$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc03b0b8-dc48-442a-b40c-185ce689ee9e.roa File: dc03b0b8-dc48-442a-b40c-185ce689ee9e.roa (raw, json) Hash identifier: GrSe1R8ibtBjX31/Q10x0GeozB64h6cAXgK9NmSZtZQ= Subject key identifier: 8B:34:7E:BC:4F:CA:40:39:AE:76:10:04:B6:6F:CD:B7:EF:E9:93:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E3B222A80E0E43E0FAD71EF2DF1B62C795B633D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc03b0b8-dc48-442a-b40c-185ce689ee9e.roa Signing time: Fri 28 Mar 2025 00:10:57 +0000 ROA not before: Fri 28 Mar 2025 00:10:57 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f38:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:3b:22:2a:80:e0:e4:3e:0f:ad:71:ef:2d:f1:b6:2c:79:5b:63:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 00:10:57 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=df0ad5ccfde7c62658c799717f8d5a6b01fdede0e9c14f031373854adef486fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:52:7a:a5:c7:3f:c2:b0:30:20:03:87:47:ac: ff:15:ca:53:48:7d:d4:19:6c:08:aa:52:2b:b5:5b: 1a:b9:9e:b8:ae:f0:53:03:fe:39:6d:f7:89:5b:c9: 06:08:29:9b:0f:bb:59:ae:5e:a1:63:5f:ed:07:5c: db:e8:3f:25:76:42:24:dd:15:d6:5b:d2:cb:97:4c: ab:59:91:0a:30:c6:69:fb:5a:21:1f:1c:19:5f:1d: 4d:28:c4:7a:47:c5:b4:05:50:28:7b:05:23:c5:f9: 44:2d:fd:97:84:10:cf:f2:fa:37:58:ca:e2:fb:32: d2:49:56:04:35:ae:f7:94:b9:10:26:31:fe:06:35: 7c:3e:1b:7d:c4:05:4a:b1:71:b4:a7:35:8f:f1:3b: 51:9d:c8:64:b1:6c:36:ab:5b:a2:45:7e:92:5f:1c: 5a:a6:9a:0d:83:66:82:98:92:63:48:15:e2:89:c3: 05:d8:95:8f:05:39:e6:82:46:6b:dd:01:b6:18:48: 62:89:aa:93:46:12:0b:64:bc:b4:f3:15:04:3b:b4: e5:0b:9b:1f:5d:83:f6:89:b8:39:98:90:1b:3b:fc: 70:af:dd:e0:03:df:67:21:84:96:ba:24:42:a0:c3: 46:63:80:d2:cd:84:62:ec:d2:74:41:50:ba:ad:08: 55:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:34:7E:BC:4F:CA:40:39:AE:76:10:04:B6:6F:CD:B7:EF:E9:93:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc03b0b8-dc48-442a-b40c-185ce689ee9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:2000::/40 Signature Algorithm: sha256WithRSAEncryption bc:da:d7:8a:6a:3f:c8:bf:2d:a9:d7:04:e4:57:26:e4:e4:e2: 43:41:8a:e8:8a:5a:07:e6:ad:c6:9e:e2:b7:0d:43:b8:e2:02: d8:c9:6b:1f:ef:59:21:54:6c:be:b6:f9:2d:c7:20:33:01:33: 18:56:37:3f:fb:08:12:09:ac:eb:ea:2f:58:9e:49:f7:16:67: 60:ff:d1:d4:e0:b6:4e:2d:c7:79:36:c4:88:c8:06:9b:1b:ac: 85:52:66:bc:6c:fe:49:10:84:e2:57:f7:7d:be:57:b3:df:7a: cf:74:17:38:8b:ed:7d:6d:a0:c1:cf:c3:6a:97:fc:8b:91:f8: 81:6b:c2:9c:b8:2b:1e:2f:e1:10:8c:49:e7:91:b2:ea:b1:49: 95:fc:a0:58:e8:ab:b2:f3:fe:93:83:d1:4a:64:cb:80:3d:a4: d5:12:08:e6:5b:27:8b:e7:c4:a1:18:d3:1e:41:65:1c:1e:36: 39:21:9c:15:e9:49:68:6a:4d:83:45:fd:7e:f6:57:0c:37:19: 64:8d:a4:af:8d:e7:63:51:20:cf:f0:b3:85:70:1f:34:84:01: 38:f2:2f:c7:28:14:8a:2e:69:20:37:8b:82:c0:13:f0:f8:12: 06:3c:59:b5:60:3f:9d:be:00:a7:3c:58:77:86:1b:96:7b:88: 9c:55:55:2e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfjsiKoDg5D4PrXHvLfG2LHlbYz0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MDAxMDU3WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjBhZDVjY2ZkZTdjNjI2NThjNzk5NzE3ZjhkNWE2YjAx ZmRlZGUwZTljMTRmMDMxMzczODU0YWRlZjQ4NmZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWUnqlxz/CsDAgA4dHrP8VylNIfdQZbAiqUiu1Wxq5nriu 8FMD/jlt94lbyQYIKZsPu1muXqFjX+0HXNvoPyV2QiTdFdZb0suXTKtZkQowxmn7 WiEfHBlfHU0oxHpHxbQFUCh7BSPF+UQt/ZeEEM/y+jdYyuL7MtJJVgQ1rveUuRAm Mf4GNXw+G33EBUqxcbSnNY/xO1GdyGSxbDarW6JFfpJfHFqmmg2DZoKYkmNIFeKJ wwXYlY8FOeaCRmvdAbYYSGKJqpNGEgtkvLTzFQQ7tOULmx9dg/aJuDmYkBs7/HCv 3eAD32chhJa6JEKgw0ZjgNLNhGLs0nRBULqtCFXRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUizR+vE/KQDmudhAEtm/Nt+/pk1cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjMDNiMGI4LWRjNDgtNDQyYS1iNDBjLTE4NWNlNjg5ZWU5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB84IDANBgkqhkiG9w0BAQsFAAOCAQEAvNrXimo/yL8tqdcE5Fcm5OTi Q0GK6IpaB+atxp7itw1DuOIC2MlrH+9ZIVRsvrb5LccgMwEzGFY3P/sIEgms6+ov WJ5J9xZnYP/R1OC2Ti3HeTbEiMgGmxushVJmvGz+SRCE4lf3fb5Xs996z3QXOIvt fW2gwc/Dapf8i5H4gWvCnLgrHi/hEIxJ55Gy6rFJlfygWOirsvP+k4PRSmTLgD2k 1RII5lsni+fEoRjTHkFlHB42OSGcFelJaGpNg0X9fvZXDDcZZI2kr43nY1Egz/Cz hXAfNIQBOPIvxygUii5pIDeLgsAT8PgSBjxZtWA/nb4ApzxYd4YblnuInFVVLg== -----END CERTIFICATE-----Generated at Wed Apr 16 16:52:18 2025 by rpki-client