$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa File: 50c8b954-ffa6-4746-9859-9ac0de781ad5.roa (raw, json) Hash identifier: 2GPpr1gMVVPlx+XGRou6Vujqj8viHeNjSX2Vnnh9PwU= Subject key identifier: 77:8A:D9:D4:35:26:18:A0:A1:61:68:22:67:73:B4:D7:A8:28:E2:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A2CA77F61D75F3211BD99BB497D026F373A50AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa Signing time: Mon 19 May 2025 18:30:24 +0000 ROA not before: Mon 19 May 2025 18:30:24 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f25:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2c:a7:7f:61:d7:5f:32:11:bd:99:bb:49:7d:02:6f:37:3a:50:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:30:24 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=62e8f579fce40da5225e3c47e3fd22cb69e3ac48116d6c0bf0804cf5e45c1663, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bb:2a:1f:ca:d7:69:2a:3b:4b:9a:76:06:95: 9a:18:d1:10:72:99:59:0d:78:80:9c:6e:7c:3b:05: c8:3c:83:ed:23:d8:9e:22:1f:b6:66:c0:03:48:e5: b3:49:22:4f:ae:39:55:e0:f2:01:9d:48:19:0f:f2: d7:61:b4:5b:67:59:32:d6:d6:88:ad:c0:f7:cc:8f: 7f:82:c5:79:68:a4:53:0f:55:a0:86:b0:e0:bf:71: 87:51:29:69:af:06:f5:e3:d1:b5:5a:95:9d:ea:7c: f7:99:3a:5a:19:94:38:bb:76:85:d6:3e:2d:18:d8: 48:52:83:4a:6d:7c:08:92:dd:05:6e:29:c2:28:32: 1d:e0:e9:3a:f1:22:8c:ca:c4:f6:e4:c9:02:a7:25: ce:50:63:d2:bc:49:09:df:d4:fe:79:21:59:2c:11: 2f:6a:ee:6e:b8:5d:61:42:3d:40:ec:02:04:a7:a3: 54:69:25:cf:da:8a:e8:52:47:f8:3b:ce:ad:bc:f1: 52:39:d0:41:ca:fa:48:a2:b2:d3:4e:fe:dd:42:67: 01:fb:c3:ea:e9:2a:92:18:59:c3:b4:54:1f:c0:5b: c3:9d:53:27:8e:db:24:00:4b:f3:75:72:64:06:94: f6:9f:1a:60:b5:f4:c1:4b:77:c3:fb:fc:e4:90:92: 47:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8A:D9:D4:35:26:18:A0:A1:61:68:22:67:73:B4:D7:A8:28:E2:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/50c8b954-ffa6-4746-9859-9ac0de781ad5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:8000::/36 Signature Algorithm: sha256WithRSAEncryption 69:80:c2:07:47:cf:f4:04:cc:c7:12:50:27:52:4e:10:bc:4b: d8:1c:1c:08:a3:99:5b:22:fc:29:1f:bf:36:ce:07:a8:b6:1a: 25:b0:4d:27:ef:03:52:9c:93:36:ad:db:ee:57:24:78:1d:40: 2a:58:bc:f7:08:53:0a:1c:c7:da:22:8a:6d:a4:5e:43:fe:21: 79:40:53:45:70:1a:1c:32:db:3d:8c:ea:a1:e9:6c:33:e2:a4: 65:5a:b7:e1:02:15:9d:e8:d5:7d:4b:25:b1:5f:4f:b7:06:aa: ac:bd:f0:92:ac:0f:13:40:d3:05:3c:3a:ff:37:8d:da:72:a7: 1d:95:ba:a7:9e:01:75:8c:b8:66:ea:87:d6:4a:26:d6:7b:b7: 37:6b:19:fd:b2:df:ab:c9:18:36:ea:30:88:29:1c:50:8a:58: e6:be:7d:86:5e:d9:74:7b:d1:44:30:8c:10:25:b0:1b:b5:0a: 0f:fc:b5:29:58:b8:45:e7:f5:8b:13:e0:08:ad:04:12:f0:45: 61:6c:f4:ca:cd:84:d4:4f:1d:8d:77:f4:ce:ac:e4:d3:d4:79: 96:18:1c:2c:67:f1:a3:93:6c:17:7f:7f:e0:95:f4:7c:34:39: 0f:0e:b4:f5:c2:dc:81:19:3c:71:64:bf:c1:d7:62:75:9b:c9: 19:74:3e:e6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOiynf2HXXzIRvZm7SX0Cbzc6UK8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTgzMDI0WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmU4ZjU3OWZjZTQwZGE1MjI1ZTNjNDdlM2ZkMjJjYjY5 ZTNhYzQ4MTE2ZDZjMGJmMDgwNGNmNWU0NWMxNjYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRuyofytdpKjtLmnYGlZoY0RBymVkNeICcbnw7Bcg8g+0j 2J4iH7ZmwANI5bNJIk+uOVXg8gGdSBkP8tdhtFtnWTLW1oitwPfMj3+CxXlopFMP VaCGsOC/cYdRKWmvBvXj0bValZ3qfPeZOloZlDi7doXWPi0Y2EhSg0ptfAiS3QVu KcIoMh3g6TrxIozKxPbkyQKnJc5QY9K8SQnf1P55IVksES9q7m64XWFCPUDsAgSn o1RpJc/aiuhSR/g7zq288VI50EHK+kiistNO/t1CZwH7w+rpKpIYWcO0VB/AW8Od UyeO2yQAS/N1cmQGlPafGmC19MFLd8P7/OSQkkdHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUd4rZ1DUmGKChYWgiZ3O016go4rQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwYzhiOTU0LWZmYTYtNDc0Ni05ODU5LTlhYzBkZTc4MWFkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lgDANBgkqhkiG9w0BAQsFAAOCAQEAaYDCB0fP9ATMxxJQJ1JOELxL 2BwcCKOZWyL8KR+/Ns4HqLYaJbBNJ+8DUpyTNq3b7lckeB1AKli89whTChzH2iKK baReQ/4heUBTRXAaHDLbPYzqoelsM+KkZVq34QIVnejVfUslsV9PtwaqrL3wkqwP E0DTBTw6/zeN2nKnHZW6p54BdYy4ZuqH1kom1nu3N2sZ/bLfq8kYNuowiCkcUIpY 5r59hl7ZdHvRRDCMECWwG7UKD/y1KVi4Ref1ixPgCK0EEvBFYWz0ys2E1E8djXf0 zqzk09R5lhgcLGfxo5NsF39/4JX0fDQ5Dw609cLcgRk8cWS/wddidZvJGXQ+5g== -----END CERTIFICATE-----Generated at Sun Jun 1 05:17:29 2025 by rpki-client