$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e93c151-9991-4540-b909-c916d5d97379.roa File: 1e93c151-9991-4540-b909-c916d5d97379.roa (raw, json) Hash identifier: 3GcfC3ve2FY2wqw8BDgTLC9s2s/oYQAB42vpD6tW4To= Subject key identifier: A2:D2:4E:AE:F8:BE:27:AB:DC:BC:85:8E:FB:C7:16:14:91:C5:D4:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7748BDFFA41A9FC1D2F8CFF3178909D6AC7AEADC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e93c151-9991-4540-b909-c916d5d97379.roa Signing time: Mon 19 May 2025 18:40:15 +0000 ROA not before: Mon 19 May 2025 18:40:15 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f24:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:48:bd:ff:a4:1a:9f:c1:d2:f8:cf:f3:17:89:09:d6:ac:7a:ea:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:40:15 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=19a77f8a08c22999ecb43124acc9a779d8c79020df8170924c044a587519e700, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:2e:eb:bb:ca:52:35:4f:b0:a8:94:f6:c8:76: 50:1a:ef:a9:c1:0d:0e:3c:84:fe:8e:16:39:4b:1d: b1:79:c3:81:45:5b:60:d3:31:f7:b8:51:a7:5a:23: af:78:07:59:80:15:6c:e6:dd:c3:a9:ef:00:91:ad: 5f:88:64:ed:29:a4:ce:06:19:b8:04:06:c8:52:20: 07:a9:73:d1:b8:4e:5d:8f:58:f4:a6:b1:52:ef:f3: a6:c3:d7:e8:10:df:af:42:ef:5c:51:b0:8f:36:b9: 9a:83:4b:60:41:96:0c:42:f7:0e:fc:66:2f:5b:c4: 2c:ca:27:cd:69:ec:8a:08:23:af:74:76:99:54:a3: 20:73:9c:9c:eb:4a:a8:11:ec:a1:1b:74:d3:93:fd: 2b:ce:ac:5b:e6:9e:eb:3b:de:b7:7b:16:22:1c:4e: 92:64:a9:8e:a2:2b:78:aa:1f:ea:0a:2a:dc:66:78: 8d:65:2f:16:31:34:6f:e9:89:2d:ee:ed:46:ca:34: d6:2b:3f:93:df:64:d7:80:b5:dd:ad:55:d6:c0:99: 20:45:36:4f:7e:34:dd:88:0a:74:67:17:60:e0:86: 03:46:5c:61:08:ab:b9:b9:5a:ca:bf:77:e2:82:61: d2:ce:d9:69:30:d4:b9:65:d2:72:21:02:b6:80:77: db:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D2:4E:AE:F8:BE:27:AB:DC:BC:85:8E:FB:C7:16:14:91:C5:D4:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e93c151-9991-4540-b909-c916d5d97379.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f24:4000::/36 Signature Algorithm: sha256WithRSAEncryption 0a:0b:14:38:ed:8f:b5:62:08:03:ae:3a:59:a7:5c:67:4c:f9: b8:e4:60:43:c1:3c:37:c9:1e:59:60:51:b3:6e:7f:f0:a7:e1: 6e:74:8f:fb:6e:bf:bc:93:ef:7b:71:f8:1c:1c:19:06:a5:9e: 88:a6:7e:b5:3a:78:a4:8c:05:8b:d8:17:81:92:4e:45:f3:8e: 34:d6:e3:7b:5d:b6:dd:87:7d:36:9f:5a:e2:73:9c:8f:4f:78: a3:5d:d1:ec:8c:8e:01:bf:7a:4d:24:14:f4:23:ea:80:75:46: 47:47:84:35:93:3c:ff:6a:b8:40:7f:6a:e6:a0:fa:80:ee:62: 6a:b5:b7:ab:a4:8a:a8:89:a0:b4:33:88:b5:ac:51:30:9e:3c: 35:0e:30:67:dc:71:49:77:f1:59:8d:50:55:50:1d:a2:13:81: 99:a5:ff:6b:6c:1b:b4:3b:81:84:68:8b:79:99:e1:58:99:d9: ca:6c:26:b1:70:9f:73:c8:88:d8:31:81:4f:39:7d:54:85:f7: ec:94:3e:01:cc:da:39:4b:77:86:33:23:36:65:ae:31:4a:a4: 0c:5a:6e:f8:c4:3b:e6:dd:f1:81:5b:7a:0f:41:3f:57:23:db: da:7a:17:5d:62:87:83:39:dc:c5:df:b3:20:d9:d7:29:f6:9f: 36:57:6a:4d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUd0i9/6Qan8HS+M/zF4kJ1qx66twwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTg0MDE1WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWE3N2Y4YTA4YzIyOTk5ZWNiNDMxMjRhY2M5YTc3OWQ4 Yzc5MDIwZGY4MTcwOTI0YzA0NGE1ODc1MTllNzAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWLuu7ylI1T7ColPbIdlAa76nBDQ48hP6OFjlLHbF5w4FF W2DTMfe4UadaI694B1mAFWzm3cOp7wCRrV+IZO0ppM4GGbgEBshSIAepc9G4Tl2P WPSmsVLv86bD1+gQ369C71xRsI82uZqDS2BBlgxC9w78Zi9bxCzKJ81p7IoII690 dplUoyBznJzrSqgR7KEbdNOT/SvOrFvmnus73rd7FiIcTpJkqY6iK3iqH+oKKtxm eI1lLxYxNG/piS3u7UbKNNYrP5PfZNeAtd2tVdbAmSBFNk9+NN2ICnRnF2DghgNG XGEIq7m5Wsq/d+KCYdLO2Wkw1Lll0nIhAraAd9trAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUotJOrvi+J6vcvIWO+8cWFJHF1FswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlOTNjMTUxLTk5OTEtNDU0MC1iOTA5LWM5MTZkNWQ5NzM3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8kQDANBgkqhkiG9w0BAQsFAAOCAQEACgsUOO2PtWIIA646WadcZ0z5 uORgQ8E8N8keWWBRs25/8KfhbnSP+26/vJPve3H4HBwZBqWeiKZ+tTp4pIwFi9gX gZJORfOONNbje1223Yd9Np9a4nOcj094o13R7IyOAb96TSQU9CPqgHVGR0eENZM8 /2q4QH9q5qD6gO5iarW3q6SKqImgtDOItaxRMJ48NQ4wZ9xxSXfxWY1QVVAdohOB maX/a2wbtDuBhGiLeZnhWJnZymwmsXCfc8iI2DGBTzl9VIX37JQ+AczaOUt3hjMj NmWuMUqkDFpu+MQ75t3xgVt6D0E/VyPb2noXXWKHgzncxd+zINnXKfafNldqTQ== -----END CERTIFICATE-----Generated at Wed Jun 4 11:24:33 2025 by rpki-client