$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa File: aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa (raw, json) Hash identifier: c/EMv37lV8TlHtcdWOWmeIffVRmewE5XQnWt7CZAXnI= Subject key identifier: 69:3F:84:CC:FF:73:77:09:23:29:55:E5:6D:A4:1F:53:54:90:05:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 481AA16E4B5A3E559FE02A5A69F22DF2D3EA470F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa Signing time: Sat 17 May 2025 00:20:13 +0000 ROA not before: Sat 17 May 2025 00:20:13 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 7224 IP address blocks: 2600:1ffd:1008::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1a:a1:6e:4b:5a:3e:55:9f:e0:2a:5a:69:f2:2d:f2:d3:ea:47:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:20:13 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=86d65f7cfcb1f933ec2af489a9ab6877dfa743f2e385712c09dc0ca2f6e173b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8a:78:f1:fc:79:d1:88:8c:ed:9b:3e:60:eb: 73:ac:54:c9:39:d6:12:6f:69:6e:c8:61:d7:4d:39: 35:f9:11:2e:e2:d6:c7:58:33:ba:cc:9f:27:4a:d6: c6:29:42:37:d7:f6:97:0e:73:fe:ea:d7:7b:52:f2: b4:e5:a9:39:86:0b:15:bd:8f:a1:da:30:f2:24:23: b8:5a:b9:bd:2b:03:27:6f:50:94:65:05:9c:d4:a5: d4:ad:b1:5f:e3:1b:7f:bb:80:5b:50:09:af:b0:74: 62:4e:79:32:43:da:ed:8d:70:bb:9e:46:9f:6f:1b: 67:50:98:b9:03:c2:3f:83:5f:59:16:a0:ef:6f:12: 79:f8:01:a0:85:a8:ee:e1:4b:10:f2:01:49:e3:a1: a1:1c:4e:82:47:78:a4:91:18:f4:39:1c:fb:5a:57: b4:f3:f6:81:46:0d:3c:da:89:68:78:e2:6f:22:b6: ce:28:81:09:f3:aa:a9:7d:50:71:ab:aa:fa:6e:31: 98:a1:80:8b:f4:07:89:2b:68:81:af:5a:0c:4f:84: 37:56:d5:28:c4:6f:4e:5d:77:93:16:8a:7e:61:42: 9c:6f:30:2e:83:95:37:93:16:cd:aa:4e:57:f4:5a: 47:e9:d9:45:5a:13:e0:64:39:bc:7f:3e:be:e9:3d: a1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3F:84:CC:FF:73:77:09:23:29:55:E5:6D:A4:1F:53:54:90:05:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4b93c4-5123-4d2f-a2e4-dd98abc19e76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:1008::/48 Signature Algorithm: sha256WithRSAEncryption 29:d4:38:6c:ac:f0:26:3f:7c:62:e0:b0:e7:85:ba:27:44:ef: 01:42:e1:0a:33:aa:00:55:43:b0:ed:68:d1:c9:fa:14:e2:38: 80:51:ce:53:93:79:0e:6d:ce:95:b4:76:4d:5d:f9:d2:be:04: e1:be:94:2b:8a:57:fc:ae:fe:e4:f1:f3:28:a8:ed:b2:d0:72: 58:55:ba:b2:33:39:4c:62:3c:c3:90:aa:08:6a:b9:9b:79:d4: bc:59:c8:c7:8f:6e:ae:5c:10:b0:7e:62:7b:1a:74:b5:ec:ac: b9:cf:26:80:05:1a:91:61:aa:98:2f:e5:75:bc:d6:5f:48:80: 3b:51:de:c8:26:13:35:9c:ee:dd:12:00:c4:3c:29:65:04:39: eb:69:c9:2e:9a:61:10:15:9b:13:5e:d6:5b:93:82:7b:68:04: 46:db:dd:04:c0:d5:ba:41:d2:d8:b5:09:88:3c:05:28:ff:5c: 66:ca:55:b1:4c:36:02:65:fb:a9:31:07:7f:c0:27:0d:e8:cb: b5:c4:c5:e5:7d:4d:28:ea:06:96:c3:c2:41:c9:36:ea:d7:d8: 7a:03:a5:25:1f:e1:89:77:33:c2:e7:ce:2c:eb:aa:72:18:f4: 5f:f3:21:c7:a2:42:6f:a5:92:69:1c:d5:ff:58:d0:71:91:07: 1d:bc:f5:b6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSBqhbktaPlWf4CpaafIt8tPqRw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDAyMDEzWhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmQ2NWY3Y2ZjYjFmOTMzZWMyYWY0ODlhOWFiNjg3N2Rm YTc0M2YyZTM4NTcxMmMwOWRjMGNhMmY2ZTE3M2IxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+injx/HnRiIztmz5g63OsVMk51hJvaW7IYddNOTX5ES7i 1sdYM7rMnydK1sYpQjfX9pcOc/7q13tS8rTlqTmGCxW9j6HaMPIkI7haub0rAydv UJRlBZzUpdStsV/jG3+7gFtQCa+wdGJOeTJD2u2NcLueRp9vG2dQmLkDwj+DX1kW oO9vEnn4AaCFqO7hSxDyAUnjoaEcToJHeKSRGPQ5HPtaV7Tz9oFGDTzaiWh44m8i ts4ogQnzqql9UHGrqvpuMZihgIv0B4kraIGvWgxPhDdW1SjEb05dd5MWin5hQpxv MC6DlTeTFs2qTlf0Wkfp2UVaE+BkObx/Pr7pPaFHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaT+EzP9zdwkjKVXlbaQfU1SQBTcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhNGI5M2M0LTUxMjMtNGQyZi1hMmU0LWRkOThhYmMxOWU3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9EAgwDQYJKoZIhvcNAQELBQADggEBACnUOGys8CY/fGLgsOeFuidE 7wFC4QozqgBVQ7DtaNHJ+hTiOIBRzlOTeQ5tzpW0dk1d+dK+BOG+lCuKV/yu/uTx 8yio7bLQclhVurIzOUxiPMOQqghquZt51LxZyMePbq5cELB+YnsadLXsrLnPJoAF GpFhqpgv5XW81l9IgDtR3sgmEzWc7t0SAMQ8KWUEOetpyS6aYRAVmxNe1luTgnto BEbb3QTA1bpB0ti1CYg8BSj/XGbKVbFMNgJl+6kxB3/AJw3oy7XExeV9TSjqBpbD wkHJNurX2HoDpSUf4Yl3M8LnzizrqnIY9F/zIceiQm+lkmkc1f9Y0HGRBx289bY= -----END CERTIFICATE-----Generated at Sun Jun 1 04:24:12 2025 by rpki-client