$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0c5622a-6b2a-4735-93cb-494f32f8d339.roa File: c0c5622a-6b2a-4735-93cb-494f32f8d339.roa (raw, json) Hash identifier: BcEx4gR/dlnV5TDJMz4eSdnNHxjGIqrmAFW8kd7/XsY= Subject key identifier: 1C:31:6D:0E:68:8B:43:EF:95:1D:65:A6:E3:27:45:2C:6E:37:2E:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 199DF6FBA1B9A6467EB55D10D330A32C415D49B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0c5622a-6b2a-4735-93cb-494f32f8d339.roa Signing time: Mon 19 May 2025 15:42:03 +0000 ROA not before: Mon 19 May 2025 15:42:03 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:9d:f6:fb:a1:b9:a6:46:7e:b5:5d:10:d3:30:a3:2c:41:5d:49:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:42:03 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=f70ca416a478b38c40fac73648c9fa42f41fc03f2e8ac50ec5f980102d5e1e95, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:75:7c:af:5c:de:95:04:85:ac:77:a2:34:3d: e5:06:ee:1d:91:3b:95:5b:21:d7:a7:31:f8:e4:fd: f2:03:17:89:86:2d:2d:3e:ca:1c:d2:e5:8c:1b:e7: b1:4c:24:cd:5f:7d:88:8d:a2:1b:1c:c5:41:59:4e: 62:f7:d7:2b:fc:28:1b:6f:d0:53:0b:59:39:86:53: 64:40:13:48:55:f7:00:6c:63:bc:37:f1:e8:39:7f: 98:86:f8:ae:4f:f4:89:59:1e:78:a2:d1:4b:f4:94: 42:3a:54:c6:ad:c2:d4:90:4b:b4:bf:6f:0e:c7:ca: 9d:ec:2b:7a:fe:3d:09:d5:46:f9:6e:bf:a7:f8:b7: 96:7d:f0:9b:2a:ff:fd:e9:4b:1d:0b:45:84:d3:ac: 34:eb:d9:91:9b:c2:06:12:6e:3f:00:d3:b2:b8:ef: 1e:53:d1:e3:b5:28:72:e5:a6:04:ad:dc:83:ad:68: 9f:c8:9c:04:c0:46:df:07:46:57:8a:e3:f9:dc:c0: 2f:38:7a:b6:c1:0c:a8:71:26:72:1f:9e:1d:91:98: 6c:96:4e:91:27:70:fc:dd:90:4f:a4:85:a7:a5:34: 12:96:13:f8:4f:10:47:c3:56:64:01:12:d7:ac:9f: a3:5f:b1:84:e5:91:82:93:4a:01:4b:76:25:f0:c3: 39:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:31:6D:0E:68:8B:43:EF:95:1D:65:A6:E3:27:45:2C:6E:37:2E:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0c5622a-6b2a-4735-93cb-494f32f8d339.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:e040::/48 Signature Algorithm: sha256WithRSAEncryption 86:c2:89:db:15:e8:1a:4f:e2:2d:e2:ba:2d:3b:7f:24:e4:03: a1:82:e3:3c:02:b3:db:28:fa:c5:dc:32:79:ca:76:e8:e8:41: 29:f0:b0:7a:14:26:47:07:5d:b7:ad:81:97:26:7a:d6:9b:99: 30:9e:31:3d:10:71:b0:39:17:54:79:30:34:31:5c:6e:03:e7: d9:75:29:72:7b:df:88:aa:10:40:e6:c3:a1:a5:ce:70:c9:52: 37:79:c6:86:bf:23:74:f0:48:56:39:4c:93:36:8d:76:84:f3: dd:84:1d:64:80:8e:71:2a:37:ad:bb:6f:f0:ef:e5:56:d9:ca: 24:0f:1a:64:dd:97:21:47:81:14:17:07:69:50:2d:9f:5a:a7: 1a:98:d6:b6:28:e1:9b:3a:16:e0:40:71:be:3e:ac:50:0c:9e: a0:4d:b1:32:76:af:ec:11:c9:e0:d1:2f:14:1d:b6:20:db:58: 4f:ac:d6:66:0e:10:be:a4:22:b2:59:49:a5:d2:ee:23:ee:c7: f1:f5:8e:7e:3e:07:c3:04:1a:c3:da:f4:70:6a:4c:08:70:63: b4:32:cc:25:e8:4c:c3:92:cf:a9:c1:f6:b3:a1:a0:2f:04:0f: 7a:8f:04:30:ce:9a:af:44:77:c6:54:fa:db:b1:be:ae:30:f8: d0:3d:01:37 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGZ32+6G5pkZ+tV0Q0zCjLEFdSbkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTU0MjAzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzBjYTQxNmE0NzhiMzhjNDBmYWM3MzY0OGM5ZmE0MmY0 MWZjMDNmMmU4YWM1MGVjNWY5ODAxMDJkNWUxZTk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDdXyvXN6VBIWsd6I0PeUG7h2RO5VbIdenMfjk/fIDF4mG LS0+yhzS5Ywb57FMJM1ffYiNohscxUFZTmL31yv8KBtv0FMLWTmGU2RAE0hV9wBs Y7w38eg5f5iG+K5P9IlZHnii0Uv0lEI6VMatwtSQS7S/bw7Hyp3sK3r+PQnVRvlu v6f4t5Z98Jsq//3pSx0LRYTTrDTr2ZGbwgYSbj8A07K47x5T0eO1KHLlpgSt3IOt aJ/InATARt8HRleK4/ncwC84erbBDKhxJnIfnh2RmGyWTpEncPzdkE+khaelNBKW E/hPEEfDVmQBEtesn6NfsYTlkYKTSgFLdiXwwznFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHDFtDmiLQ++VHWWm4ydFLG43LpMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwYzU2MjJhLTZiMmEtNDczNS05M2NiLTQ5NGYzMmY4ZDMzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8A4EAwDQYJKoZIhvcNAQELBQADggEBAIbCidsV6BpP4i3iui07fyTk A6GC4zwCs9so+sXcMnnKdujoQSnwsHoUJkcHXbetgZcmetabmTCeMT0QcbA5F1R5 MDQxXG4D59l1KXJ734iqEEDmw6GlznDJUjd5xoa/I3TwSFY5TJM2jXaE892EHWSA jnEqN627b/Dv5VbZyiQPGmTdlyFHgRQXB2lQLZ9apxqY1rYo4Zs6FuBAcb4+rFAM nqBNsTJ2r+wRyeDRLxQdtiDbWE+s1mYOEL6kIrJZSaXS7iPux/H1jn4+B8MEGsPa 9HBqTAhwY7QyzCXoTMOSz6nB9rOhoC8ED3qPBDDOmq9Ed8ZU+tuxvq4w+NA9ATc= -----END CERTIFICATE-----Generated at Fri Jun 6 05:31:13 2025 by rpki-client