:ab:3d:bd:f0:cb:69:53:ea: 14:55:6f:90:44:dc:71:13:fe:04:1e:60:1f:1e:2e:f5:93:b0: 62:1f:24:98:7a:b0:a7:d5:28:60:71:ed:7b:b6:89:ea:89:ba: 0b:93:89:f1:90:32:d0:0e:4e:63:b2:32:61:48:9d:c6:a0:13: 67:87:a2:3a:23:7a:f7:bd:33:7e:cf:e4:56:ca:f6:3c:4a:05: 95:25:07:48:79:5c:5b:33:2f:1e:83:c8:59:22:aa:e3:31:53: 74:45:62:00:f3:f3:af:32:93:0d:61:ec:22:63:5a:32:c3:b6: f4:07:32:ae -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULzIwAjHbbNUbP0fI0lCpsfJq+/kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMDE5WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjAyNzI4MTg2MGNiYjg5OGY1ZGYyZTJjNDljMGE1MjAy ZjExMDJhZmJjYTk2Mzc4OTk2MjM2MDQyOTAyMDNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqOqXIP1iOjCT9CwDOHtKRYujmxLX0goSX088gl17e0V+6 a8FsEarLP9Du4mymg+wV1/WY4zli93B9u9DD0fT66URYj/xMZoq1tMHk3dpa0Q2N TXKwRVOb/LS+QkxkMBwSr0OiSlukhsETjs7R9dI3/SBLdVm5rmIK3gL44ar1pxse K2JbRxNPhvEl1zqLMOw3s1/gkVqN4zBr/t4T4cDwz2MAI2lO8jCsOvdmQGhwJElO T98gCTDVFmLL+72mBqyRDg/0gblx9mHkuSjsGNwcRUd1gabMCj01T7ojDBoUGQBh D6/UHXCfH+2gpL/Nol7+zw9Jijk4hnOToGxvU6OjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHBKLaCza3uW7FHi3QTMr1MFxJeEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkYmM2ZTZiLTdkNmEtNDRmYy05ZGU1LTAzMTM0ZmQzY2VhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8fgDANBgkqhkiG9w0BAQsFAAOCAQEAcxrcBeF1NbZ5TKBSPZhA5jcn SwAa7amt7/IcoIJ8prfxoeTZ4SUekGdT3ic2vk5eKpoQeV4oDg8LNsubjtIuKMuY 2S8YPFhA1kPH+E8lp5IlKFbQd4zRGbFCeTQDMSSIJcWD/aTWnEsFOddtN45rN41b DiiTWqE8dGZvW9XrML8qCREnrGwv8Ks9vfDLaVPqFFVvkETccRP+BB5gHx4u9ZOw Yh8kmHqwp9UoYHHte7aJ6om6C5OJ8ZAy0A5OY7IyYUidxqATZ4eiOiN6970zfs/k Vsr2PEoFlSUHSHlcWzMvHoPIWSKq4zFTdEViAPPzrzKTDWHsImNaMsO29Acyrg== -----END CERTIFICATE-----Generated at Wed Apr 16 17:00:42 2025 by rpki-client