$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa File: 7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa (raw, json) Hash identifier: kxzWGmVqOeJBK9KjhU7Fd9J+rfVQAGv31wBacyDxT+w= Subject key identifier: 1D:12:3C:5E:3E:0C:34:5A:FB:5F:7C:C2:E5:00:FE:94:8D:FD:45:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 078DDC216E70BDC335C66FB77C7FE2B89F86ADC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa Signing time: Wed 28 May 2025 00:21:17 +0000 ROA not before: Wed 28 May 2025 00:21:17 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:8d:dc:21:6e:70:bd:c3:35:c6:6f:b7:7c:7f:e2:b8:9f:86:ad:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:21:17 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=799c374624d9439360a794024770c0947076d7752bee1d4e2a2d620de5b54408, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e7:0b:56:fb:8c:96:74:f2:ea:7f:90:ab:04: 83:6d:15:83:02:46:9b:a6:a2:be:f2:09:a5:d8:35: 4f:fb:c4:a4:cf:09:ea:37:37:9b:67:ca:fc:6e:13: f0:52:45:c7:66:5f:e3:00:c4:cb:74:32:26:17:a9: 34:e2:b2:2c:dd:ad:6f:7a:0a:0e:0d:3f:93:89:03: fb:43:77:d5:53:d1:aa:5d:f6:45:2e:90:71:11:0c: ae:15:4a:e5:9a:69:8d:6a:ca:d5:31:45:2b:48:5a: d3:73:7e:f9:7e:e0:b2:bc:30:1d:21:83:cb:60:1c: 96:33:5a:43:e4:60:af:b5:b5:3d:f2:19:13:56:bd: 88:95:3d:bc:78:15:ef:bd:49:c4:0f:8f:ea:b2:70: 7d:63:4e:9c:fb:6b:c8:16:09:e2:91:61:db:b7:31: 5b:92:8b:71:33:fc:92:ce:21:bd:d7:b7:ed:83:7e: 36:25:40:27:0f:cd:e4:08:5a:c9:96:1c:a8:bf:9e: 86:87:0e:e4:d6:de:e8:68:75:dd:8e:ac:b1:c0:7a: dc:90:ab:78:9c:29:db:a6:43:31:46:cf:c9:90:f0: b3:6e:d9:8e:7f:ea:66:e3:b2:4d:14:c2:a7:18:5d: 89:01:31:76:e5:aa:a3:a8:55:3f:79:32:17:8a:54: 71:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:12:3C:5E:3E:0C:34:5A:FB:5F:7C:C2:E5:00:FE:94:8D:FD:45:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:c000::/40 Signature Algorithm: sha256WithRSAEncryption 83:d9:ac:a2:b3:6c:17:a7:91:f5:22:8b:04:e4:cb:5f:cb:55: 7d:a6:f2:41:3b:03:d1:24:69:df:e0:44:5d:57:b5:63:28:ee: c9:52:f4:5a:cd:85:f5:e9:be:05:e0:27:e1:c5:86:aa:05:5f: 94:7f:1b:96:f5:0c:85:7d:46:91:66:26:ca:59:d0:9e:26:52: 8c:bb:ec:a9:5b:d6:98:1d:5b:5a:a5:56:d6:cd:8b:5a:f2:42: 89:bd:d2:aa:91:82:6a:6a:f9:c0:e2:fc:b6:6a:bf:03:61:21: 9c:3a:72:fc:b3:d6:d8:89:d9:b5:6b:39:cd:73:73:11:6f:6a: 13:56:f4:c3:6b:aa:9d:18:ae:1e:31:1f:02:c3:36:dc:40:84: c7:20:d6:e7:ef:c3:ca:d4:1c:6c:da:27:9d:84:cd:eb:df:7e: 1e:d5:0f:ac:0e:f7:b4:ac:c7:33:e3:5d:42:3d:c6:f7:19:ea: 51:36:2b:f6:11:f6:fb:68:1b:3f:a6:3a:e5:d7:a3:26:4a:b0: c9:7b:62:69:96:c7:5d:85:58:36:f2:e1:eb:c4:0e:0b:30:e3: b3:1d:b4:c5:26:87:d1:67:b9:05:ab:bf:d1:40:7e:8d:b4:9a: 2c:18:d5:5f:40:25:58:2c:da:e4:4f:46:e5:76:95:92:89:5c: 8b:72:6c:11 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUB43cIW5wvcM1xm+3fH/iuJ+GrcQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMTE3WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTljMzc0NjI0ZDk0MzkzNjBhNzk0MDI0NzcwYzA5NDcw NzZkNzc1MmJlZTFkNGUyYTJkNjIwZGU1YjU0NDA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw5wtW+4yWdPLqf5CrBINtFYMCRpumor7yCaXYNU/7xKTP Ceo3N5tnyvxuE/BSRcdmX+MAxMt0MiYXqTTisizdrW96Cg4NP5OJA/tDd9VT0apd 9kUukHERDK4VSuWaaY1qytUxRStIWtNzfvl+4LK8MB0hg8tgHJYzWkPkYK+1tT3y GRNWvYiVPbx4Fe+9ScQPj+qycH1jTpz7a8gWCeKRYdu3MVuSi3Ez/JLOIb3Xt+2D fjYlQCcPzeQIWsmWHKi/noaHDuTW3uhodd2OrLHAetyQq3icKdumQzFGz8mQ8LNu 2Y5/6mbjsk0UwqcYXYkBMXblqqOoVT95MheKVHEnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHRI8Xj4MNFr7X3zC5QD+lI39RXcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0ODhkMzZjLTExYTEtNGI3Zi1hZDllLTcxYWY2YjFmYThiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xwDANBgkqhkiG9w0BAQsFAAOCAQEAg9msorNsF6eR9SKLBOTLX8tV fabyQTsD0SRp3+BEXVe1YyjuyVL0Ws2F9em+BeAn4cWGqgVflH8blvUMhX1GkWYm ylnQniZSjLvsqVvWmB1bWqVW1s2LWvJCib3SqpGCamr5wOL8tmq/A2EhnDpy/LPW 2InZtWs5zXNzEW9qE1b0w2uqnRiuHjEfAsM23ECExyDW5+/DytQcbNonnYTN699+ HtUPrA73tKzHM+NdQj3G9xnqUTYr9hH2+2gbP6Y65dejJkqwyXtiaZbHXYVYNvLh 68QOCzDjsx20xSaH0We5Bau/0UB+jbSaLBjVX0AlWCza5E9G5XaVkolci3JsEQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:21:44 2025 by rpki-client