$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65ef93f7-3f39-40f5-adfe-db14d9869bc6.roa File: 65ef93f7-3f39-40f5-adfe-db14d9869bc6.roa (raw, json) Hash identifier: mrFttfTXQ+N8QSmYAx3x9WwX8dCm1XWPjAZP8phYjoQ= Subject key identifier: 8A:4B:15:32:8C:A2:FF:24:64:6A:35:60:4F:91:B2:B1:84:5B:5D:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A73EE620782B44B6767F4DD908B54B921C5BD84 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65ef93f7-3f39-40f5-adfe-db14d9869bc6.roa Signing time: Sat 17 May 2025 00:11:50 +0000 ROA not before: Sat 17 May 2025 00:11:50 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:8150::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:73:ee:62:07:82:b4:4b:67:67:f4:dd:90:8b:54:b9:21:c5:bd:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:11:50 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=8d13fbe837053bd78d0733c58bc5a56586f8b15ab0fe0f6718c642ad38e102c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:b0:41:c1:62:5d:1a:e1:00:ef:10:87:1f:43: 4c:9e:a9:ff:6e:fe:33:0d:8c:78:04:08:f2:53:c1: e8:a4:76:7c:c5:a2:f1:5e:2f:59:e2:27:0f:5c:91: 8b:f0:78:7f:b0:fe:0d:3e:89:31:28:60:19:4c:b1: c9:7b:fa:57:3b:70:09:36:82:b1:98:49:53:cc:4f: 83:e2:2b:42:dd:4b:1e:a1:65:5d:14:77:b5:34:9f: 5f:49:68:cc:94:18:4e:fb:a5:99:f4:9b:ce:47:94: 1a:26:cd:f9:25:66:ef:2a:d8:42:55:09:5c:32:02: b6:f3:3a:64:a0:96:b0:10:e2:8a:4a:78:2e:ca:94: cf:1f:2f:b4:63:9c:06:be:39:15:ec:aa:64:6e:84: 05:43:77:05:5b:6f:74:8e:bd:eb:e2:77:7b:98:15: 29:f7:53:67:c1:52:72:8f:2e:0a:1d:51:55:cf:5f: a6:a5:58:82:33:b3:be:47:73:08:2b:7d:a1:21:41: 80:56:5f:ff:da:33:e6:c1:43:83:41:1f:f5:f1:3d: e3:64:64:bc:92:fa:a8:82:ac:f2:2f:80:e5:8b:87: 6f:d0:ba:9a:55:e1:09:0a:ea:7f:aa:b4:4b:c1:8d: 12:94:ee:41:c0:23:7e:ab:bc:e2:a9:5a:ad:df:c6: 04:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:4B:15:32:8C:A2:FF:24:64:6A:35:60:4F:91:B2:B1:84:5B:5D:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65ef93f7-3f39-40f5-adfe-db14d9869bc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8150::/48 Signature Algorithm: sha256WithRSAEncryption 8a:51:10:48:6e:cc:05:41:3d:ed:18:5f:3c:83:11:ec:f8:01: 87:1e:02:50:36:7b:ac:b0:e1:fc:df:62:ac:9d:fc:8a:2d:06: f6:f5:53:18:74:90:4d:6e:75:0c:8b:af:86:da:68:b4:9d:79: b8:ed:8c:34:d3:c0:db:ca:6b:a1:13:27:33:f6:61:1b:3e:11: d8:7a:af:81:14:a9:27:d6:38:37:3a:6c:07:95:97:5d:a5:02: a8:42:92:01:eb:36:60:86:23:6a:17:ef:b7:08:6c:90:8c:9b: 6d:8a:13:21:32:50:f9:0f:45:dc:b3:d0:ac:a5:09:79:d6:5d: 62:39:11:bf:7b:d5:71:10:dd:5c:6a:37:6b:ac:ff:6c:6a:bc: c1:77:04:3d:a7:b0:34:0e:b7:67:b7:34:6c:52:e8:bc:4f:4a: 6b:42:37:3a:fa:5c:12:a3:df:53:ec:2e:8c:86:67:95:43:5e: 8f:53:df:4c:0b:ad:fa:22:fb:c4:b9:7d:6a:28:e6:01:15:79: 2f:87:7d:d6:01:43:89:5a:4f:31:0a:90:52:92:ef:95:87:ff: b1:86:39:6b:d1:1a:83:f1:ad:a8:20:1e:52:1f:b3:b4:c9:10: 86:0c:24:7b:c1:49:f2:55:f3:3a:21:f6:f4:c1:bc:46:3e:62: a9:74:2b:6b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUenPuYgeCtEtnZ/TdkItUuSHFvYQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDAxMTUwWhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDEzZmJlODM3MDUzYmQ3OGQwNzMzYzU4YmM1YTU2NTg2 ZjhiMTVhYjBmZTBmNjcxOGM2NDJhZDM4ZTEwMmM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdsEHBYl0a4QDvEIcfQ0yeqf9u/jMNjHgECPJTweikdnzF ovFeL1niJw9ckYvweH+w/g0+iTEoYBlMscl7+lc7cAk2grGYSVPMT4PiK0LdSx6h ZV0Ud7U0n19JaMyUGE77pZn0m85HlBomzfklZu8q2EJVCVwyArbzOmSglrAQ4opK eC7KlM8fL7RjnAa+ORXsqmRuhAVDdwVbb3SOvevid3uYFSn3U2fBUnKPLgodUVXP X6alWIIzs75HcwgrfaEhQYBWX//aM+bBQ4NBH/XxPeNkZLyS+qiCrPIvgOWLh2/Q uppV4QkK6n+qtEvBjRKU7kHAI36rvOKpWq3fxgRTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUiksVMoyi/yRkajVgT5GysYRbXTgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1ZWY5M2Y3LTNmMzktNDBmNS1hZGZlLWRiMTRkOTg2OWJjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgVAwDQYJKoZIhvcNAQELBQADggEBAIpREEhuzAVBPe0YXzyDEez4 AYceAlA2e6yw4fzfYqyd/IotBvb1Uxh0kE1udQyLr4baaLSdebjtjDTTwNvKa6ET JzP2YRs+Edh6r4EUqSfWODc6bAeVl12lAqhCkgHrNmCGI2oX77cIbJCMm22KEyEy UPkPRdyz0KylCXnWXWI5Eb971XEQ3VxqN2us/2xqvMF3BD2nsDQOt2e3NGxS6LxP SmtCNzr6XBKj31PsLoyGZ5VDXo9T30wLrfoi+8S5fWoo5gEVeS+HfdYBQ4laTzEK kFKS75WH/7GGOWvRGoPxraggHlIfs7TJEIYMJHvBSfJV8zoh9vTBvEY+Yql0K2s= -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:48 2025 by rpki-client