$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa File: 60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa (raw, json) Hash identifier: SHVUt8I/0tNhpBFWNmfqx3wRGKveB6DVmtBsCtqCCTE= Subject key identifier: 87:8A:8B:F8:22:25:07:3D:6C:BA:E2:75:3F:DE:B3:E1:C3:1C:21:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BBD91CA2797DD6D4D9F98277888FDFB2A3DB4F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa Signing time: Wed 28 May 2025 00:10:31 +0000 ROA not before: Wed 28 May 2025 00:10:31 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:80a7::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:bd:91:ca:27:97:dd:6d:4d:9f:98:27:78:88:fd:fb:2a:3d:b4:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:10:31 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=cc313f86010283e4d1055c4f32d80a2399c99bb57301527592d5a0e6aefe3dff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:a8:bc:55:a7:2f:9d:bd:1b:85:52:d6:51:7c: 26:41:42:2d:08:5c:10:bb:7a:28:e4:1d:5f:3f:6c: 67:7e:42:fe:26:a2:42:44:b6:5b:14:3d:e9:c4:a5: 5b:3d:fb:5f:31:66:4d:58:8a:1e:29:aa:6e:54:bd: b5:3c:d6:be:59:62:be:90:ec:45:f9:ce:ba:03:39: 1f:5c:06:61:dc:85:e5:c0:28:2c:bd:32:4e:72:1e: cb:2c:91:1b:5c:4a:c2:59:3f:14:e2:ef:4b:13:79: 5f:a8:2c:17:d7:7d:05:23:aa:74:f4:90:9e:12:61: fc:3c:c9:b1:70:c8:ac:9c:8f:54:56:cd:2a:73:7c: a4:99:7c:04:66:bd:8c:51:c4:e4:b7:0b:6e:26:bb: e4:20:cb:4d:68:fa:81:60:36:61:be:db:94:e9:d8: 6b:cd:2b:64:6e:4c:81:98:a7:ea:d9:3f:03:47:00: e1:38:f4:fd:d3:b7:19:d1:c4:be:f0:27:18:d9:09: 88:d1:e8:df:22:0d:95:ba:6c:64:30:66:ea:07:e4: 34:77:e4:42:85:5a:b7:80:a3:0d:d4:88:34:dd:0d: 92:a5:20:c0:33:f5:ea:36:53:5a:96:e9:5b:f5:df: 0a:98:c2:37:76:24:16:b5:0a:52:ba:83:99:76:31: f1:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:8A:8B:F8:22:25:07:3D:6C:BA:E2:75:3F:DE:B3:E1:C3:1C:21:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/60fa1316-489c-4c2e-9ecb-e5a60a70777e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:80a7::/48 Signature Algorithm: sha256WithRSAEncryption b0:0c:b5:25:0c:a6:b6:9d:af:87:6a:a4:b8:ed:e9:0d:af:66: ff:a5:90:d7:aa:e0:f0:dd:8d:d0:d7:c9:90:0c:74:59:c1:b1: 46:5c:7a:22:41:3c:2a:76:d2:b5:48:01:37:3f:de:0b:2b:89: c5:5d:a8:9c:68:b0:fb:0d:2d:0a:ae:84:ce:e2:ca:2b:7e:98: f7:8b:22:72:93:b7:5f:95:bc:62:a6:15:55:ef:20:4f:7e:1f: f2:2e:38:4c:3c:ea:4f:77:f8:ba:00:8a:e1:1e:0b:9a:0f:16: a9:67:f7:bf:ad:1d:3d:fb:34:1c:71:6c:bc:eb:48:dd:f8:cc: 25:91:49:32:1a:99:71:61:3d:80:df:54:29:63:1e:f4:8f:68: 1a:15:41:37:aa:e9:db:b0:0d:7c:1c:4f:30:61:41:66:b3:f2: e1:ca:83:7c:e0:00:10:e9:f2:63:d6:3e:17:e5:88:ef:b4:de: df:28:34:98:2b:cf:b4:3e:98:d2:56:c6:f5:fb:2b:05:d6:1e: 34:d8:78:2c:d3:9e:d0:b8:d2:0b:23:62:73:3c:31:d8:cb:f8: ef:c6:77:54:de:25:bf:ff:98:5d:31:e8:99:9f:d8:a9:4a:32: 96:90:ff:79:0a:05:b5:6b:28:34:47:aa:9c:c7:b7:41:79:df: 42:6d:09:df -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW72RyieX3W1Nn5gneIj9+yo9tPQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAxMDMxWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzMxM2Y4NjAxMDI4M2U0ZDEwNTVjNGYzMmQ4MGEyMzk5 Yzk5YmI1NzMwMTUyNzU5MmQ1YTBlNmFlZmUzZGZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNqLxVpy+dvRuFUtZRfCZBQi0IXBC7eijkHV8/bGd+Qv4m okJEtlsUPenEpVs9+18xZk1Yih4pqm5UvbU81r5ZYr6Q7EX5zroDOR9cBmHcheXA KCy9Mk5yHssskRtcSsJZPxTi70sTeV+oLBfXfQUjqnT0kJ4SYfw8ybFwyKycj1RW zSpzfKSZfARmvYxRxOS3C24mu+Qgy01o+oFgNmG+25Tp2GvNK2RuTIGYp+rZPwNH AOE49P3TtxnRxL7wJxjZCYjR6N8iDZW6bGQwZuoH5DR35EKFWreAow3UiDTdDZKl IMAz9eo2U1qW6Vv13wqYwjd2JBa1ClK6g5l2MfHRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUh4qL+CIlBz1suuJ1P96z4cMcIZAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwZmExMzE2LTQ4OWMtNGMyZS05ZWNiLWU1YTYwYTcwNzc3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gKcwDQYJKoZIhvcNAQELBQADggEBALAMtSUMpradr4dqpLjt6Q2v Zv+lkNeq4PDdjdDXyZAMdFnBsUZceiJBPCp20rVIATc/3gsricVdqJxosPsNLQqu hM7iyit+mPeLInKTt1+VvGKmFVXvIE9+H/IuOEw86k93+LoAiuEeC5oPFqln97+t HT37NBxxbLzrSN34zCWRSTIamXFhPYDfVCljHvSPaBoVQTeq6duwDXwcTzBhQWaz 8uHKg3zgABDp8mPWPhfliO+03t8oNJgrz7Q+mNJWxvX7KwXWHjTYeCzTntC40gsj YnM8MdjL+O/Gd1TeJb//mF0x6Jmf2KlKMpaQ/3kKBbVrKDRHqpzHt0F530JtCd8= -----END CERTIFICATE-----Generated at Sun Jun 1 04:53:44 2025 by rpki-client