$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa File: c2c6afd4-768e-4ed4-82e9-013c34669118.roa (raw, json) Hash identifier: T+w0tFRyjQRLPso9d4fsit23DNWyA7Ncw6EunqrXTyA= Subject key identifier: 64:9D:77:3E:9B:36:E9:AB:42:D2:0A:9A:19:AD:4F:F7:5C:04:8B:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B7E4524ABC9AAC2DFA02612C684705871008DD5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa Signing time: Fri 16 May 2025 16:20:12 +0000 ROA not before: Fri 16 May 2025 16:20:12 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:7e:45:24:ab:c9:aa:c2:df:a0:26:12:c6:84:70:58:71:00:8d:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:20:12 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=9e98e0eb1ad5f21aa702696886ff7e8ac6195c24a8ece4385531a4a6dfb19adb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8e:20:ac:02:84:a2:15:2e:86:ab:25:55:51: 3c:f9:9f:9e:82:94:3a:78:04:6c:9d:f0:6d:dc:17: 1f:ca:1b:05:75:a1:82:60:bb:d4:57:f2:85:60:3c: 54:2e:c2:12:b0:04:3c:17:1b:09:29:2a:2d:5e:47: 63:78:98:68:df:88:83:19:44:43:6d:fa:28:20:b8: 7d:9e:62:a2:2a:7a:6d:f7:c2:ba:e1:c2:1b:fe:09: ea:a6:f3:e8:e8:6f:d3:3b:74:3f:f9:c5:15:c6:a4: 91:bf:ae:ff:78:49:bb:ca:12:8d:71:d8:c0:46:b0: 60:d0:b2:83:17:f4:55:22:4d:45:24:de:8b:39:af: 79:38:b7:e0:37:b1:db:25:55:88:ce:c5:1f:e8:22: ab:63:cc:78:c3:d6:06:5f:e7:69:65:dc:2e:d1:c5: 1c:b3:29:ac:77:0f:ca:dd:32:00:ef:4b:82:d8:94: 01:70:d3:42:f6:42:db:5b:31:39:59:0e:c8:6b:2f: 58:bd:fc:a1:57:a4:a9:2a:88:96:ef:e0:27:30:59: 9a:85:c5:b8:32:8a:d8:4e:2a:5a:d6:e0:03:f3:1d: 88:0b:83:d8:86:d5:30:64:fb:fc:08:50:96:b8:ff: 58:59:95:3a:aa:9d:d1:f8:7b:ec:1e:8d:69:9b:65: d5:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:9D:77:3E:9B:36:E9:AB:42:D2:0A:9A:19:AD:4F:F7:5C:04:8B:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 18:a8:7c:3f:22:fd:40:f7:2a:b0:d5:34:4a:e9:27:f8:95:af: a1:d3:98:14:cc:8a:c4:ed:65:f4:ff:9e:a7:15:dc:53:6e:1d: 5c:e5:d8:de:fc:07:f6:9f:6f:d0:58:7a:a2:8d:1d:ec:49:0b: ba:5b:32:ea:b8:f0:dc:81:3c:fb:7f:81:e5:aa:de:55:55:e3: 17:0a:86:c8:cc:e7:42:de:7e:cc:aa:9d:61:f4:5a:71:9b:f1: eb:98:a1:53:ae:55:df:79:c2:63:dd:38:11:38:53:0d:03:0c: a2:a9:20:8d:b6:2d:78:05:e9:fe:ed:fc:15:bc:a8:8b:6a:bd: c1:4c:b0:a4:b3:bc:2c:ef:e7:af:b2:f7:b2:21:96:ca:ce:c0: ae:ed:f8:a4:69:6b:e1:a0:f4:a8:83:23:59:0d:08:9c:ba:05: d4:5a:e9:cb:40:9e:84:f9:21:a4:81:f9:2b:50:47:80:eb:aa: 8b:eb:c6:4e:4d:41:4f:97:6d:5d:00:16:d6:40:82:80:30:f8: 4b:53:22:7e:86:0c:bb:85:e1:3b:60:3b:4d:91:1f:6d:81:a9: a6:62:61:dc:e6:e6:9e:b8:52:d4:27:10:ec:7c:ff:a3:eb:39: 1b:5f:b7:14:25:79:de:b9:bb:23:c2:aa:d3:d2:b2:4b:fa:f4: e5:8e:0f:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO35FJKvJqsLfoCYSxoRwWHEAjdUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTYyMDEyWhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTk4ZTBlYjFhZDVmMjFhYTcwMjY5Njg4NmZmN2U4YWM2 MTk1YzI0YThlY2U0Mzg1NTMxYTRhNmRmYjE5YWRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChjiCsAoSiFS6GqyVVUTz5n56ClDp4BGyd8G3cFx/KGwV1 oYJgu9RX8oVgPFQuwhKwBDwXGwkpKi1eR2N4mGjfiIMZRENt+igguH2eYqIqem33 wrrhwhv+Ceqm8+job9M7dD/5xRXGpJG/rv94SbvKEo1x2MBGsGDQsoMX9FUiTUUk 3os5r3k4t+A3sdslVYjOxR/oIqtjzHjD1gZf52ll3C7RxRyzKax3D8rdMgDvS4LY lAFw00L2QttbMTlZDshrL1i9/KFXpKkqiJbv4CcwWZqFxbgyithOKlrW4APzHYgL g9iG1TBk+/wIUJa4/1hZlTqqndH4e+wejWmbZdU9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZJ13Pps26atC0gqaGa1P91wEi1owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyYzZhZmQ0LTc2OGUtNGVkNC04MmU5LTAxM2MzNDY2OTExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wMAwDQYJKoZIhvcNAQELBQADggEBABiofD8i/UD3KrDVNErpJ/iV r6HTmBTMisTtZfT/nqcV3FNuHVzl2N78B/afb9BYeqKNHexJC7pbMuq48NyBPPt/ geWq3lVV4xcKhsjM50LefsyqnWH0WnGb8euYoVOuVd95wmPdOBE4Uw0DDKKpII22 LXgF6f7t/BW8qItqvcFMsKSzvCzv56+y97IhlsrOwK7t+KRpa+Gg9KiDI1kNCJy6 BdRa6ctAnoT5IaSB+StQR4Drqovrxk5NQU+XbV0AFtZAgoAw+EtTIn6GDLuF4Ttg O02RH22BqaZiYdzm5p64UtQnEOx8/6PrORtftxQled65uyPCqtPSskv69OWODz4= -----END CERTIFICATE-----Generated at Sun Jun 1 05:04:05 2025 by rpki-client