$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3784a13-962b-4401-a647-8c2b62b7dadb.roa File: b3784a13-962b-4401-a647-8c2b62b7dadb.roa (raw, json) Hash identifier: Qt2YVChiVd2pUmRqd4DFmYwb5As2tsCb0vsExMuThh8= Subject key identifier: D0:F4:A0:07:DE:E1:83:88:E9:B1:64:FF:95:33:CB:B1:A3:41:A7:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0229C8EEF21ACABAE5B1BA33331B6B9834A4CC97 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3784a13-962b-4401-a647-8c2b62b7dadb.roa Signing time: Fri 28 Mar 2025 00:51:19 +0000 ROA not before: Fri 28 Mar 2025 00:51:19 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ffb:2080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:29:c8:ee:f2:1a:ca:ba:e5:b1:ba:33:33:1b:6b:98:34:a4:cc:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:51:19 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=6ae7ec76baee615947e4d0132075b463d3a98a11e17f590f2274cecc009406cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:eb:0d:a7:5a:89:8b:b6:14:bd:e9:2a:b3:9a: 80:e4:0f:91:c5:5a:d7:80:d1:7b:17:63:26:b1:28: 39:58:91:eb:6b:08:e7:5f:95:50:12:26:dc:da:19: 1b:a4:23:44:74:f5:c8:7d:03:f2:ca:ce:4e:b2:49: dd:4a:8f:ba:d9:ec:f0:48:70:c6:f0:25:6f:b1:38: 88:56:f4:8d:f4:8a:37:e2:83:fe:ab:f0:a6:97:27: ec:87:12:f7:ad:ce:f2:1f:95:c5:61:1d:d6:db:1e: ee:f4:f7:5f:3c:d7:2c:59:14:7e:bf:3e:e9:cd:bd: 07:27:48:28:75:16:e2:01:75:3d:b9:ee:74:1e:23: 2e:a5:d8:c6:88:1d:17:e0:e1:4d:71:d6:7d:9e:50: 56:1f:33:2e:ae:3f:9a:3f:25:81:f6:fd:3c:d8:09: 2e:57:3c:a7:d6:1f:92:2a:f9:c9:d1:06:5a:e7:c9: d1:8f:31:1d:61:e5:08:d8:fb:c7:b1:76:db:a4:69: 8b:74:7c:11:b4:54:9a:ec:45:a1:3e:26:2e:fa:dc: a1:cf:7d:c8:01:6a:a2:f1:f2:f2:df:27:84:66:a9: f6:ec:e6:35:34:db:77:6d:be:d8:16:e3:ce:e4:f7: c5:b0:95:7f:80:b3:8a:3e:7e:76:06:b9:9a:84:0a: 50:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F4:A0:07:DE:E1:83:88:E9:B1:64:FF:95:33:CB:B1:A3:41:A7:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3784a13-962b-4401-a647-8c2b62b7dadb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:2080::/46 Signature Algorithm: sha256WithRSAEncryption 40:2d:b4:37:ec:84:5f:06:0e:97:a9:03:e3:87:06:17:61:ad: ee:bb:7a:e4:b6:14:91:a9:b6:d7:fa:ba:91:1b:24:54:3e:a4: d5:2b:1a:b8:a0:42:97:c7:28:ef:d5:49:3a:37:f6:bc:38:c5: bb:7b:50:3e:6b:c1:ae:4c:0d:c2:b3:90:eb:83:dc:ea:d5:11: 24:0a:b0:ca:11:43:5b:06:c2:5f:dd:07:86:0a:ee:da:85:a9: 0b:77:3d:74:52:83:33:a1:a8:f7:39:d1:a5:60:26:f6:bb:00: 8d:2f:7b:7e:d4:53:5f:c0:76:12:d4:05:88:06:9f:39:b1:1b: 7b:78:e7:25:dd:c5:f0:98:59:06:6d:ad:a4:6e:75:a6:64:54: a6:bf:82:fa:61:fe:1f:a4:d1:3f:cb:2d:0e:76:65:7d:88:13: 8c:95:cb:49:f4:38:6e:34:c2:42:a0:84:1c:61:a8:d0:7a:4c: ab:af:46:ac:24:52:83:71:e3:55:3c:c7:97:73:af:38:bc:1b: ba:ba:68:b1:4d:f7:86:eb:49:00:7e:f0:ec:2f:68:54:73:5b: 83:01:6f:9d:0c:f3:97:57:23:7b:1f:18:51:b7:97:69:fa:72: c5:68:bc:11:bb:51:76:d2:26:69:c5:b3:1e:79:1a:df:da:79: 29:d3:68:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAinI7vIayrrlsbozMxtrmDSkzJcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDA1MTE5WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWU3ZWM3NmJhZWU2MTU5NDdlNGQwMTMyMDc1YjQ2M2Qz YTk4YTExZTE3ZjU5MGYyMjc0Y2VjYzAwOTQwNmNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC56w2nWomLthS96SqzmoDkD5HFWteA0XsXYyaxKDlYketr COdflVASJtzaGRukI0R09ch9A/LKzk6ySd1Kj7rZ7PBIcMbwJW+xOIhW9I30ijfi g/6r8KaXJ+yHEvetzvIflcVhHdbbHu7091881yxZFH6/PunNvQcnSCh1FuIBdT25 7nQeIy6l2MaIHRfg4U1x1n2eUFYfMy6uP5o/JYH2/TzYCS5XPKfWH5Iq+cnRBlrn ydGPMR1h5QjY+8exdtukaYt0fBG0VJrsRaE+Ji763KHPfcgBaqLx8vLfJ4Rmqfbs 5jU023dtvtgW487k98WwlX+As4o+fnYGuZqEClCFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0PSgB97hg4jpsWT/lTPLsaNBpwUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzNzg0YTEzLTk2MmItNDQwMS1hNjQ3LThjMmI2MmI3ZGFkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7IIAwDQYJKoZIhvcNAQELBQADggEBAEAttDfshF8GDpepA+OHBhdh re67euS2FJGpttf6upEbJFQ+pNUrGrigQpfHKO/VSTo39rw4xbt7UD5rwa5MDcKz kOuD3OrVESQKsMoRQ1sGwl/dB4YK7tqFqQt3PXRSgzOhqPc50aVgJva7AI0ve37U U1/AdhLUBYgGnzmxG3t45yXdxfCYWQZtraRudaZkVKa/gvph/h+k0T/LLQ52ZX2I E4yVy0n0OG40wkKghBxhqNB6TKuvRqwkUoNx41U8x5dzrzi8G7q6aLFN94brSQB+ 8OwvaFRzW4MBb50M85dXI3sfGFG3l2n6csVovBG7UXbSJmnFsx55Gt/aeSnTaNY= -----END CERTIFICATE-----Generated at Wed Apr 16 16:48:34 2025 by rpki-client