$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa File: 53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa (raw, json) Hash identifier: RklumqfbSZvwev/UNNWK7qyw5gHVknMtoo1Lm5td2lA= Subject key identifier: DC:CB:DD:89:AA:3D:B1:34:89:AB:66:2E:E3:2E:3D:B0:2C:88:6E:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B4E37E5F60E5683F1DFC4AC5526640B514A30F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa Signing time: Mon 19 May 2025 15:31:58 +0000 ROA not before: Mon 19 May 2025 15:31:58 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff2:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:4e:37:e5:f6:0e:56:83:f1:df:c4:ac:55:26:64:0b:51:4a:30:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:31:58 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=ef76e64881e017203f2ddf544bfa6a13e9fb7086d5327319bb28656d21b6e951, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:64:d1:29:21:39:f7:15:90:b3:a1:ae:d6:da: a4:85:16:d5:44:3f:8e:56:4f:71:35:03:c1:c1:53: 5d:40:a5:8e:b3:de:89:04:d1:70:77:63:4b:7e:56: cc:a9:12:84:7f:a1:7d:d7:6e:35:1a:bf:ac:42:2c: 8e:67:19:bf:d8:f3:9d:00:97:d4:3f:17:8c:87:7c: 7d:f7:64:a6:cd:a9:76:c3:60:b2:0b:4a:f1:a3:69: 0a:2c:be:88:ae:11:01:40:80:d4:e0:68:55:07:eb: 32:f4:e8:fc:ab:e4:40:22:ce:01:0b:37:c3:db:72: c2:d7:bf:df:aa:89:a1:eb:58:de:32:af:b3:f2:66: 1e:19:f1:2c:56:d5:64:a3:e7:c6:e0:11:f9:75:eb: 35:86:23:b4:2b:cd:64:50:19:d7:79:a3:21:da:d4: 4b:10:39:9f:8b:2a:b6:20:12:1f:c3:c8:6a:b9:07: 57:ba:fb:b1:c8:d7:c7:d9:83:05:7f:d1:e7:24:61: 2e:a6:88:05:dd:75:46:8d:fc:57:28:b6:02:f1:46: 69:64:45:86:a4:8d:bd:8f:8c:a8:a4:2b:de:22:ab: 6c:af:e4:2c:b9:5b:35:55:1a:39:ea:ad:af:e0:ab: c6:2e:29:a6:d2:71:81:ad:d6:ea:d3:b5:ea:c3:b0: 24:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:CB:DD:89:AA:3D:B1:34:89:AB:66:2E:E3:2E:3D:B0:2C:88:6E:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53c2cd3c-53af-4880-ab72-8d40e7088c6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:2000::/40 Signature Algorithm: sha256WithRSAEncryption ab:8f:3a:c2:e0:90:eb:9f:e4:d0:55:7d:f2:c6:87:ed:0b:0e: 24:99:6b:bb:24:16:f6:aa:46:49:ba:86:03:16:a5:94:e5:86: fb:f8:9a:cc:4a:92:83:59:56:58:7e:46:d1:2c:9e:a4:7f:fb: 1b:c7:39:fb:4f:2e:b7:5d:b4:8c:a8:cf:4d:1b:61:fb:d9:ed: 6e:94:31:1e:db:23:02:e9:df:95:7a:f7:3d:c9:8a:db:d1:b7: 75:07:a9:67:ec:25:62:d3:fb:2e:fd:58:a1:19:5a:b5:61:c6: be:6f:54:13:ae:eb:2d:6b:0a:f3:0e:8a:6c:8c:d4:50:ff:5d: 1b:c4:0b:da:ea:b4:da:a5:21:26:63:a8:99:91:d8:7e:4d:1d: ef:77:3b:5b:71:b9:a3:aa:4d:73:05:e2:e4:3a:62:cf:3d:3f: b2:9f:e8:53:3d:ed:8e:9b:a4:cc:8d:dd:63:76:a0:d3:17:d6: 0b:0a:bc:dd:19:ee:3f:50:65:79:b8:91:12:fa:69:0e:b7:3b: 6d:64:79:4d:5c:e3:3c:50:0e:71:90:fb:8c:7e:d6:d1:0d:8d: b8:f3:34:67:00:e8:97:c4:e6:a6:49:4a:81:ee:0d:28:f4:ca: 09:0a:11:65:61:81:32:02:6c:1a:21:d3:84:df:df:83:cc:89: f6:3b:ff:71 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUG0435fYOVoPx38SsVSZkC1FKMPcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTUzMTU4WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjc2ZTY0ODgxZTAxNzIwM2YyZGRmNTQ0YmZhNmExM2U5 ZmI3MDg2ZDUzMjczMTliYjI4NjU2ZDIxYjZlOTUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdZNEpITn3FZCzoa7W2qSFFtVEP45WT3E1A8HBU11ApY6z 3okE0XB3Y0t+VsypEoR/oX3XbjUav6xCLI5nGb/Y850Al9Q/F4yHfH33ZKbNqXbD YLILSvGjaQosvoiuEQFAgNTgaFUH6zL06Pyr5EAizgELN8PbcsLXv9+qiaHrWN4y r7PyZh4Z8SxW1WSj58bgEfl16zWGI7QrzWRQGdd5oyHa1EsQOZ+LKrYgEh/DyGq5 B1e6+7HI18fZgwV/0eckYS6miAXddUaN/FcotgLxRmlkRYakjb2PjKikK94iq2yv 5Cy5WzVVGjnqra/gq8YuKabScYGt1urTterDsCS5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3Mvdiao9sTSJq2Yu4y49sCyIbtgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzYzJjZDNjLTUzYWYtNDg4MC1hYjcyLThkNDBlNzA4OGM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/yIDANBgkqhkiG9w0BAQsFAAOCAQEAq486wuCQ65/k0FV98saH7QsO JJlruyQW9qpGSbqGAxallOWG+/iazEqSg1lWWH5G0SyepH/7G8c5+08ut120jKjP TRth+9ntbpQxHtsjAunflXr3PcmK29G3dQepZ+wlYtP7Lv1YoRlatWHGvm9UE67r LWsK8w6KbIzUUP9dG8QL2uq02qUhJmOomZHYfk0d73c7W3G5o6pNcwXi5Dpizz0/ sp/oUz3tjpukzI3dY3ag0xfWCwq83RnuP1BlebiREvppDrc7bWR5TVzjPFAOcZD7 jH7W0Q2NuPM0ZwDol8TmpklKge4NKPTKCQoRZWGBMgJsGiHThN/fg8yJ9jv/cQ== -----END CERTIFICATE-----Generated at Sun Jun 1 05:01:21 2025 by rpki-client