$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b10fd9a-2796-4477-a76a-de2223e52295.roa File: 3b10fd9a-2796-4477-a76a-de2223e52295.roa (raw, json) Hash identifier: SEutknDWO2ocQ8hwjd6to+0V3afW4kdC2fCOr1PvVYI= Subject key identifier: E7:79:FA:3B:92:9B:30:36:FE:65:5E:2C:F3:28:8F:E9:13:C4:E1:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E344B164E2D994D604635B004D478D69A9D7515 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b10fd9a-2796-4477-a76a-de2223e52295.roa Signing time: Tue 20 May 2025 00:30:30 +0000 ROA not before: Tue 20 May 2025 00:30:30 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1f:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:34:4b:16:4e:2d:99:4d:60:46:35:b0:04:d4:78:d6:9a:9d:75:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:30:30 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=84bd9298dc9c8e47d05beb304ac9075c74ba996be325a1721bf8942cfc3e8857, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8e:1f:35:01:ed:a1:9c:d9:63:49:fc:87:f1: b5:96:98:6a:34:1a:8d:35:9c:41:38:cf:a5:a0:c4: 92:d5:3f:f9:7c:c4:f9:b8:09:9e:c7:a7:a5:11:c2: 38:49:c8:53:5c:e0:4d:ee:a6:a8:c4:a9:9d:77:48: 74:ca:e9:f0:21:9e:a1:ae:28:a1:2c:22:11:5b:e8: 67:99:ed:20:9e:ce:7d:97:f2:05:85:ca:3e:36:00: f0:9e:97:5a:26:16:4d:49:5c:df:96:e7:92:61:ed: 2b:1e:3c:3b:e9:c8:4d:63:15:9a:fb:6e:0d:e7:50: 64:bf:50:08:ad:e4:c3:00:f6:71:83:b3:2c:4f:cf: 4a:51:7d:64:71:56:15:0a:29:95:29:d9:dc:77:43: de:e0:6a:29:3b:cc:be:81:de:79:72:70:1e:ad:8b: 56:6f:10:3e:be:f4:94:07:cc:3e:f8:fb:02:43:8a: d9:26:fd:9d:db:ed:50:d6:92:d2:4d:f3:94:5b:8a: c1:e2:21:57:66:20:af:3c:8c:0b:c3:54:74:78:bf: 9c:30:f3:30:51:7a:0b:f0:41:49:0b:15:08:7f:d6: 85:75:40:7e:1c:7d:5a:af:85:a9:87:be:94:2f:48: 9d:da:17:73:39:46:2a:3e:03:70:14:ba:0d:26:de: 0e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:79:FA:3B:92:9B:30:36:FE:65:5E:2C:F3:28:8F:E9:13:C4:E1:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b10fd9a-2796-4477-a76a-de2223e52295.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:8000::/36 Signature Algorithm: sha256WithRSAEncryption 49:49:b2:06:b3:39:0b:9f:4d:07:af:05:4b:1b:89:b7:34:c4: 50:ae:4a:a9:43:36:9c:b8:94:6f:d3:ea:33:70:97:ea:d7:2a: af:15:be:74:a9:84:e3:be:86:26:f2:da:4f:a0:a8:e8:0e:9e: d4:9c:83:b9:4f:11:aa:8c:a8:ee:87:73:a2:aa:f2:61:45:f7: 61:74:7c:3c:a4:ef:03:01:12:54:66:2f:19:70:c2:94:c8:25: 00:24:5c:a7:4b:93:4a:bb:da:2d:4b:ad:69:3f:55:03:30:50: e9:d9:0c:e4:8e:3e:69:7c:2a:0b:71:33:cd:ac:34:9c:1b:15: 35:86:10:40:a1:ff:76:16:80:e8:fb:aa:ee:e0:c4:94:ce:47: 74:3d:2b:5e:c7:fb:07:e1:4b:a9:32:ef:c1:1b:b9:f2:ce:23: d9:c9:b3:7b:3b:f9:b7:e4:bd:59:20:fc:20:bd:57:74:f8:85: 5d:29:43:04:84:22:a5:3c:17:8e:fa:6a:6e:2f:21:a7:c8:ac: 72:b0:0e:ab:73:39:9d:c9:07:b4:43:b5:d2:b0:a6:d9:89:01: e1:a9:c6:99:70:31:9d:00:b0:dc:0b:2c:3c:b1:5e:3a:82:b1: 72:39:ce:aa:fa:2f:af:c1:e7:74:2b:dc:df:dd:d4:fd:76:7e: 46:e7:31:78 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTjRLFk4tmU1gRjWwBNR41pqddRUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMDMwWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NGJkOTI5OGRjOWM4ZTQ3ZDA1YmViMzA0YWM5MDc1Yzc0 YmE5OTZiZTMyNWExNzIxYmY4OTQyY2ZjM2U4ODU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSjh81Ae2hnNljSfyH8bWWmGo0Go01nEE4z6WgxJLVP/l8 xPm4CZ7Hp6URwjhJyFNc4E3upqjEqZ13SHTK6fAhnqGuKKEsIhFb6GeZ7SCezn2X 8gWFyj42APCel1omFk1JXN+W55Jh7SsePDvpyE1jFZr7bg3nUGS/UAit5MMA9nGD syxPz0pRfWRxVhUKKZUp2dx3Q97gaik7zL6B3nlycB6ti1ZvED6+9JQHzD74+wJD itkm/Z3b7VDWktJN85RbisHiIVdmIK88jAvDVHR4v5ww8zBRegvwQUkLFQh/1oV1 QH4cfVqvhamHvpQvSJ3aF3M5Rio+A3AUug0m3g5NAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU53n6O5KbMDb+ZV4s8yiP6RPE4d4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiMTBmZDlhLTI3OTYtNDQ3Ny1hNzZhLWRlMjIyM2U1MjI5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8fgDANBgkqhkiG9w0BAQsFAAOCAQEASUmyBrM5C59NB68FSxuJtzTE UK5KqUM2nLiUb9PqM3CX6tcqrxW+dKmE476GJvLaT6Co6A6e1JyDuU8Rqoyo7odz oqryYUX3YXR8PKTvAwESVGYvGXDClMglACRcp0uTSrvaLUutaT9VAzBQ6dkM5I4+ aXwqC3Ezzaw0nBsVNYYQQKH/dhaA6Puq7uDElM5HdD0rXsf7B+FLqTLvwRu58s4j 2cmzezv5t+S9WSD8IL1XdPiFXSlDBIQipTwXjvpqbi8hp8iscrAOq3M5nckHtEO1 0rCm2YkB4anGmXAxnQCw3AssPLFeOoKxcjnOqvovr8HndCvc393U/XZ+RucxeA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:58:00 2025 by rpki-client