$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa File: 1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa (raw, json) Hash identifier: nq4XqHB/lXYdVH8/0XE6Tc2eKpQiaXZTi6C0vY8Iq4g= Subject key identifier: BF:81:97:42:25:19:2E:FD:99:59:ED:8B:1E:45:F6:0D:AE:A4:8F:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12BEDE0FDB854F61BADFF1611559570DB6D24BB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa Signing time: Wed 28 May 2025 00:21:31 +0000 ROA not before: Wed 28 May 2025 00:21:31 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:be:de:0f:db:85:4f:61:ba:df:f1:61:15:59:57:0d:b6:d2:4b:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:21:31 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=88fb2953e1f77cf4d61ed1f9b2a2620f8aee7a717a290565895e3e276e2dc04e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fe:51:26:58:75:9a:5a:3f:01:40:10:3b:d0: 0a:78:77:e8:16:e4:71:5c:8c:18:3b:dc:32:4f:3b: 9a:53:8e:fa:d2:78:17:ac:5c:ad:af:30:36:9d:71: 8c:0c:4f:46:ec:32:f1:bc:c1:a4:1e:fa:20:71:06: e0:76:27:4d:bb:ea:b4:60:c7:5a:6f:3d:22:20:80: 2d:93:a5:44:08:97:32:5f:60:3e:e8:c8:a9:5a:c5: 7d:db:cc:76:c3:6c:17:46:53:6f:83:92:2c:5a:98: 9a:a8:74:b6:1f:c3:eb:4f:23:9a:e7:f8:cf:0c:db: 95:31:28:61:7f:47:2f:0d:13:07:d0:dc:31:91:20: 13:0a:c5:42:d2:a2:e0:67:57:d2:00:e2:b2:af:a2: 27:e0:e0:dd:52:c2:d4:66:e1:c3:b9:53:b5:09:91: 1c:fd:f3:e8:b4:cc:ee:e8:f7:ce:91:88:fa:6a:17: d5:1e:af:70:d4:41:4d:a6:91:56:44:6f:20:89:48: e8:a8:62:0f:9f:3a:e1:2e:08:48:08:2b:76:60:4a: 1c:e2:76:1f:3a:2c:fc:16:1f:44:d1:e0:83:0a:9e: b5:e7:24:46:de:aa:b3:00:55:dd:fc:a8:34:ac:f9: bb:9b:b3:4c:6d:59:ad:f5:31:0b:c7:35:25:e1:2a: 7e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:81:97:42:25:19:2E:FD:99:59:ED:8B:1E:45:F6:0D:AE:A4:8F:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:8000::/39 Signature Algorithm: sha256WithRSAEncryption d4:83:85:52:27:64:dc:a9:6a:db:48:b8:f2:e1:13:93:92:86: 77:80:40:d7:98:c1:97:bd:f6:90:09:01:ce:d1:c9:ab:24:de: d6:9e:55:57:06:41:12:89:1f:4f:d6:39:ef:1d:74:b0:a5:5a: a7:bf:d7:ce:e6:77:5c:92:c2:84:ae:40:0e:88:51:0f:35:6f: 83:af:51:1f:5a:8f:0d:fd:c6:da:50:da:d9:2c:b6:b4:6b:bd: 5d:0b:a4:fe:9b:75:46:8e:21:64:cb:59:ed:ec:34:9a:83:07: cc:15:cf:dd:78:2e:7b:c0:c3:19:29:df:2c:ff:e8:5a:be:03: 0c:bc:43:80:57:d0:8e:33:a0:e8:1a:34:0d:6d:9a:05:65:32: 88:d9:cf:0c:86:4d:92:fd:84:fa:ad:f3:27:3f:be:6d:cd:65: e4:10:03:4c:69:1f:22:51:e2:2f:69:ef:9b:3b:8a:ca:8c:5b: 49:3c:55:f3:d4:22:63:0c:f0:41:5e:ec:5c:29:d4:f5:5c:3b: eb:c6:83:cf:ae:b5:03:83:29:13:af:78:7a:ff:49:16:1a:18: 52:c9:35:b9:f5:68:c4:f8:6d:93:ea:70:47:8b:ce:a6:5d:aa: 63:14:7f:b6:76:12:87:14:d7:53:dd:9e:1b:77:d7:69:61:f9: 11:80:f5:cc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEr7eD9uFT2G63/FhFVlXDbbSS7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMTMxWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OGZiMjk1M2UxZjc3Y2Y0ZDYxZWQxZjliMmEyNjIwZjhh ZWU3YTcxN2EyOTA1NjU4OTVlM2UyNzZlMmRjMDRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl/lEmWHWaWj8BQBA70Ap4d+gW5HFcjBg73DJPO5pTjvrS eBesXK2vMDadcYwMT0bsMvG8waQe+iBxBuB2J0276rRgx1pvPSIggC2TpUQIlzJf YD7oyKlaxX3bzHbDbBdGU2+DkixamJqodLYfw+tPI5rn+M8M25UxKGF/Ry8NEwfQ 3DGRIBMKxULSouBnV9IA4rKvoifg4N1SwtRm4cO5U7UJkRz98+i0zO7o986RiPpq F9Uer3DUQU2mkVZEbyCJSOioYg+fOuEuCEgIK3ZgShzidh86LPwWH0TR4IMKnrXn JEbeqrMAVd38qDSs+bubs0xtWa31MQvHNSXhKn7HAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUv4GXQiUZLv2ZWe2LHkX2Da6kj5AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3OTJiMGZlLTZhYjEtNGFmOC04NWZiLWRiNzBkYzA4NWIzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/+gDANBgkqhkiG9w0BAQsFAAOCAQEA1IOFUidk3Klq20i48uETk5KG d4BA15jBl732kAkBztHJqyTe1p5VVwZBEokfT9Y57x10sKVap7/XzuZ3XJLChK5A DohRDzVvg69RH1qPDf3G2lDa2Sy2tGu9XQuk/pt1Ro4hZMtZ7ew0moMHzBXP3Xgu e8DDGSnfLP/oWr4DDLxDgFfQjjOg6Bo0DW2aBWUyiNnPDIZNkv2E+q3zJz++bc1l 5BADTGkfIlHiL2nvmzuKyoxbSTxV89QiYwzwQV7sXCnU9Vw768aDz661A4MpE694 ev9JFhoYUsk1ufVoxPhtk+pwR4vOpl2qYxR/tnYShxTXU92eG3fXaWH5EYD1zA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:49 2025 by rpki-client