$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa File: 402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa (raw, json) Hash identifier: KXMtQ0BP1+tW40H5eGCsWv+uFyYsA6ngYoYLh/EJbM4= Subject key identifier: 91:DD:D8:2B:7B:49:5D:3B:D1:B8:3C:A2:20:5C:DE:5D:F3:A5:84:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4982E3C752262A7C95F4538432A11DD0EAB31042 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa Signing time: Mon 19 May 2025 15:21:14 +0000 ROA not before: Mon 19 May 2025 15:21:14 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:7400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:82:e3:c7:52:26:2a:7c:95:f4:53:84:32:a1:1d:d0:ea:b3:10:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:21:14 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=741dafe7e0eb4b32158864b6ae85709b39897bc06b64e910004d7fbe272accf8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:74:91:3f:fe:01:7a:e0:37:95:94:fe:4f:69: 26:bc:a8:06:04:33:88:7f:bc:97:a0:69:81:9e:83: d4:86:91:e9:ae:0f:d1:3b:4a:66:4c:82:7d:19:c0: 0b:ba:64:b8:30:d0:f2:00:d3:31:c3:fa:48:09:c2: 85:a7:d2:7a:4e:f3:e5:6a:35:23:c3:c3:55:99:66: f2:90:bb:45:ca:b6:6a:d8:b3:7d:e3:9b:23:56:f6: e1:c0:52:f5:39:e7:02:87:10:b7:c9:e1:de:64:bb: 37:16:b1:a6:fe:c3:91:b7:82:86:69:96:26:ef:1c: 02:10:99:fc:fd:7f:63:c3:b4:b0:ef:67:35:60:7c: bc:c3:9c:00:03:77:0b:b6:2c:c9:7b:28:d4:f0:1f: e2:ea:be:cd:de:94:57:5c:ea:5e:fb:ff:35:ec:2b: ff:83:e6:ab:36:6a:eb:bd:de:98:82:2e:4d:1f:dd: da:4f:a3:3a:c9:65:c7:7a:ca:7b:b3:d8:da:1d:67: 68:96:b3:55:cb:db:76:fc:a9:d8:6e:32:cd:79:da: cd:d8:af:f6:63:f2:82:11:e0:c0:29:eb:dc:3d:35: 6c:ca:a0:be:63:f8:6a:aa:52:9c:f9:98:8d:3e:6c: dc:dd:0a:7d:f9:3c:cf:e8:bc:44:93:3a:5c:dc:e8: 0f:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:DD:D8:2B:7B:49:5D:3B:D1:B8:3C:A2:20:5C:DE:5D:F3:A5:84:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:7400::/40 Signature Algorithm: sha256WithRSAEncryption 8b:02:dd:a1:47:60:0e:40:e4:2c:3c:ad:91:a5:86:be:10:2a: 5f:62:fa:e6:3b:50:32:a0:74:80:4b:55:84:48:b3:83:85:e7: da:d4:bf:b2:8f:4a:c4:12:0d:df:de:10:c1:87:b0:b1:af:91: 2f:eb:34:20:36:1d:fc:70:25:a4:56:f9:2e:af:bb:48:0b:e0: f1:b8:5d:5a:0a:85:0d:70:cf:0f:00:5f:a5:7b:5b:c8:16:99: bb:b8:49:62:2e:60:0c:5e:d1:47:dc:58:19:ed:2d:e6:d4:89: ce:64:e8:33:98:6f:8e:18:e8:10:0d:08:fb:51:18:0e:d3:4c: 0a:a1:18:93:22:b5:a0:5c:bb:20:a6:2d:cf:76:89:53:eb:af: d3:ac:81:3b:d9:50:6d:df:e6:05:9b:92:0d:82:49:15:d6:1c: 39:50:2a:2e:33:b9:85:fa:3e:b6:4b:e9:42:94:ba:f6:dc:ce: b6:98:71:b4:40:6f:a3:16:2c:92:9a:b9:58:36:a5:fc:62:07: 3d:57:d4:34:f7:d6:27:97:ca:b1:bc:67:49:8d:8f:2d:1a:47: 5f:05:c4:4c:47:27:c0:d9:f4:57:a1:14:10:6f:74:4c:7b:88: b8:75:0a:d2:f8:e8:80:bd:dc:73:fe:f0:81:4b:18:67:4e:a4: 6d:e0:d1:7a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSYLjx1ImKnyV9FOEMqEd0OqzEEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTUyMTE0WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDFkYWZlN2UwZWI0YjMyMTU4ODY0YjZhZTg1NzA5YjM5 ODk3YmMwNmI2NGU5MTAwMDRkN2ZiZTI3MmFjY2Y4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFdJE//gF64DeVlP5PaSa8qAYEM4h/vJegaYGeg9SGkemu D9E7SmZMgn0ZwAu6ZLgw0PIA0zHD+kgJwoWn0npO8+VqNSPDw1WZZvKQu0XKtmrY s33jmyNW9uHAUvU55wKHELfJ4d5kuzcWsab+w5G3goZplibvHAIQmfz9f2PDtLDv ZzVgfLzDnAADdwu2LMl7KNTwH+Lqvs3elFdc6l77/zXsK/+D5qs2auu93piCLk0f 3dpPozrJZcd6ynuz2NodZ2iWs1XL23b8qdhuMs152s3Yr/Zj8oIR4MAp69w9NWzK oL5j+GqqUpz5mI0+bNzdCn35PM/ovESTOlzc6A/xAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkd3YK3tJXTvRuDyiIFzeXfOlhCMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwMmM3YTNhLTg2MjctNGQ2ZC05MTQ1LTQyZTJiMWY1NDRjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/ydDANBgkqhkiG9w0BAQsFAAOCAQEAiwLdoUdgDkDkLDytkaWGvhAq X2L65jtQMqB0gEtVhEizg4Xn2tS/so9KxBIN394QwYewsa+RL+s0IDYd/HAlpFb5 Lq+7SAvg8bhdWgqFDXDPDwBfpXtbyBaZu7hJYi5gDF7RR9xYGe0t5tSJzmToM5hv jhjoEA0I+1EYDtNMCqEYkyK1oFy7IKYtz3aJU+uv06yBO9lQbd/mBZuSDYJJFdYc OVAqLjO5hfo+tkvpQpS69tzOtphxtEBvoxYskpq5WDal/GIHPVfUNPfWJ5fKsbxn SY2PLRpHXwXETEcnwNn0V6EUEG90THuIuHUK0vjogL3cc/7wgUsYZ06kbeDReg== -----END CERTIFICATE-----Generated at Sun Jun 1 05:17:33 2025 by rpki-client