$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e1ea25-4203-4e77-9c95-5aab58b28820.roa File: d0e1ea25-4203-4e77-9c95-5aab58b28820.roa (raw, json) Hash identifier: ysusFMjXLf3Vd9vKr5L8hes79r5T3GkKvNyyaZZU3Bs= Subject key identifier: 7B:6C:55:19:BC:C8:DA:0C:B8:C1:AE:F5:41:72:A8:D1:CB:93:97:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14225288724B83789B4289FE55EA847C7256B9B5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e1ea25-4203-4e77-9c95-5aab58b28820.roa Signing time: Fri 28 Mar 2025 15:31:23 +0000 ROA not before: Fri 28 Mar 2025 15:31:23 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff7:80a0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:22:52:88:72:4b:83:78:9b:42:89:fe:55:ea:84:7c:72:56:b9:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 15:31:23 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=f501d8a02b4b90814f5e05970080278fefcb5bb5f4d6b4a7cc1708bef8b066c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ab:de:93:2f:37:98:32:9c:c9:38:75:b9:40: bd:a0:b9:e7:90:26:67:65:c4:c9:22:72:06:8d:3b: cd:5d:de:7c:bf:8f:ab:10:4e:75:fc:cb:ca:01:7b: c4:2c:4e:48:a8:54:73:10:45:c6:fb:48:22:2e:fc: b0:ff:b6:ee:c4:74:bc:1a:4a:eb:c8:1a:a8:5d:5c: 6f:48:66:e6:96:aa:89:db:cb:78:6d:35:88:78:e7: 11:2c:d7:fc:14:f1:7c:41:c3:5a:93:83:6a:cb:cc: 3a:9a:2d:24:df:9d:6f:62:5b:6a:4a:d2:aa:7d:b5: 8e:2a:cd:85:09:c1:40:c0:e1:af:b8:f1:50:81:0a: d4:e7:97:3b:ad:69:4a:74:14:ac:31:99:c4:45:40: e8:de:a5:6c:a6:e7:83:7d:f0:77:de:2c:0c:a4:c3: 53:5d:29:87:6c:a3:9a:2f:c2:0c:61:8a:01:f5:9e: 9b:b9:0e:ba:e6:08:f2:ce:54:38:03:93:e9:5e:b9: ea:38:06:c0:75:20:db:3a:bc:52:56:8f:71:f3:c8: ca:0b:73:79:da:ea:46:dd:55:5e:47:17:8f:83:53: e9:90:36:58:4c:90:cc:ce:4e:51:a1:39:6e:7b:3c: a4:76:a2:8e:61:2f:71:34:c6:4b:83:bd:87:89:61: d8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:6C:55:19:BC:C8:DA:0C:B8:C1:AE:F5:41:72:A8:D1:CB:93:97:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e1ea25-4203-4e77-9c95-5aab58b28820.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:80a0::/46 Signature Algorithm: sha256WithRSAEncryption 53:bf:70:dc:91:21:f9:a6:56:5f:ff:34:ee:69:0c:f7:31:44: 06:b6:a1:30:b7:63:60:7f:b0:dc:15:2f:fc:a1:0a:96:4a:39: 83:6c:d8:44:c0:01:c2:18:63:3e:a0:76:9d:b9:80:b5:3d:66: 82:24:70:4d:49:70:cf:70:02:5c:5a:32:9a:97:f7:95:10:2a: 48:4f:46:e0:ec:04:05:86:e6:64:e2:e3:b8:7e:0f:9f:fe:f3: 8a:f2:16:c1:e8:17:1e:89:ac:e1:36:31:b1:d9:00:b7:9f:13: 2f:28:d9:54:2c:d1:21:18:9e:c0:cf:b2:c2:e2:0e:fb:49:6f: a9:33:7e:91:48:19:be:7e:41:09:d1:14:30:28:0e:58:fc:52: aa:2d:6d:4c:84:88:d5:b8:ca:bb:27:10:58:07:b4:10:c7:e5: 9a:e5:18:9f:07:a9:d9:cf:a4:b6:62:a1:f5:cb:53:26:54:99: 98:11:9f:06:4d:06:41:ca:f5:81:8f:1d:6b:a1:f7:39:3f:09: 28:9e:69:67:5e:24:6e:fd:60:e2:26:f5:37:b8:0d:ed:a8:30: 8c:3a:db:6d:d0:a6:7a:ad:16:8a:60:ab:93:20:a3:c0:27:06: 5f:65:a3:ed:26:2d:30:47:ca:00:ee:60:fb:6c:3f:04:79:1e: 32:12:6e:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFCJSiHJLg3ibQon+VeqEfHJWubUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTUzMTIzWhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTAxZDhhMDJiNGI5MDgxNGY1ZTA1OTcwMDgwMjc4ZmVm Y2I1YmI1ZjRkNmI0YTdjYzE3MDhiZWY4YjA2NmM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQq96TLzeYMpzJOHW5QL2gueeQJmdlxMkicgaNO81d3ny/ j6sQTnX8y8oBe8QsTkioVHMQRcb7SCIu/LD/tu7EdLwaSuvIGqhdXG9IZuaWqonb y3htNYh45xEs1/wU8XxBw1qTg2rLzDqaLSTfnW9iW2pK0qp9tY4qzYUJwUDA4a+4 8VCBCtTnlzutaUp0FKwxmcRFQOjepWym54N98HfeLAykw1NdKYdso5ovwgxhigH1 npu5DrrmCPLOVDgDk+leueo4BsB1INs6vFJWj3HzyMoLc3na6kbdVV5HF4+DU+mQ NlhMkMzOTlGhOW57PKR2oo5hL3E0xkuDvYeJYdhPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUe2xVGbzI2gy4wa71QXKo0cuTl/QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwZTFlYTI1LTQyMDMtNGU3Ny05Yzk1LTVhYWI1OGIyODgyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3gKAwDQYJKoZIhvcNAQELBQADggEBAFO/cNyRIfmmVl//NO5pDPcx RAa2oTC3Y2B/sNwVL/yhCpZKOYNs2ETAAcIYYz6gdp25gLU9ZoIkcE1JcM9wAlxa MpqX95UQKkhPRuDsBAWG5mTi47h+D5/+84ryFsHoFx6JrOE2MbHZALefEy8o2VQs 0SEYnsDPssLiDvtJb6kzfpFIGb5+QQnRFDAoDlj8UqotbUyEiNW4yrsnEFgHtBDH 5ZrlGJ8HqdnPpLZiofXLUyZUmZgRnwZNBkHK9YGPHWuh9zk/CSieaWdeJG79YOIm 9Te4De2oMIw6223QpnqtFopgq5Mgo8AnBl9lo+0mLTBHygDuYPtsPwR5HjISbpw= -----END CERTIFICATE-----Generated at Wed Apr 16 17:18:03 2025 by rpki-client