$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96968cc0-446f-4ff2-89bf-90e295a5c60a.roa File: 96968cc0-446f-4ff2-89bf-90e295a5c60a.roa (raw, json) Hash identifier: 3VnqN5U+zfCEPylMGO7y10Id0A+JK8NBMhMIACeytv0= Subject key identifier: 79:88:CC:A3:7B:7B:D2:D5:61:6E:81:23:51:D8:25:B1:06:B6:C4:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6934AE02524856EB6162114F246021DF1756B99E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96968cc0-446f-4ff2-89bf-90e295a5c60a.roa Signing time: Mon 19 May 2025 16:01:40 +0000 ROA not before: Mon 19 May 2025 16:01:40 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:a480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:34:ae:02:52:48:56:eb:61:62:11:4f:24:60:21:df:17:56:b9:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:01:40 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=1507e6969315bf1d2f89791868122cb6e36866163150adef5e20488fb44f6edd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:71:54:d9:c0:bc:13:ec:da:b6:68:23:71:ad: c9:cd:54:ae:48:95:21:35:53:b9:57:d0:85:e5:47: c9:bd:89:32:36:fb:4c:53:dc:ea:1f:bc:94:06:e0: 08:ec:24:09:e6:4d:7c:e3:60:e5:6a:da:a1:57:4e: a2:3a:bd:62:6b:15:a6:23:02:0e:70:68:97:94:3d: 56:7e:7f:d3:bc:d6:5d:67:25:0d:81:48:eb:22:5f: 31:a6:4f:25:3e:51:cc:f5:97:51:1f:7f:cd:3a:55: f1:d5:e5:7a:00:f3:fb:d9:7d:46:02:87:4d:58:74: ab:f7:22:bf:f8:a4:3b:76:df:64:9d:c0:e2:a2:2e: b6:5e:9b:df:59:38:3b:bb:2a:d1:fc:b7:dc:e9:3e: 8d:ec:f9:07:44:d9:9f:fa:92:8c:14:82:3c:27:d1: d4:49:03:a3:27:02:26:5a:9b:d2:22:a1:2b:0f:68: 9f:9b:30:00:41:88:f8:38:dc:5f:50:90:08:25:de: fa:72:80:a5:56:e9:54:d4:c3:1d:f5:30:e5:37:3c: 62:3f:a4:41:06:af:b2:f1:b4:e4:55:00:50:f5:fc: 82:85:38:00:3e:3a:95:b8:75:f1:84:a3:99:83:f9: 7a:52:8d:a8:b5:69:2e:ef:ba:6f:c6:ce:c3:d2:85: 71:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:88:CC:A3:7B:7B:D2:D5:61:6E:81:23:51:D8:25:B1:06:B6:C4:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96968cc0-446f-4ff2-89bf-90e295a5c60a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:a480::/48 Signature Algorithm: sha256WithRSAEncryption 35:eb:1d:6a:3b:b0:26:07:53:1b:9e:13:0c:ec:61:7d:19:23: d2:d2:96:3b:d2:18:e6:f1:a0:66:4e:5d:4d:86:df:1b:3d:d7: 2a:fc:c3:3d:c4:0f:04:4b:ba:7f:8b:74:99:ae:91:86:6d:33: bf:96:6c:d9:fa:12:d7:05:ab:aa:9f:e5:d2:70:76:0a:b8:82: 2a:1d:48:31:a8:fb:2d:b3:3f:4c:83:06:f2:7e:48:8e:d9:34: 32:ac:78:c1:dd:b9:df:85:63:9e:81:d9:73:8b:ce:69:4e:17: 4d:6e:52:c6:1e:8a:dd:df:74:9a:fb:5f:ca:a8:7d:26:11:1c: da:b4:cc:be:e5:14:ec:83:f2:2b:41:20:c7:cd:c1:8f:12:aa: 7e:82:4d:bf:e5:1a:de:ba:a4:90:26:90:06:bb:a8:48:c2:93: d3:c4:d6:14:11:09:b8:b6:6f:b9:26:1d:66:59:e6:60:9f:a7: 72:06:7f:0f:c7:a8:57:c6:d7:c2:bc:8d:3d:ec:e7:6c:96:9c: 63:57:fa:fc:36:b6:d7:9c:64:ac:b7:9b:0c:db:50:fa:48:91: cd:0f:9e:dd:95:92:76:ce:46:93:42:21:9f:44:2e:f2:06:90: a3:4d:a8:b6:28:75:3c:21:6f:97:c6:f5:f5:c9:32:6b:14:f2: df:96:47:8d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaTSuAlJIVuthYhFPJGAh3xdWuZ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYwMTQwWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTA3ZTY5NjkzMTViZjFkMmY4OTc5MTg2ODEyMmNiNmUz Njg2NjE2MzE1MGFkZWY1ZTIwNDg4ZmI0NGY2ZWRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCycVTZwLwT7Nq2aCNxrcnNVK5IlSE1U7lX0IXlR8m9iTI2 +0xT3OofvJQG4AjsJAnmTXzjYOVq2qFXTqI6vWJrFaYjAg5waJeUPVZ+f9O81l1n JQ2BSOsiXzGmTyU+Ucz1l1Eff806VfHV5XoA8/vZfUYCh01YdKv3Ir/4pDt232Sd wOKiLrZem99ZODu7KtH8t9zpPo3s+QdE2Z/6kowUgjwn0dRJA6MnAiZam9IioSsP aJ+bMABBiPg43F9QkAgl3vpygKVW6VTUwx31MOU3PGI/pEEGr7LxtORVAFD1/IKF OAA+OpW4dfGEo5mD+XpSjai1aS7vum/GzsPShXHJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeYjMo3t70tVhboEjUdglsQa2xHAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk2OTY4Y2MwLTQ0NmYtNGZmMi04OWJmLTkwZTI5NWE1YzYwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hpIAwDQYJKoZIhvcNAQELBQADggEBADXrHWo7sCYHUxueEwzsYX0Z I9LSljvSGObxoGZOXU2G3xs91yr8wz3EDwRLun+LdJmukYZtM7+WbNn6EtcFq6qf 5dJwdgq4giodSDGo+y2zP0yDBvJ+SI7ZNDKseMHdud+FY56B2XOLzmlOF01uUsYe it3fdJr7X8qofSYRHNq0zL7lFOyD8itBIMfNwY8Sqn6CTb/lGt66pJAmkAa7qEjC k9PE1hQRCbi2b7kmHWZZ5mCfp3IGfw/HqFfG18K8jT3s52yWnGNX+vw2ttecZKy3 mwzbUPpIkc0Pnt2VknbORpNCIZ9ELvIGkKNNqLYodTwhb5fG9fXJMmsU8t+WR40= -----END CERTIFICATE-----Generated at Sun Jun 1 05:23:24 2025 by rpki-client