$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa File: 4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa (raw, json) Hash identifier: 0lG3p2+FX1RHncxPB37e59MIWmH8Wx0fWnlYEEVcKwk= Subject key identifier: A3:77:0C:A0:75:A0:DE:EB:CC:A4:04:3D:D4:92:B3:CB:89:9A:E8:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CC92D34461031AC39D6677DF1B14E1DDD73EAE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa Signing time: Sat 17 May 2025 00:11:01 +0000 ROA not before: Sat 17 May 2025 00:11:01 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:c9:2d:34:46:10:31:ac:39:d6:67:7d:f1:b1:4e:1d:dd:73:ea:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:11:01 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=c25d23392192cc9f1644900dd31d8997c31bfd8732764dcae3ccd1552197d4e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:12:47:d0:81:db:73:98:73:57:c2:51:a3:66: 04:77:99:33:96:b0:53:7a:93:0f:e1:28:20:ab:3f: e1:3c:5b:92:83:31:e3:73:82:91:54:75:ee:e8:b5: 51:54:a7:06:76:3f:6b:ef:33:4b:60:43:ca:1d:7d: c8:ab:b9:79:bd:31:72:a4:f9:c8:2b:8a:a8:1b:69: 24:82:bf:d9:b1:2b:ae:58:65:0c:25:39:4e:cd:89: 48:a3:f0:74:09:e9:7b:01:44:77:c3:8a:cb:03:b7: 3d:8a:04:56:66:93:62:87:07:15:b3:5f:80:02:04: 70:b0:44:1d:ad:86:2b:9a:66:18:a3:1d:68:e5:04: d2:53:e4:64:d2:09:3d:62:8a:2f:5d:7e:f0:f1:63: 90:e3:37:4b:1d:d0:0e:ca:32:9e:22:6e:09:09:28: 43:81:71:8b:84:c1:72:83:46:54:88:6b:ce:7c:b5: 5c:25:b5:4d:6c:ba:d0:db:c5:6d:0f:6a:10:8f:09: 1e:79:04:ee:fc:a5:74:40:63:8c:e7:3e:5a:55:dd: 86:15:59:14:12:bf:38:02:fd:f1:d8:9f:f8:90:3e: 1b:86:78:eb:0e:b2:aa:2b:46:b3:90:7d:f0:dc:f7: 34:8c:69:06:ca:c6:72:8d:e8:0e:8e:9c:f1:ed:45: d4:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:77:0C:A0:75:A0:DE:EB:CC:A4:04:3D:D4:92:B3:CB:89:9A:E8:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a9c8a5b-1079-49bc-993b-528e05bd4a24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8000::/39 Signature Algorithm: sha256WithRSAEncryption 8a:dc:0f:9a:62:ad:01:23:36:49:60:14:66:e0:82:14:f2:74: 54:81:51:6a:e5:8b:82:bf:62:97:c7:5e:3b:d3:15:02:98:49: 8d:bc:c8:2f:4b:4c:4c:1a:89:8b:fd:4f:fe:ba:23:87:ac:04: 51:f1:c7:a3:0d:dd:80:b7:5e:50:92:3e:39:c8:4b:17:45:e0: 4b:3a:d2:94:7d:7a:0c:91:c4:88:2d:3c:4c:f5:59:04:eb:dd: b5:ff:f2:ea:35:06:12:34:db:b8:15:20:fc:16:45:16:1e:28: 8a:92:93:54:0e:32:5d:3b:0b:e8:35:9b:7c:a6:d0:df:82:2e: 19:42:3f:69:21:d2:85:53:11:66:08:a9:df:bd:31:38:df:f1: 34:d6:38:61:2d:b6:50:db:f3:1f:3a:35:e8:36:4a:e0:5c:39: 81:41:41:dc:3b:73:72:bb:f1:69:27:c7:36:ff:db:54:7a:77: 6c:a7:27:9c:af:c9:75:c3:13:7f:d0:75:64:b9:7f:64:f8:51: a4:22:f7:10:d7:6b:02:00:22:d3:f0:38:f8:03:67:26:cc:0a: f3:05:31:02:41:e3:6f:72:8d:d1:e2:a0:f9:a2:a0:ff:80:07: 64:4b:0c:56:70:63:4b:dd:5f:af:8f:b8:10:5c:0f:f3:c6:0b: 6c:91:1f:0b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULMktNEYQMaw51md98bFOHd1z6ugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDAxMTAxWhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjVkMjMzOTIxOTJjYzlmMTY0NDkwMGRkMzFkODk5N2Mz MWJmZDg3MzI3NjRkY2FlM2NjZDE1NTIxOTdkNGUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlEkfQgdtzmHNXwlGjZgR3mTOWsFN6kw/hKCCrP+E8W5KD MeNzgpFUde7otVFUpwZ2P2vvM0tgQ8odfciruXm9MXKk+cgriqgbaSSCv9mxK65Y ZQwlOU7NiUij8HQJ6XsBRHfDissDtz2KBFZmk2KHBxWzX4ACBHCwRB2thiuaZhij HWjlBNJT5GTSCT1iii9dfvDxY5DjN0sd0A7KMp4ibgkJKEOBcYuEwXKDRlSIa858 tVwltU1sutDbxW0PahCPCR55BO78pXRAY4znPlpV3YYVWRQSvzgC/fHYn/iQPhuG eOsOsqorRrOQffDc9zSMaQbKxnKN6A6OnPHtRdRZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUo3cMoHWg3uvMpAQ91JKzy4ma6DMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhOWM4YTViLTEwNzktNDliYy05OTNiLTUyOGUwNWJkNGEyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/ygDANBgkqhkiG9w0BAQsFAAOCAQEAitwPmmKtASM2SWAUZuCCFPJ0 VIFRauWLgr9il8deO9MVAphJjbzIL0tMTBqJi/1P/rojh6wEUfHHow3dgLdeUJI+ OchLF0XgSzrSlH16DJHEiC08TPVZBOvdtf/y6jUGEjTbuBUg/BZFFh4oipKTVA4y XTsL6DWbfKbQ34IuGUI/aSHShVMRZgip370xON/xNNY4YS22UNvzHzo16DZK4Fw5 gUFB3DtzcrvxaSfHNv/bVHp3bKcnnK/JdcMTf9B1ZLl/ZPhRpCL3ENdrAgAi0/A4 +ANnJswK8wUxAkHjb3KN0eKg+aKg/4AHZEsMVnBjS91fr4+4EFwP88YLbJEfCw== -----END CERTIFICATE-----Generated at Sun Jun 1 05:14:36 2025 by rpki-client