$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa File: 0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa (raw, json) Hash identifier: iMN+THBaBWdalvRkqYTtw3ySnE5Utcu3XHBtSIwkOj8= Subject key identifier: EE:91:A6:72:D3:1A:AD:DB:8A:0F:B5:E7:32:2A:89:34:B8:A4:02:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B53ED65D4F0234FB85B3C28D5D15D08BA4F9B6C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa Signing time: Fri 23 May 2025 00:20:22 +0000 ROA not before: Fri 23 May 2025 00:20:22 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:53:ed:65:d4:f0:23:4f:b8:5b:3c:28:d5:d1:5d:08:ba:4f:9b:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:20:22 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=fa13a5707baba8f9ed4d430a163acd78e19346089d3670f4c9de533a59ba4d96, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:3f:bb:ec:e5:0a:e5:0f:bf:fd:8a:77:92:ca: e2:d5:ae:72:d0:8a:57:3e:72:0c:24:96:d6:17:65: 20:06:e3:f1:9f:eb:21:b5:a0:85:09:6f:53:80:7b: bd:9c:ad:f5:eb:be:08:b3:9d:54:90:9e:cc:86:10: b3:e6:3d:6e:ab:be:bd:03:40:23:54:fb:c0:9b:72: 12:91:85:b9:4f:c5:35:1d:9b:c2:58:75:77:db:57: d5:05:ac:4e:94:50:e8:d3:1e:1b:30:b1:8e:65:23: 67:dc:3e:7b:37:59:40:14:64:f9:15:0e:38:a4:60: c7:cd:33:e0:fd:73:60:8f:b1:43:47:00:db:fc:bc: a2:08:f2:c6:55:c6:30:6d:8e:25:6d:5c:58:c5:07: c8:68:7d:0a:ff:4c:60:7f:84:d5:9b:f2:bf:f1:c1: a5:36:fb:ec:23:55:ef:b7:03:3c:b9:6c:57:4d:fd: 78:89:b6:cb:3f:7a:5e:3c:d2:2e:b7:b0:d8:90:33: f0:b1:ae:05:46:9d:03:2d:b9:56:53:80:57:8f:0e: b4:56:92:20:ef:32:16:56:d8:e0:71:0d:55:9b:4e: ca:2d:53:62:0c:6b:32:03:56:ef:dd:32:de:99:df: b9:54:74:11:b9:ec:a4:e6:1c:49:0b:f8:6b:29:65: 17:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:91:A6:72:D3:1A:AD:DB:8A:0F:B5:E7:32:2A:89:34:B8:A4:02:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:1000::/40 Signature Algorithm: sha256WithRSAEncryption ae:50:c5:7a:62:f1:04:f3:a3:2f:f3:9e:c8:dd:42:8a:89:1b: 60:25:15:24:3e:d0:c4:2f:50:97:2f:b3:2c:c1:b2:e6:5d:24: d1:7f:da:26:05:f4:91:df:44:db:59:6e:25:90:de:ad:b1:b8: 72:ec:80:f3:94:22:51:88:32:86:01:00:88:7e:60:ca:ff:b6: 9c:34:fd:4f:03:7c:30:5c:82:86:c3:b7:0e:d4:2b:1c:e5:92: 7b:e6:02:a4:8c:e2:b6:08:0e:88:87:cf:6f:df:bb:d0:fe:3b: 7a:57:40:53:65:36:91:50:29:2e:f7:3c:9f:fc:0b:fa:ae:ce: 55:64:e1:0b:73:bb:21:0c:5b:46:4a:1a:90:9a:95:80:c0:80: cb:f4:8a:dc:32:c5:4c:82:75:3f:56:27:6d:e1:c6:30:f6:e7: de:74:d5:c4:76:ca:25:47:07:d1:23:f1:3e:7f:d3:6f:43:46: 5a:98:9f:ec:fd:7a:7a:1f:58:1a:5d:51:9d:91:49:1e:51:b7: 3c:60:5b:8c:f3:ee:e4:7a:79:fb:6f:74:db:05:17:02:3e:d3: 11:4a:c3:6b:a5:fb:02:45:c6:4b:9e:df:49:97:80:3d:04:13: 52:2f:95:83:4a:b8:70:db:b8:b0:12:f0:e3:b9:a7:86:ec:a4: 4b:80:ec:0f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUS1PtZdTwI0+4Wzwo1dFdCLpPm2wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAyMDIyWhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTEzYTU3MDdiYWJhOGY5ZWQ0ZDQzMGExNjNhY2Q3OGUx OTM0NjA4OWQzNjcwZjRjOWRlNTMzYTU5YmE0ZDk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCIP7vs5QrlD7/9ineSyuLVrnLQilc+cgwkltYXZSAG4/Gf 6yG1oIUJb1OAe72crfXrvgiznVSQnsyGELPmPW6rvr0DQCNU+8CbchKRhblPxTUd m8JYdXfbV9UFrE6UUOjTHhswsY5lI2fcPns3WUAUZPkVDjikYMfNM+D9c2CPsUNH ANv8vKII8sZVxjBtjiVtXFjFB8hofQr/TGB/hNWb8r/xwaU2++wjVe+3Azy5bFdN /XiJtss/el480i63sNiQM/CxrgVGnQMtuVZTgFePDrRWkiDvMhZW2OBxDVWbTsot U2IMazIDVu/dMt6Z37lUdBG57KTmHEkL+GspZRffAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7pGmctMarduKD7XnMiqJNLikAvIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiYTJjYmUzLWJjOGMtNDU2Ni05Y2Y5LWY1ZjliZmQ1MTgyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vEDANBgkqhkiG9w0BAQsFAAOCAQEArlDFemLxBPOjL/OeyN1Ciokb YCUVJD7QxC9Qly+zLMGy5l0k0X/aJgX0kd9E21luJZDerbG4cuyA85QiUYgyhgEA iH5gyv+2nDT9TwN8MFyChsO3DtQrHOWSe+YCpIzitggOiIfPb9+70P47eldAU2U2 kVApLvc8n/wL+q7OVWThC3O7IQxbRkoakJqVgMCAy/SK3DLFTIJ1P1YnbeHGMPbn 3nTVxHbKJUcH0SPxPn/Tb0NGWpif7P16eh9YGl1RnZFJHlG3PGBbjPPu5Hp5+290 2wUXAj7TEUrDa6X7AkXGS57fSZeAPQQTUi+Vg0q4cNu4sBLw47mnhuykS4DsDw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:35:29 2025 by rpki-client