$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36214bab-b031-4d64-b155-eacb4b742ac6.roa File: 36214bab-b031-4d64-b155-eacb4b742ac6.roa (raw, json) Hash identifier: 5frPlBWvAD7CS1z0bCaPBQhUOhEy7aM2Dc0777CJyYM= Subject key identifier: 0C:BF:E9:ED:B1:39:E9:A5:21:B0:A7:19:3D:40:05:97:B3:78:F0:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7626DA719E82211435CB1707A3F81FFA1F5AF3A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36214bab-b031-4d64-b155-eacb4b742ac6.roa Signing time: Mon 19 May 2025 15:50:32 +0000 ROA not before: Mon 19 May 2025 15:50:32 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff4:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:26:da:71:9e:82:21:14:35:cb:17:07:a3:f8:1f:fa:1f:5a:f3:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:50:32 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=cf0976b35376cb3450ba7060761fc20462516fa678dd80d44f1929686a7a26f9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:55:2d:a5:e6:f8:32:bf:b5:bb:ff:4d:14: 54:66:fe:bd:75:9b:f4:6c:3a:1e:76:91:d0:92:f8: cb:08:ed:67:89:21:6a:4b:45:8b:ad:bb:dc:36:c7: 27:17:cf:06:81:cb:82:51:78:0d:3b:81:64:e7:03: af:52:c7:9d:47:72:51:ef:32:fc:17:d5:d2:0f:95: e3:a4:63:96:72:27:39:54:34:b2:6b:e4:64:3c:d2: 57:24:87:88:66:7a:c5:a7:4b:44:ff:25:9a:3d:e8: c1:6a:7d:e1:f8:3e:8a:96:99:90:7c:df:46:e0:a2: 92:e0:e0:17:d5:a0:03:85:e8:a6:af:3a:25:73:ea: e4:16:59:a0:97:55:88:3f:38:96:70:1c:00:12:5b: 1d:ff:49:ef:3b:23:31:e8:3f:48:1a:47:2f:fa:f4: 92:90:7a:20:ab:97:e4:e7:ba:a5:4f:9a:fc:43:6d: be:5a:d9:9b:35:d1:d0:4b:12:91:d6:33:30:cf:80: 65:75:86:d7:4a:b9:25:0b:c8:8a:e9:b2:fb:9f:00: 8e:f9:37:df:74:64:b2:76:19:b3:23:b5:a1:7c:10: b4:e6:08:95:35:9c:cc:2e:2c:9f:64:aa:34:e3:29: 10:9c:d3:25:ef:be:04:e5:01:84:f1:60:73:04:39: 5b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:BF:E9:ED:B1:39:E9:A5:21:B0:A7:19:3D:40:05:97:B3:78:F0:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/36214bab-b031-4d64-b155-eacb4b742ac6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:2000::/40 Signature Algorithm: sha256WithRSAEncryption 8a:84:59:1e:6e:4b:c4:f4:83:14:07:28:4d:0f:80:12:f3:d4: 4e:e7:3f:a6:ae:45:f3:f1:00:c4:bb:98:58:ea:cf:aa:b0:8e: 52:9f:e8:09:e8:54:d3:c9:df:18:3f:1d:6d:a7:82:a7:cc:cc: 04:b5:7a:29:04:82:38:58:ff:ed:ca:9d:a7:5d:38:e4:25:a2: 99:31:1a:2b:ec:8e:5f:95:6b:e5:41:02:1f:5c:47:75:14:39: af:58:2d:b6:5d:c1:e3:48:92:b1:33:bb:34:95:72:d5:47:da: 64:4c:99:9f:9a:43:ae:63:07:11:c8:0c:ef:8a:3e:9d:be:af: 31:2c:d7:91:85:37:62:9c:57:a5:28:b7:93:b1:ce:b6:54:19: 59:a1:dc:f2:02:a0:e9:71:b8:ae:8c:60:38:0b:5a:6e:76:54: 58:7b:97:b7:01:50:42:53:3e:d4:24:5f:e4:76:fe:b1:6a:f3: 8d:d1:f6:50:40:c2:a7:e1:81:f9:f7:4c:4a:f1:16:9a:cb:f6: 69:0d:d2:12:0d:c5:c9:5e:9d:d3:d6:63:99:fd:97:5b:54:39: c9:01:fe:c6:cf:3f:73:cc:46:f6:88:b5:ff:41:a9:3f:61:cb: 44:f9:58:fa:7c:60:ce:7a:53:54:aa:4b:57:85:f2:30:32:be: 4a:3b:93:ff -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdibacZ6CIRQ1yxcHo/gf+h9a86EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTU1MDMyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZjA5NzZiMzUzNzZjYjM0NTBiYTcwNjA3NjFmYzIwNDYy NTE2ZmE2NzhkZDgwZDQ0ZjE5Mjk2ODZhN2EyNmY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL4VUtpeb4Mr+1u/9NFFRm/r11m/RsOh52kdCS+MsI7WeJ IWpLRYutu9w2xycXzwaBy4JReA07gWTnA69Sx51HclHvMvwX1dIPleOkY5ZyJzlU NLJr5GQ80lckh4hmesWnS0T/JZo96MFqfeH4PoqWmZB830bgopLg4BfVoAOF6Kav OiVz6uQWWaCXVYg/OJZwHAASWx3/Se87IzHoP0gaRy/69JKQeiCrl+TnuqVPmvxD bb5a2Zs10dBLEpHWMzDPgGV1htdKuSULyIrpsvufAI75N990ZLJ2GbMjtaF8ELTm CJU1nMwuLJ9kqjTjKRCc0yXvvgTlAYTxYHMEOVsNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDL/p7bE56aUhsKcZPUAFl7N48M4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2MjE0YmFiLWIwMzEtNGQ2NC1iMTU1LWVhY2I0Yjc0MmFjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0IDANBgkqhkiG9w0BAQsFAAOCAQEAioRZHm5LxPSDFAcoTQ+AEvPU Tuc/pq5F8/EAxLuYWOrPqrCOUp/oCehU08nfGD8dbaeCp8zMBLV6KQSCOFj/7cqd p1045CWimTEaK+yOX5Vr5UECH1xHdRQ5r1gttl3B40iSsTO7NJVy1UfaZEyZn5pD rmMHEcgM74o+nb6vMSzXkYU3YpxXpSi3k7HOtlQZWaHc8gKg6XG4roxgOAtabnZU WHuXtwFQQlM+1CRf5Hb+sWrzjdH2UEDCp+GB+fdMSvEWmsv2aQ3SEg3FyV6d09Zj mf2XW1Q5yQH+xs8/c8xG9oi1/0GpP2HLRPlY+nxgznpTVKpLV4XyMDK+SjuT/w== -----END CERTIFICATE-----Generated at Sun Jun 1 05:21:43 2025 by rpki-client