$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c02819a0-8325-4e9d-9883-bcb4e7cb7da5.roa File: c02819a0-8325-4e9d-9883-bcb4e7cb7da5.roa (raw, json) Hash identifier: BWSgQ5GInU0e2ZpwoFyRZBOqBiLsFqMUa+6bRxaINxc= Subject key identifier: 3A:0A:CA:6C:FA:0C:E1:1E:BD:39:B0:DA:74:92:12:50:A2:E4:38:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DCD985CEB9FA94FBEA7FB4EEA8BA7E788A60FF4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c02819a0-8325-4e9d-9883-bcb4e7cb7da5.roa Signing time: Mon 19 May 2025 16:22:04 +0000 ROA not before: Mon 19 May 2025 16:22:04 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:e080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:cd:98:5c:eb:9f:a9:4f:be:a7:fb:4e:ea:8b:a7:e7:88:a6:0f:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:22:04 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=270101e6b1fa1c39ecfb45232f227fbaacb179162f1638742c37708be6a75706, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:c9:45:02:a9:62:b3:32:ed:08:4e:51:a6: 0d:ea:e2:a1:7a:59:db:de:5c:3e:6a:da:f4:56:4a: 04:a1:57:92:f7:87:0d:10:8d:fe:b8:a5:9b:a0:39: 53:0a:f0:48:75:63:c9:85:54:f9:49:67:81:f2:b2: 89:cf:1f:a7:4a:2a:4b:96:65:91:25:f9:9f:29:62: 3e:7f:1e:61:a7:91:e1:2d:95:91:14:64:42:83:5b: 78:c5:17:18:96:01:13:85:96:9a:0e:60:d0:09:89: 0a:a2:c4:08:de:f2:26:8d:02:d9:82:a8:5c:d3:91: d7:b8:1f:68:cc:34:af:d7:f5:ae:ea:e2:c8:0f:89: 63:a6:04:c7:99:15:4c:e6:5c:f3:fd:32:d8:93:26: fb:b8:de:46:cb:68:d6:e1:e9:16:74:5c:f3:ab:a1: 3e:07:36:05:66:c3:32:2a:9c:ff:47:0e:da:c3:2a: f1:e3:24:26:96:53:21:04:05:7a:ff:6a:9d:f5:c1: 25:c5:68:e4:2b:50:92:78:73:5b:cf:1c:6f:de:36: cf:bc:d7:ee:1f:a6:ba:9b:ca:39:6e:2d:d0:3b:da: 9f:3f:80:e1:72:27:d1:c1:91:89:53:72:be:95:59: 5b:60:03:cc:dc:9d:33:22:26:a0:d1:70:ee:22:84: f0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0A:CA:6C:FA:0C:E1:1E:BD:39:B0:DA:74:92:12:50:A2:E4:38:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c02819a0-8325-4e9d-9883-bcb4e7cb7da5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:e080::/46 Signature Algorithm: sha256WithRSAEncryption 85:4a:32:09:cf:b5:bf:22:14:d3:0c:a5:a6:f5:b9:e1:b5:5a: 0a:b5:e2:51:26:bc:ff:72:ec:06:28:6e:d1:41:47:43:5f:bf: a9:1c:d9:25:85:91:f2:28:bf:d9:04:c8:e6:2d:29:8b:51:70: 9e:76:06:02:90:14:ea:65:6c:4a:de:27:d0:a4:8e:f8:86:b1: 87:97:29:d7:ee:5a:76:c9:89:8c:43:c4:c4:73:f3:63:19:8c: 00:10:d1:3a:ef:d9:0a:2d:27:a5:0f:39:7c:7e:94:94:23:23: 57:3c:8b:8e:52:29:18:fe:99:49:fb:41:5a:a8:d6:0a:fd:c8: c5:cc:96:a1:68:05:26:55:38:34:d7:93:91:ff:96:c5:7a:ce: 16:cb:61:2e:34:9b:60:cf:f7:ed:2f:e4:75:9f:59:9e:f0:e8: 81:3e:70:68:e3:02:db:2b:3e:22:07:8e:fd:ed:08:21:aa:7b: f5:fa:9d:0a:44:58:c4:68:f0:55:ab:1d:a6:a4:c3:ca:5b:0e: ac:49:8f:dc:5a:3d:91:4a:c3:f0:c3:63:d5:58:34:df:ee:af: b2:6e:98:ee:19:eb:b9:78:90:e1:72:b9:35:e6:30:49:70:08: 82:bb:c4:18:40:21:ae:da:26:84:6a:c7:01:06:2d:5f:69:0f: 93:c5:31:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXc2YXOufqU++p/tO6oun54imD/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYyMjA0WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzAxMDFlNmIxZmExYzM5ZWNmYjQ1MjMyZjIyN2ZiYWFj YjE3OTE2MmYxNjM4NzQyYzM3NzA4YmU2YTc1NzA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnqMlFAqliszLtCE5Rpg3q4qF6WdveXD5q2vRWSgShV5L3 hw0Qjf64pZugOVMK8Eh1Y8mFVPlJZ4HysonPH6dKKkuWZZEl+Z8pYj5/HmGnkeEt lZEUZEKDW3jFFxiWAROFlpoOYNAJiQqixAje8iaNAtmCqFzTkde4H2jMNK/X9a7q 4sgPiWOmBMeZFUzmXPP9MtiTJvu43kbLaNbh6RZ0XPOroT4HNgVmwzIqnP9HDtrD KvHjJCaWUyEEBXr/ap31wSXFaOQrUJJ4c1vPHG/eNs+81+4fprqbyjluLdA72p8/ gOFyJ9HBkYlTcr6VWVtgA8zcnTMiJqDRcO4ihPCVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOgrKbPoM4R69ObDadJISUKLkOJkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwMjgxOWEwLTgzMjUtNGU5ZC05ODgzLWJjYjRlN2NiN2RhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9p4IAwDQYJKoZIhvcNAQELBQADggEBAIVKMgnPtb8iFNMMpab1ueG1 Wgq14lEmvP9y7AYobtFBR0Nfv6kc2SWFkfIov9kEyOYtKYtRcJ52BgKQFOplbEre J9CkjviGsYeXKdfuWnbJiYxDxMRz82MZjAAQ0Trv2QotJ6UPOXx+lJQjI1c8i45S KRj+mUn7QVqo1gr9yMXMlqFoBSZVODTXk5H/lsV6zhbLYS40m2DP9+0v5HWfWZ7w 6IE+cGjjAtsrPiIHjv3tCCGqe/X6nQpEWMRo8FWrHaakw8pbDqxJj9xaPZFKw/DD Y9VYNN/ur7JumO4Z67l4kOFyuTXmMElwCIK7xBhAIa7aJoRqxwEGLV9pD5PFMdY= -----END CERTIFICATE-----Generated at Sun Jun 1 04:38:21 2025 by rpki-client