$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa File: 6b64a54c-d6fb-4229-9471-bd2ea024187f.roa (raw, json) Hash identifier: e27lKJZaI0NOWq22N8Df1jclhtS6WkqY16tz6I9+LOM= Subject key identifier: CF:9C:D6:DC:8B:F9:60:A7:2A:A0:71:1E:0D:06:E1:28:6B:61:A9:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1067DA0CD7C11585A84A7A8520BC89A62D37E2B8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa Signing time: Fri 28 Mar 2025 15:32:02 +0000 ROA not before: Fri 28 Mar 2025 15:32:02 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffb:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:67:da:0c:d7:c1:15:85:a8:4a:7a:85:20:bc:89:a6:2d:37:e2:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:32:02 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=f93f30b4002c93795fc1de4feb6250044753be7090b9d09bd5b6ee007c0a7a07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:33:7e:49:4c:43:ae:22:c5:0e:5d:71:c2:04: 03:c8:22:6c:94:ff:4c:79:dd:67:8f:8f:a0:d5:c2: db:54:98:b1:13:b6:37:2d:fd:59:75:51:f1:b3:cf: 76:aa:3f:70:f5:68:01:23:23:48:06:bf:93:86:21: c2:4d:ed:5e:02:62:6e:a4:c1:5c:cf:5a:ef:ac:a4: 25:9e:31:04:64:5f:63:92:93:81:1b:2b:12:c9:24: 26:2b:ec:56:ca:18:d3:22:aa:3e:8f:03:70:cb:c0: a9:3a:37:c7:e7:7f:e3:ff:88:f6:97:2b:7c:23:06: 6a:c4:f0:45:f8:44:08:5c:c3:f4:f6:d8:da:ef:61: a9:3a:63:a5:fd:cf:74:02:4a:15:e9:b9:2e:1b:5e: c9:d2:d8:5d:77:fd:ee:b3:57:4f:59:dc:76:f9:c6: dd:4e:3c:91:2f:71:bc:ab:52:33:25:35:8d:a9:46: f8:6f:a6:f5:9e:ca:2e:9b:48:6e:61:66:6a:31:36: 8f:4e:94:b4:37:0f:9b:a8:70:86:75:d2:ba:39:83: ea:26:34:4a:73:b9:24:1d:8b:1e:d6:51:9b:45:bc: 6c:9a:d0:2d:2e:12:4e:55:64:57:b3:1d:67:29:d9: d0:86:5e:87:b3:f8:c0:a4:5d:24:69:bd:a1:04:7a: d2:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:9C:D6:DC:8B:F9:60:A7:2A:A0:71:1E:0D:06:E1:28:6B:61:A9:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b64a54c-d6fb-4229-9471-bd2ea024187f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:80a0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:90:b6:22:b2:3e:7b:48:02:36:ce:a6:76:35:b1:61:62:79: 41:8a:5e:cb:fb:38:59:28:35:68:a4:48:e5:05:87:a5:5d:fd: 78:8d:3a:89:5f:75:08:68:bb:0d:ba:97:bc:f0:d5:0a:a9:2f: fc:4c:84:a4:86:93:98:bf:58:aa:00:ad:d7:47:a9:5e:2e:cf: d5:9f:4f:d5:92:4d:00:50:f0:1e:17:41:38:12:ea:af:6f:69: 04:ba:be:4d:05:20:2e:a0:70:7e:78:7b:5a:a6:f0:b0:30:3b: bf:e1:3e:3d:53:56:ec:9a:5e:31:25:08:c5:d2:7b:1b:f7:15: 8d:a0:a7:5e:63:70:75:87:14:2b:ed:84:13:87:95:c5:2a:84: 17:61:c1:61:32:c0:92:2f:30:64:e5:b2:57:3d:e2:8d:f5:ec: 40:59:10:0a:ab:2b:61:c7:89:56:d6:ab:93:5c:ac:a0:de:e2: a8:26:8e:61:b9:25:a6:a5:ce:5f:21:90:84:2c:93:05:ff:80: 75:5c:1a:19:b5:14:c5:81:fe:f3:c6:6d:e8:ba:8a:a7:30:30: 3c:b9:79:5c:91:44:fc:35:88:d8:ad:03:01:d9:38:ab:c9:fc: 99:8c:98:e5:d6:63:9e:7d:b6:ea:92:ff:5e:a6:96:f5:98:34: c7:45:24:f9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEGfaDNfBFYWoSnqFILyJpi034rgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTUzMjAyWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTNmMzBiNDAwMmM5Mzc5NWZjMWRlNGZlYjYyNTAwNDQ3 NTNiZTcwOTBiOWQwOWJkNWI2ZWUwMDdjMGE3YTA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgM35JTEOuIsUOXXHCBAPIImyU/0x53WePj6DVwttUmLET tjct/Vl1UfGzz3aqP3D1aAEjI0gGv5OGIcJN7V4CYm6kwVzPWu+spCWeMQRkX2OS k4EbKxLJJCYr7FbKGNMiqj6PA3DLwKk6N8fnf+P/iPaXK3wjBmrE8EX4RAhcw/T2 2NrvYak6Y6X9z3QCShXpuS4bXsnS2F13/e6zV09Z3Hb5xt1OPJEvcbyrUjMlNY2p RvhvpvWeyi6bSG5hZmoxNo9OlLQ3D5uocIZ10ro5g+omNEpzuSQdix7WUZtFvGya 0C0uEk5VZFezHWcp2dCGXoez+MCkXSRpvaEEetLFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz5zW3Iv5YKcqoHEeDQbhKGthqakwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiNjRhNTRjLWQ2ZmItNDIyOS05NDcxLWJkMmVhMDI0MTg3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/7gKAwDQYJKoZIhvcNAQELBQADggEBAB6QtiKyPntIAjbOpnY1sWFi eUGKXsv7OFkoNWikSOUFh6Vd/XiNOolfdQhouw26l7zw1QqpL/xMhKSGk5i/WKoA rddHqV4uz9WfT9WSTQBQ8B4XQTgS6q9vaQS6vk0FIC6gcH54e1qm8LAwO7/hPj1T VuyaXjElCMXSexv3FY2gp15jcHWHFCvthBOHlcUqhBdhwWEywJIvMGTlslc94o31 7EBZEAqrK2HHiVbWq5NcrKDe4qgmjmG5Jaalzl8hkIQskwX/gHVcGhm1FMWB/vPG bei6iqcwMDy5eVyRRPw1iNitAwHZOKvJ/JmMmOXWY559tuqS/16mlvWYNMdFJPk= -----END CERTIFICATE-----Generated at Wed Apr 16 16:40:01 2025 by rpki-client