$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa File: 664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa (raw, json) Hash identifier: pUGGJqvS4mI7+QW/UCM+6BLC7Gp+U5Jz6nqb4UguaR8= Subject key identifier: 64:18:E1:96:20:2E:0C:A5:79:36:49:35:41:71:5E:02:B9:53:33:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 63BD5D5231A89ACF20526FC8495D3940AB03E774 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa Signing time: Mon 19 May 2025 16:11:09 +0000 ROA not before: Mon 19 May 2025 16:11:09 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ffb:5080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:bd:5d:52:31:a8:9a:cf:20:52:6f:c8:49:5d:39:40:ab:03:e7:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:11:09 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=5552caf43eda47c2c5637f1a951ce82fd1161f692b2c4b9669ecd5a33ca8b684, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:3c:0c:b7:f8:07:67:57:9c:5e:e2:f8:f2:97: 2e:ea:d2:4e:07:80:ca:98:75:71:26:a9:f1:b4:bc: b8:b0:ea:c7:68:0f:21:4d:7a:77:1d:d3:60:a7:ed: 56:ae:0a:be:1c:31:97:38:9a:07:82:c3:71:8a:60: 3f:1b:93:81:3c:b2:61:42:61:c4:43:0c:f9:4c:bc: 31:7a:56:53:cf:47:22:d8:69:16:37:c4:ff:46:57: 1e:37:5b:a0:9a:81:5e:f8:71:a0:53:b1:b5:7d:f1: 48:95:6b:5b:cb:cd:88:4c:b6:ad:10:cc:7f:08:67: 15:d4:8f:e5:f3:b7:19:93:c9:b2:74:8b:38:2a:31: 9d:74:ae:3d:38:8e:4b:f7:49:20:7d:98:0f:d2:87: 0f:c5:f8:a4:30:e3:c3:25:3c:34:5e:d5:aa:8c:da: 65:eb:cc:0c:82:70:96:3d:61:9e:20:95:9f:18:e3: 80:db:25:28:93:4d:5d:36:12:bb:69:7d:3a:8e:29: 14:57:7d:28:af:d9:94:e5:e2:61:04:af:b0:e8:d1: 91:89:dc:2e:71:f3:73:db:7a:fd:10:f8:b7:7e:f3: fb:6c:69:d5:c5:0e:ae:39:fc:ef:f3:9c:78:37:c0: e1:7d:11:4e:d8:05:38:a0:68:05:92:9f:33:b1:84: 30:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:18:E1:96:20:2E:0C:A5:79:36:49:35:41:71:5E:02:B9:53:33:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/664b5c88-c7b6-4443-8c1a-f4429e487f3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:5080::/46 Signature Algorithm: sha256WithRSAEncryption 25:0d:38:20:4d:04:3a:d2:b6:6e:68:01:06:cf:73:f2:61:b1: 12:fc:02:3c:38:fc:0e:bf:8f:ce:1a:81:69:fc:98:c0:74:ae: a8:77:e8:27:9f:1f:6d:28:67:f6:be:1f:99:10:c8:0d:e7:dd: 46:b7:91:04:1c:39:bd:01:74:c0:42:7f:08:64:f3:b5:9e:1d: 8d:05:67:6f:58:fe:17:26:a5:33:7c:c7:1a:20:93:c1:1d:fe: 6f:fe:99:fa:47:fb:27:3b:09:f8:d7:f4:0b:05:17:a6:fc:a0: 3f:1b:d2:e4:14:06:28:61:4c:63:21:bc:c5:b4:f1:42:1d:1d: cc:88:46:79:ac:1c:cf:48:2a:71:3f:d1:64:cf:ec:0a:3b:b3: 43:15:8b:78:96:89:8c:5b:c2:90:13:48:4e:a7:63:60:93:2f: 78:45:83:83:18:e6:4c:86:11:af:80:75:b5:06:38:68:95:cf: 19:8d:f6:cb:d2:9e:85:95:50:a5:5d:dc:7a:5a:00:85:79:1b: 78:d0:84:48:9f:fb:7e:98:95:25:ec:7a:ec:56:f5:9f:8f:81: f3:1f:6b:ef:04:ad:52:0a:91:f1:d8:1a:f1:26:c0:97:56:bf: 9f:fb:7a:eb:8b:c4:cd:e5:a7:9a:c5:f2:68:0f:b3:ec:61:f2: 51:d5:ee:31 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUY71dUjGoms8gUm/ISV05QKsD53QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYxMTA5WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTUyY2FmNDNlZGE0N2MyYzU2MzdmMWE5NTFjZTgyZmQx MTYxZjY5MmIyYzRiOTY2OWVjZDVhMzNjYThiNjg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAPAy3+AdnV5xe4vjyly7q0k4HgMqYdXEmqfG0vLiw6sdo DyFNencd02Cn7VauCr4cMZc4mgeCw3GKYD8bk4E8smFCYcRDDPlMvDF6VlPPRyLY aRY3xP9GVx43W6CagV74caBTsbV98UiVa1vLzYhMtq0QzH8IZxXUj+XztxmTybJ0 izgqMZ10rj04jkv3SSB9mA/Shw/F+KQw48MlPDRe1aqM2mXrzAyCcJY9YZ4glZ8Y 44DbJSiTTV02ErtpfTqOKRRXfSiv2ZTl4mEEr7Do0ZGJ3C5x83Pbev0Q+Ld+8/ts adXFDq45/O/znHg3wOF9EU7YBTigaAWSnzOxhDB9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZBjhliAuDKV5Nkk1QXFeArlTM9gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2NGI1Yzg4LWM3YjYtNDQ0My04YzFhLWY0NDI5ZTQ4N2YzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7UIAwDQYJKoZIhvcNAQELBQADggEBACUNOCBNBDrStm5oAQbPc/Jh sRL8Ajw4/A6/j84agWn8mMB0rqh36CefH20oZ/a+H5kQyA3n3Ua3kQQcOb0BdMBC fwhk87WeHY0FZ29Y/hcmpTN8xxogk8Ed/m/+mfpH+yc7CfjX9AsFF6b8oD8b0uQU BihhTGMhvMW08UIdHcyIRnmsHM9IKnE/0WTP7Ao7s0MVi3iWiYxbwpATSE6nY2CT L3hFg4MY5kyGEa+AdbUGOGiVzxmN9svSnoWVUKVd3HpaAIV5G3jQhEif+36YlSXs euxW9Z+PgfMfa+8ErVIKkfHYGvEmwJdWv5/7euuLxM3lp5rF8mgPs+xh8lHV7jE= -----END CERTIFICATE-----Generated at Sun Jun 1 04:33:44 2025 by rpki-client