$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8548e540-402d-4f6c-adcb-a4976ae09bd8.roa File: 8548e540-402d-4f6c-adcb-a4976ae09bd8.roa (raw, json) Hash identifier: DWMqB70nOpM1GDaxUlVE6nkrPRO+yuBmB+svHxqUIZ0= Subject key identifier: 86:08:00:6A:13:21:4C:E4:A8:A3:5B:9D:81:D4:03:C5:6D:43:4A:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C84F5AA0E88794F23E9D908717577EC362A7AA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8548e540-402d-4f6c-adcb-a4976ae09bd8.roa Signing time: Mon 19 May 2025 18:00:13 +0000 ROA not before: Mon 19 May 2025 18:00:13 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f15:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:84:f5:aa:0e:88:79:4f:23:e9:d9:08:71:75:77:ec:36:2a:7a:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:00:13 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=bdf315bb5f664c3f722b07c80bf418c0fdabd5a8bc059789ff82ed8d4481483d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:fd:17:eb:db:a3:4e:ba:72:49:1e:8a:e6:58: 81:80:24:dc:df:09:ff:b9:dd:e5:92:f7:fb:03:19: 5c:47:42:62:86:21:ed:0f:de:e3:3c:2f:f1:78:94: 8a:24:9a:70:0b:2a:e6:63:b0:4b:72:7e:89:25:d7: 59:de:84:50:6a:06:c6:86:74:e8:76:d2:f8:a0:0c: 65:06:3e:9c:cc:b6:31:19:d9:28:46:c9:39:28:a3: 6c:6f:0a:f3:48:38:0c:86:f2:aa:b9:43:7a:45:ef: 19:a8:48:60:03:ec:c8:89:db:ec:62:9c:f0:82:02: db:30:db:5c:ef:60:00:3c:17:18:c3:4a:c5:27:3d: 48:34:83:cc:1c:51:2a:c7:87:dc:a6:0c:e8:47:44: 45:dc:c3:15:d0:80:89:14:72:82:fa:04:f2:5a:b1: 96:75:21:1b:57:c5:57:df:b2:a2:53:e3:42:3d:68: 2f:d3:a2:69:90:9e:5c:e5:a2:5e:91:a8:6a:ea:b9: 0c:ab:71:a1:95:e2:61:cc:b2:43:fe:c9:c1:71:ac: f6:08:e2:93:5e:cb:e0:c8:7c:63:d6:b2:72:ab:f9: 63:73:64:6e:bc:50:37:76:04:38:98:65:e5:8e:a6: 42:c2:f9:60:d3:02:77:40:f9:2c:3a:95:55:cb:c1: 08:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:08:00:6A:13:21:4C:E4:A8:A3:5B:9D:81:D4:03:C5:6D:43:4A:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8548e540-402d-4f6c-adcb-a4976ae09bd8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15:c00::/38 Signature Algorithm: sha256WithRSAEncryption 17:19:f1:dc:0a:62:15:6f:52:d5:10:be:d2:cb:e1:58:ce:20: ed:ab:5f:da:d5:8c:8c:a0:01:d3:d7:86:1b:21:1a:f9:77:30: 0d:95:d7:d1:2e:34:e4:66:0d:af:a5:b0:b1:6a:68:63:43:49: 00:33:52:d1:fc:68:2e:4a:6d:96:8f:1a:38:74:af:fe:e3:80: 85:0f:5a:4e:54:56:0e:c8:ee:c3:a6:a2:d3:ce:29:67:a2:db: 11:d4:9d:35:31:2a:55:5f:a1:1b:fd:2a:4d:33:a2:8c:f8:4a: fd:b6:48:fa:41:db:fc:6c:d6:fb:58:03:a5:ee:43:97:bd:47: dc:cf:4a:a1:fe:dc:71:7c:2f:10:f6:eb:1f:2a:16:27:7b:47: 04:86:98:3c:b4:25:5a:2b:18:a4:2f:6f:d5:6b:69:0f:ef:b3: 35:c2:6f:5b:f7:f8:2e:5c:1d:88:64:62:0e:33:b8:67:8d:42: 77:4e:e3:74:da:90:75:3a:ea:54:53:0d:7d:56:cd:14:78:04: 05:2a:7e:dc:d2:cd:02:9b:25:23:b0:6f:56:06:b3:76:12:6e: b1:08:14:17:9a:27:c9:e8:bd:1d:f7:e2:cf:93:11:0c:67:48: 3b:ac:44:b7:f1:ca:9e:ec:fd:ec:e7:b2:ca:fd:37:ac:d5:88: 83:6c:a5:cb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfIT1qg6IeU8j6dkIcXV37DYqeqIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTgwMDEzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGYzMTViYjVmNjY0YzNmNzIyYjA3YzgwYmY0MThjMGZk YWJkNWE4YmMwNTk3ODlmZjgyZWQ4ZDQ0ODE0ODNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo/Rfr26NOunJJHormWIGAJNzfCf+53eWS9/sDGVxHQmKG Ie0P3uM8L/F4lIokmnALKuZjsEtyfokl11nehFBqBsaGdOh20vigDGUGPpzMtjEZ 2ShGyTkoo2xvCvNIOAyG8qq5Q3pF7xmoSGAD7MiJ2+xinPCCAtsw21zvYAA8FxjD SsUnPUg0g8wcUSrHh9ymDOhHREXcwxXQgIkUcoL6BPJasZZ1IRtXxVffsqJT40I9 aC/TommQnlzlol6RqGrquQyrcaGV4mHMskP+ycFxrPYI4pNey+DIfGPWsnKr+WNz ZG68UDd2BDiYZeWOpkLC+WDTAndA+Sw6lVXLwQiPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhggAahMhTOSoo1udgdQDxW1DSm8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1NDhlNTQwLTQwMmQtNGY2Yy1hZGNiLWE0OTc2YWUwOWJkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8VDDANBgkqhkiG9w0BAQsFAAOCAQEAFxnx3ApiFW9S1RC+0svhWM4g 7atf2tWMjKAB09eGGyEa+XcwDZXX0S405GYNr6WwsWpoY0NJADNS0fxoLkptlo8a OHSv/uOAhQ9aTlRWDsjuw6ai084pZ6LbEdSdNTEqVV+hG/0qTTOijPhK/bZI+kHb /GzW+1gDpe5Dl71H3M9Kof7ccXwvEPbrHyoWJ3tHBIaYPLQlWisYpC9v1WtpD++z NcJvW/f4LlwdiGRiDjO4Z41Cd07jdNqQdTrqVFMNfVbNFHgEBSp+3NLNApslI7Bv VgazdhJusQgUF5onyei9Hffiz5MRDGdIO6xEt/HKnuz97Oeyyv03rNWIg2ylyw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:46:59 2025 by rpki-client