$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa File: a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa (raw, json) Hash identifier: qj/nGzR94qx4LdeR84Y8RBq04cz00ASdP1HBmdiFj94= Subject key identifier: D0:DD:DA:B5:F7:40:0C:B7:E5:9B:1E:9C:AC:14:B5:A3:30:2B:58:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 560E95DEACF16D72E99E11A3CD755CF3CF40F854 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa Signing time: Fri 30 May 2025 00:11:48 +0000 ROA not before: Fri 30 May 2025 00:11:48 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8188::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:0e:95:de:ac:f1:6d:72:e9:9e:11:a3:cd:75:5c:f3:cf:40:f8:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:11:48 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=51400544f25e1101ba3b0cc6907aa7cf1222a63c1ebb4b99eefdaf60cf4f4f1d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:43:9c:c5:a9:41:35:47:1d:f6:87:1a:20:62: 35:9e:cd:01:58:9c:44:93:24:f6:d9:75:3d:34:4d: f6:10:db:aa:9c:22:01:5f:67:0f:83:fb:f7:de:63: fc:0e:2a:ae:13:2a:8d:7b:73:7f:f4:90:f2:a3:30: 8c:df:36:21:1b:bc:28:89:2b:21:56:1b:1e:48:78: 43:97:60:23:65:ce:8a:ee:5b:d7:f1:b1:17:02:6a: fa:20:49:6c:a5:c8:37:d1:84:b1:84:fc:85:6c:6f: 27:82:e2:84:87:7f:ba:a8:36:ad:66:08:9c:7d:18: 73:e7:e4:2d:85:ff:3b:db:dc:cf:63:26:89:7a:c1: 3e:00:77:8f:70:1a:34:ab:5e:67:26:02:ca:f4:9c: 1c:6c:fc:b2:27:1b:33:41:0b:f1:e9:45:56:8e:86: 63:7a:9e:2c:dd:91:4d:76:14:00:2d:a8:32:e0:8f: a8:01:f8:dd:a1:3a:01:e2:d9:99:da:34:c2:5b:72: 79:7a:70:f4:11:38:a1:00:52:27:18:7e:6f:f9:69: 99:7f:c5:14:8a:95:cf:b4:af:60:ad:2f:1d:84:07: a7:bc:c1:c7:b5:2a:bb:83:55:ea:e1:4d:06:6d:ec: 17:8e:30:8c:1e:dc:16:36:c9:a2:a5:d4:aa:63:63: 78:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:DD:DA:B5:F7:40:0C:B7:E5:9B:1E:9C:AC:14:B5:A3:30:2B:58:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8188::/48 Signature Algorithm: sha256WithRSAEncryption 56:8a:6a:b5:0e:c8:1d:47:a0:3a:9e:4e:21:02:da:fd:3c:ff: ad:63:d8:76:2e:0e:08:3e:ff:c7:94:9d:ab:f6:fc:4e:da:15: 88:e0:9b:9f:9d:f7:5c:12:de:5e:b5:8a:0f:9d:59:59:2c:aa: ab:8a:98:fe:74:c7:64:70:05:52:83:de:e9:4a:9b:e8:51:4f: 6d:32:2a:fa:e6:f0:b2:95:45:54:f1:23:02:17:75:15:8d:9e: 16:54:fa:24:b5:4e:7b:f4:21:62:88:8d:7b:1f:05:7e:5e:6f: ac:ee:c0:bc:3d:26:db:37:83:3f:3c:ff:19:6b:73:81:63:29: c8:fd:5f:84:75:bb:77:43:7a:36:3d:d0:f2:64:fc:fd:ba:fa: d1:d1:ee:6a:1e:9e:46:7a:7a:65:56:10:e9:b0:89:00:e6:7a: 40:60:24:b8:a3:3c:04:29:df:f3:87:57:8c:e9:98:09:da:13: 11:8e:ed:32:e8:24:5a:5a:48:09:64:e4:3b:94:87:c1:d6:48: b7:de:f6:48:a3:de:f7:7d:a6:13:2f:42:b2:9e:53:75:52:47: a2:7d:0c:53:0d:2a:d6:ed:86:2a:d0:72:d4:93:e3:72:b4:e0: 7b:02:0b:d5:7d:22:7d:72:65:47:a4:0e:13:b7:be:86:ef:ed: e7:e5:42:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVg6V3qzxbXLpnhGjzXVc889A+FQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAxMTQ4WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTQwMDU0NGYyNWUxMTAxYmEzYjBjYzY5MDdhYTdjZjEy MjJhNjNjMWViYjRiOTllZWZkYWY2MGNmNGY0ZjFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsQ5zFqUE1Rx32hxogYjWezQFYnESTJPbZdT00TfYQ26qc IgFfZw+D+/feY/wOKq4TKo17c3/0kPKjMIzfNiEbvCiJKyFWGx5IeEOXYCNlzoru W9fxsRcCavogSWylyDfRhLGE/IVsbyeC4oSHf7qoNq1mCJx9GHPn5C2F/zvb3M9j Jol6wT4Ad49wGjSrXmcmAsr0nBxs/LInGzNBC/HpRVaOhmN6nizdkU12FAAtqDLg j6gB+N2hOgHi2ZnaNMJbcnl6cPQROKEAUicYfm/5aZl/xRSKlc+0r2CtLx2EB6e8 wce1KruDVerhTQZt7BeOMIwe3BY2yaKl1KpjY3iZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0N3atfdADLflmx6crBS1ozArWBkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNDBkYzY0LTY1ZjAtNDYxYS1hZDZhLThjMTM3YjlkOGFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gYgwDQYJKoZIhvcNAQELBQADggEBAFaKarUOyB1HoDqeTiEC2v08 /61j2HYuDgg+/8eUnav2/E7aFYjgm5+d91wS3l61ig+dWVksqquKmP50x2RwBVKD 3ulKm+hRT20yKvrm8LKVRVTxIwIXdRWNnhZU+iS1Tnv0IWKIjXsfBX5eb6zuwLw9 Jts3gz88/xlrc4FjKcj9X4R1u3dDejY90PJk/P26+tHR7moenkZ6emVWEOmwiQDm ekBgJLijPAQp3/OHV4zpmAnaExGO7TLoJFpaSAlk5DuUh8HWSLfe9kij3vd9phMv QrKeU3VSR6J9DFMNKtbthirQctST43K04HsCC9V9In1yZUekDhO3vobv7eflQmk= -----END CERTIFICATE-----Generated at Sun Jun 1 04:59:44 2025 by rpki-client