$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa File: 943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa (raw, json) Hash identifier: pqByxBU5VwHP8kJ2pn2joColnR0E/mJByNnqqp3k7UY= Subject key identifier: 07:6F:25:67:EC:9C:F3:24:AF:2A:1C:9C:87:4A:38:AB:04:BB:D3:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06F932A72C59A8F8FCC538B41C417D94E2EA13B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa Signing time: Mon 19 May 2025 16:21:22 +0000 ROA not before: Mon 19 May 2025 16:21:22 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ffb:20c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:f9:32:a7:2c:59:a8:f8:fc:c5:38:b4:1c:41:7d:94:e2:ea:13:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:21:22 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=96a88383952deb6abfa4177809ca4b11278e1a607305a189160359fe01e26311, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f6:2f:02:45:51:30:a5:38:46:d8:80:03:21: 07:ba:47:ed:8a:01:fa:57:a2:5c:6d:d7:9c:1c:36: 97:a6:7a:83:58:60:50:89:00:64:3a:e0:9d:36:10: dd:7b:79:69:49:a2:97:d9:67:a9:7a:62:81:8f:32: 28:0b:66:d8:9f:b9:33:69:b6:cc:71:59:9b:df:91: a6:54:70:01:ff:3f:b0:6f:b1:c9:41:e8:8f:9b:6f: 62:06:03:fc:bd:66:ff:af:1e:fd:75:26:be:c0:73: 80:a2:13:9c:77:88:9b:53:6f:a9:f4:2c:92:98:00: a5:e5:25:c9:0c:e8:92:35:d4:ae:5c:68:0e:0c:4f: 11:f6:df:2c:0e:35:c9:9c:1a:05:b2:c5:9a:71:f2: 5a:f6:54:47:11:9a:5c:af:de:09:70:51:c1:c0:e4: e3:b3:36:e9:14:96:0b:9c:fc:35:de:9a:80:52:d0: fb:61:4a:d7:bd:f5:3c:52:39:e6:ab:5d:a8:71:c2: 1e:0d:6b:cf:9b:33:f1:ca:66:8b:a2:57:34:11:3b: b6:07:d2:eb:a2:e0:79:0e:66:2c:21:04:c4:b9:0a: d6:65:8b:a8:46:26:fd:02:05:ba:1b:13:b2:33:61: ca:39:5a:86:72:28:0b:a6:99:88:30:16:02:62:88: dd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:6F:25:67:EC:9C:F3:24:AF:2A:1C:9C:87:4A:38:AB:04:BB:D3:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/943185fa-c93f-4fa8-8cd3-7831cf759ee7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:20c0::/46 Signature Algorithm: sha256WithRSAEncryption 04:98:52:1b:9c:1f:4b:2f:24:a9:bb:0d:dd:6e:53:3a:57:3f: 19:52:43:4f:81:05:02:2c:cb:22:f8:61:cc:2f:9d:f8:01:6c: 00:ed:d5:1e:2c:6e:16:78:1f:7f:dd:c2:d5:1f:28:2b:e4:a0: 66:fc:68:65:28:d0:14:5e:ae:14:2a:e8:b9:bf:f9:f3:97:5d: ff:a3:fa:39:b4:6a:4e:c8:e8:17:5a:1c:d2:05:25:bf:ea:32: ba:ff:b3:4a:90:de:9b:77:28:e9:e9:9f:cd:6c:ea:12:9f:d0: c3:ba:62:9f:df:4b:0e:f1:06:5d:4c:76:8d:e0:c7:a3:40:e2: 0b:98:c5:a1:fc:e4:dc:ca:fa:6b:1c:14:0b:fb:f7:43:88:dc: f5:89:6f:38:41:62:9d:dc:fa:37:df:79:dd:15:91:2f:7a:0a: 27:07:5c:79:90:8d:6d:d1:21:07:38:32:17:b8:7f:2a:01:ad: eb:e8:1a:7e:a4:18:91:5d:d9:61:f0:0a:2d:af:ad:3b:36:22: f7:0e:a1:c5:18:57:d1:eb:fc:7b:30:e0:7e:29:fd:25:c0:eb: a6:cd:e6:c4:8b:5e:88:b8:fc:16:d6:bc:93:db:09:d7:da:68: d4:55:91:b1:2a:5f:0c:52:f6:6a:b5:08:1e:3f:4e:b4:29:ae: 50:d2:86:9f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBvkypyxZqPj8xTi0HEF9lOLqE7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYyMTIyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NmE4ODM4Mzk1MmRlYjZhYmZhNDE3NzgwOWNhNGIxMTI3 OGUxYTYwNzMwNWExODkxNjAzNTlmZTAxZTI2MzExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE9i8CRVEwpThG2IADIQe6R+2KAfpXolxt15wcNpemeoNY YFCJAGQ64J02EN17eWlJopfZZ6l6YoGPMigLZtifuTNptsxxWZvfkaZUcAH/P7Bv sclB6I+bb2IGA/y9Zv+vHv11Jr7Ac4CiE5x3iJtTb6n0LJKYAKXlJckM6JI11K5c aA4MTxH23ywONcmcGgWyxZpx8lr2VEcRmlyv3glwUcHA5OOzNukUlguc/DXemoBS 0PthSte99TxSOearXahxwh4Na8+bM/HKZouiVzQRO7YH0uui4HkOZiwhBMS5CtZl i6hGJv0CBbobE7IzYco5WoZyKAummYgwFgJiiN1zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUB28lZ+yc8ySvKhych0o4qwS70ycwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MzE4NWZhLWM5M2YtNGZhOC04Y2QzLTc4MzFjZjc1OWVlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7IMAwDQYJKoZIhvcNAQELBQADggEBAASYUhucH0svJKm7Dd1uUzpX PxlSQ0+BBQIsyyL4YcwvnfgBbADt1R4sbhZ4H3/dwtUfKCvkoGb8aGUo0BRerhQq 6Lm/+fOXXf+j+jm0ak7I6BdaHNIFJb/qMrr/s0qQ3pt3KOnpn81s6hKf0MO6Yp/f Sw7xBl1Mdo3gx6NA4guYxaH85NzK+mscFAv790OI3PWJbzhBYp3c+jffed0VkS96 CicHXHmQjW3RIQc4Mhe4fyoBrevoGn6kGJFd2WHwCi2vrTs2IvcOocUYV9Hr/Hsw 4H4p/SXA66bN5sSLXoi4/BbWvJPbCdfaaNRVkbEqXwxS9mq1CB4/TrQprlDShp8= -----END CERTIFICATE-----Generated at Sun Jun 1 04:47:46 2025 by rpki-client