$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa File: 9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa (raw, json) Hash identifier: FB9AAem0TjuMwKbPOqM2yuMk1E1FqL75nbgw396eMa4= Subject key identifier: E3:46:C4:48:47:9D:0C:53:A7:95:5A:97:DB:CD:CF:67:9C:A6:5E:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FB81376BA452A056F6AE1B1DA4FBB4DAF0B308F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa Signing time: Fri 16 May 2025 16:51:01 +0000 ROA not before: Fri 16 May 2025 16:51:01 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f61:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b8:13:76:ba:45:2a:05:6f:6a:e1:b1:da:4f:bb:4d:af:0b:30:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:51:01 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=22e54127109ad95695f389006b338343eb231a44978ef3703250cfdd848c3bba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a0:6a:e3:01:2c:03:56:05:22:e5:f7:d5:8e: 6b:8e:f0:88:b6:2e:72:77:87:c7:c4:f4:1d:28:2b: 50:4e:7c:ec:1a:cd:af:a3:06:65:08:38:46:ec:71: f8:85:6a:78:87:84:83:f3:76:66:19:02:7b:dd:8a: 9f:06:a5:9a:df:17:c0:75:6b:e9:bb:ac:27:fe:d1: 4a:54:f6:6a:db:cd:bf:95:8a:3e:60:76:7c:e6:ff: 5e:b1:11:01:e6:31:e5:62:9c:26:5a:5f:2e:00:df: cd:20:d6:97:3f:9a:4c:81:77:d0:7c:76:af:e8:54: 91:ea:54:84:69:66:84:22:80:4b:ae:ce:46:9f:8f: ca:45:24:37:09:be:0f:8e:ae:ec:0d:7c:f9:dc:03: 51:17:ad:2d:83:19:8a:e3:11:a5:ae:a8:ef:69:f6: 02:a0:13:4b:d8:31:f4:6d:d7:ed:b4:f6:6d:77:c7: bb:a1:ec:4c:73:8b:86:4c:bc:a6:0c:ea:8c:e2:76: 34:11:a5:cc:58:e5:2d:38:08:eb:15:ed:cd:87:5b: 59:c5:48:f8:f1:77:50:4d:eb:59:32:d8:7b:65:2f: 17:19:d9:05:1c:d6:fb:da:69:12:bd:b5:50:8d:00: 32:bd:96:94:7d:1d:77:a9:aa:78:4f:34:4a:f2:cc: 0a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:46:C4:48:47:9D:0C:53:A7:95:5A:97:DB:CD:CF:67:9C:A6:5E:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:8080::/48 Signature Algorithm: sha256WithRSAEncryption bd:66:b2:85:a0:a8:f4:99:37:da:7b:9a:48:3e:1b:39:8c:a3: 8c:e6:82:e7:91:ef:8c:ae:16:3c:72:40:5d:2a:fc:53:22:0d: 78:1e:91:56:89:fc:c8:65:95:f3:a1:20:dd:5a:28:d4:ea:c0: bd:ba:52:28:51:83:4a:99:0e:c8:1c:4b:87:ca:0a:d2:f8:5c: 02:83:2e:cb:30:e6:88:8a:1d:9b:11:26:a6:13:1c:55:52:14: 4a:4b:71:30:07:8c:f0:e8:a1:10:c1:44:a1:a5:51:04:07:49: 05:b0:3f:78:6c:6d:94:4b:22:9b:bd:2a:2f:55:82:1a:07:3f: 17:7d:e7:4f:c4:3e:fd:9b:08:89:8b:3c:eb:c3:13:0e:84:2f: db:75:42:1c:12:36:75:15:7b:88:3e:66:3a:ec:13:76:d9:30: ed:d5:0b:f7:ea:a6:69:5a:e1:12:c8:2d:94:23:18:d2:68:4f: c1:8a:9a:66:f9:d1:b4:da:c8:3c:f0:37:82:2c:b3:77:1d:4e: 1c:dc:e6:7e:13:bb:1a:e0:c7:ea:b7:4a:18:f8:9a:35:43:22: 06:53:fa:ba:4e:0f:0d:29:90:2c:4e:0a:ac:e9:88:ed:26:26: 08:d1:98:37:63:bd:cf:93:32:93:a0:ed:44:9e:93:b1:0c:fb: e6:1c:88:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUf7gTdrpFKgVvauGx2k+7Ta8LMI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTY1MTAxWhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMmU1NDEyNzEwOWFkOTU2OTVmMzg5MDA2YjMzODM0M2Vi MjMxYTQ0OTc4ZWYzNzAzMjUwY2ZkZDg0OGMzYmJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZoGrjASwDVgUi5ffVjmuO8Ii2LnJ3h8fE9B0oK1BOfOwa za+jBmUIOEbscfiFaniHhIPzdmYZAnvdip8GpZrfF8B1a+m7rCf+0UpU9mrbzb+V ij5gdnzm/16xEQHmMeVinCZaXy4A380g1pc/mkyBd9B8dq/oVJHqVIRpZoQigEuu zkafj8pFJDcJvg+OruwNfPncA1EXrS2DGYrjEaWuqO9p9gKgE0vYMfRt1+209m13 x7uh7Exzi4ZMvKYM6ozidjQRpcxY5S04COsV7c2HW1nFSPjxd1BN61ky2HtlLxcZ 2QUc1vvaaRK9tVCNADK9lpR9HXepqnhPNEryzAoNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU40bESEedDFOnlVqX283PZ5ymXoswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkZTU5NTU3LTZhNWEtNGViMC1iN2MyLTJhMjY2NmQ0ZGI2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hgIAwDQYJKoZIhvcNAQELBQADggEBAL1msoWgqPSZN9p7mkg+GzmM o4zmgueR74yuFjxyQF0q/FMiDXgekVaJ/MhllfOhIN1aKNTqwL26UihRg0qZDsgc S4fKCtL4XAKDLssw5oiKHZsRJqYTHFVSFEpLcTAHjPDooRDBRKGlUQQHSQWwP3hs bZRLIpu9Ki9VghoHPxd950/EPv2bCImLPOvDEw6EL9t1QhwSNnUVe4g+ZjrsE3bZ MO3VC/fqpmla4RLILZQjGNJoT8GKmmb50bTayDzwN4Iss3cdThzc5n4Tuxrgx+q3 Shj4mjVDIgZT+rpODw0pkCxOCqzpiO0mJgjRmDdjvc+TMpOg7USek7EM++YciPs= -----END CERTIFICATE-----Generated at Sat Jun 7 17:58:40 2025 by rpki-client