$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa File: b4c6cd78-6139-435b-a258-a601228d052a.roa (raw, json) Hash identifier: 3+p0c6wZ4PUiimbMYFpMYBsIXxEvfemY5Ebo/KXSjok= Subject key identifier: 3A:8B:13:E3:9F:8F:B8:F3:2F:A6:54:8D:EA:8F:60:C9:9F:20:BA:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28617B0F7752BF2E1FCF7B4815EDBF003C731CAD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa Signing time: Mon 19 May 2025 17:31:28 +0000 ROA not before: Mon 19 May 2025 17:31:28 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:61:7b:0f:77:52:bf:2e:1f:cf:7b:48:15:ed:bf:00:3c:73:1c:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:31:28 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=9c33d0a48ad7e92d9050b1f9c7963d47da3be8ad7cf3a07882950baa6fa33883, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:af:c0:c7:06:85:be:bc:25:d5:34:2f:f4:1e: 11:29:2b:15:78:69:58:05:54:21:2d:63:3d:fd:1f: 29:8a:64:23:2a:6d:39:4a:b0:ba:d5:18:80:8a:a0: e0:93:6a:fc:9b:2e:38:01:a5:63:36:4c:95:fc:a0: 74:06:78:e7:92:f0:60:c5:c8:e9:f2:4d:a1:cf:f6: 2f:dd:39:c3:ad:8c:00:96:79:36:5b:54:85:e8:28: f2:f0:b5:85:53:7f:3e:35:f7:92:03:9d:59:7b:50: 8a:b1:e0:c7:85:0b:55:4f:18:b6:22:a2:4c:6c:ce: 4a:c2:e5:69:17:b8:32:cf:69:da:bf:55:8a:75:0b: fc:ac:3d:f4:99:a0:84:d0:69:ba:f4:4d:59:7e:a3: a2:55:12:e2:d0:c3:84:69:e0:2e:62:ac:11:66:8f: c0:ee:02:9d:62:db:66:85:65:39:f3:e1:9e:85:5c: 7e:17:ef:c7:7d:d4:71:f2:37:6f:65:af:7e:b4:38: 80:64:65:2c:32:f3:96:26:b4:c8:b3:ad:3b:e2:24: 44:c7:2d:51:5e:e1:75:32:ff:5e:4a:8a:15:a5:e8: 68:38:64:8e:16:fe:b3:4a:b3:7f:d9:af:13:e7:b5: 8e:13:24:75:e2:ab:60:07:b5:47:26:ec:31:d9:d9: cb:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8B:13:E3:9F:8F:B8:F3:2F:A6:54:8D:EA:8F:60:C9:9F:20:BA:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:6000::/40 Signature Algorithm: sha256WithRSAEncryption 80:16:3f:85:e2:31:6a:cb:4d:94:13:47:1f:3b:7d:0e:71:1a: 7b:f0:44:f0:b5:b9:bc:75:91:a6:b8:eb:8f:0b:a8:f7:09:9d: b4:6b:cc:dd:43:27:02:1b:22:74:95:d8:b0:98:70:77:c8:7b: 26:f1:a9:e4:11:c6:eb:d6:81:70:2a:c8:54:9b:1c:0f:ae:7e: 18:1d:67:81:54:32:4c:06:52:44:68:d4:2c:4c:86:30:02:2a: 66:06:67:9f:b8:d8:4a:b0:a6:70:44:f7:d2:3d:e7:84:db:de: ca:51:b2:bf:90:e5:b4:b7:6d:86:b2:d3:bd:bc:2b:1a:fa:12: db:7b:cb:52:e3:48:82:99:37:79:c9:7e:a2:fb:07:2e:e8:4f: 06:6a:96:d5:76:92:5f:e4:69:63:36:96:b7:ff:86:bf:00:22: a6:b5:5e:40:1d:a1:44:2c:79:da:bb:d2:f5:ed:44:8d:0d:4b: f3:e7:b5:31:ac:2f:30:24:c9:00:9b:fd:6f:06:50:08:03:4a: 5a:07:87:95:04:1b:a1:dd:a6:ca:9e:58:b7:c5:6a:0c:69:6b: 91:f6:37:47:f2:3f:8e:43:55:f6:9e:b8:13:9a:58:1b:51:62: 21:f4:9d:a0:d0:10:3b:73:7b:4c:bf:87:de:37:fd:9d:05:87: de:dc:66:0a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKGF7D3dSvy4fz3tIFe2/ADxzHK0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTczMTI4WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YzMzZDBhNDhhZDdlOTJkOTA1MGIxZjljNzk2M2Q0N2Rh M2JlOGFkN2NmM2EwNzg4Mjk1MGJhYTZmYTMzODgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDr8DHBoW+vCXVNC/0HhEpKxV4aVgFVCEtYz39HymKZCMq bTlKsLrVGICKoOCTavybLjgBpWM2TJX8oHQGeOeS8GDFyOnyTaHP9i/dOcOtjACW eTZbVIXoKPLwtYVTfz4195IDnVl7UIqx4MeFC1VPGLYiokxszkrC5WkXuDLPadq/ VYp1C/ysPfSZoITQabr0TVl+o6JVEuLQw4Rp4C5irBFmj8DuAp1i22aFZTnz4Z6F XH4X78d91HHyN29lr360OIBkZSwy85YmtMizrTviJETHLVFe4XUy/15KihWl6Gg4 ZI4W/rNKs3/ZrxPntY4TJHXiq2AHtUcm7DHZ2cvbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUOosT45+PuPMvplSN6o9gyZ8gurcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0YzZjZDc4LTYxMzktNDM1Yi1hMjU4LWE2MDEyMjhkMDUyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82YDANBgkqhkiG9w0BAQsFAAOCAQEAgBY/heIxastNlBNHHzt9DnEa e/BE8LW5vHWRprjrjwuo9wmdtGvM3UMnAhsidJXYsJhwd8h7JvGp5BHG69aBcCrI VJscD65+GB1ngVQyTAZSRGjULEyGMAIqZgZnn7jYSrCmcET30j3nhNveylGyv5Dl tLdthrLTvbwrGvoS23vLUuNIgpk3ecl+ovsHLuhPBmqW1XaSX+RpYzaWt/+GvwAi prVeQB2hRCx52rvS9e1EjQ1L8+e1MawvMCTJAJv9bwZQCANKWgeHlQQbod2myp5Y t8VqDGlrkfY3R/I/jkNV9p64E5pYG1FiIfSdoNAQO3N7TL+H3jf9nQWH3txmCg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:57:14 2025 by rpki-client