$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa File: 943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa (raw, json) Hash identifier: rXow4s4BH0Z9StpLJpygTiqfy5qum99UsE2toMIujG8= Subject key identifier: 4A:F1:6E:09:02:DA:FA:49:20:79:F2:E0:2A:93:55:3A:0E:84:C5:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D15D838A59FED89BAA67705F89E720CDDE275B7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa Signing time: Fri 28 Mar 2025 16:00:34 +0000 ROA not before: Fri 28 Mar 2025 16:00:34 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ffb:20c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:15:d8:38:a5:9f:ed:89:ba:a6:77:05:f8:9e:72:0c:dd:e2:75:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 16:00:34 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=90c38c26f5cf068535bd1ff201e95438161fe228e70a9a7c4bd586a6795b46ef, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:50:08:e1:77:f4:bb:20:31:64:49:f4:b9:11: f3:d6:80:fb:2e:35:5a:5d:1b:36:b5:5b:1b:08:07: 1c:a5:99:5d:84:99:71:74:b9:43:b3:0c:ac:0c:68: 63:eb:1f:07:b4:25:18:c2:73:4b:8b:c3:a8:30:b7: 2e:c3:94:06:72:93:ee:af:3c:1e:e9:57:a8:a7:e2: 2a:31:d4:28:00:93:ba:a8:a3:5e:74:5e:64:2a:5b: e9:ff:ed:6a:e7:f2:c6:05:e8:0f:e6:66:b3:36:8e: 2e:fb:b6:52:4f:24:58:fd:1d:21:83:b4:84:8d:fe: 4b:6d:02:68:96:92:c9:cd:bc:3b:3d:4f:68:50:e0: d5:b2:4d:94:98:1c:bb:1b:0f:f8:93:df:be:07:78: 00:15:b8:c0:0e:4e:21:89:21:4e:43:6d:8a:c0:7e: 17:7d:45:d2:76:e6:44:56:45:7d:a2:e4:8d:0a:4b: f4:48:58:e8:ca:68:09:2e:c9:f5:78:e8:f9:7c:d6: 57:14:21:5d:a4:aa:cd:8c:e6:02:f2:75:24:3a:ca: 63:1a:50:e6:95:d4:d1:b1:ab:47:a7:f2:e7:56:b6: 95:2c:f0:9c:da:ca:a2:4d:bb:40:6d:49:2b:cb:84: 36:ee:98:e8:e1:d1:30:e1:8b:5d:59:6e:01:be:88: 1d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F1:6E:09:02:DA:FA:49:20:79:F2:E0:2A:93:55:3A:0E:84:C5:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:20c0::/46 Signature Algorithm: sha256WithRSAEncryption 50:06:44:3a:6a:0d:d9:5e:87:eb:e3:0c:f5:f3:18:9b:16:b1: d6:19:d7:ba:55:f5:40:8a:66:1e:3d:31:e0:d7:a9:5b:44:69: e6:77:dd:c1:88:a1:5e:4e:45:f0:af:43:4a:ae:bf:04:49:e2: 32:b1:5e:a8:41:ef:b7:10:81:f6:1a:72:35:da:db:be:bf:cb: e4:54:d2:59:73:6e:14:01:49:5e:a8:31:54:be:c3:35:86:4d: f5:38:27:fe:a4:e1:3b:22:cc:90:79:c8:79:a3:e4:b6:85:f8: 39:07:1f:c6:e9:64:2e:10:79:e9:17:f3:93:81:9b:95:d0:c0: 9c:5a:5b:cb:cd:86:6b:d9:ff:44:05:91:0b:8b:3c:30:2a:1c: 8c:c8:8e:d1:c7:f9:27:d4:12:e1:ee:e8:27:b0:b2:0f:0e:d2: a7:9c:12:17:24:df:59:d2:92:68:09:13:9a:cd:87:8d:fa:4e: 2d:18:ec:ec:15:a0:c7:c0:9b:47:db:6c:fb:92:14:ad:b9:ca: 0b:dd:71:d6:d8:fd:53:9a:11:04:16:4d:d2:32:fe:5c:51:32: cf:10:e6:71:06:f4:96:1a:80:3d:17:2e:39:72:01:3d:89:8d: 2b:77:d3:0c:64:c2:1c:62:1c:b0:48:e0:f8:fe:59:54:05:d6: 82:d1:5c:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPRXYOKWf7Ym6pncF+J5yDN3idbcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTYwMDM0WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGMzOGMyNmY1Y2YwNjg1MzViZDFmZjIwMWU5NTQzODE2 MWZlMjI4ZTcwYTlhN2M0YmQ1ODZhNjc5NWI0NmVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgUAjhd/S7IDFkSfS5EfPWgPsuNVpdGza1WxsIBxylmV2E mXF0uUOzDKwMaGPrHwe0JRjCc0uLw6gwty7DlAZyk+6vPB7pV6in4iox1CgAk7qo o150XmQqW+n/7Wrn8sYF6A/mZrM2ji77tlJPJFj9HSGDtISN/kttAmiWksnNvDs9 T2hQ4NWyTZSYHLsbD/iT374HeAAVuMAOTiGJIU5DbYrAfhd9RdJ25kRWRX2i5I0K S/RIWOjKaAkuyfV46Pl81lcUIV2kqs2M5gLydSQ6ymMaUOaV1NGxq0en8udWtpUs 8JzayqJNu0BtSSvLhDbumOjh0TDhi11ZbgG+iB3xAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUSvFuCQLa+kkgefLgKpNVOg6ExeYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MzE4NWZhLWM5M2YtNGZhOC04Y2QzLTc4MzFjZjc1OWVlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7IMAwDQYJKoZIhvcNAQELBQADggEBAFAGRDpqDdleh+vjDPXzGJsW sdYZ17pV9UCKZh49MeDXqVtEaeZ33cGIoV5ORfCvQ0quvwRJ4jKxXqhB77cQgfYa cjXa276/y+RU0llzbhQBSV6oMVS+wzWGTfU4J/6k4TsizJB5yHmj5LaF+DkHH8bp ZC4QeekX85OBm5XQwJxaW8vNhmvZ/0QFkQuLPDAqHIzIjtHH+SfUEuHu6Cewsg8O 0qecEhck31nSkmgJE5rNh436Ti0Y7OwVoMfAm0fbbPuSFK25ygvdcdbY/VOaEQQW TdIy/lxRMs8Q5nEG9JYagD0XLjlyAT2JjSt30wxkwhxiHLBI4Pj+WVQF1oLRXLs= -----END CERTIFICATE-----Generated at Wed Apr 16 16:54:36 2025 by rpki-client