$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8df2c2c-dc4e-4de0-921f-473e414af165.roa File: b8df2c2c-dc4e-4de0-921f-473e414af165.roa (raw, json) Hash identifier: DXWs0rTJEOGmFL9DDe/D/+KHStkAbBXn7igceENbw7Q= Subject key identifier: 74:60:A9:8A:E7:EB:80:52:D0:E4:A5:4F:79:0B:54:67:25:60:96:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CC194A7960964D654B97D952CB96E2480009A4F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8df2c2c-dc4e-4de0-921f-473e414af165.roa Signing time: Fri 16 May 2025 17:10:22 +0000 ROA not before: Fri 16 May 2025 17:10:22 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:c1:94:a7:96:09:64:d6:54:b9:7d:95:2c:b9:6e:24:80:00:9a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 17:10:22 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=1d10cd19c0cf38cfc740a2ff45608cd57c882e0e73f82ae478559bcb2c1fe5f0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:07:e8:9f:19:38:e1:2f:c5:45:eb:e2:97:55: 09:5e:10:64:da:b9:2e:98:49:b2:db:97:55:4c:92: 9e:cc:1f:73:a5:b5:97:38:a8:a5:d4:58:41:ee:b3: 06:9c:96:18:9e:76:2e:58:f6:17:2f:35:89:b4:9e: a3:42:ef:40:c8:fa:82:60:85:75:c6:8a:4f:96:ac: cf:70:2c:32:07:cd:2e:f1:04:f2:a5:00:7f:5c:ca: 6b:80:03:0b:1a:72:c9:6c:e7:40:df:32:7e:09:54: 37:68:53:d1:1b:ab:a2:67:fd:a3:05:27:9e:58:6b: da:06:3d:1e:d5:a3:4a:f7:06:ea:4c:ac:b5:9d:ab: 29:df:10:39:9b:a2:b1:12:1d:06:ea:f3:62:05:e7: d2:b4:b8:9f:7e:4d:3e:e0:8e:83:fa:78:94:b1:5b: 68:96:4a:eb:79:bc:8e:7a:e6:b0:3a:b3:3f:6e:22: 76:4c:6a:e3:84:16:9b:03:6b:d5:e1:d5:ec:82:2d: 35:17:15:49:ab:52:5b:90:19:7c:b7:91:5e:44:3b: 5d:f2:ec:35:e8:b4:2e:8d:e5:20:fe:f8:42:59:98: 81:bb:73:a8:7d:9f:73:05:22:79:4c:b0:df:f7:42: 61:57:1c:3d:88:8d:75:4f:31:26:87:7c:2c:cc:ee: 53:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:60:A9:8A:E7:EB:80:52:D0:E4:A5:4F:79:0B:54:67:25:60:96:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8df2c2c-dc4e-4de0-921f-473e414af165.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 6e:85:69:03:36:fe:14:90:df:ec:87:b9:1d:fc:40:e7:1c:59: c3:18:db:49:2b:6f:91:17:53:dc:0c:47:13:c2:25:0d:35:fa: 85:c5:4c:49:8a:59:55:7d:01:89:0b:11:39:10:f1:1c:b8:cd: 79:9c:6a:ef:4f:f6:0e:f1:f5:d3:74:86:90:d9:b4:0c:2c:4c: f0:61:9f:9e:af:29:ec:52:4d:12:2b:94:02:bb:fe:b4:6f:f1: 8e:24:c4:17:6f:ed:8f:f7:76:7a:15:25:1c:8e:f2:c4:81:aa: bd:5d:cd:24:13:c0:56:6e:d5:f1:2c:26:28:21:75:e7:fb:46: b1:3a:62:70:9c:c8:6e:b6:e9:9d:55:77:3b:8d:f7:05:43:c0: 24:0a:6f:c5:bf:d2:ce:28:f9:31:c6:49:94:b6:9e:cc:ec:7f: 43:b1:aa:a8:04:f2:55:2c:16:3b:b0:1e:06:93:13:18:40:6d: 2e:a9:ef:1a:5b:25:bb:57:d2:ae:9d:17:21:62:01:ad:44:c6: f7:25:af:5b:93:b3:52:db:9e:5b:4c:cb:07:33:be:37:0c:dc: 0d:f4:4f:9f:17:ad:54:4b:cb:94:ee:70:f7:27:22:5c:4a:82: 25:9d:d9:67:69:57:9d:dc:27:ac:35:4a:f7:b7:7c:3a:8f:70: 99:95:c9:3b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHMGUp5YJZNZUuX2VLLluJIAAmk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTcxMDIyWhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDEwY2QxOWMwY2YzOGNmYzc0MGEyZmY0NTYwOGNkNTdj ODgyZTBlNzNmODJhZTQ3ODU1OWJjYjJjMWZlNWYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbB+ifGTjhL8VF6+KXVQleEGTauS6YSbLbl1VMkp7MH3Ol tZc4qKXUWEHuswaclhiedi5Y9hcvNYm0nqNC70DI+oJghXXGik+WrM9wLDIHzS7x BPKlAH9cymuAAwsacsls50DfMn4JVDdoU9Ebq6Jn/aMFJ55Ya9oGPR7Vo0r3BupM rLWdqynfEDmborESHQbq82IF59K0uJ9+TT7gjoP6eJSxW2iWSut5vI565rA6sz9u InZMauOEFpsDa9Xh1eyCLTUXFUmrUluQGXy3kV5EO13y7DXotC6N5SD++EJZmIG7 c6h9n3MFInlMsN/3QmFXHD2IjXVPMSaHfCzM7lPRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdGCpiufrgFLQ5KVPeQtUZyVgluQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZGYyYzJjLWRjNGUtNGRlMC05MjFmLTQ3M2U0MTRhZjE2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQMAwDQYJKoZIhvcNAQELBQADggEBAG6FaQM2/hSQ3+yHuR38QOcc WcMY20krb5EXU9wMRxPCJQ01+oXFTEmKWVV9AYkLETkQ8Ry4zXmcau9P9g7x9dN0 hpDZtAwsTPBhn56vKexSTRIrlAK7/rRv8Y4kxBdv7Y/3dnoVJRyO8sSBqr1dzSQT wFZu1fEsJighdef7RrE6YnCcyG626Z1VdzuN9wVDwCQKb8W/0s4o+THGSZS2nszs f0OxqqgE8lUsFjuwHgaTExhAbS6p7xpbJbtX0q6dFyFiAa1Exvclr1uTs1LbnltM ywczvjcM3A30T58XrVRLy5TucPcnIlxKgiWd2WdpV53cJ6w1Sve3fDqPcJmVyTs= -----END CERTIFICATE-----Generated at Sun Jun 1 04:36:38 2025 by rpki-client