$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa File: a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa (raw, json) Hash identifier: 9nmDmGjpk2fBnHvCsmOWW7689PJBWoEh7VyFomLij0U= Subject key identifier: 9F:87:F6:13:D4:BB:5C:99:4D:AE:A7:06:49:EC:1F:58:E7:31:F3:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 241246A08E8394EC0A40A218B6DD8EF75F27EAE3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa Signing time: Fri 28 Mar 2025 17:21:38 +0000 ROA not before: Fri 28 Mar 2025 17:21:38 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f25:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:12:46:a0:8e:83:94:ec:0a:40:a2:18:b6:dd:8e:f7:5f:27:ea:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 17:21:38 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=d1570219d649d6e4b1aaef2c2808468784bdc03163d1c67197765fcb72de6de3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:5e:6c:27:52:81:e4:8b:63:9a:a4:cc:37:5b: 95:ea:ac:1f:df:12:2c:e8:60:dd:1a:41:49:9f:21: 01:aa:52:bc:d4:0e:46:57:ed:6d:bf:3c:e9:6e:ed: 92:2a:92:f4:15:7f:46:6c:c6:b1:fd:5e:94:02:10: cd:c1:7b:4a:f5:df:4e:dd:50:b7:b9:ef:2e:b8:42: ab:4c:75:c9:10:db:30:23:60:14:86:e6:0e:6f:f4: c8:e6:6c:ae:8e:62:7d:8a:7a:f3:4b:9f:ab:b9:48: 91:ca:d6:35:ad:a4:f0:47:ba:44:8c:5f:7c:18:62: 13:01:02:ad:19:6d:54:c2:f4:b7:1a:be:ad:6a:2c: 53:b7:1d:13:02:79:eb:d8:9a:34:f6:c9:52:08:5a: 14:c6:36:63:e0:26:29:e9:e3:98:92:35:14:c1:d5: 58:fe:67:e7:be:42:8f:6e:e4:8a:28:a1:ed:22:71: de:4c:e2:96:46:bd:8a:cc:c8:9c:f8:40:93:4c:a4: fb:a6:82:19:55:91:da:9c:ad:85:17:30:3a:8b:f0: b5:65:94:e6:91:5a:5c:2f:da:f6:63:4c:d4:42:8b: c4:d7:a5:8f:dd:00:c4:a3:3b:f2:df:3d:9b:97:30: 57:6f:89:66:b7:9c:f2:1c:3c:66:f6:6a:a0:0f:bf: 8c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:87:F6:13:D4:BB:5C:99:4D:AE:A7:06:49:EC:1F:58:E7:31:F3:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:8000::/36 Signature Algorithm: sha256WithRSAEncryption 57:55:0c:4b:48:4f:af:ab:59:49:f0:f2:73:80:1f:3c:3d:e4: 43:2c:ce:79:ef:08:6c:8c:cf:c0:5f:f6:f1:d9:2b:84:56:ad: 98:67:ff:2d:67:a8:ff:f8:3f:51:f2:a2:d4:5e:b9:a6:33:78: 6c:01:e5:9f:bd:9a:7a:db:df:50:aa:38:bb:7b:7c:69:5b:6b: 96:56:5b:89:f1:63:27:e5:58:79:65:42:87:b5:d9:b9:fc:b6: 0a:f1:a3:09:0a:c5:25:f0:e8:17:9c:bb:bd:d2:96:f1:0b:1d: 0a:d7:d9:7d:33:8a:17:42:c1:a4:4a:ca:24:bf:ed:96:7a:f1: 6e:ee:07:2b:6a:5c:49:4b:45:e6:1e:95:fd:da:ac:f1:5a:6c: c8:34:26:a0:14:89:bd:c3:31:6f:25:eb:c7:af:c5:50:1c:a2: 16:82:59:cd:c4:74:72:80:ea:eb:61:ed:49:0c:a3:29:55:3e: 23:96:e2:2a:8f:db:71:40:07:fd:af:b7:4b:58:c0:97:19:31: 00:23:b1:ad:62:27:9f:13:67:90:36:95:29:9d:eb:46:ee:bd: 86:6e:20:2b:84:24:34:f2:31:f1:20:c2:51:94:b3:03:18:a0: f1:b2:9b:ac:38:1c:d1:b9:ea:f2:6c:10:22:cf:16:d5:91:93: 36:ff:f9:80 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJBJGoI6DlOwKQKIYtt2O918n6uMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTcyMTM4WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTU3MDIxOWQ2NDlkNmU0YjFhYWVmMmMyODA4NDY4Nzg0 YmRjMDMxNjNkMWM2NzE5Nzc2NWZjYjcyZGU2ZGUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqXmwnUoHki2OapMw3W5XqrB/fEizoYN0aQUmfIQGqUrzU DkZX7W2/POlu7ZIqkvQVf0ZsxrH9XpQCEM3Be0r1307dULe57y64QqtMdckQ2zAj YBSG5g5v9MjmbK6OYn2KevNLn6u5SJHK1jWtpPBHukSMX3wYYhMBAq0ZbVTC9Lca vq1qLFO3HRMCeevYmjT2yVIIWhTGNmPgJinp45iSNRTB1Vj+Z+e+Qo9u5Ioooe0i cd5M4pZGvYrMyJz4QJNMpPumghlVkdqcrYUXMDqL8LVllOaRWlwv2vZjTNRCi8TX pY/dAMSjO/LfPZuXMFdviWa3nPIcPGb2aqAPv4yRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUn4f2E9S7XJlNrqcGSewfWOcx8ykwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyZDEwY2ZhLWZiM2UtNGYxMi1hNzMyLTBjOWU1ODMyYzU4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lgDANBgkqhkiG9w0BAQsFAAOCAQEAV1UMS0hPr6tZSfDyc4AfPD3k QyzOee8IbIzPwF/28dkrhFatmGf/LWeo//g/UfKi1F65pjN4bAHln72aetvfUKo4 u3t8aVtrllZbifFjJ+VYeWVCh7XZufy2CvGjCQrFJfDoF5y7vdKW8QsdCtfZfTOK F0LBpErKJL/tlnrxbu4HK2pcSUtF5h6V/dqs8VpsyDQmoBSJvcMxbyXrx6/FUByi FoJZzcR0coDq62HtSQyjKVU+I5biKo/bcUAH/a+3S1jAlxkxACOxrWInnxNnkDaV KZ3rRu69hm4gK4QkNPIx8SDCUZSzAxig8bKbrDgc0bnq8mwQIs8W1ZGTNv/5gA== -----END CERTIFICATE-----Generated at Wed Apr 16 16:48:31 2025 by rpki-client