$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28bd6f98-f067-4fb1-ad83-83c73490e09e.roa File: 28bd6f98-f067-4fb1-ad83-83c73490e09e.roa (raw, json) Hash identifier: ECDNAnxq4lfZl8VruRR42FR5mUzFP7eSTfnVMekhYLc= Subject key identifier: 5E:87:E3:BA:1A:9E:92:37:03:1F:D4:F7:96:B1:16:40:C8:EB:B1:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E61F30AB740B13EAC491F50699369B63C0BF3F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28bd6f98-f067-4fb1-ad83-83c73490e09e.roa Signing time: Fri 30 May 2025 00:11:05 +0000 ROA not before: Fri 30 May 2025 00:11:05 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:61:f3:0a:b7:40:b1:3e:ac:49:1f:50:69:93:69:b6:3c:0b:f3:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:11:05 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=5c2f329e9f65a9afd3d1640cf305f23e9ff0cdecdaf18b4d9a314cf4cf79e8cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:10:3d:e2:4c:c1:94:10:de:65:c1:bc:bb:57: 7a:72:25:94:56:a7:41:14:b6:d5:94:b1:ac:e2:12: b2:2e:ce:93:cf:d1:83:77:25:ee:3a:1c:69:ff:cc: dc:f2:20:12:8d:38:6f:47:50:d4:90:41:5d:47:cd: 71:66:19:8c:9b:68:be:3d:d2:2b:1a:fa:63:51:a7: bc:39:25:8b:06:6a:f5:af:d0:a8:45:1a:5d:0b:a1: a0:6c:d6:0e:1e:06:27:ea:8f:80:af:8f:80:41:8c: 11:9b:71:7c:3b:21:70:91:17:1e:87:0d:fd:70:9e: f0:67:b5:57:a5:e2:ac:bf:85:9c:10:bf:7a:bb:ff: 2e:e3:a3:dc:e3:e6:41:6c:69:63:e8:7a:06:10:a0: 20:43:28:90:7d:00:fe:ee:0d:15:68:57:31:cd:a0: d3:21:40:1f:c5:8f:70:7e:8d:16:c7:82:8a:fc:5e: 1b:29:e2:14:d3:3c:3d:73:4f:e8:68:94:96:db:4f: fa:a3:8a:f3:0e:c3:65:f2:ce:79:a1:6e:ab:9a:cd: 8b:2f:e9:09:c0:ba:dc:49:7e:36:4e:94:3d:37:93: 72:b2:87:f8:7b:fd:da:4f:23:30:c4:72:df:dd:c5: f0:43:a0:47:2a:2c:b5:b4:bc:4a:21:fa:5c:55:79: 3f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:87:E3:BA:1A:9E:92:37:03:1F:D4:F7:96:B1:16:40:C8:EB:B1:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28bd6f98-f067-4fb1-ad83-83c73490e09e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:1000::/40 Signature Algorithm: sha256WithRSAEncryption a7:21:3c:a8:9e:ae:d4:4d:86:b1:55:d1:e3:87:9d:e4:70:90: 80:0f:de:54:fa:46:37:5b:6c:a1:2a:05:0b:df:7a:82:c2:e0: 32:d6:3d:d6:cc:2e:33:9b:9f:e6:d9:02:05:dc:3c:0c:5c:92: 19:e6:9c:4b:b4:1b:2f:0f:ff:aa:72:43:5a:11:5f:69:90:93: e5:5d:64:95:9f:8a:2a:fd:92:7a:69:86:02:2b:2f:69:fa:4d: 4a:13:3f:4f:2e:a4:59:71:e3:e8:f6:71:5f:d2:52:4b:6a:5a: 1d:ca:18:0d:e8:a7:de:de:06:04:b4:6a:40:19:74:f5:b2:10: 2c:b6:40:d4:35:68:00:84:79:96:10:d6:02:a3:4b:15:c3:0f: 20:e3:14:2e:11:3f:40:75:fd:29:e8:bf:1a:2a:ea:3b:ad:da: 22:86:76:76:31:ba:9e:fa:0d:6c:41:46:ee:f4:72:58:f5:7c: 11:9e:9b:4c:77:77:da:0b:d3:39:af:86:69:ab:ee:d1:bc:58: 4a:28:64:28:8a:e1:73:6e:fc:43:50:62:c8:07:4d:f3:12:21: 8e:07:8d:b3:da:f5:42:91:a5:a9:28:93:09:fa:ac:e7:c7:72: f6:35:86:b1:65:e6:27:e0:8c:45:98:01:6f:f0:3f:b8:2b:39: 6e:b1:d1:ea -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXmHzCrdAsT6sSR9QaZNptjwL8/AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAxMTA1WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzJmMzI5ZTlmNjVhOWFmZDNkMTY0MGNmMzA1ZjIzZTlm ZjBjZGVjZGFmMThiNGQ5YTMxNGNmNGNmNzllOGNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrED3iTMGUEN5lwby7V3pyJZRWp0EUttWUsaziErIuzpPP 0YN3Je46HGn/zNzyIBKNOG9HUNSQQV1HzXFmGYybaL490isa+mNRp7w5JYsGavWv 0KhFGl0LoaBs1g4eBifqj4Cvj4BBjBGbcXw7IXCRFx6HDf1wnvBntVel4qy/hZwQ v3q7/y7jo9zj5kFsaWPoegYQoCBDKJB9AP7uDRVoVzHNoNMhQB/Fj3B+jRbHgor8 Xhsp4hTTPD1zT+holJbbT/qjivMOw2XyznmhbquazYsv6QnAutxJfjZOlD03k3Ky h/h7/dpPIzDEct/dxfBDoEcqLLW0vEoh+lxVeT/rAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXofjuhqekjcDH9T3lrEWQMjrsdswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4YmQ2Zjk4LWYwNjctNGZiMS1hZDgzLTgzYzczNDkwZTA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+EDANBgkqhkiG9w0BAQsFAAOCAQEApyE8qJ6u1E2GsVXR44ed5HCQ gA/eVPpGN1tsoSoFC996gsLgMtY91swuM5uf5tkCBdw8DFySGeacS7QbLw//qnJD WhFfaZCT5V1klZ+KKv2SemmGAisvafpNShM/Ty6kWXHj6PZxX9JSS2paHcoYDein 3t4GBLRqQBl09bIQLLZA1DVoAIR5lhDWAqNLFcMPIOMULhE/QHX9Kei/GirqO63a IoZ2djG6nvoNbEFG7vRyWPV8EZ6bTHd32gvTOa+Gaavu0bxYSihkKIrhc278Q1Bi yAdN8xIhjgeNs9r1QpGlqSiTCfqs58dy9jWGsWXmJ+CMRZgBb/A/uCs5brHR6g== -----END CERTIFICATE-----Generated at Sun Jun 1 04:33:43 2025 by rpki-client