$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/355eabfb-2870-47f8-af1a-edd8cbb23311.roa File: 355eabfb-2870-47f8-af1a-edd8cbb23311.roa (raw, json) Hash identifier: yqlHl39sS1KuBSveSsnFC9V3apougcqJvXpz8PpA9L8= Subject key identifier: BE:8D:83:4F:48:C1:B0:C8:6F:E3:B6:28:F9:DE:40:CF:A4:6A:EF:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 426D618C52306155DF44FE0B6FED8D0E23D567EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/355eabfb-2870-47f8-af1a-edd8cbb23311.roa Signing time: Tue 20 May 2025 00:41:20 +0000 ROA not before: Tue 20 May 2025 00:41:20 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f23:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:6d:61:8c:52:30:61:55:df:44:fe:0b:6f:ed:8d:0e:23:d5:67:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:41:20 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=d0e5b631597aeed5629bb58e58ce8fe9fce20ce7048e45b54d7f216cbcfd74fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:c5:14:d4:11:3f:4c:fb:75:8a:d0:f2:35:aa: 5b:e7:8e:e7:6d:15:8c:25:4d:64:6d:b5:7f:76:bb: 31:ce:55:af:b4:80:00:4e:b8:40:ab:b3:33:95:e6: 8d:2c:6e:ec:7d:94:36:39:0a:f8:80:15:44:86:67: 16:da:1d:ec:16:0a:88:19:a9:7e:76:76:89:b1:9d: 7f:92:5d:d9:c6:d2:7c:48:2c:67:4f:51:20:92:e5: e5:9b:71:39:d8:bc:67:34:5b:71:0c:ce:fc:67:53: f0:c0:8c:c1:d9:af:3d:12:64:e3:01:12:40:09:17: 5d:98:81:5f:20:83:4a:36:8a:51:6f:c1:c8:05:1d: 24:5f:d2:7c:96:a9:82:b0:ff:d7:47:da:6b:af:23: 63:17:e8:61:82:fe:95:eb:82:95:61:2a:6d:0a:43: dd:b5:cd:92:26:9e:70:b0:45:9c:23:72:e9:07:eb: 15:3c:59:a6:ec:57:db:3f:83:b7:eb:a0:df:43:58: ac:47:c7:96:ec:07:17:e9:42:5b:78:7d:25:9b:94: ce:69:38:69:3c:e2:1f:28:50:83:7a:cb:b4:64:4e: f2:22:bf:91:08:36:55:22:ac:03:3e:41:76:1a:c6: 5d:0a:a8:04:46:9d:f8:ca:d3:43:8d:6e:21:9e:c1: a9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8D:83:4F:48:C1:B0:C8:6F:E3:B6:28:F9:DE:40:CF:A4:6A:EF:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/355eabfb-2870-47f8-af1a-edd8cbb23311.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f23:8000::/36 Signature Algorithm: sha256WithRSAEncryption 9d:42:62:25:e3:b6:3e:93:57:f0:59:c5:d1:ad:0f:fe:7f:94: b1:5d:e5:64:a2:af:30:b2:97:44:23:ad:9c:f6:ab:66:5c:05: cb:ce:63:72:28:f2:38:22:9f:73:74:bd:eb:71:5b:b0:90:7c: 1a:4d:5b:06:4f:65:7a:5a:91:fd:2b:18:1c:ac:18:b4:08:db: 63:07:01:94:90:50:97:d9:cf:49:b1:84:a5:00:1c:05:34:f7: a2:e2:c8:85:e9:1e:fa:ed:60:91:69:5c:5b:99:35:fe:4d:a5: 23:a0:e5:f2:42:2d:45:37:9c:30:4d:05:8e:03:32:26:7a:2e: 7f:b1:fe:ca:22:08:16:24:7c:30:15:55:93:38:6e:3f:79:3b: c3:c4:b4:65:fb:8b:dc:3e:d6:91:92:87:ff:2f:70:f9:74:a5: ea:43:4c:61:ba:bc:de:03:bd:84:4f:f1:d1:ad:63:e4:5e:fd: f1:f6:de:3c:cd:6c:88:96:29:82:d9:ab:ea:80:64:77:d9:14: 9a:de:c5:48:a6:00:d6:06:40:3a:8d:ef:eb:3c:8c:c4:b4:e5: d7:0b:5a:53:01:d3:03:de:54:53:8d:80:96:35:ec:61:d9:87: 26:81:29:47:09:8d:a4:09:f2:22:62:37:ec:4d:c6:7c:fe:3c: b7:7f:77:b4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQm1hjFIwYVXfRP4Lb+2NDiPVZ+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA0MTIwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMGU1YjYzMTU5N2FlZWQ1NjI5YmI1OGU1OGNlOGZlOWZj ZTIwY2U3MDQ4ZTQ1YjU0ZDdmMjE2Y2JjZmQ3NGZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfxRTUET9M+3WK0PI1qlvnjudtFYwlTWRttX92uzHOVa+0 gABOuECrszOV5o0sbux9lDY5CviAFUSGZxbaHewWCogZqX52domxnX+SXdnG0nxI LGdPUSCS5eWbcTnYvGc0W3EMzvxnU/DAjMHZrz0SZOMBEkAJF12YgV8gg0o2ilFv wcgFHSRf0nyWqYKw/9dH2muvI2MX6GGC/pXrgpVhKm0KQ921zZImnnCwRZwjcukH 6xU8WabsV9s/g7froN9DWKxHx5bsBxfpQlt4fSWblM5pOGk84h8oUIN6y7RkTvIi v5EINlUirAM+QXYaxl0KqARGnfjK00ONbiGewak1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvo2DT0jBsMhv47Yo+d5Az6Rq7wQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1NWVhYmZiLTI4NzAtNDdmOC1hZjFhLWVkZDhjYmIyMzMxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8jgDANBgkqhkiG9w0BAQsFAAOCAQEAnUJiJeO2PpNX8FnF0a0P/n+U sV3lZKKvMLKXRCOtnParZlwFy85jcijyOCKfc3S963FbsJB8Gk1bBk9lelqR/SsY HKwYtAjbYwcBlJBQl9nPSbGEpQAcBTT3ouLIheke+u1gkWlcW5k1/k2lI6Dl8kIt RTecME0FjgMyJnouf7H+yiIIFiR8MBVVkzhuP3k7w8S0ZfuL3D7WkZKH/y9w+XSl 6kNMYbq83gO9hE/x0a1j5F798fbePM1siJYpgtmr6oBkd9kUmt7FSKYA1gZAOo3v 6zyMxLTl1wtaUwHTA95UU42AljXsYdmHJoEpRwmNpAnyImI37E3GfP48t393tA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:27:35 2025 by rpki-client