$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06fb2cb4-0a76-4093-8fd7-b0c7f0db48a5.roa File: 06fb2cb4-0a76-4093-8fd7-b0c7f0db48a5.roa (raw, json) Hash identifier: 3xEkGrX9FshCdrwnweceVZe33xlOH+2p3aAdzHUPMQc= Subject key identifier: B3:A5:8B:45:B0:37:75:B0:78:93:44:E5:40:BC:D5:6F:E5:66:46:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 402B56CD4D1DF154DFD18EDF48EF3CA863EA14E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06fb2cb4-0a76-4093-8fd7-b0c7f0db48a5.roa Signing time: Mon 19 May 2025 15:51:26 +0000 ROA not before: Mon 19 May 2025 15:51:26 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:50c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:2b:56:cd:4d:1d:f1:54:df:d1:8e:df:48:ef:3c:a8:63:ea:14:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:51:26 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=0d9c4a4e388403959747cde6afddace0f99c93b3796d3ef76ceff8858f2b4286, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:db:07:b7:c1:74:b0:c1:16:f8:c5:eb:d5:b9: 7b:6b:03:61:32:64:7d:f2:4d:69:b8:a1:4e:64:9e: 7c:90:f8:c9:6f:14:e6:e5:13:69:56:e9:8f:ee:3b: 15:e6:28:60:16:b0:41:8d:09:0f:64:2f:5e:ec:70: 0e:80:67:6d:f9:9c:7b:b6:70:94:65:42:8c:fb:33: 35:8b:bb:25:46:79:0a:8c:43:be:72:1d:34:9a:9f: e3:56:91:f4:ee:d5:6f:ce:24:b4:45:7c:18:d5:70: df:04:5f:2d:22:81:8a:1b:63:59:55:b8:d0:d0:d4: 34:02:e8:d2:02:f0:19:3b:ce:dc:5c:40:21:a4:77: 9a:47:dc:96:bc:ad:cf:ff:c2:29:1b:ea:c8:8e:c4: b6:2a:ff:c8:00:7e:fb:90:e1:1a:ce:fc:7e:64:1c: ba:97:3d:f9:ae:54:b0:27:ef:1f:af:35:91:f8:6f: 89:f0:60:18:fa:2f:38:85:8c:8f:d4:03:16:7f:cb: da:d1:ba:24:b1:70:60:73:3c:da:0c:65:83:75:38: 54:56:f0:9e:72:1a:7d:7e:d6:58:fd:1a:d0:6d:7c: 63:dd:2c:76:18:b5:3f:08:b7:50:9c:c6:2f:78:89: e9:ac:98:31:68:13:77:e8:5f:a5:b7:21:23:7f:f7: f7:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:A5:8B:45:B0:37:75:B0:78:93:44:E5:40:BC:D5:6F:E5:66:46:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06fb2cb4-0a76-4093-8fd7-b0c7f0db48a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:50c0::/46 Signature Algorithm: sha256WithRSAEncryption b4:7b:47:e5:f3:d5:0a:01:6f:25:ef:68:75:dc:f7:6a:e2:85: 3e:6d:16:f0:32:02:9b:45:da:02:a4:7f:d1:48:be:27:3b:92: ce:03:b5:cf:66:80:0d:5d:e0:64:e3:c9:1b:57:5d:79:1f:78: 74:e7:c7:79:e1:e9:1f:35:be:97:55:06:69:d4:63:23:61:49: 2f:94:7f:05:72:91:5f:81:37:e3:c4:8d:a3:4b:e8:63:73:68: ad:61:2b:30:b9:3b:28:eb:fc:df:0b:92:7f:81:37:18:6a:cc: 91:df:34:e3:d6:06:a0:0b:45:6b:65:13:c4:6a:0c:ed:90:58: 96:57:e9:99:37:34:fc:42:8d:68:e4:4f:15:a2:58:39:36:47: 10:07:53:68:d8:d9:84:4b:29:61:5f:7a:23:68:1a:39:75:cf: d9:61:0a:69:ec:e8:be:cd:6f:50:eb:c3:8f:08:03:1e:67:8a: 08:dc:3c:a8:0b:db:f0:57:b7:cd:8c:65:06:ee:ec:a9:67:38: 86:a1:ff:89:7b:37:ff:26:ed:0b:da:bf:e6:07:ca:2b:09:52: 5f:45:f9:c4:64:58:d0:ff:87:e3:5c:ab:38:03:b2:7e:86:b3: 08:d6:ad:f6:85:91:ba:8b:37:d3:7a:ea:47:e5:da:25:41:57: 16:06:34:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQCtWzU0d8VTf0Y7fSO88qGPqFOAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTU1MTI2WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDljNGE0ZTM4ODQwMzk1OTc0N2NkZTZhZmRkYWNlMGY5 OWM5M2IzNzk2ZDNlZjc2Y2VmZjg4NThmMmI0Mjg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH2we3wXSwwRb4xevVuXtrA2EyZH3yTWm4oU5knnyQ+Mlv FOblE2lW6Y/uOxXmKGAWsEGNCQ9kL17scA6AZ235nHu2cJRlQoz7MzWLuyVGeQqM Q75yHTSan+NWkfTu1W/OJLRFfBjVcN8EXy0igYobY1lVuNDQ1DQC6NIC8Bk7ztxc QCGkd5pH3Ja8rc//wikb6siOxLYq/8gAfvuQ4RrO/H5kHLqXPfmuVLAn7x+vNZH4 b4nwYBj6LziFjI/UAxZ/y9rRuiSxcGBzPNoMZYN1OFRW8J5yGn1+1lj9GtBtfGPd LHYYtT8It1Ccxi94iemsmDFoE3foX6W3ISN/9/dJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUs6WLRbA3dbB4k0TlQLzVb+VmRhswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA2ZmIyY2I0LTBhNzYtNDA5My04ZmQ3LWIwYzdmMGRiNDhhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3UMAwDQYJKoZIhvcNAQELBQADggEBALR7R+Xz1QoBbyXvaHXc92ri hT5tFvAyAptF2gKkf9FIvic7ks4Dtc9mgA1d4GTjyRtXXXkfeHTnx3nh6R81vpdV BmnUYyNhSS+UfwVykV+BN+PEjaNL6GNzaK1hKzC5Oyjr/N8Lkn+BNxhqzJHfNOPW BqALRWtlE8RqDO2QWJZX6Zk3NPxCjWjkTxWiWDk2RxAHU2jY2YRLKWFfeiNoGjl1 z9lhCmns6L7Nb1Drw48IAx5nigjcPKgL2/BXt82MZQbu7KlnOIah/4l7N/8m7Qva v+YHyisJUl9F+cRkWND/h+NcqzgDsn6GswjWrfaFkbqLN9N66kfl2iVBVxYGNGk= -----END CERTIFICATE-----Generated at Sun Jun 1 04:34:43 2025 by rpki-client