$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a34758e6-cd19-4c81-ab46-f786f49483b3.roa File: a34758e6-cd19-4c81-ab46-f786f49483b3.roa (raw, json) Hash identifier: YH+lUA5Pw/ZiEC+y8lXvNjgjlt8gd0KOI3hmcAzymq4= Subject key identifier: 1C:45:A0:B6:B8:1F:DD:D4:2E:0C:D5:24:2F:9E:E4:B6:AF:27:90:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39B0AAFE689EAD5CFA5E93A8301F9650D2D0EFB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a34758e6-cd19-4c81-ab46-f786f49483b3.roa Signing time: Mon 19 May 2025 16:11:20 +0000 ROA not before: Mon 19 May 2025 16:11:20 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff7:20c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:b0:aa:fe:68:9e:ad:5c:fa:5e:93:a8:30:1f:96:50:d2:d0:ef:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:11:20 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=10445bd9b749d06771bd543fb79634922067a7a0aa696090e29ed3c7c4abc729, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:59:f9:c8:6b:a1:94:a2:d2:9c:55:7f:f6:20: fd:eb:d7:ad:29:2d:df:d4:7c:1c:be:e6:85:1e:cd: 2c:e9:b8:1a:98:d0:89:02:ac:c8:de:85:19:37:e1: e5:7e:18:2b:83:09:32:87:93:c0:c3:03:bd:70:d5: cd:21:26:2f:32:37:1f:5a:46:3e:67:65:96:0c:77: b3:4a:fb:35:44:4a:9f:3f:f4:14:3d:fd:7e:42:48: 3a:12:59:e1:ef:09:85:b2:7b:e9:dc:c0:89:c5:20: ea:ff:25:ee:b1:38:21:a3:32:06:14:11:ed:e5:0a: 06:a1:ae:5f:56:61:8c:46:1d:3f:5f:cd:5a:c1:dc: e3:88:6c:c5:ff:3d:c4:f5:9a:52:a5:30:50:5f:3d: af:53:52:1f:ae:a7:d7:59:30:1b:db:e1:f4:a2:13: 6f:8b:a0:6a:e2:d2:78:cd:e5:bf:b3:a2:1d:e1:b6: c3:bc:41:0c:ef:11:88:9c:70:c6:06:8a:c1:51:52: 6d:2d:64:b7:94:9a:75:a8:f5:9a:ea:51:9b:b8:08: 70:e2:17:eb:35:f0:55:88:72:e2:ec:85:dc:d8:b4: 9b:eb:21:bc:51:f4:c7:30:84:a6:f1:fc:22:ac:81: e7:e9:b1:5b:b6:2b:b6:d8:bc:1a:c3:a0:28:d7:dc: 2b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:45:A0:B6:B8:1F:DD:D4:2E:0C:D5:24:2F:9E:E4:B6:AF:27:90:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a34758e6-cd19-4c81-ab46-f786f49483b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:20c0::/46 Signature Algorithm: sha256WithRSAEncryption 16:e9:bc:17:28:d8:6d:0a:6a:06:bb:9c:42:3d:03:b6:0e:e3: ee:e7:e1:53:4a:cc:38:22:7d:dd:1d:46:85:60:00:48:ce:c9: 4f:86:97:3c:7f:12:dc:b1:1d:be:dc:e7:06:da:ee:2d:03:23: dc:d6:ee:fe:82:cc:1d:af:67:cb:9b:ef:8f:9a:d9:2b:0f:85: 4b:43:ed:e6:5d:70:9c:ac:44:6c:5a:ff:d8:69:fd:6d:0e:a1: d8:ee:f4:ba:38:3f:7d:49:3f:12:34:c8:74:20:ad:52:29:80: 04:e1:b1:c5:f4:d7:8e:e1:18:b1:8e:eb:2a:5d:45:3a:7e:5a: e1:d7:dc:22:80:1e:d3:56:1a:3f:ea:4a:7f:5e:f7:3c:09:db: 4f:57:2c:fb:a5:3b:23:4d:d0:92:e3:e0:33:ee:30:dc:7b:14: 39:38:af:99:cd:72:26:58:05:39:a1:38:c4:9c:7c:12:ac:8d: 32:db:f7:9d:99:c4:0b:1b:08:55:c0:c4:06:92:44:35:24:ae: 37:52:5c:d6:55:65:d3:3f:e1:2a:88:38:79:9f:50:7c:23:9a: 64:4b:50:f6:3f:a1:35:58:88:cb:08:08:d1:9d:55:9b:43:d6: 89:77:e4:58:bf:06:a0:a5:43:8e:34:3b:ea:b4:a2:e7:0b:bc: 0c:1a:43:a5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUObCq/mierVz6XpOoMB+WUNLQ77MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYxMTIwWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMDQ0NWJkOWI3NDlkMDY3NzFiZDU0M2ZiNzk2MzQ5MjIw NjdhN2EwYWE2OTYwOTBlMjllZDNjN2M0YWJjNzI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLWfnIa6GUotKcVX/2IP3r160pLd/UfBy+5oUezSzpuBqY 0IkCrMjehRk34eV+GCuDCTKHk8DDA71w1c0hJi8yNx9aRj5nZZYMd7NK+zVESp8/ 9BQ9/X5CSDoSWeHvCYWye+ncwInFIOr/Je6xOCGjMgYUEe3lCgahrl9WYYxGHT9f zVrB3OOIbMX/PcT1mlKlMFBfPa9TUh+up9dZMBvb4fSiE2+LoGri0njN5b+zoh3h tsO8QQzvEYiccMYGisFRUm0tZLeUmnWo9ZrqUZu4CHDiF+s18FWIcuLshdzYtJvr IbxR9McwhKbx/CKsgefpsVu2K7bYvBrDoCjX3CvBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHEWgtrgf3dQuDNUkL57ktq8nkCAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzNDc1OGU2LWNkMTktNGM4MS1hYjQ2LWY3ODZmNDk0ODNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3IMAwDQYJKoZIhvcNAQELBQADggEBABbpvBco2G0Kaga7nEI9A7YO 4+7n4VNKzDgifd0dRoVgAEjOyU+Glzx/EtyxHb7c5wba7i0DI9zW7v6CzB2vZ8ub 74+a2SsPhUtD7eZdcJysRGxa/9hp/W0Oodju9Lo4P31JPxI0yHQgrVIpgAThscX0 147hGLGO6ypdRTp+WuHX3CKAHtNWGj/qSn9e9zwJ209XLPulOyNN0JLj4DPuMNx7 FDk4r5nNciZYBTmhOMScfBKsjTLb952ZxAsbCFXAxAaSRDUkrjdSXNZVZdM/4SqI OHmfUHwjmmRLUPY/oTVYiMsICNGdVZtD1ol35Fi/BqClQ440O+q0oucLvAwaQ6U= -----END CERTIFICATE-----Generated at Sun Jun 1 04:55:22 2025 by rpki-client