$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1340e23a-bfc5-46cd-bf07-bd9f77994462.roa File: 1340e23a-bfc5-46cd-bf07-bd9f77994462.roa (raw, json) Hash identifier: J6myuXnFmJbjVJFBE7/zdBIVqu6pRbxDEy2/9S04Ekc= Subject key identifier: E4:A5:3C:A6:07:04:9F:92:FB:87:7A:32:A0:02:8E:89:F3:E5:9A:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EB493306D4465354395D119029A8DDA8D5CBF9E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1340e23a-bfc5-46cd-bf07-bd9f77994462.roa Signing time: Mon 19 May 2025 16:11:12 +0000 ROA not before: Mon 19 May 2025 16:11:12 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffb:8040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:b4:93:30:6d:44:65:35:43:95:d1:19:02:9a:8d:da:8d:5c:bf:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:11:12 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=e12f5675d031c9fa81299e9eb0e76b660e1abc57336e9836b19b214c8908102c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:23:7c:65:6b:ab:81:d7:24:75:7c:b8:89:6b: 38:c3:31:c1:61:a8:11:a3:70:fd:2c:1a:5b:a0:97: fa:fd:55:78:0e:2d:dd:5e:79:82:11:ed:21:b5:a0: c8:92:22:5b:eb:37:7f:db:eb:f2:d1:82:89:1e:43: 6e:0e:35:1b:2a:e5:ff:fe:59:45:5e:e1:ab:4f:d7: ea:88:a0:92:90:c9:c8:7f:af:0a:12:77:c9:39:b8: d2:58:1f:85:79:c8:26:7a:66:10:3f:2d:8a:7a:8f: 10:5a:c6:e9:c7:53:fa:d2:92:93:08:c1:f2:f6:ee: 53:0f:40:5f:f6:17:e7:13:b5:f3:db:53:57:d8:7c: ab:24:00:dd:b4:a5:42:63:8b:02:29:02:56:01:8d: e4:2b:1c:8c:e7:22:4e:75:26:5b:c1:51:c9:b4:1a: 5f:c9:f6:2d:34:dc:e1:67:cb:7e:50:23:6b:b1:ce: 7c:c5:88:48:50:f7:59:87:8e:3b:0a:97:bb:c2:bb: 77:5b:6b:e7:fd:fb:5d:21:88:57:ef:14:dc:ea:da: d5:53:d9:a4:4a:98:c4:3a:a2:27:ae:98:b9:2d:e9: 52:44:8d:1e:ac:37:14:46:c1:45:f6:67:7b:cf:ec: 64:c7:bd:e7:fa:02:dd:3c:0f:5f:61:62:48:0f:49: e4:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A5:3C:A6:07:04:9F:92:FB:87:7A:32:A0:02:8E:89:F3:E5:9A:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1340e23a-bfc5-46cd-bf07-bd9f77994462.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:8040::/46 Signature Algorithm: sha256WithRSAEncryption c1:d0:97:72:38:13:b6:af:03:2e:af:ec:32:95:f0:5b:68:54: db:83:ba:8c:e6:13:8a:26:00:b4:ce:42:03:7f:b4:51:ac:26: 94:b7:9f:4c:4a:c8:39:cf:bf:65:3c:aa:b6:e6:5b:1f:32:f7: 81:bb:9a:1f:f3:7f:b4:8e:fa:79:39:e6:8f:72:2a:8d:10:0d: 5f:5b:5a:fe:31:41:20:2a:b9:9a:27:b9:f8:df:c7:73:3f:a0: 75:63:14:29:fa:63:65:c1:71:77:65:f2:ad:ff:8f:b6:c0:46: 51:87:d5:8c:96:5d:9e:3d:4e:06:71:40:81:db:88:b6:e8:aa: 77:51:c6:82:84:32:ac:9a:58:8f:32:65:f6:e1:90:48:c5:f6: ad:21:10:7c:75:d5:c7:79:4f:7e:2a:da:d4:47:e4:7f:ee:e0: bc:b9:d4:bb:b7:67:89:8c:e1:29:ff:5c:78:84:42:9a:c5:f8: b4:39:53:6e:ce:f7:45:f3:3b:ca:9d:76:02:3f:c0:2e:35:17: bf:5a:43:c2:06:27:68:10:22:77:62:af:9d:c6:51:a7:e0:af: 11:b3:a3:9d:be:f2:37:50:2d:d9:7c:2f:b9:b3:89:bc:68:74: 7c:cf:01:86:ab:fd:ed:91:80:ed:a4:cd:25:b9:79:11:32:87: 2c:9e:aa:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULrSTMG1EZTVDldEZApqN2o1cv54wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYxMTEyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTJmNTY3NWQwMzFjOWZhODEyOTllOWViMGU3NmI2NjBl MWFiYzU3MzM2ZTk4MzZiMTliMjE0Yzg5MDgxMDJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNI3xla6uB1yR1fLiJazjDMcFhqBGjcP0sGlugl/r9VXgO Ld1eeYIR7SG1oMiSIlvrN3/b6/LRgokeQ24ONRsq5f/+WUVe4atP1+qIoJKQych/ rwoSd8k5uNJYH4V5yCZ6ZhA/LYp6jxBaxunHU/rSkpMIwfL27lMPQF/2F+cTtfPb U1fYfKskAN20pUJjiwIpAlYBjeQrHIznIk51JlvBUcm0Gl/J9i003OFny35QI2ux znzFiEhQ91mHjjsKl7vCu3dba+f9+10hiFfvFNzq2tVT2aRKmMQ6oieumLkt6VJE jR6sNxRGwUX2Z3vP7GTHvef6At08D19hYkgPSeQ9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5KU8pgcEn5L7h3oyoAKOifPlmlEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzNDBlMjNhLWJmYzUtNDZjZC1iZjA3LWJkOWY3Nzk5NDQ2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7gEAwDQYJKoZIhvcNAQELBQADggEBAMHQl3I4E7avAy6v7DKV8Fto VNuDuozmE4omALTOQgN/tFGsJpS3n0xKyDnPv2U8qrbmWx8y94G7mh/zf7SO+nk5 5o9yKo0QDV9bWv4xQSAquZonufjfx3M/oHVjFCn6Y2XBcXdl8q3/j7bARlGH1YyW XZ49TgZxQIHbiLboqndRxoKEMqyaWI8yZfbhkEjF9q0hEHx11cd5T34q2tRH5H/u 4Ly51Lu3Z4mM4Sn/XHiEQprF+LQ5U27O90XzO8qddgI/wC41F79aQ8IGJ2gQIndi r53GUafgrxGzo52+8jdQLdl8L7mzibxodHzPAYar/e2RgO2kzSW5eREyhyyeqls= -----END CERTIFICATE-----Generated at Sun Jun 1 04:26:51 2025 by rpki-client