$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ee35005-270a-4d69-a5d7-f6e6594e105b.roa File: 2ee35005-270a-4d69-a5d7-f6e6594e105b.roa (raw, json) Hash identifier: 3tOXUWLwr9TkOduOMIy1sKNxbAgyCZUfiTFlqijmUvo= Subject key identifier: B3:3A:FB:71:77:D1:F8:BB:95:50:27:5A:2F:BD:AE:F8:77:D0:01:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68DB50DFA199B5E3111A3FC8B64F7FE9C1E4746A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ee35005-270a-4d69-a5d7-f6e6594e105b.roa Signing time: Fri 16 May 2025 16:31:44 +0000 ROA not before: Fri 16 May 2025 16:31:44 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:db:50:df:a1:99:b5:e3:11:1a:3f:c8:b6:4f:7f:e9:c1:e4:74:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:31:44 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=b10ae9ef50ede3e5696932c5e567896f3334305fa5d0e03e7c7add0eb4562300, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:69:1b:2f:4b:39:2f:1d:3d:0a:98:b6:20:bb: 71:a4:27:e8:79:db:1e:78:11:da:9d:df:5c:cd:16: 13:47:fb:88:c6:f1:94:ea:4b:a0:04:d7:61:1b:07: bb:bf:66:5c:5e:b7:fc:ad:05:be:88:81:26:39:1f: 3f:83:14:9d:ee:31:e2:85:b5:a4:1f:23:af:d8:8b: 46:64:03:51:5d:f9:97:68:8f:cc:7a:7a:91:dc:0a: 54:a3:8b:e1:b9:3a:2c:27:8d:dd:69:6b:71:d4:ba: 9c:69:39:d0:f1:fe:45:a4:bf:47:b0:4a:d7:f1:29: 36:38:44:2a:d2:65:52:33:0b:9c:c3:81:c9:b8:3e: df:c9:c4:be:96:62:c3:d2:45:5e:95:2c:39:eb:d9: 0e:5e:e4:2f:75:da:55:e4:a8:8e:20:59:8f:e0:5a: b7:35:3a:7e:bb:3c:35:a3:38:6b:b5:b6:49:dd:8a: ce:b2:95:1b:5b:e3:2e:ca:7e:46:0e:f5:ed:e7:aa: 75:e6:81:10:27:f9:ec:13:42:b3:ce:1f:dc:4f:c6: c6:0f:de:d4:5e:a9:f9:98:80:c8:c4:4d:29:b9:e2: 6a:95:ae:af:a3:83:db:50:26:fe:54:34:f4:29:e4: 0f:54:6b:c7:4d:a1:30:3c:93:69:e4:0f:b8:4c:57: 0f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3A:FB:71:77:D1:F8:BB:95:50:27:5A:2F:BD:AE:F8:77:D0:01:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ee35005-270a-4d69-a5d7-f6e6594e105b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:5000::/40 Signature Algorithm: sha256WithRSAEncryption 38:3b:9c:c0:85:55:1a:15:9d:50:24:2e:0e:a1:10:e5:c1:2e: ce:e9:69:e0:6b:fc:56:a7:c0:3d:d0:40:83:f0:e5:72:08:72: 16:15:94:17:af:0b:ef:e5:f8:0c:3d:00:21:28:94:e6:40:ea: 07:74:6d:97:5a:cf:e6:f1:27:f0:91:52:42:6a:ec:78:4d:bd: 22:60:f4:0a:8f:b3:7f:30:e1:93:40:98:c4:9b:44:3a:3d:5f: 92:34:f0:6f:4b:cb:69:18:9e:1b:36:0a:00:c3:7b:62:89:de: 22:54:16:3e:cb:4d:63:18:dc:6a:cb:1b:c1:4d:91:be:e9:36: c0:48:7f:7a:1e:f1:1b:b6:5d:8a:0b:56:ab:a4:80:33:d7:3d: 1c:bd:b0:d0:e8:d0:88:ea:5b:e0:fc:9e:e7:17:a7:54:b8:48: d3:a1:dd:d1:ec:57:9e:92:31:8b:97:33:d4:47:22:f1:82:f7: 18:04:e9:54:18:90:85:b3:12:fb:40:5c:3f:4b:65:ed:6a:82: 29:67:bf:81:44:4a:90:90:8c:3f:93:bc:d3:b3:a9:06:18:23: a3:e9:79:ef:90:71:1b:38:7e:59:54:67:6b:53:f3:e0:93:a1: 8d:ef:ae:71:a0:a6:ee:f4:47:02:92:ad:eb:d6:33:ed:17:f8: e8:29:fb:bc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaNtQ36GZteMRGj/Itk9/6cHkdGowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTYzMTQ0WhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTBhZTllZjUwZWRlM2U1Njk2OTMyYzVlNTY3ODk2ZjMz MzQzMDVmYTVkMGUwM2U3YzdhZGQwZWI0NTYyMzAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjaRsvSzkvHT0KmLYgu3GkJ+h52x54Edqd31zNFhNH+4jG 8ZTqS6AE12EbB7u/Zlxet/ytBb6IgSY5Hz+DFJ3uMeKFtaQfI6/Yi0ZkA1Fd+Zdo j8x6epHcClSji+G5Oiwnjd1pa3HUupxpOdDx/kWkv0ewStfxKTY4RCrSZVIzC5zD gcm4Pt/JxL6WYsPSRV6VLDnr2Q5e5C912lXkqI4gWY/gWrc1On67PDWjOGu1tknd is6ylRtb4y7KfkYO9e3nqnXmgRAn+ewTQrPOH9xPxsYP3tReqfmYgMjETSm54mqV rq+jg9tQJv5UNPQp5A9Ua8dNoTA8k2nkD7hMVw/ZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUszr7cXfR+LuVUCdaL72u+HfQAaAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZTM1MDA1LTI3MGEtNGQ2OS1hNWQ3LWY2ZTY1OTRlMTA1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB84UDANBgkqhkiG9w0BAQsFAAOCAQEAODucwIVVGhWdUCQuDqEQ5cEu zulp4Gv8VqfAPdBAg/DlcghyFhWUF68L7+X4DD0AISiU5kDqB3Rtl1rP5vEn8JFS QmrseE29ImD0Co+zfzDhk0CYxJtEOj1fkjTwb0vLaRieGzYKAMN7YoneIlQWPstN YxjcassbwU2Rvuk2wEh/eh7xG7ZdigtWq6SAM9c9HL2w0OjQiOpb4Pye5xenVLhI 06Hd0exXnpIxi5cz1Eci8YL3GATpVBiQhbMS+0BcP0tl7WqCKWe/gURKkJCMP5O8 07OpBhgjo+l575BxGzh+WVRna1Pz4JOhje+ucaCm7vRHApKt69Yz7Rf46Cn7vA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:48 2025 by rpki-client