$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d7a322b-9790-4bc8-bd49-493feaff35d5.roa File: 7d7a322b-9790-4bc8-bd49-493feaff35d5.roa (raw, json) Hash identifier: +y2rLQ1ww7vc2f/xeg88fUmZePEpYBaTeocH8D8GBfQ= Subject key identifier: 96:E7:05:88:82:A8:E7:CB:34:F7:15:3E:E5:BB:B7:1B:BE:B5:2C:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49ED2C8E867735FC7F0187DF60B560AC1DB27ABD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d7a322b-9790-4bc8-bd49-493feaff35d5.roa Signing time: Wed 28 May 2025 00:21:29 +0000 ROA not before: Wed 28 May 2025 00:21:29 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ed:2c:8e:86:77:35:fc:7f:01:87:df:60:b5:60:ac:1d:b2:7a:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:21:29 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=dd2faef5639140e47dee8db4561e4e70bd68e8364c1d48212c9dfc5fd618d9a9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:8d:d6:ac:66:0c:3c:44:ab:2a:b9:19:e9: 67:33:8b:47:15:41:ae:cb:53:e2:20:52:59:99:e3: ff:8e:88:66:8e:94:62:93:43:3f:41:af:fd:ee:50: 8e:b0:23:70:2c:8c:ef:d3:5c:80:6d:c6:d1:b2:c6: 87:75:2c:3a:e0:c5:5e:62:b6:2f:84:c1:02:8a:34: f9:ca:85:5e:2d:6c:d9:fd:99:a9:c9:08:bb:b4:a6: aa:a3:7c:20:91:a2:79:72:dd:c6:31:d1:a0:64:68: 37:2b:c2:b0:84:f0:a6:5c:8a:9a:f5:c4:b2:f7:58: a2:6c:d2:d2:64:5f:ac:5c:8d:39:19:5e:4f:eb:75: 56:ce:1b:3c:00:17:ec:4f:f9:79:47:51:b9:2b:30: aa:4a:c2:0b:1c:eb:f8:3b:70:15:b8:13:46:ca:4d: 35:d6:92:15:67:bd:d9:fa:87:a6:22:d2:96:6b:56: ba:f0:e2:17:b2:b7:52:72:77:7e:e5:7d:75:aa:d5: f5:d0:cc:da:ec:d6:12:4a:2a:9f:d0:3e:30:56:4c: 53:78:18:35:22:a1:ea:7b:f7:85:78:a4:e8:b4:e9: 2e:94:bf:1e:01:f7:1c:ac:53:fd:91:93:d3:ed:dd: e6:43:ae:c4:a7:a7:a6:82:f0:56:d8:eb:b0:2c:76: 14:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E7:05:88:82:A8:E7:CB:34:F7:15:3E:E5:BB:B7:1B:BE:B5:2C:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d7a322b-9790-4bc8-bd49-493feaff35d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:8000::/39 Signature Algorithm: sha256WithRSAEncryption b1:7f:e9:54:d6:71:07:6c:3b:35:28:1d:16:98:2f:7b:62:79: e3:8c:11:b1:4d:3b:56:a6:34:13:1f:03:ce:05:08:52:52:64: fd:81:70:b4:ac:34:79:1a:8f:5f:24:fd:08:34:64:ee:a5:33: 2d:49:4f:07:df:ff:d2:92:3e:0e:32:a9:7d:51:b7:67:b3:c1: 48:9b:ca:92:e8:f1:3b:92:7d:97:2e:dc:c8:e1:fa:f1:1f:5c: dd:6a:2c:c0:07:d3:5c:9c:a8:13:56:8f:34:e8:c6:dd:9e:7e: 34:82:8f:48:df:3c:a7:94:0b:9a:f0:dd:cf:74:aa:12:ca:67: 6c:42:47:07:61:7c:1e:6e:f4:41:12:74:90:20:9a:38:95:a7: bb:93:9c:8d:c9:77:21:4d:c3:ed:23:78:b4:16:c1:84:8d:8d: 7e:14:68:a4:cc:2f:50:ba:5a:28:0b:40:ec:c8:cd:98:3b:82: 51:89:d2:25:2b:fa:39:fc:af:40:ae:2d:5d:b1:a5:29:9b:1f: a1:aa:36:8f:80:11:36:93:d0:ed:0c:09:40:a5:c0:d4:0d:d1: 36:fb:70:ac:14:cb:60:13:aa:cc:15:ae:92:c3:dc:28:b5:75: 61:b3:c4:55:e9:2e:67:69:f3:cb:f3:06:69:0e:68:aa:12:a5: ef:25:d7:0b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSe0sjoZ3Nfx/AYffYLVgrB2yer0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAyMTI5WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDJmYWVmNTYzOTE0MGU0N2RlZThkYjQ1NjFlNGU3MGJk NjhlODM2NGMxZDQ4MjEyYzlkZmM1ZmQ2MThkOWE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4943WrGYMPESrKrkZ6Wczi0cVQa7LU+IgUlmZ4/+OiGaO lGKTQz9Br/3uUI6wI3AsjO/TXIBtxtGyxod1LDrgxV5iti+EwQKKNPnKhV4tbNn9 manJCLu0pqqjfCCRonly3cYx0aBkaDcrwrCE8KZcipr1xLL3WKJs0tJkX6xcjTkZ Xk/rdVbOGzwAF+xP+XlHUbkrMKpKwgsc6/g7cBW4E0bKTTXWkhVnvdn6h6Yi0pZr Vrrw4heyt1Jyd37lfXWq1fXQzNrs1hJKKp/QPjBWTFN4GDUioep794V4pOi06S6U vx4B9xysU/2Rk9Pt3eZDrsSnp6aC8FbY67AsdhTlAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUlucFiIKo58s09xU+5bu3G761LJAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkN2EzMjJiLTk3OTAtNGJjOC1iZDQ5LTQ5M2ZlYWZmMzVkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/4gDANBgkqhkiG9w0BAQsFAAOCAQEAsX/pVNZxB2w7NSgdFpgve2J5 44wRsU07VqY0Ex8DzgUIUlJk/YFwtKw0eRqPXyT9CDRk7qUzLUlPB9//0pI+DjKp fVG3Z7PBSJvKkujxO5J9ly7cyOH68R9c3WoswAfTXJyoE1aPNOjG3Z5+NIKPSN88 p5QLmvDdz3SqEspnbEJHB2F8Hm70QRJ0kCCaOJWnu5Ocjcl3IU3D7SN4tBbBhI2N fhRopMwvULpaKAtA7MjNmDuCUYnSJSv6OfyvQK4tXbGlKZsfoao2j4ARNpPQ7QwJ QKXA1A3RNvtwrBTLYBOqzBWuksPcKLV1YbPEVekuZ2nzy/MGaQ5oqhKl7yXXCw== -----END CERTIFICATE-----Generated at Sun Jun 1 05:04:07 2025 by rpki-client