$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa File: 5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa (raw, json) Hash identifier: TL9/rVY3pUOolEZNUgc696ls+nngpp6cTlTG3EJpWjc= Subject key identifier: 2E:B6:06:FE:53:A1:C0:9F:ED:88:A3:17:04:8B:3D:58:58:6C:12:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34DEA05341D6B948DE34D9E74D8CD58CF8DD8522 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa Signing time: Mon 19 May 2025 18:01:02 +0000 ROA not before: Mon 19 May 2025 18:01:02 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:de:a0:53:41:d6:b9:48:de:34:d9:e7:4d:8c:d5:8c:f8:dd:85:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:01:02 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=bb95d3729e3169308151fd3ac8fb0a96ca25d164b17b69a4cfa87a7ad98245c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:50:5c:e8:28:14:76:6f:85:67:ec:23:43:3d: c0:bd:70:35:0b:dd:aa:e6:5d:fa:0a:99:a1:99:aa: dd:9a:8a:84:c8:ad:58:93:95:c5:e5:44:82:92:ad: ac:74:8d:c2:00:e6:18:d4:ee:71:73:b6:fe:42:91: 04:69:42:27:73:b6:20:75:d5:2f:02:ce:7c:0c:c3: 58:08:a7:aa:ae:e7:e6:bc:9d:99:ff:6a:74:dd:24: 53:c4:5f:74:49:61:73:f4:68:10:47:0f:86:dd:91: 00:f5:a0:2d:a4:e7:a4:8e:7b:93:ee:af:df:d9:2e: 2b:1e:67:73:7f:00:33:da:06:a5:29:b7:36:f0:b1: 57:27:12:7a:c4:32:ba:dd:a4:ba:f2:83:1b:3c:90: 8d:f4:e8:94:f7:c7:1a:22:18:6f:05:3f:b1:ea:6e: a8:1b:0b:2d:06:0b:9b:0b:2f:18:c9:79:b9:cc:1f: 43:12:bc:5f:e9:25:70:f6:d9:b9:6b:50:86:07:8f: 83:f0:48:b1:77:d0:4b:77:95:ca:ed:b4:ea:a5:fd: aa:02:42:5c:b8:8f:5d:1e:27:c5:5d:ba:f4:59:12: d6:b2:5f:a5:29:dd:d3:3b:80:41:c9:0f:2a:af:b2: 6b:bc:43:67:c8:d5:e5:6d:1f:5c:98:fb:ce:ca:c3: d8:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:B6:06:FE:53:A1:C0:9F:ED:88:A3:17:04:8B:3D:58:58:6C:12:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ee52b74-62e7-4aad-bd07-e8653a9c67b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11:c00::/38 Signature Algorithm: sha256WithRSAEncryption 73:7b:63:29:11:59:73:3b:49:2c:5b:82:1f:b7:7f:03:2d:9f: 1e:b5:25:b4:77:57:3a:37:39:14:e7:87:2a:72:ad:ae:4d:e6: b7:a7:f8:82:24:26:25:0f:9d:5c:32:6d:f9:87:4a:50:6f:5c: f1:82:2b:d7:d1:b5:19:d8:74:8d:0f:a6:ca:5e:57:de:26:7a: 38:17:2f:3b:1e:5b:07:fa:61:3e:3d:6b:c5:62:1f:da:7d:e0: b8:7d:70:00:5c:39:0c:4a:6d:67:37:ca:8f:17:d8:5e:ea:e8: 3a:ef:92:0f:55:5a:06:97:c3:e4:7a:73:0e:2d:f3:2c:40:d0: 7f:ad:37:ab:7e:d0:6c:5f:e6:cd:70:d8:a3:89:90:96:5c:b6: ee:b8:a1:df:82:fd:ff:6c:11:d8:d0:3b:70:b0:f2:59:80:d3: d4:54:0b:3b:11:b6:41:1f:a6:86:ef:cf:c0:33:ba:aa:6d:ea: 6e:15:c2:08:a3:ec:75:cd:d2:89:60:1a:bd:ad:06:e3:fe:06: 5d:c4:fc:4d:47:ac:ee:ad:16:f1:91:f0:b1:d6:fc:0c:39:09: f6:1f:5c:d6:53:a5:49:8a:7b:95:f0:76:54:fb:78:e3:f5:17: 34:df:1f:c9:cb:2d:ba:47:27:e2:b9:dd:0c:84:1f:ef:a4:91: bc:b1:7c:56 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNN6gU0HWuUjeNNnnTYzVjPjdhSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTgwMTAyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjk1ZDM3MjllMzE2OTMwODE1MWZkM2FjOGZiMGE5NmNh MjVkMTY0YjE3YjY5YTRjZmE4N2E3YWQ5ODI0NWMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrUFzoKBR2b4Vn7CNDPcC9cDUL3armXfoKmaGZqt2aioTI rViTlcXlRIKSrax0jcIA5hjU7nFztv5CkQRpQidztiB11S8CznwMw1gIp6qu5+a8 nZn/anTdJFPEX3RJYXP0aBBHD4bdkQD1oC2k56SOe5Pur9/ZLiseZ3N/ADPaBqUp tzbwsVcnEnrEMrrdpLrygxs8kI306JT3xxoiGG8FP7HqbqgbCy0GC5sLLxjJebnM H0MSvF/pJXD22blrUIYHj4PwSLF30Et3lcrttOql/aoCQly4j10eJ8VduvRZEtay X6Up3dM7gEHJDyqvsmu8Q2fI1eVtH1yY+87Kw9grAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULrYG/lOhwJ/tiKMXBIs9WFhsEgYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlZTUyYjc0LTYyZTctNGFhZC1iZDA3LWU4NjUzYTljNjdiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8RDDANBgkqhkiG9w0BAQsFAAOCAQEAc3tjKRFZcztJLFuCH7d/Ay2f HrUltHdXOjc5FOeHKnKtrk3mt6f4giQmJQ+dXDJt+YdKUG9c8YIr19G1Gdh0jQ+m yl5X3iZ6OBcvOx5bB/phPj1rxWIf2n3guH1wAFw5DEptZzfKjxfYXuroOu+SD1Va BpfD5HpzDi3zLEDQf603q37QbF/mzXDYo4mQlly27rih34L9/2wR2NA7cLDyWYDT 1FQLOxG2QR+mhu/PwDO6qm3qbhXCCKPsdc3SiWAava0G4/4GXcT8TUes7q0W8ZHw sdb8DDkJ9h9c1lOlSYp7lfB2VPt44/UXNN8fycstukcn4rndDIQf76SRvLF8Vg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:26:50 2025 by rpki-client