$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa File: 80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa (raw, json) Hash identifier: J+6ybtZWGaJrv5DO5jeKD3+Yil3QDiauK3IxbenWYTA= Subject key identifier: 54:47:DD:2C:65:6A:C9:B2:37:80:7A:31:58:11:B1:7C:65:78:08:B1 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 52AEFA42BC8E0BE238127E69FC9ED4F7B3C6F864 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa Signing time: Tue 01 Apr 2025 15:00:10 +0000 ROA not before: Tue 01 Apr 2025 15:00:10 +0000 ROA not after: Tue 06 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:8140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 16 Apr 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:ae:fa:42:bc:8e:0b:e2:38:12:7e:69:fc:9e:d4:f7:b3:c6:f8:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Apr 1 15:00:10 2025 GMT Not After : May 6 23:59:59 2025 GMT Subject: serialNumber=581dfc85aa25a64a99fd3f80a5b0fd6a7d5b3b276987f3bfd77f397cfd7bc448, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8e:25:e8:63:8f:26:44:7a:64:5c:b5:a2:7d: 9c:ea:b1:64:5a:71:c3:2c:bf:d0:bb:11:f6:9b:5e: 05:50:8a:0e:a0:e8:8f:24:0a:88:32:92:bf:c0:48: d8:c2:76:ab:35:c1:4b:13:bd:c8:b5:a2:94:c9:75: 79:cd:13:94:1c:32:da:cb:c7:ac:7e:75:45:ed:4c: fb:2c:24:f4:57:2e:c7:d1:6c:f3:2c:ed:48:12:b9: b1:14:b0:39:ba:6e:ff:0b:e1:5e:d2:45:2d:b0:e6: a1:a5:1c:17:a9:da:00:57:98:97:80:5d:9a:b1:1c: 0c:4e:ec:0d:2f:21:7f:67:ee:bf:71:eb:1b:8d:1e: f4:e9:be:d5:52:a7:61:a8:0a:1d:0e:97:84:0b:3c: de:4b:c3:5a:c5:cd:87:59:d6:c9:1e:08:0e:98:b6: b7:e6:94:54:84:09:37:18:8f:ce:e5:9a:15:0a:8b: d1:bb:f3:16:e9:9f:b6:5c:55:e7:73:21:05:d8:e3: 85:23:80:a7:90:64:d2:e8:91:b1:48:b9:05:e2:a2: b9:0c:13:1c:02:c4:22:6e:98:e6:d6:73:ab:e1:01: 81:8b:a9:d1:18:98:47:a5:1f:1d:e0:02:7a:68:6f: 18:e0:c4:f6:76:26:0a:3a:ac:8a:18:a5:53:b0:11: b1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:47:DD:2C:65:6A:C9:B2:37:80:7A:31:58:11:B1:7C:65:78:08:B1 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/80d0e2ea-6a97-4531-ba66-c7d4d4ee82a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140::/32 Signature Algorithm: sha256WithRSAEncryption 7d:34:07:64:33:e1:18:d5:0d:ca:a7:42:3a:3b:4c:50:cd:52: 4d:e2:fc:e4:5b:79:f2:84:43:e4:9b:5d:41:65:b9:13:c0:39: 8b:b7:42:9e:93:08:c4:ba:b4:be:37:a7:c9:6c:6d:ca:9a:c4: e8:4d:b1:2e:4e:26:d9:1c:0d:f7:93:e6:29:74:9d:bf:c5:72: e5:16:31:a7:21:5d:16:ab:ea:7d:fe:74:37:36:10:35:96:cc: 44:a6:dd:dd:8a:2c:cd:96:ed:7d:31:f3:96:83:40:b5:55:c5: 12:34:3b:ed:a9:64:db:38:dc:4a:fc:d1:e1:67:af:fb:64:6d: fa:48:d0:06:37:27:2f:d8:d3:88:47:49:32:ac:71:6c:ee:eb: 5d:c2:ac:70:97:32:fa:a4:c7:d6:fc:be:ba:41:c0:a2:38:7f: dd:c6:03:af:d7:e3:b8:14:de:c7:4e:7c:e7:ff:3e:e4:a9:cb: c2:fe:f8:0c:22:d5:da:0c:30:1c:ac:e5:55:d0:74:fe:61:0e: 46:bf:11:45:bd:09:6a:40:60:0c:f4:7e:b0:43:b0:86:1c:2b: d2:ae:e5:7e:9e:85:50:3b:f3:34:b5:84:f0:ee:8c:84:26:b4: b7:de:12:77:fe:49:a9:65:0c:15:55:f8:a1:cf:53:9d:b6:9e: fd:dc:27:e9 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUUq76QryOC+I4En5p/J7U97PG+GQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNDAxMTUwMDEwWhcNMjUwNTA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODFkZmM4NWFhMjVhNjRhOTlmZDNmODBhNWIwZmQ2YTdk NWIzYjI3Njk4N2YzYmZkNzdmMzk3Y2ZkN2JjNDQ4MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYjiXoY48mRHpkXLWifZzqsWRaccMsv9C7EfabXgVQig6g 6I8kCogykr/ASNjCdqs1wUsTvci1opTJdXnNE5QcMtrLx6x+dUXtTPssJPRXLsfR bPMs7UgSubEUsDm6bv8L4V7SRS2w5qGlHBep2gBXmJeAXZqxHAxO7A0vIX9n7r9x 6xuNHvTpvtVSp2GoCh0Ol4QLPN5Lw1rFzYdZ1skeCA6YtrfmlFSECTcYj87lmhUK i9G78xbpn7ZcVedzIQXY44UjgKeQZNLokbFIuQXiorkMExwCxCJumObWc6vhAYGL qdEYmEelHx3gAnpobxjgxPZ2Jgo6rIoYpVOwEbHRAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUVEfdLGVqybI3gHoxWBGxfGV4CLEwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzgwZDBlMmVhLTZhOTctNDUzMS1iYTY2LWM3ZDRkNGVlODJhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBoFAMA0GCSqGSIb3DQEBCwUAA4IBAQB9NAdkM+EY1Q3Kp0I6O0xQzVJN 4vzkW3nyhEPkm11BZbkTwDmLt0KekwjEurS+N6fJbG3KmsToTbEuTibZHA33k+Yp dJ2/xXLlFjGnIV0Wq+p9/nQ3NhA1lsxEpt3diizNlu19MfOWg0C1VcUSNDvtqWTb ONxK/NHhZ6/7ZG36SNAGNycv2NOIR0kyrHFs7utdwqxwlzL6pMfW/L66QcCiOH/d xgOv1+O4FN7HTnzn/z7kqcvC/vgMItXaDDAcrOVV0HT+YQ5GvxFFvQlqQGAM9H6w Q7CGHCvSruV+noVQO/M0tYTw7oyEJrS33hJ3/kmpZQwVVfihz1Odtp793Cfp -----END CERTIFICATE-----Generated at Tue Apr 15 13:07:13 2025 by rpki-client