$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa File: 298f7a82-24b8-4c48-8005-46f4c30ff875.roa (raw, json) Hash identifier: d0O8WazVPYRVaiays5vIkf/UaOSYHHt5RcajzQzbZyQ= Subject key identifier: 08:19:B6:BA:CA:3B:C9:78:72:AC:E5:92:76:23:EE:21:76:76:B9:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E1C32F3E26EF0B6946CD6EC4FBDF7D6580B2208 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa Signing time: Fri 30 May 2025 00:10:59 +0000 ROA not before: Fri 30 May 2025 00:10:59 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fa0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 04 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:1c:32:f3:e2:6e:f0:b6:94:6c:d6:ec:4f:bd:f7:d6:58:0b:22:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:10:59 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b809a92ad1e587d3b2c9f8209c3aae37d02de50224644842aedd34248ba0cc1e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:cd:f7:e6:c6:c0:15:2d:f9:01:78:19:ba:70: bf:6e:13:6b:7c:0c:a1:05:88:9e:74:2d:ec:a5:e3: 31:34:67:cc:ca:2d:b0:08:76:31:44:41:f7:05:a3: b0:0f:46:05:b0:62:6e:04:17:c6:0d:8b:12:b6:8d: 7c:8f:c4:ca:8c:b5:c0:cf:1e:00:34:8a:84:70:06: c8:ba:27:88:c4:62:a4:97:7f:dd:51:19:dd:3b:2f: b0:b1:9f:c2:3d:0c:51:1b:05:21:e2:fc:b4:5b:5d: 13:5f:f2:71:92:af:09:60:fe:00:ec:54:29:a3:15: dd:f3:d8:03:49:a4:ab:9a:52:46:b0:d3:10:59:04: 71:37:dc:21:f0:6e:17:63:44:f6:6a:fd:39:0b:18: 77:db:8a:10:09:b4:08:06:46:78:78:7a:5a:bd:b8: 98:3d:d5:d4:79:98:76:14:f9:d1:eb:fe:bb:5d:75: 94:dd:c1:c6:74:db:48:62:7c:d5:6f:45:28:e5:b0: bf:72:33:7b:69:eb:70:54:d1:d0:e6:e4:87:7f:c3: c8:bc:82:6a:6e:eb:7f:26:1e:f8:77:5f:3a:4e:49: 78:aa:16:ac:98:96:f2:56:05:f6:c6:7c:da:12:0b: 0a:b3:40:28:d6:64:88:b0:a7:e6:0d:07:87:02:7f: b2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:19:B6:BA:CA:3B:C9:78:72:AC:E5:92:76:23:EE:21:76:76:B9:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:5000::/40 Signature Algorithm: sha256WithRSAEncryption 6c:5a:b1:30:e5:3e:d9:2a:59:47:43:a4:b7:1a:c1:77:a4:99: 4c:17:38:04:ae:9c:5e:d1:a6:ae:b5:ed:86:a8:92:6c:72:0f: ab:ce:32:f3:cc:a1:d9:78:ed:c9:07:99:67:5c:4d:44:7b:33: fc:48:99:38:fb:24:7e:5d:1a:6e:65:5e:8d:06:e8:75:71:ce: 4b:41:27:a3:9a:ab:bf:08:d3:4a:f9:bd:35:a4:e7:ba:81:67: 4a:47:12:07:2d:29:10:d8:f0:d9:fd:a1:80:6a:31:54:a6:fe: ec:4e:0a:4e:21:e2:1e:28:23:ff:5e:54:58:60:90:6a:03:2b: 9d:85:10:12:61:52:12:c6:d4:d3:15:f6:d5:5f:53:3b:70:f0: c0:58:2d:bb:ed:2c:c8:3d:af:63:1b:8f:b8:ed:7a:fa:d8:9e: 52:2d:61:6f:86:12:a1:75:50:ba:4a:c0:c5:8f:c8:e7:4c:07: 28:ea:cc:e9:37:21:13:7a:02:cc:92:6f:2e:76:66:94:fe:70: bb:53:94:ec:09:f7:d2:ae:42:3a:e9:51:77:63:9a:2e:1a:3d: 98:1f:94:c5:2c:c1:35:c5:ea:d2:f5:7e:ed:0f:9f:ee:7f:70: d4:be:8e:5d:d4:7b:c5:ca:47:3a:39:dd:76:1e:bd:ad:f9:de: d3:af:df:7c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXhwy8+Ju8LaUbNbsT7331lgLIggwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAxMDU5WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODA5YTkyYWQxZTU4N2QzYjJjOWY4MjA5YzNhYWUzN2Qw MmRlNTAyMjQ2NDQ4NDJhZWRkMzQyNDhiYTBjYzFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYzffmxsAVLfkBeBm6cL9uE2t8DKEFiJ50Leyl4zE0Z8zK LbAIdjFEQfcFo7APRgWwYm4EF8YNixK2jXyPxMqMtcDPHgA0ioRwBsi6J4jEYqSX f91RGd07L7Cxn8I9DFEbBSHi/LRbXRNf8nGSrwlg/gDsVCmjFd3z2ANJpKuaUkaw 0xBZBHE33CHwbhdjRPZq/TkLGHfbihAJtAgGRnh4elq9uJg91dR5mHYU+dHr/rtd dZTdwcZ020hifNVvRSjlsL9yM3tp63BU0dDm5Id/w8i8gmpu638mHvh3XzpOSXiq FqyYlvJWBfbGfNoSCwqzQCjWZIiwp+YNB4cCf7InAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCBm2uso7yXhyrOWSdiPuIXZ2udIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5OGY3YTgyLTI0YjgtNGM0OC04MDA1LTQ2ZjRjMzBmZjg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gUDANBgkqhkiG9w0BAQsFAAOCAQEAbFqxMOU+2SpZR0OktxrBd6SZ TBc4BK6cXtGmrrXthqiSbHIPq84y88yh2XjtyQeZZ1xNRHsz/EiZOPskfl0abmVe jQbodXHOS0Eno5qrvwjTSvm9NaTnuoFnSkcSBy0pENjw2f2hgGoxVKb+7E4KTiHi Higj/15UWGCQagMrnYUQEmFSEsbU0xX21V9TO3DwwFgtu+0syD2vYxuPuO16+tie Ui1hb4YSoXVQukrAxY/I50wHKOrM6TchE3oCzJJvLnZmlP5wu1OU7An30q5COulR d2OaLho9mB+UxSzBNcXq0vV+7Q+f7n9w1L6OXdR7xcpHOjnddh69rfne06/ffA== -----END CERTIFICATE-----Generated at Mon Jun 2 16:51:46 2025 by rpki-client