$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa File: 379473a4-1fad-417b-8aa1-0054523c76bb.roa (raw, json) Hash identifier: NDAAiuFfHX/d++Ei3b+wn7T3rYGmF/ADao3EeQ6gHhQ= Subject key identifier: 5C:B5:0B:9B:4D:71:6B:F8:49:2C:BC:FE:73:94:42:0B:1C:47:BF:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42FF0962ADCA3388805424DAA6D1CE8DB02B4F8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa Signing time: Fri 30 May 2025 00:20:27 +0000 ROA not before: Fri 30 May 2025 00:20:27 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4002::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ff:09:62:ad:ca:33:88:80:54:24:da:a6:d1:ce:8d:b0:2b:4f:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:20:27 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=403dd20b2207353fc234e96a6c8441503630c7d1ce485de5cdbf3f0116675f70, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:07:2a:b1:d5:70:e9:c6:4d:90:10:bd:ce:32: 66:7c:4a:ca:e8:c9:db:bf:96:b5:d7:66:9e:28:7b: f4:92:b4:e8:ae:85:30:02:3e:67:07:b1:15:89:b2: ec:e7:58:68:c3:48:99:d6:7a:aa:f3:bd:06:fd:d9: d1:e1:58:70:5c:89:2e:02:2a:9e:45:d2:a9:74:73: be:3f:b7:6e:3f:4a:fb:b4:06:68:5e:7b:73:85:7f: 94:8d:5f:57:ea:eb:c1:df:57:68:1f:aa:13:5e:33: 8e:9f:29:0f:92:3b:24:57:03:88:8a:fd:ce:a2:6a: b5:df:8a:94:e6:21:72:d9:f4:ee:19:40:b0:e4:ff: f9:a6:71:97:4f:c0:a7:1a:bd:97:d9:62:16:76:a0: b1:40:c1:51:69:4b:64:8b:23:87:50:58:61:ec:57: 09:b4:c4:1e:76:59:df:c8:5c:f6:e3:a5:aa:73:2d: 81:85:f4:bf:94:fd:6a:21:dc:db:be:46:86:8d:7a: 19:ac:3d:23:da:98:94:81:01:0e:c7:23:74:bf:82: d5:3f:4d:07:64:b2:24:77:38:02:f6:db:3a:84:44: dc:d2:30:5c:bf:d3:95:7a:22:68:6a:ee:b3:fc:7e: 34:3e:0c:31:28:92:d4:1b:1d:6c:31:57:43:f6:31: bd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B5:0B:9B:4D:71:6B:F8:49:2C:BC:FE:73:94:42:0B:1C:47:BF:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/379473a4-1fad-417b-8aa1-0054523c76bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4002::/48 Signature Algorithm: sha256WithRSAEncryption 44:aa:f0:de:77:76:7e:4c:31:28:31:20:63:30:96:ac:7a:e6: ca:35:39:7b:1d:50:51:3b:c5:10:60:b9:b7:34:ae:bf:2c:0c: 6a:e8:c6:ff:b4:cd:32:bd:a6:68:52:92:2f:e0:4c:e0:a9:26: 35:08:00:d5:4b:52:87:39:c2:da:33:b6:90:16:10:d0:90:e2: 09:a7:ae:20:c1:b0:6f:64:91:1a:ba:35:52:15:3d:9b:b5:fa: 92:36:69:05:0c:82:a5:44:f2:05:9e:45:02:25:d8:a2:f2:26: de:90:b4:be:4c:ef:f7:ca:04:86:2a:93:0b:74:72:0f:c1:aa: 06:ca:44:89:31:a9:15:8e:82:3c:0f:ec:4b:b1:04:50:e3:ca: b5:a6:20:4a:c1:59:0c:a1:e1:b2:b7:30:07:7f:34:db:19:fc: e9:e8:9f:66:a0:47:f4:bd:0e:51:91:34:f4:be:23:ef:02:eb: a7:ea:b8:89:c6:6b:e7:de:25:a0:ba:82:eb:fd:6c:57:c9:01: d1:fd:f3:bb:1e:53:a2:e7:42:81:ea:67:cc:90:da:af:ac:e4: 02:c6:ba:6e:b5:df:5d:c4:5c:a7:6d:8e:04:bf:c6:6f:dc:b6: 09:0f:94:bc:f9:80:0a:35:8c:70:2f:ad:c8:c6:6a:10:bb:00: 52:69:d1:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQv8JYq3KM4iAVCTaptHOjbArT44wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAyMDI3WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDNkZDIwYjIyMDczNTNmYzIzNGU5NmE2Yzg0NDE1MDM2 MzBjN2QxY2U0ODVkZTVjZGJmM2YwMTE2Njc1ZjcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbByqx1XDpxk2QEL3OMmZ8Ssroydu/lrXXZp4oe/SStOiu hTACPmcHsRWJsuznWGjDSJnWeqrzvQb92dHhWHBciS4CKp5F0ql0c74/t24/Svu0 Bmhee3OFf5SNX1fq68HfV2gfqhNeM46fKQ+SOyRXA4iK/c6iarXfipTmIXLZ9O4Z QLDk//mmcZdPwKcavZfZYhZ2oLFAwVFpS2SLI4dQWGHsVwm0xB52Wd/IXPbjpapz LYGF9L+U/Woh3Nu+RoaNehmsPSPamJSBAQ7HI3S/gtU/TQdksiR3OAL22zqERNzS MFy/05V6Imhq7rP8fjQ+DDEoktQbHWwxV0P2Mb0TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXLULm01xa/hJLLz+c5RCCxxHv98wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3OTQ3M2E0LTFmYWQtNDE3Yi04YWExLTAwNTQ1MjNjNzZiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHQAIwDQYJKoZIhvcNAQELBQADggEBAESq8N53dn5MMSgxIGMwlqx6 5so1OXsdUFE7xRBgubc0rr8sDGroxv+0zTK9pmhSki/gTOCpJjUIANVLUoc5wtoz tpAWENCQ4gmnriDBsG9kkRq6NVIVPZu1+pI2aQUMgqVE8gWeRQIl2KLyJt6QtL5M 7/fKBIYqkwt0cg/BqgbKRIkxqRWOgjwP7EuxBFDjyrWmIErBWQyh4bK3MAd/NNsZ /Onon2agR/S9DlGRNPS+I+8C66fquInGa+feJaC6guv9bFfJAdH987seU6LnQoHq Z8yQ2q+s5ALGum61313EXKdtjgS/xm/ctgkPlLz5gAo1jHAvrcjGahC7AFJp0VE= -----END CERTIFICATE-----Generated at Sun Jun 1 05:15:49 2025 by rpki-client