$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa File: 2420c225-afa1-4f5a-9de5-881837f8bf95.roa (raw, json) Hash identifier: 24xKkb16LMTSZbRBKlwoDRU0p8hA5NqLI2P+qzNn2l4= Subject key identifier: C6:7C:86:E6:9F:DE:F7:36:DF:16:C0:40:0E:EE:2F:51:0A:07:5C:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 536DC5231E83305C410D5B47161A590096163069 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa Signing time: Mon 19 May 2025 17:50:16 +0000 ROA not before: Mon 19 May 2025 17:50:16 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f12:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:6d:c5:23:1e:83:30:5c:41:0d:5b:47:16:1a:59:00:96:16:30:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:50:16 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=a11b4eac1b67d8af31e797b8f656e7fc08db5e8118fad7302c733bfda8bde7a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:54:c6:c3:21:a1:98:b3:8f:a6:68:fe:99:96: 60:68:0d:83:7c:c1:99:51:09:70:80:09:68:04:41: 31:fd:33:15:ba:02:90:81:54:b7:d7:9b:10:86:7f: 6c:dc:46:8a:63:9f:43:81:2b:55:3a:0e:03:71:93: a7:9b:fe:ec:42:61:84:fb:9b:09:4c:d9:8f:1f:50: d1:b6:d0:6b:f2:4c:a1:b6:41:dd:b7:36:0c:a1:bd: 80:32:9c:15:6b:1e:85:8c:e8:0e:8f:43:d9:2b:bb: 46:9b:19:be:0b:fa:09:a5:24:43:2c:48:f7:3b:94: 17:c7:f5:7b:6b:52:6a:02:be:f4:b1:f9:71:8a:98: d9:fa:3a:3e:f6:6a:bd:67:c5:8e:a3:58:10:7a:55: 43:a6:f2:8f:55:6f:1c:b8:53:9e:8c:59:4d:3c:b7: 41:be:4c:f3:fc:9d:11:b8:be:0e:8b:a8:16:39:9f: e1:64:63:77:d4:15:ed:f9:24:4f:51:7f:f9:b5:e8: 48:b7:69:72:eb:ee:0d:37:be:de:bc:d6:f8:e3:4c: 77:0f:92:85:29:91:07:a1:88:d8:15:df:74:59:f5: 07:b6:56:96:18:4f:fb:04:c0:f8:d3:6a:4b:f0:63: 7d:2e:76:ec:2b:d6:d9:a7:60:dd:ea:c0:16:36:de: 13:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:7C:86:E6:9F:DE:F7:36:DF:16:C0:40:0E:EE:2F:51:0A:07:5C:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12:c00::/38 Signature Algorithm: sha256WithRSAEncryption 31:b7:b8:8f:8a:e7:30:82:30:62:ff:c2:7a:08:0e:f9:0a:e0: f7:b6:9b:9b:3c:79:8b:8c:58:1b:d3:f5:9d:0f:21:be:00:d0: f5:7a:c5:ed:1c:fb:07:06:d9:58:64:4a:82:5f:b8:bb:c4:d9: 2f:63:3f:82:d7:5e:85:b1:ef:2c:b4:4b:16:48:39:b7:64:21: fe:76:f0:b6:72:64:ec:f4:a2:d6:57:11:e7:58:47:1f:a7:35: d2:91:82:c3:4a:e3:45:9c:51:14:87:2f:61:40:1d:f9:4d:a8: c6:9d:a4:51:1c:f8:7a:e6:a0:e2:3b:2b:4e:34:8e:26:9c:09: f7:31:95:94:37:0e:81:0e:87:a9:d5:65:50:18:47:9b:1d:a8: bf:2a:13:9a:6d:da:2d:e2:43:f4:ad:c5:0b:91:0e:c6:66:6b: 87:57:32:3f:c0:9d:78:8a:d2:5f:12:d0:c0:ab:c9:c3:8f:00: 50:32:b2:86:51:ff:71:63:d1:a5:38:73:92:cc:57:3b:8f:b5: 88:91:31:c2:c0:bb:7d:25:2f:9a:d6:03:17:5c:9e:e6:14:bd: f4:0e:ef:a7:85:e8:15:2c:d7:30:c2:63:51:99:23:c5:7b:55: 22:c8:79:c7:99:43:07:2f:3d:24:7c:c4:a2:1f:3d:e3:68:fb: 46:43:1e:90 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUU23FIx6DMFxBDVtHFhpZAJYWMGkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTc1MDE2WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTFiNGVhYzFiNjdkOGFmMzFlNzk3YjhmNjU2ZTdmYzA4 ZGI1ZTgxMThmYWQ3MzAyYzczM2JmZGE4YmRlN2E2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQVMbDIaGYs4+maP6ZlmBoDYN8wZlRCXCACWgEQTH9MxW6 ApCBVLfXmxCGf2zcRopjn0OBK1U6DgNxk6eb/uxCYYT7mwlM2Y8fUNG20GvyTKG2 Qd23NgyhvYAynBVrHoWM6A6PQ9kru0abGb4L+gmlJEMsSPc7lBfH9XtrUmoCvvSx +XGKmNn6Oj72ar1nxY6jWBB6VUOm8o9Vbxy4U56MWU08t0G+TPP8nRG4vg6LqBY5 n+FkY3fUFe35JE9Rf/m16Ei3aXLr7g03vt681vjjTHcPkoUpkQehiNgV33RZ9Qe2 VpYYT/sEwPjTakvwY30uduwr1tmnYN3qwBY23hOpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUxnyG5p/e9zbfFsBADu4vUQoHXE8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MjBjMjI1LWFmYTEtNGY1YS05ZGU1LTg4MTgzN2Y4YmY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8SDDANBgkqhkiG9w0BAQsFAAOCAQEAMbe4j4rnMIIwYv/CeggO+Qrg 97abmzx5i4xYG9P1nQ8hvgDQ9XrF7Rz7BwbZWGRKgl+4u8TZL2M/gtdehbHvLLRL Fkg5t2Qh/nbwtnJk7PSi1lcR51hHH6c10pGCw0rjRZxRFIcvYUAd+U2oxp2kURz4 euag4jsrTjSOJpwJ9zGVlDcOgQ6HqdVlUBhHmx2ovyoTmm3aLeJD9K3FC5EOxmZr h1cyP8CdeIrSXxLQwKvJw48AUDKyhlH/cWPRpThzksxXO4+1iJExwsC7fSUvmtYD F1ye5hS99A7vp4XoFSzXMMJjUZkjxXtVIsh5x5lDBy89JHzEoh8942j7RkMekA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:03:00 2025 by rpki-client