$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa File: 09f53be8-3eb1-472a-9d79-dad807a72234.roa (raw, json) Hash identifier: 5Gjg7qEBaY+Nr85k6vHAI+0lQfNM79dZBAMecsWhEx8= Subject key identifier: C5:EE:A6:60:03:35:FF:1A:38:F9:90:F1:CB:0D:0D:7E:84:16:36:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22A8F1C454129F4E8AF0151020157A2C52072CBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa Signing time: Mon 19 May 2025 17:40:20 +0000 ROA not before: Mon 19 May 2025 17:40:20 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:a8:f1:c4:54:12:9f:4e:8a:f0:15:10:20:15:7a:2c:52:07:2c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:40:20 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=7a88e9c16fd94c9174d2092efe295837a388d04414029e2bcdc1ffe8060f19aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d4:fc:86:cb:87:3c:04:4d:e0:90:87:f8:6a: b6:ec:ee:3a:a7:bb:df:9e:63:2f:bc:0e:7c:27:a5: 25:04:04:3e:d5:38:96:3c:6f:df:e0:00:81:44:23: d7:68:bc:e8:7a:d0:c8:de:21:12:70:12:44:93:32: 9d:3d:db:13:58:1f:30:13:53:61:04:de:36:da:5d: b6:65:fb:40:1c:1e:7e:c0:34:a4:fd:43:c4:df:0b: 5b:cf:b0:48:92:ca:56:a3:74:a7:8d:51:22:a4:a9: 56:78:a3:71:20:fd:07:ec:5c:0e:e2:2c:07:b8:24: fe:0d:aa:9c:94:f4:46:6f:37:f9:62:f9:28:45:b1: 60:fe:82:dc:56:13:1e:6f:63:db:fe:10:ed:c5:de: 0f:db:87:e3:bf:ed:6e:7f:80:73:3d:ac:82:ed:3d: b0:70:bb:a4:13:f6:48:ec:de:35:7b:95:58:06:c4: 8f:e1:db:65:15:37:30:46:4f:4a:99:84:65:50:8d: b3:ae:e5:86:05:9f:a4:41:d2:cc:1f:1e:5c:46:10: 1f:9a:80:5e:f8:e6:a5:d5:73:c0:d1:0b:1e:f6:de: ac:23:62:e2:4d:8e:17:36:1e:07:66:01:e7:95:6a: ce:2a:0a:16:17:35:f0:0b:b9:63:5b:f6:e2:df:60: 14:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:EE:A6:60:03:35:FF:1A:38:F9:90:F1:CB:0D:0D:7E:84:16:36:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:8000::/40 Signature Algorithm: sha256WithRSAEncryption d4:3d:6b:75:7c:23:05:44:43:36:51:c6:29:65:55:91:d6:8b: 92:5e:80:69:21:6b:9f:3d:0f:b9:5c:8c:0c:14:1b:41:a3:62: 24:af:ba:cd:00:38:be:3f:75:9a:14:5a:3e:ed:6c:50:19:45: d3:e6:c8:47:25:bb:5c:15:d6:c7:0a:e2:fe:53:1e:84:af:83: 2d:33:c0:b9:4a:c1:11:e3:2b:de:c8:2c:28:94:8d:ff:cc:89: ec:1e:ee:2f:85:b8:ba:c4:17:2a:78:d2:8e:32:4f:55:4b:79: 27:85:e9:2e:23:4a:92:e2:05:35:a6:8d:4d:b1:92:2e:50:b5: 09:c1:6f:4e:09:a4:01:35:61:5a:4c:e2:c3:91:35:72:d2:d3: ae:ec:6a:3d:bc:40:12:6f:f2:77:d3:8b:d8:dd:20:e1:fc:22: fc:90:2d:2d:78:13:9f:37:b7:7b:e4:bf:54:67:c6:21:4a:57: b8:8c:02:46:d1:ed:8d:04:ec:9c:b0:ba:aa:ce:bd:55:32:05: fa:bc:10:5e:2c:2b:1e:3d:51:f1:c4:fc:13:87:ce:1a:57:36: 01:c8:e8:24:9c:58:e4:0e:d4:ac:33:43:ac:61:dd:56:ac:6a: af:e3:75:cb:86:84:b6:e2:b8:6d:7d:c8:ab:4f:d6:6c:58:96: 42:5f:b5:dc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIqjxxFQSn06K8BUQIBV6LFIHLLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTc0MDIwWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTg4ZTljMTZmZDk0YzkxNzRkMjA5MmVmZTI5NTgzN2Ez ODhkMDQ0MTQwMjllMmJjZGMxZmZlODA2MGYxOWFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDh1PyGy4c8BE3gkIf4arbs7jqnu9+eYy+8DnwnpSUEBD7V OJY8b9/gAIFEI9dovOh60MjeIRJwEkSTMp092xNYHzATU2EE3jbaXbZl+0AcHn7A NKT9Q8TfC1vPsEiSylajdKeNUSKkqVZ4o3Eg/QfsXA7iLAe4JP4NqpyU9EZvN/li +ShFsWD+gtxWEx5vY9v+EO3F3g/bh+O/7W5/gHM9rILtPbBwu6QT9kjs3jV7lVgG xI/h22UVNzBGT0qZhGVQjbOu5YYFn6RB0swfHlxGEB+agF745qXVc8DRCx723qwj YuJNjhc2HgdmAeeVas4qChYXNfALuWNb9uLfYBQhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxe6mYAM1/xo4+ZDxyw0NfoQWNnowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5ZjUzYmU4LTNlYjEtNDcyYS05ZDc5LWRhZDgwN2E3MjIzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wgDANBgkqhkiG9w0BAQsFAAOCAQEA1D1rdXwjBURDNlHGKWVVkdaL kl6AaSFrnz0PuVyMDBQbQaNiJK+6zQA4vj91mhRaPu1sUBlF0+bIRyW7XBXWxwri /lMehK+DLTPAuUrBEeMr3sgsKJSN/8yJ7B7uL4W4usQXKnjSjjJPVUt5J4XpLiNK kuIFNaaNTbGSLlC1CcFvTgmkATVhWkziw5E1ctLTruxqPbxAEm/yd9OL2N0g4fwi /JAtLXgTnze3e+S/VGfGIUpXuIwCRtHtjQTsnLC6qs69VTIF+rwQXiwrHj1R8cT8 E4fOGlc2AcjoJJxY5A7UrDNDrGHdVqxqr+N1y4aEtuK4bX3Iq0/WbFiWQl+13A== -----END CERTIFICATE-----Generated at Mon Jun 9 06:25:45 2025 by rpki-client