$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa File: aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa (raw, json) Hash identifier: q8xxkItP11Z9Ca27HH7vU3b9J5zfG5VSHznrXC+oxjA= Subject key identifier: 0F:33:01:0E:86:E5:89:F0:4D:84:6D:34:84:88:75:68:98:D8:65:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B35B747BA89E2D77A388D4F248E84270EAB7559 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa Signing time: Tue 20 May 2025 00:41:22 +0000 ROA not before: Tue 20 May 2025 00:41:22 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f23:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:35:b7:47:ba:89:e2:d7:7a:38:8d:4f:24:8e:84:27:0e:ab:75:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:41:22 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=0d4d1cd611345e21187c4e7b30004d7d1929f8c610a6e969aff3d3627c49bfa3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2d:cc:0b:3c:00:16:c5:b0:42:ce:86:d3:c6: 79:16:32:a3:89:23:5d:a7:f1:02:c0:a3:f0:97:2a: a2:01:ef:11:41:a3:cf:82:f5:aa:2f:b9:a9:b5:e5: 1f:ec:da:e6:63:4f:24:91:8e:55:1e:0f:a6:e4:70: 24:4e:80:02:ea:53:b8:fc:f4:f6:09:ab:33:a4:b2: 43:6e:86:19:7a:54:ad:f4:53:56:33:37:25:88:65: b3:c2:66:94:53:09:7d:af:c6:95:e6:c7:b6:a6:b2: 47:08:73:89:e6:44:12:0e:df:48:4c:51:20:c0:ed: e7:df:17:06:bc:50:9e:43:cc:e6:f1:83:a1:4d:71: b9:d5:32:69:3b:01:95:24:f8:9a:1e:69:4e:99:f8: 72:e9:37:13:c9:b5:e3:fa:fc:e6:75:f9:f7:97:bb: b3:f1:66:21:8c:5f:5e:13:0a:31:aa:f9:8d:2e:46: 54:12:c7:85:d8:af:1a:7c:03:1c:f6:6b:94:aa:ba: 55:67:aa:05:01:e8:71:e7:18:4d:a7:6b:8a:63:d1: 51:70:53:b6:ca:69:4f:75:c7:3e:f4:dc:c3:a3:84: ba:f4:78:16:3e:ff:eb:47:51:9f:20:b0:43:c6:55: c9:e7:d3:6d:f0:98:2f:68:ef:94:03:bf:09:02:9d: b5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:33:01:0E:86:E5:89:F0:4D:84:6D:34:84:88:75:68:98:D8:65:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aea1a8c4-9623-482e-bac8-7f47ab2e6116.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f23:8000::/36 Signature Algorithm: sha256WithRSAEncryption 51:70:aa:5a:da:fe:c4:29:c8:76:84:d2:e1:c6:77:16:94:37: 35:d3:00:14:1f:48:32:99:6d:fe:6a:96:fc:c3:78:5e:93:7d: 72:fd:86:3f:ff:42:eb:53:87:9b:46:ed:94:35:df:0b:74:dd: a2:ec:7f:76:d3:82:ef:ea:e2:48:ff:67:2d:31:17:86:45:50: 17:ca:a4:8d:3d:59:ef:05:a2:78:5b:07:04:d1:91:3e:d2:81: e4:f5:be:37:c1:0a:ec:ed:de:a9:90:3e:81:d4:0f:97:f8:90: 89:a1:5e:f0:af:fd:20:f3:6c:d8:56:44:95:8b:ee:8d:5d:de: d9:e0:49:8b:fb:55:25:4c:9d:4b:49:45:7b:55:d3:27:3c:c2: 9e:dd:2f:f1:7b:0f:a0:08:e8:71:53:07:73:97:0a:aa:15:75: 3b:bf:d5:d0:e5:63:a6:bb:51:69:c4:e0:1e:ce:13:e5:29:56: c8:9e:24:96:bd:0f:57:2d:1a:e0:54:b3:4c:2b:78:a6:de:84: a1:c0:41:5c:55:b7:c9:b5:60:e4:49:5e:a3:c4:b7:0b:1a:6b: e2:c2:0d:22:98:b1:dc:81:1c:95:b5:e7:71:71:c7:be:a8:8a: 16:82:12:d9:f3:59:8d:9f:8f:da:b8:f2:fc:e9:3d:ab:01:4f: 93:0d:3c:0b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUazW3R7qJ4td6OI1PJI6EJw6rdVkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDA0MTIyWhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDRkMWNkNjExMzQ1ZTIxMTg3YzRlN2IzMDAwNGQ3ZDE5 MjlmOGM2MTBhNmU5NjlhZmYzZDM2MjdjNDliZmEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwLcwLPAAWxbBCzobTxnkWMqOJI12n8QLAo/CXKqIB7xFB o8+C9aovuam15R/s2uZjTySRjlUeD6bkcCROgALqU7j89PYJqzOkskNuhhl6VK30 U1YzNyWIZbPCZpRTCX2vxpXmx7amskcIc4nmRBIO30hMUSDA7effFwa8UJ5DzObx g6FNcbnVMmk7AZUk+JoeaU6Z+HLpNxPJteP6/OZ1+feXu7PxZiGMX14TCjGq+Y0u RlQSx4XYrxp8Axz2a5SqulVnqgUB6HHnGE2na4pj0VFwU7bKaU91xz703MOjhLr0 eBY+/+tHUZ8gsEPGVcnn023wmC9o75QDvwkCnbWDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDzMBDoblifBNhG00hIh1aJjYZfgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYTFhOGM0LTk2MjMtNDgyZS1iYWM4LTdmNDdhYjJlNjExNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8jgDANBgkqhkiG9w0BAQsFAAOCAQEAUXCqWtr+xCnIdoTS4cZ3FpQ3 NdMAFB9IMplt/mqW/MN4XpN9cv2GP/9C61OHm0btlDXfC3Tdoux/dtOC7+riSP9n LTEXhkVQF8qkjT1Z7wWieFsHBNGRPtKB5PW+N8EK7O3eqZA+gdQPl/iQiaFe8K/9 IPNs2FZElYvujV3e2eBJi/tVJUydS0lFe1XTJzzCnt0v8XsPoAjocVMHc5cKqhV1 O7/V0OVjprtRacTgHs4T5SlWyJ4klr0PVy0a4FSzTCt4pt6EocBBXFW3ybVg5Ele o8S3Cxpr4sINIpix3IEclbXncXHHvqiKFoIS2fNZjZ+P2rjy/Ok9qwFPkw08Cw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:44:58 2025 by rpki-client