$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa File: 624938a7-7c55-4a2c-87ea-1939815006d1.roa (raw, json) Hash identifier: v5Cp0P1UPzDiEA8XyHjqqX+xMQ+yLIaO4xen6bQh4nY= Subject key identifier: 4B:6E:0A:14:D9:7D:0E:4B:5A:F6:80:1C:A7:EC:FD:0E:50:3C:F1:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FD81CA01A09B9E193161F1110C64DDD4CE1C2B1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa Signing time: Mon 19 May 2025 17:32:03 +0000 ROA not before: Mon 19 May 2025 17:32:03 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff1:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:d8:1c:a0:1a:09:b9:e1:93:16:1f:11:10:c6:4d:dd:4c:e1:c2:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:32:03 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=3df9a91730b85b7acd32712733485e7901bab28996d4270492eef70f761e7765, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:70:97:09:62:7a:39:68:7a:6b:bb:73:c8:e4: 5c:51:9d:8c:b0:7e:2d:9a:dd:61:26:21:9d:70:b4: 6b:5d:8d:e0:94:4a:de:1d:a7:f3:78:23:c3:26:56: ef:0c:8f:6f:f1:f5:af:ec:7c:e5:c7:6f:0d:da:22: 02:70:41:58:b1:c7:96:ba:a7:2f:2f:f5:44:cb:48: 8f:94:e0:81:50:83:dc:34:c9:4a:c6:c7:98:15:4a: 32:60:a6:a8:40:87:47:c4:38:12:e8:b9:fa:42:2d: 85:a0:17:8c:cc:cc:a2:bd:6a:7c:da:b9:41:0e:0d: 4c:32:86:dd:99:7b:58:bb:3e:48:e4:8a:b3:14:19: 89:73:7a:28:44:8a:d9:95:e6:cd:c0:cf:81:19:90: a3:5b:95:49:99:c9:8a:40:58:8d:04:7f:a9:8c:86: 8b:9f:52:3d:0d:d7:2b:02:db:39:0e:58:42:67:81: 1c:c7:9b:e6:9d:8e:aa:66:a1:02:e6:01:22:4a:17: c2:14:34:4d:5d:d0:20:a8:5b:aa:3c:75:56:03:ee: f7:57:de:94:c9:68:0d:81:63:82:62:49:02:96:9e: a2:77:e4:1e:38:96:e6:d2:f5:16:37:2a:94:f3:d6: e7:76:de:ef:1a:e5:b0:b9:4a:00:82:03:e6:4e:6a: 26:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:6E:0A:14:D9:7D:0E:4B:5A:F6:80:1C:A7:EC:FD:0E:50:3C:F1:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:8000::/39 Signature Algorithm: sha256WithRSAEncryption 84:33:f5:20:e2:10:2c:7d:d5:92:e4:7f:c3:ae:c6:4d:ca:a2: 65:f0:c2:f2:86:61:2f:5d:55:54:2f:de:8a:e2:c1:14:f5:12: 1b:ad:d9:57:4f:41:02:18:73:27:f3:f8:23:8c:0f:a9:1f:ee: f3:d6:ba:9f:1b:9b:9b:f6:0e:3f:4c:31:8d:5c:a0:71:02:e2: c4:82:7f:e7:68:ed:0d:97:38:f9:74:3c:67:9f:83:a9:68:af: 7f:d0:92:f5:cd:0e:a5:2f:57:35:d1:6a:9f:4d:5a:0d:1a:53: 3d:a7:90:71:f3:72:4c:42:9e:5e:48:7a:73:f5:6f:0b:12:a3: ff:09:47:82:c1:58:d2:83:65:c7:18:93:9b:35:40:44:13:96: ab:cc:11:53:91:92:69:c8:07:af:1f:4c:9d:06:af:96:72:3d: 13:c5:c2:85:63:49:6e:e1:92:64:d6:77:5f:50:9c:9e:93:08: e0:4e:20:e1:02:ac:04:c2:8d:33:91:86:bf:23:7f:ea:06:38: ef:ba:8e:3b:e7:81:c9:0d:e1:4c:aa:0a:b7:3a:26:2a:51:14: 11:ae:2c:77:dc:69:05:75:08:e2:b7:d9:67:95:60:06:81:66: 3f:98:b5:8b:f7:dd:c2:15:47:84:9c:34:2d:b4:2d:34:6f:7e: d0:34:85:08 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUL9gcoBoJueGTFh8REMZN3UzhwrEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTczMjAzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZGY5YTkxNzMwYjg1YjdhY2QzMjcxMjczMzQ4NWU3OTAx YmFiMjg5OTZkNDI3MDQ5MmVlZjcwZjc2MWU3NzY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLcJcJYno5aHpru3PI5FxRnYywfi2a3WEmIZ1wtGtdjeCU St4dp/N4I8MmVu8Mj2/x9a/sfOXHbw3aIgJwQVixx5a6py8v9UTLSI+U4IFQg9w0 yUrGx5gVSjJgpqhAh0fEOBLoufpCLYWgF4zMzKK9anzauUEODUwyht2Ze1i7Pkjk irMUGYlzeihEitmV5s3Az4EZkKNblUmZyYpAWI0Ef6mMhoufUj0N1ysC2zkOWEJn gRzHm+adjqpmoQLmASJKF8IUNE1d0CCoW6o8dVYD7vdX3pTJaA2BY4JiSQKWnqJ3 5B44lubS9RY3KpTz1ud23u8a5bC5SgCCA+ZOaibXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUS24KFNl9Dkta9oAcp+z9DlA88RUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyNDkzOGE3LTdjNTUtNGEyYy04N2VhLTE5Mzk4MTUwMDZkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/xgDANBgkqhkiG9w0BAQsFAAOCAQEAhDP1IOIQLH3VkuR/w67GTcqi ZfDC8oZhL11VVC/eiuLBFPUSG63ZV09BAhhzJ/P4I4wPqR/u89a6nxubm/YOP0wx jVygcQLixIJ/52jtDZc4+XQ8Z5+DqWivf9CS9c0OpS9XNdFqn01aDRpTPaeQcfNy TEKeXkh6c/VvCxKj/wlHgsFY0oNlxxiTmzVARBOWq8wRU5GSacgHrx9MnQavlnI9 E8XChWNJbuGSZNZ3X1CcnpMI4E4g4QKsBMKNM5GGvyN/6gY477qOO+eByQ3hTKoK tzomKlEUEa4sd9xpBXUI4rfZZ5VgBoFmP5i1i/fdwhVHhJw0LbQtNG9+0DSFCA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:05:12 2025 by rpki-client