$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ecb777e6-e596-438b-aa6c-8dc3055af2de.roa File: ecb777e6-e596-438b-aa6c-8dc3055af2de.roa (raw, json) Hash identifier: 8Qv2O+MQeVYkYhHR3PCqOaG7pMWyaRKfKFPMs1Iq4ls= Subject key identifier: 4C:34:0D:8E:84:28:E7:F2:94:CA:CF:7D:BD:1B:9B:63:1F:74:7B:59 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 345199D8FA388E0AC98DDADF68E2F4F427BA2EA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ecb777e6-e596-438b-aa6c-8dc3055af2de.roa Signing time: Tue 08 Apr 2025 00:21:55 +0000 ROA not before: Tue 08 Apr 2025 00:21:55 +0000 ROA not after: Tue 13 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:4000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 17 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:51:99:d8:fa:38:8e:0a:c9:8d:da:df:68:e2:f4:f4:27:ba:2e:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 8 00:21:55 2025 GMT Not After : May 13 23:59:59 2025 GMT Subject: serialNumber=2be55679a75a1d5643fcda2be749d5fb56abc1688dd2ceaf25e3049d5747a55d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:74:53:12:9e:60:29:52:e4:a7:28:5b:ca:92: 6d:9b:80:ce:15:84:69:98:20:95:0b:b7:8d:54:d1: c5:10:5a:1a:16:a5:76:da:e1:ab:56:f9:87:3c:25: 19:ff:99:79:9c:0b:f2:e8:03:58:6b:94:2d:1b:ce: 4f:d0:7f:bf:d6:11:23:98:6e:e9:96:13:2c:15:d2: 6e:5e:f3:b7:5b:90:5f:7d:86:c9:13:ce:db:19:2c: 34:2c:39:67:3e:8c:8a:f4:bd:84:c2:5e:45:66:31: e4:50:9c:0b:81:48:5d:5b:3e:8b:f2:37:67:7d:06: ed:da:1d:b8:30:40:38:60:1e:6c:a6:5d:69:db:26: de:c3:6e:39:33:33:00:78:e3:1b:8d:67:b9:c7:a8: 77:6a:b4:28:6e:37:7d:22:23:28:11:da:ca:2f:a6: 0e:4d:8d:e6:b0:46:80:e3:99:6d:56:36:40:bb:9d: 3a:4e:88:b6:91:41:c6:8e:d0:e4:23:f1:20:ef:e3: 1d:2a:5b:2a:54:92:4b:d0:c4:ba:50:3e:7a:83:88: 68:e7:12:64:a2:06:14:e6:31:bd:e5:c4:53:c7:b2: f4:71:4f:76:19:f2:83:00:2f:76:f2:9c:ab:53:7d: d7:95:d1:58:17:34:eb:1e:da:cd:72:a6:5e:cd:0e: 1b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:34:0D:8E:84:28:E7:F2:94:CA:CF:7D:BD:1B:9B:63:1F:74:7B:59 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ecb777e6-e596-438b-aa6c-8dc3055af2de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:4000::/39 Signature Algorithm: sha256WithRSAEncryption 44:e6:13:0b:b2:19:0b:b3:48:03:42:83:93:80:21:6d:95:fb: 5d:f5:72:7c:16:aa:a1:d0:6d:ff:9b:0a:fa:0f:4f:ae:ff:a0: dc:cb:d4:8e:23:42:ed:b5:8f:4a:3c:ae:36:c3:59:23:2e:c9: 51:5b:08:1f:9a:a2:02:05:16:95:87:d4:5a:2a:14:60:3d:6f: 58:cb:a6:71:7f:3b:a9:88:1f:2b:d8:15:1e:56:c0:1e:0b:16: 6f:49:f3:20:24:07:f3:4d:4c:2e:1d:dd:28:17:9c:ee:14:db: 0f:b1:11:16:77:4b:1e:72:e7:f7:42:ae:d6:36:ca:1d:f5:19: 3f:a7:b6:9f:bb:60:0f:c6:e5:12:d4:3c:d6:82:86:07:82:ba: eb:cb:1c:e7:30:c2:ff:6c:41:5e:38:8a:c0:74:a6:2e:44:28: c8:0d:93:2d:64:86:f8:52:4f:20:0f:c5:55:26:2e:a9:44:f7: 7c:83:b3:77:94:b1:52:05:8a:d4:3b:3d:15:96:ee:80:c6:52: 22:9c:18:68:0c:3c:4d:b1:87:52:95:69:65:02:88:24:c8:06: cb:a7:5c:cc:32:02:0f:43:ef:c2:a8:1e:22:f1:32:57:7a:49: d5:a0:d6:50:52:ce:c8:57:ba:57:6b:7f:38:ef:b0:62:2a:db: 3a:a8:77:82 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNFGZ2Po4jgrJjdrfaOL09Ce6LqkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA4MDAyMTU1WhcNMjUwNTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmU1NTY3OWE3NWExZDU2NDNmY2RhMmJlNzQ5ZDVmYjU2 YWJjMTY4OGRkMmNlYWYyNWUzMDQ5ZDU3NDdhNTVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIdFMSnmApUuSnKFvKkm2bgM4VhGmYIJULt41U0cUQWhoW pXba4atW+Yc8JRn/mXmcC/LoA1hrlC0bzk/Qf7/WESOYbumWEywV0m5e87dbkF99 hskTztsZLDQsOWc+jIr0vYTCXkVmMeRQnAuBSF1bPovyN2d9Bu3aHbgwQDhgHmym XWnbJt7DbjkzMwB44xuNZ7nHqHdqtChuN30iIygR2sovpg5NjeawRoDjmW1WNkC7 nTpOiLaRQcaO0OQj8SDv4x0qWypUkkvQxLpQPnqDiGjnEmSiBhTmMb3lxFPHsvRx T3YZ8oMAL3bynKtTfdeV0VgXNOse2s1ypl7NDhs9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUTDQNjoQo5/KUys99vRubYx90e1kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjYjc3N2U2LWU1OTYtNDM4Yi1hYTZjLThkYzMwNTVhZjJkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/3QDANBgkqhkiG9w0BAQsFAAOCAQEAROYTC7IZC7NIA0KDk4AhbZX7 XfVyfBaqodBt/5sK+g9Prv+g3MvUjiNC7bWPSjyuNsNZIy7JUVsIH5qiAgUWlYfU WioUYD1vWMumcX87qYgfK9gVHlbAHgsWb0nzICQH801MLh3dKBec7hTbD7ERFndL HnLn90Ku1jbKHfUZP6e2n7tgD8blEtQ81oKGB4K668sc5zDC/2xBXjiKwHSmLkQo yA2TLWSG+FJPIA/FVSYuqUT3fIOzd5SxUgWK1Ds9FZbugMZSIpwYaAw8TbGHUpVp ZQKIJMgGy6dczDICD0PvwqgeIvEyV3pJ1aDWUFLOyFe6V2t/OO+wYirbOqh3gg== -----END CERTIFICATE-----Generated at Wed Apr 16 16:54:42 2025 by rpki-client