$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b907310-5554-4e18-b6d9-3d4b33f6c030.roa File: 3b907310-5554-4e18-b6d9-3d4b33f6c030.roa (raw, json) Hash identifier: jLvXMD1V4li2payj8IabgQNbw7p95BC68G2nwDTTx0U= Subject key identifier: 77:FF:E0:B3:80:97:2B:A6:30:61:14:4D:69:1C:A2:E4:B6:CB:AC:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D678EBCCA64BA6A46F1E8D01DB38F35BC4C2BFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b907310-5554-4e18-b6d9-3d4b33f6c030.roa Signing time: Fri 30 May 2025 00:21:22 +0000 ROA not before: Fri 30 May 2025 00:21:22 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:67:8e:bc:ca:64:ba:6a:46:f1:e8:d0:1d:b3:8f:35:bc:4c:2b:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:21:22 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=8794320a53efb7a57b2ce7b67704c742a36d4264d74958938a71b5a420eba61e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:93:ed:9e:2d:1c:e5:eb:23:ad:3e:c0:fa:a7: d2:47:4b:7d:f0:17:04:d2:42:7c:d3:e3:5f:a5:16: 9e:a6:0a:22:e9:36:7a:c9:87:61:57:eb:32:30:73: d2:62:a9:3d:74:ff:90:b9:e3:38:a5:5f:2e:84:66: a8:af:9a:65:35:67:7b:86:85:68:58:41:59:42:b5: 3d:25:a9:1e:14:b7:2a:ab:99:7a:8c:6c:f2:81:8a: 29:1a:19:2a:97:b1:91:bc:f5:62:f5:49:67:03:ce: 2e:69:36:27:b0:65:0d:5b:94:2c:f4:15:29:f5:90: e1:5b:14:9f:f1:36:80:31:bd:76:bf:10:ff:ef:65: 5b:77:12:72:15:07:ee:a7:1c:95:fc:1d:6d:03:1d: 81:be:75:72:49:0e:ac:aa:50:3d:49:54:70:f1:2b: 83:88:01:24:fe:7e:b7:ec:86:77:86:dd:e0:0a:fd: 76:8e:86:25:9f:10:f9:ff:af:e7:f3:ba:fe:4e:72: 87:4b:29:5b:c6:48:2a:85:37:34:c9:e0:eb:20:9b: 8e:0a:1e:93:d9:85:ee:57:7e:ef:a4:0c:8b:31:2e: 7c:86:e8:30:41:8c:6f:b1:61:84:cc:13:fd:d8:f8: d6:c3:9d:4a:44:4e:e8:9e:de:fb:2c:c0:96:84:d8: 1f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FF:E0:B3:80:97:2B:A6:30:61:14:4D:69:1C:A2:E4:B6:CB:AC:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b907310-5554-4e18-b6d9-3d4b33f6c030.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:6000::/40 Signature Algorithm: sha256WithRSAEncryption b0:45:10:9c:ee:4d:24:a2:0e:62:05:14:49:f6:52:b6:95:87: 20:60:07:e9:7c:76:c3:d1:c6:0a:2c:f9:dc:33:02:c2:68:a6: bc:09:96:e8:b2:76:e7:43:95:ec:60:e2:10:a7:5e:90:4a:13: 5d:87:df:9e:57:77:ab:2d:96:a0:83:c8:0a:1e:ec:d6:c2:1d: 24:1d:cd:d1:87:4b:50:b9:bf:e5:a2:27:51:e9:90:4f:95:fa: 75:69:86:54:20:fd:e7:54:59:b1:19:0c:36:0b:1f:8e:1a:de: da:c3:3c:ea:c5:aa:e9:63:36:40:81:ec:d9:10:cf:e2:11:5d: 68:71:8a:84:85:43:b0:ea:3a:9c:48:ba:75:e9:c4:41:66:93: 4b:05:0b:28:42:45:06:2a:5a:3a:d2:1b:54:28:38:8f:48:2e: 7f:c2:76:61:41:c7:05:8c:57:4e:75:30:25:53:32:3a:6b:17: 9f:d6:24:55:e9:13:23:f5:12:4d:b8:c1:6d:f6:26:a4:94:43: c8:06:a8:bb:bf:7f:f8:0e:b8:5b:98:94:53:c7:f0:be:48:10: 0c:fc:fe:6b:77:83:a0:f1:a0:4a:5d:3a:03:4e:a9:c5:c7:3c: 65:51:ed:74:ae:f6:6b:42:a2:06:6f:4f:26:1e:aa:57:9f:d4: 14:d8:1c:11 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXWeOvMpkumpG8ejQHbOPNbxMK/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAyMTIyWhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Nzk0MzIwYTUzZWZiN2E1N2IyY2U3YjY3NzA0Yzc0MmEz NmQ0MjY0ZDc0OTU4OTM4YTcxYjVhNDIwZWJhNjFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpk+2eLRzl6yOtPsD6p9JHS33wFwTSQnzT41+lFp6mCiLp NnrJh2FX6zIwc9JiqT10/5C54zilXy6EZqivmmU1Z3uGhWhYQVlCtT0lqR4Utyqr mXqMbPKBiikaGSqXsZG89WL1SWcDzi5pNiewZQ1blCz0FSn1kOFbFJ/xNoAxvXa/ EP/vZVt3EnIVB+6nHJX8HW0DHYG+dXJJDqyqUD1JVHDxK4OIAST+frfshneG3eAK /XaOhiWfEPn/r+fzuv5OcodLKVvGSCqFNzTJ4Osgm44KHpPZhe5Xfu+kDIsxLnyG 6DBBjG+xYYTME/3Y+NbDnUpETuie3vsswJaE2B/xAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUd//gs4CXK6YwYRRNaRyi5LbLrGMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiOTA3MzEwLTU1NTQtNGUxOC1iNmQ5LTNkNGIzM2Y2YzAzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6YDANBgkqhkiG9w0BAQsFAAOCAQEAsEUQnO5NJKIOYgUUSfZStpWH IGAH6Xx2w9HGCiz53DMCwmimvAmW6LJ250OV7GDiEKdekEoTXYffnld3qy2WoIPI Ch7s1sIdJB3N0YdLULm/5aInUemQT5X6dWmGVCD951RZsRkMNgsfjhre2sM86sWq 6WM2QIHs2RDP4hFdaHGKhIVDsOo6nEi6denEQWaTSwULKEJFBipaOtIbVCg4j0gu f8J2YUHHBYxXTnUwJVMyOmsXn9YkVekTI/USTbjBbfYmpJRDyAaou79/+A64W5iU U8fwvkgQDPz+a3eDoPGgSl06A06pxcc8ZVHtdK72a0KiBm9PJh6qV5/UFNgcEQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:00:36 2025 by rpki-client