$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa File: 7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa (raw, json) Hash identifier: vkJ5ow3cyREsozq61W2JwS8VWPQmEHu3WLl7j36ys0o= Subject key identifier: B2:9C:FE:67:FC:A4:C6:B4:DD:50:CA:E5:F3:4A:91:79:86:01:06:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E5AF7CF3EB89ECA633AE1097A0E123829F613 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa Signing time: Mon 19 May 2025 16:30:22 +0000 ROA not before: Mon 19 May 2025 16:30:22 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:e040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:5a:f7:cf:3e:b8:9e:ca:63:3a:e1:09:7a:0e:12:38:29:f6:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:30:22 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=5682711b9f9b699a90153db3cefb76d067d0d980675844fc6441a31e5e726647, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:83:80:f5:08:a7:80:c6:78:61:36:c2:da:ed: 4f:9e:a5:98:c1:f6:22:50:1f:21:26:ce:a8:c6:4f: 07:cb:e5:f9:8d:91:a3:5d:b2:1c:c0:0d:dc:a3:4b: e2:eb:c7:d9:f8:a6:be:74:c9:1f:6e:62:2b:00:4a: 48:ae:66:7d:64:53:b1:b3:6e:96:6c:ac:fb:5f:7f: 86:93:dd:71:3d:ed:e4:de:57:85:11:7a:7e:1c:de: 1b:08:41:63:f8:a9:a5:5d:04:42:62:06:9c:a9:92: fb:53:54:f4:c9:52:e7:8a:ed:ce:89:61:16:68:11: a4:13:dc:d9:db:44:7c:c6:18:f7:98:70:77:64:e7: fa:d9:62:83:a8:60:5c:f9:be:c2:f4:55:e3:67:3a: 5a:42:75:e5:95:ae:b4:b9:41:b6:e5:c0:52:7c:e1: 0a:95:10:6d:91:b6:88:7c:0c:a6:49:d2:ce:b4:31: 9c:50:b7:cf:0b:07:70:37:56:21:fa:b9:4a:9d:2c: 7e:0f:2e:22:f5:a8:f4:70:15:ea:0f:5c:0f:ca:b6: f9:3f:b1:ea:bf:4e:fb:57:a7:f7:e4:0c:2d:e8:ca: 25:2e:d4:04:3e:92:37:50:89:4b:c9:cb:62:9a:b1: 86:1b:ef:35:e3:4e:36:43:fc:8b:56:0e:c4:71:35: bb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9C:FE:67:FC:A4:C6:B4:DD:50:CA:E5:F3:4A:91:79:86:01:06:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:e040::/46 Signature Algorithm: sha256WithRSAEncryption b0:9a:8f:2c:3e:72:7a:f6:0e:15:20:7c:ea:3a:45:44:ff:bc: 14:09:bf:c0:54:b7:34:c5:9d:a5:ff:dc:c4:83:ba:a0:17:c1: ec:0b:ed:8b:08:ee:68:a3:9c:5b:c5:e0:b6:f1:63:c5:43:f3: f4:c6:9d:12:0b:43:31:0a:59:dc:0c:d9:df:ed:ef:4d:78:df: b5:9c:27:22:a7:5b:7a:e2:f3:49:5c:38:e1:77:42:03:5d:5e: a4:bd:cd:79:de:03:7b:de:ef:d0:83:58:20:ed:04:b0:ff:49: fb:3c:d9:f8:d5:11:44:71:70:1a:53:34:30:ce:d8:24:7a:9f: 50:20:18:b1:88:73:09:5a:78:24:ef:bb:8e:5f:34:2e:5a:c8: ae:f6:00:61:66:53:b9:fa:96:3d:7d:49:85:b0:e4:9d:c4:ce: 8a:98:c4:61:79:a2:6b:1f:a3:69:b9:58:1c:16:80:3e:8d:b3: 71:3f:9a:04:b9:48:a9:fc:15:f6:be:76:18:ea:6f:ef:58:88: b9:c7:e7:e1:47:1c:cc:83:5c:59:6a:ca:71:f8:4e:db:28:51: ce:78:11:27:c4:b6:2f:99:92:21:f6:d5:56:14:12:2c:41:fa: da:f0:1a:4d:34:42:ed:86:42:89:90:f9:75:5a:a2:77:1c:e5: 0f:5f:91:a4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITTlr3zz64nspjOuEJeg4SOCn2EzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA1MTkxNjMwMjJaFw0yNTA2MjMyMzU5NTla MHoxSTBHBgNVBAUTQDU2ODI3MTFiOWY5YjY5OWE5MDE1M2RiM2NlZmI3NmQwNjdk MGQ5ODA2NzU4NDRmYzY0NDFhMzFlNWU3MjY2NDcxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANeDgPUIp4DGeGE2wtrtT56lmMH2IlAfISbOqMZPB8vl+Y2R o12yHMAN3KNL4uvH2fimvnTJH25iKwBKSK5mfWRTsbNulmys+19/hpPdcT3t5N5X hRF6fhzeGwhBY/ippV0EQmIGnKmS+1NU9MlS54rtzolhFmgRpBPc2dtEfMYY95hw d2Tn+tlig6hgXPm+wvRV42c6WkJ15ZWutLlBtuXAUnzhCpUQbZG2iHwMpknSzrQx nFC3zwsHcDdWIfq5Sp0sfg8uIvWo9HAV6g9cD8q2+T+x6r9O+1en9+QMLejKJS7U BD6SN1CJS8nLYpqxhhvvNeNONkP8i1YOxHE1u90CAwEAAaOCArQwggKwMB0GA1Ud DgQWBBSynP5n/KTGtN1QyuXzSpF5hgEG8DAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvN2U0ZGI4N2MtN2Y5OS00MWUyLThhMjYtMTJlZDhmNzFjNTI4LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHAiYAH2ngQDANBgkqhkiG9w0BAQsFAAOCAQEAsJqPLD5yevYOFSB86jpFRP+8 FAm/wFS3NMWdpf/cxIO6oBfB7AvtiwjuaKOcW8XgtvFjxUPz9MadEgtDMQpZ3AzZ 3+3vTXjftZwnIqdbeuLzSVw44XdCA11epL3Ned4De97v0INYIO0EsP9J+zzZ+NUR RHFwGlM0MM7YJHqfUCAYsYhzCVp4JO+7jl80LlrIrvYAYWZTufqWPX1JhbDkncTO ipjEYXmiax+jablYHBaAPo2zcT+aBLlIqfwV9r52GOpv71iIucfn4UcczINcWWrK cfhO2yhRzngRJ8S2L5mSIfbVVhQSLEH62vAaTTRC7YZCiZD5dVqidxzlD1+RpA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:28:34 2025 by rpki-client