$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8abeef96-6bb3-461d-ba23-da389d854132.roa File: 8abeef96-6bb3-461d-ba23-da389d854132.roa (raw, json) Hash identifier: +6C+6yACT65x9E4A/nppLwv96iiPbdQ3F4SvAsFX9Cw= Subject key identifier: ED:10:BF:C7:55:67:38:63:F5:D5:98:F8:8F:E7:86:6E:11:F1:18:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 534F264B6B57DBE66C5EE555DE38677D00A51AEA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8abeef96-6bb3-461d-ba23-da389d854132.roa Signing time: Tue 25 Mar 2025 17:51:21 +0000 ROA not before: Tue 25 Mar 2025 17:51:21 +0000 ROA not after: Tue 29 Apr 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff2:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:4f:26:4b:6b:57:db:e6:6c:5e:e5:55:de:38:67:7d:00:a5:1a:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 25 17:51:21 2025 GMT Not After : Apr 29 23:59:59 2025 GMT Subject: serialNumber=e2de3b5b2d77a21118a50871ea0bb8870ef03acd968c2028d4f58d7c718ccbe7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e9:04:6b:2f:32:1a:4f:80:4c:5a:c9:d7:54: e5:69:bf:74:c1:b8:52:ed:1f:fc:a9:81:a7:d7:16: a5:af:72:7f:5c:20:a1:c9:db:12:2e:44:ee:24:1a: e9:c3:df:b0:82:d5:f5:14:2a:3e:92:d2:52:7e:ac: a3:dd:c5:8d:8d:78:30:a5:09:76:9c:16:5c:be:80: 02:cf:78:9f:a2:d4:f1:62:80:7c:e7:22:4d:74:c9: 27:9f:83:89:48:4e:45:3f:a3:fd:bb:15:55:be:c6: 40:67:19:8c:8a:a9:de:4f:f7:ba:e2:11:18:c0:0e: 21:6f:c6:0f:87:a4:c3:c5:47:64:cb:01:a3:91:3c: a3:52:d7:c0:76:1f:a8:8a:8e:88:64:62:dc:f6:8e: 2e:7a:af:a4:3e:9c:e0:71:0d:cd:ce:7b:96:85:ec: b2:4b:59:ce:e1:69:49:08:34:f4:02:f4:96:01:d7: 10:a7:f1:37:fd:aa:9b:df:0e:b4:6e:89:f6:f1:61: 3e:71:6d:7e:0a:98:30:d4:fd:be:9e:d1:c7:8a:8b: 62:b7:e2:71:53:61:b1:32:c1:91:ab:b8:64:96:39: cf:a0:1a:af:09:84:34:91:85:e7:57:e5:3d:58:96: b5:2b:41:00:b9:b0:64:9b:ab:a7:f9:2f:49:36:ab: 25:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:10:BF:C7:55:67:38:63:F5:D5:98:F8:8F:E7:86:6E:11:F1:18:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8abeef96-6bb3-461d-ba23-da389d854132.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:2040::/48 Signature Algorithm: sha256WithRSAEncryption 33:df:b5:66:fe:3a:dc:ff:de:02:bb:21:71:c4:42:f9:75:a1: a0:29:25:9a:63:77:2e:a4:ee:9e:b1:a9:1d:bc:86:40:1a:b3: 79:4a:f8:88:34:f8:b9:66:fc:b1:7e:15:8e:a8:63:e5:e9:39: 1d:f0:35:9a:a3:a1:e6:4f:16:f0:43:3c:1f:3f:a1:e6:78:7d: 7f:44:cc:8e:b7:8a:54:b0:5c:55:92:4a:fb:d4:88:b4:c6:d3: 31:d7:42:13:7c:ea:2a:78:8d:17:7b:91:f3:da:20:b2:b1:52: 80:9f:31:1d:ee:0d:1c:5b:34:a9:71:64:f8:55:4d:39:ae:c4: c1:40:3c:00:d7:1c:e8:11:3c:6f:0a:63:9d:bb:d1:0f:96:e9: 23:12:e8:90:51:ee:7d:af:24:97:2f:85:5a:19:f3:26:92:2e: 5d:e9:99:58:4f:d0:25:1c:8b:09:54:4b:da:5e:c1:01:c7:53: 73:b2:3a:e2:63:e6:2e:00:a9:d0:2b:27:4a:a3:db:a6:63:31: 78:43:42:da:9d:a2:3f:0f:1b:9b:41:55:ae:82:f2:c0:f6:d9: f1:07:a9:6c:91:aa:05:26:7c:7f:d9:cb:a7:a5:52:42:85:80: 94:79:e2:73:d4:58:77:ee:c1:e5:bc:eb:b2:d3:b9:74:81:ca: 6c:6a:0a:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU08mS2tX2+ZsXuVV3jhnfQClGuowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI1MTc1MTIxWhcNMjUwNDI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMmRlM2I1YjJkNzdhMjExMThhNTA4NzFlYTBiYjg4NzBl ZjAzYWNkOTY4YzIwMjhkNGY1OGQ3YzcxOGNjYmU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt6QRrLzIaT4BMWsnXVOVpv3TBuFLtH/ypgafXFqWvcn9c IKHJ2xIuRO4kGunD37CC1fUUKj6S0lJ+rKPdxY2NeDClCXacFly+gALPeJ+i1PFi gHznIk10ySefg4lITkU/o/27FVW+xkBnGYyKqd5P97riERjADiFvxg+HpMPFR2TL AaORPKNS18B2H6iKjohkYtz2ji56r6Q+nOBxDc3Oe5aF7LJLWc7haUkINPQC9JYB 1xCn8Tf9qpvfDrRuifbxYT5xbX4KmDDU/b6e0ceKi2K34nFTYbEywZGruGSWOc+g Gq8JhDSRhedX5T1YlrUrQQC5sGSbq6f5L0k2qyVTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7RC/x1VnOGP11Zj4j+eGbhHxGEcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhYmVlZjk2LTZiYjMtNDYxZC1iYTIzLWRhMzg5ZDg1NDEzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yIEAwDQYJKoZIhvcNAQELBQADggEBADPftWb+Otz/3gK7IXHEQvl1 oaApJZpjdy6k7p6xqR28hkAas3lK+Ig0+Llm/LF+FY6oY+XpOR3wNZqjoeZPFvBD PB8/oeZ4fX9EzI63ilSwXFWSSvvUiLTG0zHXQhN86ip4jRd7kfPaILKxUoCfMR3u DRxbNKlxZPhVTTmuxMFAPADXHOgRPG8KY5270Q+W6SMS6JBR7n2vJJcvhVoZ8yaS Ll3pmVhP0CUciwlUS9pewQHHU3OyOuJj5i4AqdArJ0qj26ZjMXhDQtqdoj8PG5tB Va6C8sD22fEHqWyRqgUmfH/Zy6elUkKFgJR54nPUWHfuweW867LTuXSBymxqCmY= -----END CERTIFICATE-----Generated at Wed Apr 16 17:17:48 2025 by rpki-client