$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa File: c636934a-c7cc-4c0f-acb1-a74b2500994d.roa (raw, json) Hash identifier: 0Odq1M/Aalo/TUjgFAFODcf+u2vZZVZtOUuMo6Oy1fw= Subject key identifier: 8E:28:B0:2C:3B:0A:22:A0:BB:C3:BE:8D:E6:58:04:CC:1A:E6:15:8F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1329D0DE018AFD48DD3E3B4C6F6D3D40147CF3CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa Signing time: Fri 16 May 2025 17:01:26 +0000 ROA not before: Fri 16 May 2025 17:01:26 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:29:d0:de:01:8a:fd:48:dd:3e:3b:4c:6f:6d:3d:40:14:7c:f3:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 17:01:26 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=97eb2aa3b3f548b4e0826b40ef66f8e664fe52e36c2d5e639ee433641c4e1c1a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6b:e2:e8:6e:02:8d:52:ab:28:89:b2:de:a7: a5:37:86:76:57:e2:9c:1f:e1:64:6d:d2:39:41:8e: ac:22:c6:3b:e8:20:da:f3:ad:d2:20:7e:7d:a6:10: b2:c8:28:29:c2:13:30:43:68:4d:f3:4a:0f:cb:3f: 06:91:4f:1e:22:04:0f:ae:7e:ed:ee:dd:08:35:28: 3d:6e:15:a5:b7:bd:2c:1f:8b:ad:4e:50:e6:98:6a: fa:79:a8:0d:24:41:bb:08:31:14:72:cc:8c:8a:4f: c9:73:74:bc:b9:62:8c:9b:a5:ce:35:df:44:da:f5: da:bd:a2:80:70:bb:5d:b0:76:98:c3:e1:4c:48:1b: 92:6f:52:45:e9:8f:f5:5f:17:6f:03:aa:de:d1:bc: c5:b6:1b:b2:54:c3:3a:eb:79:1e:38:09:7a:a2:7f: 3f:ac:cc:29:64:8a:35:f3:f3:4b:a8:80:d6:6b:d1: c5:cb:ca:03:eb:1f:46:7e:65:b7:77:d6:c2:2e:c6: 19:09:49:e3:ce:c9:9d:3b:d2:0a:4c:58:63:5c:f9: 0c:db:8f:5c:79:4b:a2:7d:61:59:0a:b4:f6:53:c1: 13:34:3c:11:45:44:6c:10:18:4b:23:df:a5:1a:da: e2:8c:9c:9a:71:93:82:e2:ea:23:db:b1:47:4d:3a: 2f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:28:B0:2C:3B:0A:22:A0:BB:C3:BE:8D:E6:58:04:CC:1A:E6:15:8F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:3480::/48 Signature Algorithm: sha256WithRSAEncryption 1b:47:57:df:86:d0:20:38:2b:6e:34:7a:ee:ec:c9:7e:e4:05: 83:8d:df:44:14:65:12:2d:9e:c2:ce:d2:3b:ef:06:e7:b9:fc: 85:71:bc:33:7d:c6:bf:25:1b:d1:01:e6:b9:d3:b8:ec:ee:69: 5f:61:54:26:cf:32:74:bb:64:e4:69:b9:f0:96:c7:6b:ba:5c: d4:f1:b6:90:e8:d9:bd:f4:db:86:fe:fc:c4:7b:46:0e:4d:9d: 30:b6:28:12:0d:6a:90:8b:c4:de:cf:18:58:af:5b:8b:9d:c3: 29:10:c8:14:44:4f:da:02:a7:dc:d3:da:e4:97:73:84:ef:a3: a9:97:74:54:55:99:27:87:28:5e:cf:2f:cd:a2:e8:63:fc:41: 95:27:ee:7a:4b:ad:e3:9f:05:c1:3e:2e:77:64:4c:e7:8f:ab: 7f:63:7e:71:42:8b:ce:a1:15:62:fc:7b:01:5d:42:bc:69:3f: 3c:9b:0d:77:8c:84:d0:90:30:30:0d:1e:fb:8d:84:43:11:bf: ee:e8:9f:07:42:2c:0e:0e:ca:1b:cb:2a:e2:bd:9c:97:18:41: 5c:76:1f:3d:3b:7f:8b:3a:53:1e:f0:cc:0b:30:95:6b:40:40: a0:92:0b:7c:53:10:20:52:39:0e:5e:c6:7c:54:6e:f8:b2:c3: 62:01:2f:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEynQ3gGK/UjdPjtMb209QBR8884wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTcwMTI2WhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2ViMmFhM2IzZjU0OGI0ZTA4MjZiNDBlZjY2ZjhlNjY0 ZmU1MmUzNmMyZDVlNjM5ZWU0MzM2NDFjNGUxYzFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsa+LobgKNUqsoibLep6U3hnZX4pwf4WRt0jlBjqwixjvo INrzrdIgfn2mELLIKCnCEzBDaE3zSg/LPwaRTx4iBA+ufu3u3Qg1KD1uFaW3vSwf i61OUOaYavp5qA0kQbsIMRRyzIyKT8lzdLy5Yoybpc4130Ta9dq9ooBwu12wdpjD 4UxIG5JvUkXpj/VfF28Dqt7RvMW2G7JUwzrreR44CXqifz+szClkijXz80uogNZr 0cXLygPrH0Z+Zbd31sIuxhkJSePOyZ070gpMWGNc+Qzbj1x5S6J9YVkKtPZTwRM0 PBFFRGwQGEsj36Ua2uKMnJpxk4Li6iPbsUdNOi/VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjiiwLDsKIqC7w76N5lgEzBrmFY8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M2MzY5MzRhLWM3Y2MtNGMwZi1hY2IxLWE3NGIyNTAwOTk0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84NIAwDQYJKoZIhvcNAQELBQADggEBABtHV9+G0CA4K240eu7syX7k BYON30QUZRItnsLO0jvvBue5/IVxvDN9xr8lG9EB5rnTuOzuaV9hVCbPMnS7ZORp ufCWx2u6XNTxtpDo2b3024b+/MR7Rg5NnTC2KBINapCLxN7PGFivW4udwykQyBRE T9oCp9zT2uSXc4Tvo6mXdFRVmSeHKF7PL82i6GP8QZUn7npLreOfBcE+LndkTOeP q39jfnFCi86hFWL8ewFdQrxpPzybDXeMhNCQMDANHvuNhEMRv+7onwdCLA4OyhvL KuK9nJcYQVx2Hz07f4s6Ux7wzAswlWtAQKCSC3xTECBSOQ5exnxUbviyw2IBLz8= -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:00 2025 by rpki-client