$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa File: ea48da40-e606-40ca-a47e-49973c2920b0.roa (raw, json) Hash identifier: KZGjYIwPlVFTJLCzSGW/qJibDQ00hHafF/VSKrzQImk= Subject key identifier: A6:BC:2D:2F:8E:27:A6:92:56:6F:07:17:29:F5:DB:C4:CD:79:D5:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26C49BD002F50D330ADB85252B50D434415203B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa Signing time: Fri 28 Mar 2025 16:31:54 +0000 ROA not before: Fri 28 Mar 2025 16:31:54 +0000 ROA not after: Fri 02 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb8:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:c4:9b:d0:02:f5:0d:33:0a:db:85:25:2b:50:d4:34:41:52:03:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 28 16:31:54 2025 GMT Not After : May 2 23:59:59 2025 GMT Subject: serialNumber=299f2d2f2055f249c0dda6adc797fb6dcfff8181b7e95a6a25c203984f323de3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1c:d9:68:d9:bb:36:2c:1f:f6:86:2a:5a:79: 6d:9f:46:f9:39:10:29:50:e4:58:8b:4a:10:3c:69: 6d:6a:99:f4:71:cf:74:63:9f:e0:6f:cb:41:ed:55: 58:dd:d6:d4:19:fd:f4:7c:15:1a:d2:55:ac:e4:fa: 19:d6:04:da:a8:16:00:d7:1b:e2:27:06:30:de:66: ad:ea:1d:57:53:33:6a:93:63:19:fd:72:a5:53:d9: b6:1c:bf:d6:57:9a:5e:f2:22:81:9c:e8:17:5e:2c: 5c:90:67:87:3d:2b:6c:25:ed:9d:30:58:21:1c:e0: 5e:5f:6a:c9:f7:b9:8f:8d:d5:13:a3:41:74:0e:93: 2f:bd:ed:87:b5:c8:57:27:80:60:7a:00:01:da:76: 5e:ef:4e:95:bb:a6:73:e6:bc:80:ef:13:fe:a0:bb: 89:1e:23:48:de:22:eb:6a:25:d8:31:af:b7:90:ce: a4:35:9a:ab:a8:8d:0b:8b:5c:86:e2:0e:55:b4:62: 6b:e8:66:dd:f7:b0:ef:29:db:98:27:24:50:c2:c2: cb:ec:21:b6:1f:08:78:00:e1:2d:ed:8c:7b:87:82: 5d:00:9d:3e:7a:18:8a:ad:e1:2a:c1:dc:6d:a7:2a: e1:0f:70:c0:ff:66:d3:78:e2:c1:c1:1f:cc:59:8c: e9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:BC:2D:2F:8E:27:A6:92:56:6F:07:17:29:F5:DB:C4:CD:79:D5:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/39 Signature Algorithm: sha256WithRSAEncryption 05:70:5f:d3:ad:b1:6b:50:58:8a:df:46:fb:84:2a:26:4f:3c: 15:3d:f0:ae:b6:8c:ac:f8:ee:00:8d:ed:10:2d:8a:74:05:58: f7:f5:38:62:92:7b:18:e4:c7:fd:1b:29:8a:ed:20:12:e0:e6: f3:fe:b9:45:b4:07:04:ce:50:b7:d7:f1:4a:a1:28:db:27:b7: 85:4a:62:ef:4a:28:35:73:46:55:29:97:2e:a2:eb:24:f2:e3: f2:6a:e5:a9:15:bf:28:b8:e3:55:c6:74:38:24:80:91:21:ce: c8:61:17:46:e5:2e:c3:bd:98:64:19:d6:98:c0:00:f0:5f:b1: 09:3e:e7:47:5e:67:0b:6a:fa:4b:e9:50:61:1e:f1:0f:76:40: 6e:ad:77:5c:c0:c6:6a:4f:8a:54:64:d9:dc:4c:4d:0d:33:be: 9b:1e:0d:88:94:41:01:f4:49:cb:92:8e:c7:d6:3b:f0:0b:2b: 85:dc:48:4b:a0:7e:6f:b1:27:65:df:d3:ca:07:e8:a2:43:0f: 7f:34:c1:3f:23:4b:db:ca:c3:8a:01:c3:e3:42:83:64:4d:ba: 6b:08:03:f2:0e:9b:c3:a2:0e:09:a8:7f:9a:86:77:3b:04:7c: 4b:fa:52:25:9e:14:86:73:47:83:9c:96:b3:41:5c:2d:bf:91: b8:ac:d3:e4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJsSb0AL1DTMK24UlK1DUNEFSA7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwMzI4MTYzMTU0WhcNMjUwNTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTlmMmQyZjIwNTVmMjQ5YzBkZGE2YWRjNzk3ZmI2ZGNm ZmY4MTgxYjdlOTVhNmEyNWMyMDM5ODRmMzIzZGUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdHNlo2bs2LB/2hipaeW2fRvk5EClQ5FiLShA8aW1qmfRx z3Rjn+Bvy0HtVVjd1tQZ/fR8FRrSVazk+hnWBNqoFgDXG+InBjDeZq3qHVdTM2qT Yxn9cqVT2bYcv9ZXml7yIoGc6BdeLFyQZ4c9K2wl7Z0wWCEc4F5fasn3uY+N1ROj QXQOky+97Ye1yFcngGB6AAHadl7vTpW7pnPmvIDvE/6gu4keI0jeIutqJdgxr7eQ zqQ1mquojQuLXIbiDlW0YmvoZt33sO8p25gnJFDCwsvsIbYfCHgA4S3tjHuHgl0A nT56GIqt4SrB3G2nKuEPcMD/ZtN44sHBH8xZjOnnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUprwtL44nppJWbwcXKfXbxM151cAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhNDhkYTQwLWU2MDYtNDBjYS1hNDdlLTQ5OTczYzI5MjBiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEABXBf062xa1BYit9G+4QqJk88 FT3wrraMrPjuAI3tEC2KdAVY9/U4YpJ7GOTH/Rspiu0gEuDm8/65RbQHBM5Qt9fx SqEo2ye3hUpi70ooNXNGVSmXLqLrJPLj8mrlqRW/KLjjVcZ0OCSAkSHOyGEXRuUu w72YZBnWmMAA8F+xCT7nR15nC2r6S+lQYR7xD3ZAbq13XMDGak+KVGTZ3ExNDTO+ mx4NiJRBAfRJy5KOx9Y78AsrhdxIS6B+b7EnZd/TygfookMPfzTBPyNL28rDigHD 40KDZE26awgD8g6bw6IOCah/moZ3OwR8S/pSJZ4UhnNHg5yWs0FcLb+RuKzT5A== -----END CERTIFICATE-----Generated at Wed Apr 16 17:02:21 2025 by rpki-client