$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c2d777-6b3c-4fd7-b962-4d3208537c27.roa File: 99c2d777-6b3c-4fd7-b962-4d3208537c27.roa (raw, json) Hash identifier: AZ2OejPrS+QHdwJ4CCsAlS/y0kGCRhG00VJGq41oD9w= Subject key identifier: A7:D1:2C:6F:2B:78:8B:68:41:DB:61:99:38:DC:C5:38:DC:C2:8D:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D0207B928326BFAE73CDA0EEEE4533E71EBA46F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c2d777-6b3c-4fd7-b962-4d3208537c27.roa Signing time: Fri 16 May 2025 16:11:37 +0000 ROA not before: Fri 16 May 2025 16:11:37 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:02:07:b9:28:32:6b:fa:e7:3c:da:0e:ee:e4:53:3e:71:eb:a4:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:11:37 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=9e1d0e2d6729dd4029e96d92d78ebd5698d0366ecabe134144c7469fe00454d4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c4:0b:14:53:1d:8b:c8:4f:29:5d:14:21:b1: 64:44:62:90:06:96:15:36:6a:5e:37:af:10:75:4e: eb:9e:bb:00:e9:5b:92:d4:80:aa:e2:cc:2c:42:78: d1:1c:61:14:f3:80:9f:7a:54:af:4c:5c:95:81:e2: 3c:d5:cc:33:26:25:a5:a3:d7:fb:a7:d0:5c:2a:1f: e3:85:da:38:82:e3:f8:89:eb:1e:77:02:ee:ad:dc: f3:cf:34:35:4e:17:3e:5a:c9:e5:f1:58:f8:04:2d: d8:4a:8b:59:02:10:13:c8:8d:5e:38:c3:52:e4:e7: fa:8c:8e:d3:62:4c:25:db:21:7e:8a:41:25:9a:dc: 30:40:ab:50:a0:55:24:0e:33:b4:18:4d:0e:8c:36: 6e:07:45:35:b7:00:77:0b:cd:5b:34:04:55:a2:11: a5:a2:c7:fd:a0:b2:e7:68:64:8b:e4:6d:08:d0:2d: 12:84:c3:51:95:f8:80:63:12:e2:ea:d0:97:3e:88: e7:b2:98:e3:10:c8:14:fc:fb:ec:bd:37:12:f0:8e: 17:cd:f4:8b:af:e2:6a:68:e1:90:b6:3e:5f:27:ca: b1:d0:24:d0:85:af:9c:a9:c3:e2:5c:c0:7f:e2:2e: ec:f6:2f:dc:30:eb:14:2d:0c:87:84:d9:07:b1:09: af:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D1:2C:6F:2B:78:8B:68:41:DB:61:99:38:DC:C5:38:DC:C2:8D:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c2d777-6b3c-4fd7-b962-4d3208537c27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:1080::/48 Signature Algorithm: sha256WithRSAEncryption 9a:99:70:ec:e7:87:d4:27:33:a9:89:69:bd:7a:a3:b9:7e:be: 09:73:5c:46:33:94:5e:4d:69:df:06:f8:de:03:a8:70:d6:82: 3b:5c:6b:0a:80:be:2d:72:52:5e:c1:0b:ba:4e:01:d1:96:ad: 38:47:36:32:6f:bd:00:a6:f1:ed:de:5f:04:f9:a0:0d:35:7a: 7c:88:9b:1d:85:6a:61:cc:05:bb:f1:8c:4f:d5:0d:b0:03:41: f6:77:2b:f5:ba:a9:c8:4a:3c:1b:de:6b:3d:87:62:9a:0a:19: ee:fa:cc:dc:78:46:a8:48:0b:c8:e9:f2:2e:cd:9f:b9:0c:3e: 6a:fe:f7:bd:a8:68:4d:87:9a:31:1c:3e:62:23:56:ac:13:8f: 62:86:bc:d7:a2:3b:69:59:d9:ec:e8:8c:c4:a0:d3:ac:5f:79: 8e:29:f9:da:de:92:ab:9d:24:23:24:25:6b:a0:64:12:c5:ff: 08:28:a3:15:74:64:ba:7d:d9:a3:82:12:c3:ab:a8:d7:16:9d: aa:47:9c:e6:b2:46:ff:66:6e:0b:20:e8:94:96:fa:9d:af:9f: a4:f1:f2:6f:ad:f4:58:77:cd:89:f2:e5:69:0d:12:ac:78:2c: 96:45:37:f3:f8:52:a9:e0:75:52:b9:c5:cf:8b:24:63:c2:d6: d3:6f:41:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXQIHuSgya/rnPNoO7uRTPnHrpG8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTYxMTM3WhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTFkMGUyZDY3MjlkZDQwMjllOTZkOTJkNzhlYmQ1Njk4 ZDAzNjZlY2FiZTEzNDE0NGM3NDY5ZmUwMDQ1NGQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwxAsUUx2LyE8pXRQhsWREYpAGlhU2al43rxB1TuueuwDp W5LUgKrizCxCeNEcYRTzgJ96VK9MXJWB4jzVzDMmJaWj1/un0FwqH+OF2jiC4/iJ 6x53Au6t3PPPNDVOFz5ayeXxWPgELdhKi1kCEBPIjV44w1Lk5/qMjtNiTCXbIX6K QSWa3DBAq1CgVSQOM7QYTQ6MNm4HRTW3AHcLzVs0BFWiEaWix/2gsudoZIvkbQjQ LRKEw1GV+IBjEuLq0Jc+iOeymOMQyBT8++y9NxLwjhfN9Iuv4mpo4ZC2Pl8nyrHQ JNCFr5ypw+JcwH/iLuz2L9ww6xQtDIeE2QexCa+BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUp9Esbyt4i2hB22GZONzFONzCjbMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5YzJkNzc3LTZiM2MtNGZkNy1iOTYyLTRkMzIwODUzN2MyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hEIAwDQYJKoZIhvcNAQELBQADggEBAJqZcOznh9QnM6mJab16o7l+ vglzXEYzlF5Nad8G+N4DqHDWgjtcawqAvi1yUl7BC7pOAdGWrThHNjJvvQCm8e3e XwT5oA01enyImx2FamHMBbvxjE/VDbADQfZ3K/W6qchKPBveaz2HYpoKGe76zNx4 RqhIC8jp8i7Nn7kMPmr+972oaE2HmjEcPmIjVqwTj2KGvNeiO2lZ2ezojMSg06xf eY4p+drekqudJCMkJWugZBLF/wgooxV0ZLp92aOCEsOrqNcWnapHnOayRv9mbgsg 6JSW+p2vn6Tx8m+t9Fh3zYny5WkNEqx4LJZFN/P4UqngdVK5xc+LJGPC1tNvQRg= -----END CERTIFICATE-----Generated at Sun Jun 1 05:16:06 2025 by rpki-client