$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa File: 6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa (raw, json) Hash identifier: 4+2XBMmgZc0Jw0vtyg60gz4dV0z0WqnPyTDFHY+U43o= Subject key identifier: FD:92:38:4E:73:F1:1A:3F:8C:C2:7D:5B:46:3F:2D:9F:BE:12:0F:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A379557E534A718334C835C7DC95B390583B74B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa Signing time: Tue 25 Mar 2025 17:21:56 +0000 ROA not before: Tue 25 Mar 2025 17:21:56 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fff:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:37:95:57:e5:34:a7:18:33:4c:83:5c:7d:c9:5b:39:05:83:b7:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 25 17:21:56 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: serialNumber=e72ec8004cc52d52e59ada8136dc88f5db1e141cc1a423738feca8032ef2722b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d7:a3:40:bd:82:6d:f6:2b:97:3b:84:54:2b: a0:37:84:e1:50:99:db:e6:83:80:01:bb:81:89:49: 25:9a:6c:fe:61:4d:d3:88:ab:08:1f:c1:e1:67:de: b3:55:22:e9:88:7d:04:8a:69:0b:ae:16:00:21:4c: 7e:b6:67:b0:66:1b:d3:db:f2:b9:e1:98:b7:34:18: de:1c:a7:90:1c:a8:2b:4a:9c:58:18:4b:44:5c:db: 72:03:15:24:a2:a8:1f:ab:6e:af:e3:31:3b:d1:b9: a5:e5:cd:e7:58:37:53:eb:dc:d9:b0:18:86:96:ba: 19:32:be:12:27:84:fc:81:4c:cc:2e:fe:a5:9a:cb: 7a:16:97:71:d3:b5:1b:d8:ce:93:8c:81:c1:22:e6: 3d:82:19:18:07:a2:40:2f:60:03:6c:be:9d:a2:fe: c7:c2:8e:39:0e:fa:67:bd:54:79:12:df:c9:31:e7: dc:ca:a5:f6:b4:ce:51:04:89:2e:49:07:c9:e0:94: f2:84:6c:df:f2:12:59:80:21:dd:d9:33:11:16:76: 6c:fe:97:68:6b:44:6e:75:84:79:11:4e:42:6e:b7: e3:f5:76:15:17:18:0b:a3:c1:03:e2:40:c7:34:4b: 9d:02:ec:2b:91:7f:64:52:5e:f4:a4:b2:96:06:fb: 23:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:92:38:4E:73:F1:1A:3F:8C:C2:7D:5B:46:3F:2D:9F:BE:12:0F:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f08968f-7dae-4e98-9a63-6c8a03f3a558.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:5040::/48 Signature Algorithm: sha256WithRSAEncryption 4e:fb:35:72:5d:07:a4:df:f7:23:26:15:c7:f0:59:28:91:93: 3f:e9:54:ec:a5:10:88:f0:67:3e:51:2f:cd:a9:9f:1e:f5:00: 7e:fc:b6:3b:b5:18:d7:bf:7e:30:4a:ce:45:0b:74:89:f5:84: 7f:2e:cb:ec:27:06:5f:10:88:c6:27:6f:7b:a4:ba:c1:62:a7: 46:50:f0:ce:98:ec:33:47:58:01:e6:5b:3a:00:5a:3f:63:52: da:bf:2d:23:8d:28:96:de:0c:55:db:09:ce:16:a0:eb:43:20: 74:65:ea:a9:a1:89:7f:a5:15:05:5a:6c:4e:ab:d1:a7:d5:bc: 25:ec:c5:99:59:7c:9f:dd:c8:99:f8:05:d3:e1:81:89:d7:30: 95:f4:70:ff:90:b7:63:c5:ed:1d:b0:d0:37:c7:cf:58:1e:0c: 29:fd:ac:51:7f:e3:df:2a:4c:31:b3:2a:67:d3:a8:e7:dc:fc: a0:40:46:91:43:ca:fc:b4:f8:ac:8c:82:bb:96:8c:a7:d1:b0: ef:59:5d:0e:1f:75:5c:89:96:6d:bd:e7:2f:6f:44:b0:38:70: 8b:00:5a:c7:e8:43:f7:d6:70:71:87:57:d7:b2:da:62:01:17: 18:99:82:8d:f9:b1:fc:a1:8a:ab:04:c7:3f:60:93:24:f8:0d: b6:fd:c6:0e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWjeVV+U0pxgzTINcfclbOQWDt0swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI1MTcyMTU2WhcNMjUwNDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzJlYzgwMDRjYzUyZDUyZTU5YWRhODEzNmRjODhmNWRi MWUxNDFjYzFhNDIzNzM4ZmVjYTgwMzJlZjI3MjJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC416NAvYJt9iuXO4RUK6A3hOFQmdvmg4ABu4GJSSWabP5h TdOIqwgfweFn3rNVIumIfQSKaQuuFgAhTH62Z7BmG9Pb8rnhmLc0GN4cp5AcqCtK nFgYS0Rc23IDFSSiqB+rbq/jMTvRuaXlzedYN1Pr3NmwGIaWuhkyvhInhPyBTMwu /qWay3oWl3HTtRvYzpOMgcEi5j2CGRgHokAvYANsvp2i/sfCjjkO+me9VHkS38kx 59zKpfa0zlEEiS5JB8nglPKEbN/yElmAId3ZMxEWdmz+l2hrRG51hHkRTkJut+P1 dhUXGAujwQPiQMc0S50C7CuRf2RSXvSkspYG+yN5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/ZI4TnPxGj+Mwn1bRj8tn74SD04wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmMDg5NjhmLTdkYWUtNGU5OC05YTYzLTZjOGEwM2YzYTU1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//UEAwDQYJKoZIhvcNAQELBQADggEBAE77NXJdB6Tf9yMmFcfwWSiR kz/pVOylEIjwZz5RL82pnx71AH78tju1GNe/fjBKzkULdIn1hH8uy+wnBl8QiMYn b3ukusFip0ZQ8M6Y7DNHWAHmWzoAWj9jUtq/LSONKJbeDFXbCc4WoOtDIHRl6qmh iX+lFQVabE6r0afVvCXsxZlZfJ/dyJn4BdPhgYnXMJX0cP+Qt2PF7R2w0DfHz1ge DCn9rFF/498qTDGzKmfTqOfc/KBARpFDyvy0+KyMgruWjKfRsO9ZXQ4fdVyJlm29 5y9vRLA4cIsAWsfoQ/fWcHGHV9ey2mIBFxiZgo35sfyhiqsExz9gkyT4Dbb9xg4= -----END CERTIFICATE-----Generated at Wed Apr 16 17:02:26 2025 by rpki-client