$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa File: 2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa (raw, json) Hash identifier: Ng3ODbXS3DUnCi5bSPCO/8BDI/cUL+8ETRivAmJiHdc= Subject key identifier: 30:54:6E:71:5D:5A:94:60:15:DD:6D:EA:B1:9E:8D:AE:2C:07:86:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BD2296F531421E23BB01FEED8EF1D9F2A3DE598 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa Signing time: Wed 28 May 2025 00:21:21 +0000 ROA not before: Wed 28 May 2025 00:21:21 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:d2:29:6f:53:14:21:e2:3b:b0:1f:ee:d8:ef:1d:9f:2a:3d:e5:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:21:21 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=11cc54956f513b38ab172b19f44ea742c7597f79e9b3cfb8d423dbb033203625, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ce:30:dd:6c:7c:eb:33:e7:5e:02:88:2d:6c: 17:71:50:96:71:e9:3e:57:b6:2c:cd:26:c5:9b:44: a5:be:59:db:d5:0f:65:51:3a:ef:6f:22:34:6e:bb: c3:d8:4d:09:e9:45:94:ca:7f:2c:04:cd:fd:15:a1: 47:d7:4d:69:8c:a1:de:60:dc:9b:a7:7f:e6:2b:71: a0:20:8f:d2:95:d2:bb:18:3a:1d:fb:12:7c:50:88: 96:98:18:72:8d:de:2e:f5:da:f4:64:dd:30:e1:81: 9f:58:5d:3d:e9:6f:bc:d5:7b:e5:53:e8:74:79:08: 48:9d:22:81:78:c2:1a:b8:58:aa:d3:49:c7:b5:b6: e1:06:51:11:0e:0c:d6:27:08:07:f0:cd:76:9d:e1: 5b:f7:e0:f1:ee:34:eb:0e:dc:5a:6b:a1:dd:60:4f: a3:88:c0:03:32:cc:6c:c2:6c:72:16:f1:25:25:3e: 48:36:c5:20:b6:4e:c3:7c:30:04:12:f1:11:da:93: ba:94:94:ec:6e:9d:1d:f5:a2:28:3a:95:ed:3b:7e: 92:97:27:bb:57:b6:5a:a9:f1:c2:fb:00:01:8d:25: b1:d8:1d:10:08:f4:f2:9a:e1:b9:67:16:5a:b9:78: 73:1f:8e:8a:87:81:a9:1d:3a:94:da:8f:9e:28:3f: 08:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:54:6E:71:5D:5A:94:60:15:DD:6D:EA:B1:9E:8D:AE:2C:07:86:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:5000::/40 Signature Algorithm: sha256WithRSAEncryption 62:2c:05:f7:53:eb:43:6c:87:37:f6:1b:1d:c6:ca:7c:1e:3e: d0:49:f9:52:b3:49:67:1f:f9:f2:76:dd:52:be:ff:c3:84:cf: 1d:09:54:05:87:98:2e:29:0d:63:2b:89:71:75:09:c5:7c:3e: 2b:db:2b:45:0a:ca:f0:10:6c:a8:54:4f:aa:00:30:5d:a0:ad: c3:06:31:99:13:cd:98:38:ab:4a:55:53:ec:24:51:16:64:52: 23:29:10:bb:9b:bd:65:71:19:1c:9a:d6:9b:4d:37:d1:bf:7d: 5b:62:ce:94:3a:58:5e:ce:7c:d8:05:53:41:05:79:07:a6:39: fb:12:31:7a:f2:f1:d8:70:9c:00:ca:cc:37:2b:54:63:cd:4d: b5:7e:ea:73:a8:49:19:17:1e:3a:15:86:09:e0:e7:75:5b:7a: 06:2b:b3:6b:85:8e:5b:c9:4e:ed:01:3d:fe:55:4a:42:fd:6a: 5a:4d:cc:71:61:a5:81:e0:bc:02:00:e4:38:3e:23:e5:1e:30: 3f:c9:78:f7:1c:15:93:9a:f9:45:22:57:eb:4c:1e:ee:09:01: f1:55:36:aa:d4:bc:1c:24:d6:d5:d7:90:d3:1a:ce:0c:61:e6: 93:78:d4:ea:e5:77:ea:77:e5:7a:9d:ff:ef:2b:61:99:2c:66: 96:02:e0:68 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUW9Ipb1MUIeI7sB/u2O8dnyo95ZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMTIxWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMWNjNTQ5NTZmNTEzYjM4YWIxNzJiMTlmNDRlYTc0MmM3 NTk3Zjc5ZTliM2NmYjhkNDIzZGJiMDMzMjAzNjI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKzjDdbHzrM+deAogtbBdxUJZx6T5XtizNJsWbRKW+WdvV D2VROu9vIjRuu8PYTQnpRZTKfywEzf0VoUfXTWmMod5g3Junf+YrcaAgj9KV0rsY Oh37EnxQiJaYGHKN3i712vRk3TDhgZ9YXT3pb7zVe+VT6HR5CEidIoF4whq4WKrT Sce1tuEGUREODNYnCAfwzXad4Vv34PHuNOsO3Fprod1gT6OIwAMyzGzCbHIW8SUl Pkg2xSC2TsN8MAQS8RHak7qUlOxunR31oig6le07fpKXJ7tXtlqp8cL7AAGNJbHY HRAI9PKa4blnFlq5eHMfjoqHgakdOpTaj54oPwhrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMFRucV1alGAV3W3qsZ6NriwHhlAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmZjEwYmNmLWEwZDEtNGY0MC1iNzljLWQ4NGIwN2QzYzdiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wUDANBgkqhkiG9w0BAQsFAAOCAQEAYiwF91PrQ2yHN/YbHcbKfB4+ 0En5UrNJZx/58nbdUr7/w4TPHQlUBYeYLikNYyuJcXUJxXw+K9srRQrK8BBsqFRP qgAwXaCtwwYxmRPNmDirSlVT7CRRFmRSIykQu5u9ZXEZHJrWm0030b99W2LOlDpY Xs582AVTQQV5B6Y5+xIxevLx2HCcAMrMNytUY81NtX7qc6hJGRceOhWGCeDndVt6 Biuza4WOW8lO7QE9/lVKQv1qWk3McWGlgeC8AgDkOD4j5R4wP8l49xwVk5r5RSJX 60we7gkB8VU2qtS8HCTW1deQ0xrODGHmk3jU6uV36nflep3/7ythmSxmlgLgaA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:22:34 2025 by rpki-client