$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a37942a9-be1f-4888-91ad-9b44ecc668bb.roa File: a37942a9-be1f-4888-91ad-9b44ecc668bb.roa (raw, json) Hash identifier: D6/0qJ75VQ73OcVSKQCSMoqoNYv27cYE4j8dZq4bpzU= Subject key identifier: D5:81:2A:EE:7B:F2:6E:A8:7D:B6:A5:7C:22:E4:67:C3:E7:C2:67:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 776E48E9D24597496008C9C5C60C95FB5E7B2A9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a37942a9-be1f-4888-91ad-9b44ecc668bb.roa Signing time: Wed 26 Mar 2025 00:20:12 +0000 ROA not before: Wed 26 Mar 2025 00:20:12 +0000 ROA not after: Wed 30 Apr 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f61:50c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:6e:48:e9:d2:45:97:49:60:08:c9:c5:c6:0c:95:fb:5e:7b:2a:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 26 00:20:12 2025 GMT Not After : Apr 30 23:59:59 2025 GMT Subject: serialNumber=23e7b49f46996b469d1a00ad4fabd065c96fb278aac45912974eefebff35c95d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:5a:7f:9b:e6:1b:09:36:ac:6c:b8:9a:2f:f2: 49:72:ce:2e:dd:5f:47:68:be:ee:91:a5:24:7c:5f: 53:cc:f2:bf:65:0b:d7:33:77:12:09:1b:65:8c:c2: 35:4f:fc:f7:9a:9e:b8:68:a2:11:49:f5:29:5e:68: c2:63:6b:09:86:4e:53:6a:27:8d:4c:b7:08:36:b5: a6:63:d0:01:02:b3:6f:aa:01:4e:08:80:cd:bc:c4: ca:79:88:90:68:ba:38:2a:50:49:b5:f1:7a:82:55: a3:1f:cd:da:8b:a8:b0:cb:24:5a:a1:06:d2:d4:74: 73:7d:08:35:fd:8a:a2:37:56:fa:e9:c9:dc:4c:1e: 92:fd:3e:50:f5:59:11:f9:8a:c1:c7:87:38:8e:69: 1e:e6:a1:37:87:c3:cf:ae:30:72:b6:25:63:d2:9b: f0:b8:a2:0b:a0:e1:e4:9d:ea:fa:f9:b0:36:6b:02: 82:45:64:f6:27:81:73:93:ff:f6:66:7b:9b:7d:ed: 18:f6:6e:6d:4a:db:e9:3f:43:c2:70:34:de:d2:1a: a3:de:0f:79:de:ad:f6:f5:d7:3d:99:a4:99:01:dd: 89:62:6f:9d:a1:5a:ec:10:78:00:2c:84:18:a7:2d: b7:6c:71:b0:8c:c4:e9:1c:28:c5:f0:67:27:1a:4e: 5c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:81:2A:EE:7B:F2:6E:A8:7D:B6:A5:7C:22:E4:67:C3:E7:C2:67:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a37942a9-be1f-4888-91ad-9b44ecc668bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:50c0::/48 Signature Algorithm: sha256WithRSAEncryption 2e:cd:4a:36:35:53:10:d1:73:4b:d6:a0:a8:20:f9:7b:12:69: d5:92:98:20:4d:60:c3:45:c6:93:67:5a:7e:fd:cf:ff:16:c3: 18:67:2f:b8:0d:c1:51:eb:f4:e1:86:4e:cd:53:bd:ba:3f:d5: 10:bd:88:56:2a:60:e9:9f:94:08:b3:86:c1:f7:a2:de:1a:b9: 4d:04:2c:96:3f:53:6e:50:aa:df:b9:ca:68:87:5e:7a:90:41: 4c:4c:c7:2a:c7:76:57:95:39:8f:90:6a:dd:e7:30:f9:a5:32: d1:c1:db:79:c7:62:67:fd:88:31:f9:0e:d6:34:b9:83:8d:a8: 79:ed:73:46:5f:08:76:7b:88:e7:12:bd:cb:99:6d:e5:a9:6b: c5:ae:4c:6c:b8:87:39:cc:e2:ab:70:67:a3:72:66:2a:91:78: ab:ca:c4:fb:89:cf:c3:bc:14:34:61:43:98:89:5c:64:e4:b4: 35:cd:d5:cc:2c:ea:a7:91:7f:f7:8e:04:1b:88:7d:b8:42:ef: 70:34:ab:ac:e0:cf:2f:1d:e2:b8:b4:e5:c3:c7:75:2a:0a:53: 6e:5e:b5:5a:6c:0c:e4:1d:46:20:f1:09:e3:da:15:84:95:cb: 21:07:e1:1f:91:ed:c0:c8:34:bd:2e:1b:d1:d5:97:c2:0f:8a: af:63:31:1e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUd25I6dJFl0lgCMnFxgyV+157KpswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI2MDAyMDEyWhcNMjUwNDMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2U3YjQ5ZjQ2OTk2YjQ2OWQxYTAwYWQ0ZmFiZDA2NWM5 NmZiMjc4YWFjNDU5MTI5NzRlZWZlYmZmMzVjOTVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwWn+b5hsJNqxsuJov8klyzi7dX0dovu6RpSR8X1PM8r9l C9czdxIJG2WMwjVP/PeanrhoohFJ9SleaMJjawmGTlNqJ41Mtwg2taZj0AECs2+q AU4IgM28xMp5iJBoujgqUEm18XqCVaMfzdqLqLDLJFqhBtLUdHN9CDX9iqI3Vvrp ydxMHpL9PlD1WRH5isHHhziOaR7moTeHw8+uMHK2JWPSm/C4ogug4eSd6vr5sDZr AoJFZPYngXOT//Zme5t97Rj2bm1K2+k/Q8JwNN7SGqPeD3nerfb11z2ZpJkB3Yli b52hWuwQeAAshBinLbdscbCMxOkcKMXwZycaTlyFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1YEq7nvybqh9tqV8IuRnw+fCZ+kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzNzk0MmE5LWJlMWYtNDg4OC05MWFkLTliNDRlY2M2NjhiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hUMAwDQYJKoZIhvcNAQELBQADggEBAC7NSjY1UxDRc0vWoKgg+XsS adWSmCBNYMNFxpNnWn79z/8WwxhnL7gNwVHr9OGGTs1Tvbo/1RC9iFYqYOmflAiz hsH3ot4auU0ELJY/U25Qqt+5ymiHXnqQQUxMxyrHdleVOY+Qat3nMPmlMtHB23nH Ymf9iDH5DtY0uYONqHntc0ZfCHZ7iOcSvcuZbeWpa8WuTGy4hznM4qtwZ6NyZiqR eKvKxPuJz8O8FDRhQ5iJXGTktDXN1cws6qeRf/eOBBuIfbhC73A0q6zgzy8d4ri0 5cPHdSoKU25etVpsDOQdRiDxCePaFYSVyyEH4R+R7cDINL0uG9HVl8IPiq9jMR4= -----END CERTIFICATE-----Generated at Wed Apr 16 17:13:26 2025 by rpki-client