$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa File: 497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa (raw, json) Hash identifier: LWl6jiaCgzgnjJbUGmEi5baVYETuGUitfXNEqgSlPJ8= Subject key identifier: 6C:64:CF:C9:C0:79:5E:80:2A:E3:B0:96:D9:EE:FD:1A:DB:58:F0:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F1487458FE9C5C1BC877260D6B93770B5434648 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa Signing time: Mon 19 May 2025 16:11:54 +0000 ROA not before: Mon 19 May 2025 16:11:54 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:14:87:45:8f:e9:c5:c1:bc:87:72:60:d6:b9:37:70:b5:43:46:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:11:54 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=24857d30135ce311f1332ac4eee256270ab6364e433a183a69761288200a471c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:81:6c:51:85:fb:78:bd:b4:92:4d:af:b7:9c: 9d:28:25:b9:bb:73:fb:f1:36:77:17:63:89:54:a7: f1:b3:1d:9e:fc:b9:69:dc:15:a7:ed:ea:18:8f:e7: 05:09:76:60:bc:42:22:3a:7d:6f:55:fb:42:57:e5: 86:b5:4f:2a:70:3d:88:f6:c7:08:32:89:9b:98:b9: 11:20:5d:b1:52:80:32:fa:06:b8:f8:49:8e:d0:e6: cd:4d:56:9c:47:fe:74:b0:56:1f:c2:16:2b:5d:93: 77:dc:d5:35:a5:52:13:9b:09:06:b3:85:86:fa:c6: a6:30:8c:a3:6f:05:9c:39:14:c9:a0:bd:80:eb:25: 43:03:7f:92:46:b1:33:cb:ec:b5:a3:6d:77:ff:83: c4:45:53:a9:1e:2e:da:ae:13:e5:97:61:28:31:f4: 00:27:92:03:1e:d0:00:cc:af:c9:a2:9b:09:4d:f5: 6c:fd:df:23:6f:1a:0d:35:1a:d9:76:b1:71:e5:95: d4:8a:44:b0:66:de:5f:bc:e2:14:3a:42:c9:f0:fe: 70:7a:1b:da:c7:fb:8c:8d:ef:cc:13:1b:0c:59:b2: 87:3e:4b:b0:a4:99:c9:f7:21:74:62:21:da:45:72: 77:0a:a2:7c:28:68:a1:2c:de:e8:ac:81:d7:72:e0: be:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:64:CF:C9:C0:79:5E:80:2A:E3:B0:96:D9:EE:FD:1A:DB:58:F0:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497c9f23-488b-464c-a6a0-2f9cf9d7daeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:c080::/48 Signature Algorithm: sha256WithRSAEncryption 56:11:09:32:4b:22:b1:90:44:3e:f6:64:29:4b:be:c3:cc:5e: ad:06:69:a6:05:e9:c4:24:40:5e:38:cf:3b:1a:91:c3:94:86: 29:a7:26:70:b8:90:60:26:f5:72:0b:e4:85:90:ef:23:7c:ee: e6:e2:8c:66:d6:8f:5d:c6:f6:9a:ee:46:9f:4e:ae:57:e2:b9: cf:55:ee:34:db:16:5a:8c:62:70:b6:3f:09:1f:75:63:63:60: 11:e4:c8:08:c4:7c:b2:25:a3:5f:ea:1c:5f:0b:38:1a:5c:37: c8:c7:53:97:ac:d4:ae:ee:e0:44:66:9f:e7:39:09:42:41:19: 80:be:f3:bd:a9:09:cb:42:23:ad:8f:c8:ba:ec:cf:0f:86:70: 9a:d3:8c:dd:c8:d3:56:8a:f7:1f:3c:f5:84:31:5b:9b:50:9c: ad:12:0d:0a:e9:75:85:68:00:57:5b:83:5f:fb:f8:27:34:22: 3d:4d:05:09:ed:96:8b:03:a8:c0:ac:05:c2:57:6c:5c:60:65: 9c:e9:4a:54:75:07:80:28:1a:a0:bf:7b:6f:f6:01:49:d2:37: db:69:fd:3b:23:43:9d:a8:d0:35:36:47:59:85:0c:a5:9b:15: 3b:46:7a:97:13:f8:9b:3e:cb:1d:d9:10:de:65:6c:a9:f0:a7: 89:16:bf:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXxSHRY/pxcG8h3Jg1rk3cLVDRkgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYxMTU0WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDg1N2QzMDEzNWNlMzExZjEzMzJhYzRlZWUyNTYyNzBh YjYzNjRlNDMzYTE4M2E2OTc2MTI4ODIwMGE0NzFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWgWxRhft4vbSSTa+3nJ0oJbm7c/vxNncXY4lUp/GzHZ78 uWncFaft6hiP5wUJdmC8QiI6fW9V+0JX5Ya1TypwPYj2xwgyiZuYuREgXbFSgDL6 Brj4SY7Q5s1NVpxH/nSwVh/CFitdk3fc1TWlUhObCQazhYb6xqYwjKNvBZw5FMmg vYDrJUMDf5JGsTPL7LWjbXf/g8RFU6keLtquE+WXYSgx9AAnkgMe0ADMr8mimwlN 9Wz93yNvGg01Gtl2sXHlldSKRLBm3l+84hQ6Qsnw/nB6G9rH+4yN78wTGwxZsoc+ S7Ckmcn3IXRiIdpFcncKonwoaKEs3uisgddy4L6TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbGTPycB5XoAq47CW2e79GttY8F0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5N2M5ZjIzLTQ4OGItNDY0Yy1hNmEwLTJmOWNmOWQ3ZGFlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ywIAwDQYJKoZIhvcNAQELBQADggEBAFYRCTJLIrGQRD72ZClLvsPM Xq0GaaYF6cQkQF44zzsakcOUhimnJnC4kGAm9XIL5IWQ7yN87ubijGbWj13G9pru Rp9Orlfiuc9V7jTbFlqMYnC2PwkfdWNjYBHkyAjEfLIlo1/qHF8LOBpcN8jHU5es 1K7u4ERmn+c5CUJBGYC+872pCctCI62PyLrszw+GcJrTjN3I01aK9x889YQxW5tQ nK0SDQrpdYVoAFdbg1/7+Cc0Ij1NBQntlosDqMCsBcJXbFxgZZzpSlR1B4AoGqC/ e2/2AUnSN9tp/TsjQ52o0DU2R1mFDKWbFTtGepcT+Js+yx3ZEN5lbKnwp4kWv3k= -----END CERTIFICATE-----Generated at Sun Jun 1 04:22:39 2025 by rpki-client