$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c14546f-f38c-431d-9be7-a4ffe6127ae5.roa File: 4c14546f-f38c-431d-9be7-a4ffe6127ae5.roa (raw, json) Hash identifier: sicV9O9NQKm9YfuZhN+cThK56X1wAPOszsWK9LI5DSk= Subject key identifier: 30:0C:4F:90:F3:E6:32:ED:86:37:1C:47:66:15:AB:02:65:0F:10:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F32D28E70AB7B1713C2D31770625EE3A7CA7855 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c14546f-f38c-431d-9be7-a4ffe6127ae5.roa Signing time: Fri 30 May 2025 00:11:06 +0000 ROA not before: Fri 30 May 2025 00:11:06 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:32:d2:8e:70:ab:7b:17:13:c2:d3:17:70:62:5e:e3:a7:ca:78:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:11:06 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=b117e6c2b621bccb1a32da864a9394d7a85626566e0e124b11b1ae327b3d4adf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:98:a1:6c:4f:5c:ae:2e:b4:8d:73:8c:98:f0: ba:4c:ef:c9:2c:4a:c8:23:37:b1:b6:04:b1:88:6f: 07:e1:a6:ca:27:6b:f5:75:76:c6:13:18:f4:a8:d8: 61:7f:7c:e3:1e:20:4e:c2:d5:a4:a0:81:7b:3f:cd: 4f:0b:5f:bf:0d:35:5e:a3:96:73:bc:36:1e:d4:b4: 09:6d:d2:9f:86:30:3b:80:a7:e0:5f:3e:78:3a:ae: b2:c1:d7:33:69:c0:de:39:22:b0:d3:7b:13:9a:10: 82:3f:63:32:e4:da:9a:25:5b:c7:b2:de:24:b6:33: 4a:ce:ee:34:cf:cb:c5:7d:52:a9:52:5a:c7:0b:70: 77:4c:e9:d5:bb:6c:45:c3:b4:a5:2b:9e:29:6c:10: d0:01:36:53:6e:64:d8:0b:ab:6d:1e:78:b0:c8:d1: 71:2e:40:c2:4f:fa:b6:47:0f:98:32:ba:22:cd:ba: ad:cb:10:60:c3:72:5d:2f:f5:26:38:02:44:dc:17: 55:42:0a:57:4f:3d:f3:ce:22:c5:8a:5f:d8:ce:4a: 51:e5:2e:95:8f:8a:17:9e:ad:be:b0:b3:0c:1e:78: c0:0e:fe:24:d0:1e:2b:aa:2a:cc:43:26:f2:47:68: 04:13:c5:4d:fe:ee:71:d5:98:dc:22:bd:86:76:9b: 50:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:0C:4F:90:F3:E6:32:ED:86:37:1C:47:66:15:AB:02:65:0F:10:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c14546f-f38c-431d-9be7-a4ffe6127ae5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:a400::/40 Signature Algorithm: sha256WithRSAEncryption b0:80:81:3d:4d:1e:f9:4e:43:3b:db:76:39:ac:74:9f:40:85: e0:f8:d2:1e:14:6b:44:f1:62:ac:50:2b:94:76:68:1c:62:df: e2:36:18:40:c5:e8:7e:4c:82:ea:60:4d:e7:18:6b:57:9a:29: 93:70:68:3e:39:ef:db:f7:b2:f6:ab:39:71:a5:b4:23:34:be: 73:88:56:6d:70:fc:51:e2:8b:66:dc:ae:55:ed:5e:b9:b1:32: e3:5f:86:47:b8:28:04:0b:7c:a2:aa:32:f8:82:24:11:2c:06: 14:15:ba:2f:94:7f:87:a3:0a:d3:10:34:e2:ac:a1:2a:8e:12: fe:4d:bd:c7:12:9d:b3:9f:99:ee:42:cb:dd:b9:e6:65:57:e9: 5e:e9:c5:04:5b:9f:87:e0:e7:ce:6f:02:cf:4f:28:d2:de:ab: e8:f6:9e:25:f4:a3:c0:4a:91:cc:92:7c:e3:69:7f:39:ce:2a: 32:fe:66:93:e9:ec:f1:d5:c7:31:7f:cd:6f:02:f9:e2:e0:8b: d0:7f:bc:9b:b4:c5:cb:82:fc:92:00:1d:1c:18:d1:68:8c:5e: c6:f8:90:c6:0c:1d:dc:1d:ae:22:70:17:46:db:4e:09:bd:99: d9:6d:98:91:e2:60:37:a5:54:e9:cf:30:cf:f5:c5:45:ff:cf: 8e:d3:b8:ef -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTzLSjnCrexcTwtMXcGJe46fKeFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAxMTA2WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTE3ZTZjMmI2MjFiY2NiMWEzMmRhODY0YTkzOTRkN2E4 NTYyNjU2NmUwZTEyNGIxMWIxYWUzMjdiM2Q0YWRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9mKFsT1yuLrSNc4yY8LpM78ksSsgjN7G2BLGIbwfhpson a/V1dsYTGPSo2GF/fOMeIE7C1aSggXs/zU8LX78NNV6jlnO8Nh7UtAlt0p+GMDuA p+BfPng6rrLB1zNpwN45IrDTexOaEII/YzLk2polW8ey3iS2M0rO7jTPy8V9UqlS WscLcHdM6dW7bEXDtKUrnilsENABNlNuZNgLq20eeLDI0XEuQMJP+rZHD5gyuiLN uq3LEGDDcl0v9SY4AkTcF1VCCldPPfPOIsWKX9jOSlHlLpWPiheerb6wswweeMAO /iTQHiuqKsxDJvJHaAQTxU3+7nHVmNwivYZ2m1BZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMAxPkPPmMu2GNxxHZhWrAmUPEHAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjMTQ1NDZmLWYzOGMtNDMxZC05YmU3LWE0ZmZlNjEyN2FlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4pDANBgkqhkiG9w0BAQsFAAOCAQEAsICBPU0e+U5DO9t2Oax0n0CF 4PjSHhRrRPFirFArlHZoHGLf4jYYQMXofkyC6mBN5xhrV5opk3BoPjnv2/ey9qs5 caW0IzS+c4hWbXD8UeKLZtyuVe1eubEy41+GR7goBAt8oqoy+IIkESwGFBW6L5R/ h6MK0xA04qyhKo4S/k29xxKds5+Z7kLL3bnmZVfpXunFBFufh+Dnzm8Cz08o0t6r 6PaeJfSjwEqRzJJ842l/Oc4qMv5mk+ns8dXHMX/NbwL54uCL0H+8m7TFy4L8kgAd HBjRaIxexviQxgwd3B2uInAXRttOCb2Z2W2YkeJgN6VU6c8wz/XFRf/PjtO47w== -----END CERTIFICATE-----Generated at Sun Jun 1 04:33:48 2025 by rpki-client