$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b69d9f-696f-41bf-b67b-214977d82ae4.roa File: 98b69d9f-696f-41bf-b67b-214977d82ae4.roa (raw, json) Hash identifier: nxsFMN4WgpzHlDJ0SBX3YdkKdYNyaaGOSOgqlfuJcn0= Subject key identifier: 7D:99:97:D4:B6:49:53:B9:DA:84:25:A1:32:B3:98:F0:4F:2D:77:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43CEFE4EA2289ADAD00AACF0B533548BB1A7AFDE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b69d9f-696f-41bf-b67b-214977d82ae4.roa Signing time: Mon 31 Mar 2025 15:30:25 +0000 ROA not before: Mon 31 Mar 2025 15:30:25 +0000 ROA not after: Mon 05 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f29:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ce:fe:4e:a2:28:9a:da:d0:0a:ac:f0:b5:33:54:8b:b1:a7:af:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 15:30:25 2025 GMT Not After : May 5 23:59:59 2025 GMT Subject: serialNumber=f78fdae572b4bc63ae3d2abb48b0a2612c4f3f4a81425360b3421be1b3a12228, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7c:ec:19:46:7e:43:8f:ed:0e:f9:40:93:89: 4f:46:2c:81:5f:17:d4:23:f8:ec:a7:7b:67:06:11: 68:e4:99:a1:45:a5:ba:e8:a8:76:0a:d2:ac:a3:af: 72:a5:2f:e3:d0:b0:54:c6:d6:61:98:d3:2a:f7:df: c1:1b:ad:eb:be:cb:c6:fa:f4:d7:04:90:52:8b:4f: 46:c1:6c:6f:e2:6c:f5:c0:3b:26:bf:79:c5:9a:6f: 5e:88:fd:19:f8:48:9b:b4:3c:64:c7:78:58:a3:df: 07:fb:3f:61:68:10:ba:79:b0:56:be:a2:88:0e:eb: 84:e0:5a:bf:cb:8e:47:78:5b:10:3c:48:47:a4:94: e8:50:c5:cd:6c:c8:a9:08:d2:5d:ab:11:37:0b:7c: e5:84:51:15:c1:03:38:d5:b8:ac:fa:c7:dc:f8:80: 8a:6e:89:2c:d0:4d:3a:ec:06:eb:37:0a:48:8a:12: 26:dc:32:73:a2:73:7b:5c:ae:dc:65:82:b5:af:e4: be:52:51:86:44:65:29:e2:5e:27:16:94:c0:ab:11: f6:33:88:f4:4a:fa:11:a8:c1:ea:d1:70:15:29:7a: e3:e7:38:1e:93:3f:d5:ff:7d:44:5c:a4:e9:27:11: a2:75:f0:f2:a9:78:8b:5c:3c:13:f8:a3:31:e2:84: 67:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:99:97:D4:B6:49:53:B9:DA:84:25:A1:32:B3:98:F0:4F:2D:77:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98b69d9f-696f-41bf-b67b-214977d82ae4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f29:8000::/36 Signature Algorithm: sha256WithRSAEncryption 37:fb:a9:b1:45:fb:52:2e:32:7e:f5:9c:9b:c6:d5:c9:85:9c: 29:f0:c0:d5:cb:83:58:6f:60:e5:19:b8:b0:73:61:3a:b3:8d: e7:18:5c:17:f3:b7:14:b2:06:60:7b:67:82:a0:fd:64:14:dc: 9f:35:01:b2:04:1c:da:1a:e4:fa:ef:13:aa:05:28:e0:19:43: a4:13:a3:9a:f2:6b:b3:df:44:2c:d9:f5:57:0f:f6:1a:44:b4: 5b:22:94:ad:0b:57:0a:e8:0b:4c:88:5a:cd:8a:02:b8:53:f6: 06:09:71:5f:54:84:19:88:02:70:44:1b:5a:77:ec:63:1f:a4: 14:d6:ae:b2:21:0a:ff:9d:f2:2a:96:0d:55:fa:74:9d:7d:e5: 03:af:fc:69:9e:ba:19:09:76:30:35:66:00:d9:68:ae:8e:87: 18:d5:d7:55:94:4b:5d:b7:85:83:fd:43:7a:f3:04:5e:01:b4: 62:68:9c:3c:63:91:35:3c:e3:84:c0:a1:5e:ab:07:09:5d:f6: fb:d0:c6:c3:36:05:ca:45:a4:11:a1:bf:26:ff:ae:54:0e:94: a7:2d:d2:78:91:04:df:a7:07:e0:81:29:8a:22:9d:7a:83:12: 8b:d1:39:a0:f3:18:13:10:48:a1:bf:f8:01:44:f7:d0:5e:2b: 01:af:5c:0d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQ87+TqIomtrQCqzwtTNUi7Gnr94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzMxMTUzMDI1WhcNMjUwNTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzhmZGFlNTcyYjRiYzYzYWUzZDJhYmI0OGIwYTI2MTJj NGYzZjRhODE0MjUzNjBiMzQyMWJlMWIzYTEyMjI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHfOwZRn5Dj+0O+UCTiU9GLIFfF9Qj+Oyne2cGEWjkmaFF pbroqHYK0qyjr3KlL+PQsFTG1mGY0yr338Ebreu+y8b69NcEkFKLT0bBbG/ibPXA Oya/ecWab16I/Rn4SJu0PGTHeFij3wf7P2FoELp5sFa+oogO64TgWr/Ljkd4WxA8 SEeklOhQxc1syKkI0l2rETcLfOWEURXBAzjVuKz6x9z4gIpuiSzQTTrsBus3CkiK EibcMnOic3tcrtxlgrWv5L5SUYZEZSniXicWlMCrEfYziPRK+hGowerRcBUpeuPn OB6TP9X/fURcpOknEaJ18PKpeItcPBP4ozHihGeVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUfZmX1LZJU7nahCWhMrOY8E8td+IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YjY5ZDlmLTY5NmYtNDFiZi1iNjdiLTIxNDk3N2Q4MmFlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8pgDANBgkqhkiG9w0BAQsFAAOCAQEAN/upsUX7Ui4yfvWcm8bVyYWc KfDA1cuDWG9g5Rm4sHNhOrON5xhcF/O3FLIGYHtngqD9ZBTcnzUBsgQc2hrk+u8T qgUo4BlDpBOjmvJrs99ELNn1Vw/2GkS0WyKUrQtXCugLTIhazYoCuFP2BglxX1SE GYgCcEQbWnfsYx+kFNausiEK/53yKpYNVfp0nX3lA6/8aZ66GQl2MDVmANloro6H GNXXVZRLXbeFg/1DevMEXgG0YmicPGORNTzjhMChXqsHCV32+9DGwzYFykWkEaG/ Jv+uVA6Upy3SeJEE36cH4IEpiiKdeoMSi9E5oPMYExBIob/4AUT30F4rAa9cDQ== -----END CERTIFICATE-----Generated at Wed Apr 16 16:42:48 2025 by rpki-client