$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f9293e-37bd-4349-9471-6d924ee7e8d7.roa File: c8f9293e-37bd-4349-9471-6d924ee7e8d7.roa (raw, json) Hash identifier: A64gw2i2SuRevKhNxWgK+BpBPOM/X3N8UAzuwKHakHQ= Subject key identifier: F5:21:86:BF:DF:5B:F0:28:A7:68:74:81:53:60:2A:48:0C:04:87:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34A34B2E9632442C2FDF1D0BBA6852729C52B8D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f9293e-37bd-4349-9471-6d924ee7e8d7.roa Signing time: Mon 19 May 2025 16:20:27 +0000 ROA not before: Mon 19 May 2025 16:20:27 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:7400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:a3:4b:2e:96:32:44:2c:2f:df:1d:0b:ba:68:52:72:9c:52:b8:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:20:27 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=96a05258c18f3a1935ab8ba6897bf5708792714ffdf777e31d94708b7517055b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:c3:67:8a:52:dc:a2:7e:dc:8e:13:e9:33:99: bf:89:7a:e3:cd:0c:0b:76:ad:a7:35:d8:f8:86:a7: 0c:92:16:b3:83:2c:e6:e7:ef:50:ee:f7:79:1a:3e: ac:2d:ca:90:f8:06:e5:c2:ff:4a:df:5d:b4:24:ef: d0:9f:6e:33:19:24:4c:5c:1f:27:cf:72:4b:e0:12: 74:22:f1:1d:d5:e4:c5:ad:6b:87:4b:8a:01:ac:98: bc:e5:36:33:ba:22:3a:3c:b9:8b:70:ce:bf:c2:a1: ff:49:d9:27:f6:2b:5e:9e:b0:4e:6e:0f:b2:2f:fc: 16:d8:0d:04:69:b2:11:49:9c:f3:f2:85:43:c3:06: 9e:db:c4:9e:e4:50:16:f9:bf:24:3a:cd:d7:39:ff: f2:9d:e1:77:a5:71:b0:87:e9:e1:38:2a:19:a1:e0: 9f:ed:50:a9:f2:cb:f9:49:73:69:28:58:f3:cb:6f: 67:fc:20:52:87:05:aa:87:2e:f9:db:26:62:6b:16: f5:ad:2b:18:cb:c9:c2:f2:2b:3c:67:e9:e4:be:db: b7:9d:be:ab:8b:38:44:6c:66:57:b8:57:df:83:e9: d7:25:ff:8a:0d:08:a0:fd:ab:1f:5f:74:7d:2e:02: d2:6e:1d:44:da:77:ac:6c:81:19:6a:d2:cf:28:32: 1c:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:21:86:BF:DF:5B:F0:28:A7:68:74:81:53:60:2A:48:0C:04:87:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f9293e-37bd-4349-9471-6d924ee7e8d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:7400::/40 Signature Algorithm: sha256WithRSAEncryption 16:87:5b:cc:41:83:89:ca:d4:93:ec:6b:bd:20:38:f6:ef:b7: c7:91:29:5c:20:c0:21:a7:f1:5b:2a:89:81:e1:4a:a2:27:53: d8:97:7d:b7:41:0c:b0:a8:62:39:5c:b3:f7:0b:28:5a:9b:ad: 9c:24:9b:03:22:3a:be:d7:5e:e8:9a:bc:f9:2b:0a:02:c5:bd: e1:8a:67:d8:b3:62:7e:43:b5:9f:84:89:31:2a:f0:81:f9:e8: d5:11:94:42:60:e3:1f:b0:3f:34:5f:df:63:d4:27:1f:9f:d8: 9d:3d:13:78:90:ce:fc:a8:ca:33:44:f5:64:45:22:31:85:ba: c7:8e:a4:ba:95:ce:64:cf:bb:b4:d7:9a:0d:0e:f8:d4:63:c7: 7f:94:cd:9b:0a:69:bf:32:f4:f0:c6:9d:cd:49:65:40:97:de: e4:73:f8:89:5a:ab:83:15:9b:94:68:d5:3c:79:36:ad:85:9b: 4f:c8:85:aa:ef:63:f3:80:e5:a2:31:bc:ab:c7:1e:0b:25:64: 91:09:1c:7c:9a:c1:e7:e9:dd:31:a3:53:7b:35:83:9b:ae:2a: a9:76:87:ba:7f:c3:00:c2:97:72:5a:ed:5c:b0:e5:ef:2c:3c: cf:b6:65:f9:f5:fb:92:3e:aa:c5:2e:a3:41:43:70:bd:99:bf: 98:f1:6a:f6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNKNLLpYyRCwv3x0LumhScpxSuNMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYyMDI3WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NmEwNTI1OGMxOGYzYTE5MzVhYjhiYTY4OTdiZjU3MDg3 OTI3MTRmZmRmNzc3ZTMxZDk0NzA4Yjc1MTcwNTViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7w2eKUtyiftyOE+kzmb+JeuPNDAt2rac12PiGpwySFrOD LObn71Du93kaPqwtypD4BuXC/0rfXbQk79CfbjMZJExcHyfPckvgEnQi8R3V5MWt a4dLigGsmLzlNjO6Ijo8uYtwzr/Cof9J2Sf2K16esE5uD7Iv/BbYDQRpshFJnPPy hUPDBp7bxJ7kUBb5vyQ6zdc5//Kd4XelcbCH6eE4Khmh4J/tUKnyy/lJc2koWPPL b2f8IFKHBaqHLvnbJmJrFvWtKxjLycLyKzxn6eS+27edvquLOERsZle4V9+D6dcl /4oNCKD9qx9fdH0uAtJuHUTad6xsgRlq0s8oMhzhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9SGGv99b8CinaHSBU2AqSAwEh8gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4ZjkyOTNlLTM3YmQtNDM0OS05NDcxLTZkOTI0ZWU3ZThkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9hdDANBgkqhkiG9w0BAQsFAAOCAQEAFodbzEGDicrUk+xrvSA49u+3 x5EpXCDAIafxWyqJgeFKoidT2Jd9t0EMsKhiOVyz9wsoWputnCSbAyI6vtde6Jq8 +SsKAsW94Ypn2LNifkO1n4SJMSrwgfno1RGUQmDjH7A/NF/fY9QnH5/YnT0TeJDO /KjKM0T1ZEUiMYW6x46kupXOZM+7tNeaDQ741GPHf5TNmwppvzL08MadzUllQJfe 5HP4iVqrgxWblGjVPHk2rYWbT8iFqu9j84DlojG8q8ceCyVkkQkcfJrB5+ndMaNT ezWDm64qqXaHun/DAMKXclrtXLDl7yw8z7Zl+fX7kj6qxS6jQUNwvZm/mPFq9g== -----END CERTIFICATE-----Generated at Sun Jun 1 05:15:15 2025 by rpki-client