$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c95ae37c-cf66-4410-bb56-3d6497b76962.roa File: c95ae37c-cf66-4410-bb56-3d6497b76962.roa (raw, json) Hash identifier: ms3u4RfEBbL7LQ/EFcg4iDZc1GihoCAIOzQfyv3oJBQ= Subject key identifier: 28:FF:92:58:66:39:50:23:39:7D:92:87:14:A2:28:C0:0F:E9:19:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F5A17D9EE7A47C7C9D8DA5C89B51AEC806EE1A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c95ae37c-cf66-4410-bb56-3d6497b76962.roa Signing time: Fri 16 May 2025 17:20:19 +0000 ROA not before: Fri 16 May 2025 17:20:19 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:5a:17:d9:ee:7a:47:c7:c9:d8:da:5c:89:b5:1a:ec:80:6e:e1:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 17:20:19 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=211e7a6f815d415450984390803c0b774ae40dc7a4722ba6633fd089ffa2500c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:87:57:b1:22:8a:eb:78:04:9e:8a:15:fa:3a: 0c:17:7a:b2:18:23:76:fa:df:ae:f3:e2:27:f6:66: 25:9b:42:32:61:db:76:81:ef:4a:2e:85:8c:aa:d0: 66:19:08:5d:88:77:15:e0:34:d2:d9:21:f6:bd:b3: c6:f3:d1:82:ba:b5:3a:2b:46:d1:87:4c:0b:4a:4a: 03:3f:79:d1:46:5d:0f:1b:97:17:fd:d9:3f:f1:8f: 22:49:c8:95:7c:16:ad:ac:c7:b6:cd:ee:78:13:ae: 52:0c:9b:59:07:a2:9b:91:8c:96:88:cb:53:d1:04: 9e:7b:2c:c1:74:40:10:31:05:73:c3:bb:d2:ff:ef: 6b:b1:66:d6:39:09:63:45:87:29:4f:2f:fd:a1:53: fd:b0:b7:ff:17:74:3d:07:e0:7a:6b:e9:17:3c:27: 50:f5:c4:db:19:d6:74:56:31:37:3e:8b:51:13:2b: 58:01:7e:af:df:9b:00:eb:68:11:9d:e8:87:28:a2: f4:93:c2:ed:13:d9:6c:66:83:9a:20:56:61:55:50: fd:af:54:e2:ec:50:06:49:9a:1d:e0:70:1d:fc:ee: 81:8c:bd:87:18:8c:06:56:8f:4e:ae:76:c6:ad:e6: eb:33:88:2c:31:fc:f9:51:d4:23:0f:1c:a1:39:a6: 9a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:FF:92:58:66:39:50:23:39:7D:92:87:14:A2:28:C0:0F:E9:19:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c95ae37c-cf66-4410-bb56-3d6497b76962.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c020::/48 Signature Algorithm: sha256WithRSAEncryption 83:60:db:a9:48:31:f3:af:d6:d6:87:8f:ce:61:24:8f:2d:d7: e1:4a:d8:29:7f:03:1a:fc:10:e2:d8:47:49:d7:20:a9:c9:4c: 05:ad:a8:92:b7:d6:96:d8:d4:f2:c2:b0:de:01:db:54:4a:b1: 3a:49:43:7c:4a:3e:52:96:7c:fc:b9:7f:7a:3b:a2:c6:21:94: 8c:93:ec:50:22:4c:d8:04:39:52:16:0a:af:22:8c:06:bf:88: 98:67:85:af:d6:6c:37:d6:a9:9b:c3:cb:1f:f9:ce:9b:20:87: 5f:9c:24:d2:5f:32:40:8e:d4:f6:24:a9:76:0d:24:0d:9b:4a: 8d:7f:c4:36:2a:21:ed:b9:f4:04:34:2f:91:b4:99:a2:4b:be: d2:28:c0:af:7b:53:f5:13:3b:58:99:e1:3d:41:ef:bf:97:51: ab:3b:7c:80:6a:8b:89:72:b0:24:bf:3f:c9:7e:a6:be:26:3e: e8:06:81:15:b5:83:0f:b5:71:51:41:f4:55:91:a9:1f:a3:ea: 99:81:83:64:66:03:bd:9b:78:11:35:cd:96:65:96:88:57:4b: 0d:0c:fa:be:9d:fb:07:d6:80:24:3b:9b:c0:88:cc:81:20:34: e6:fe:5a:94:ca:7a:47:84:46:44:5c:64:a8:c0:92:11:de:d1: 81:81:b2:68 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUL1oX2e56R8fJ2NpcibUa7IBu4akwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTcyMDE5WhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTFlN2E2ZjgxNWQ0MTU0NTA5ODQzOTA4MDNjMGI3NzRh ZTQwZGM3YTQ3MjJiYTY2MzNmZDA4OWZmYTI1MDBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKh1exIorreASeihX6OgwXerIYI3b6367z4if2ZiWbQjJh 23aB70ouhYyq0GYZCF2IdxXgNNLZIfa9s8bz0YK6tTorRtGHTAtKSgM/edFGXQ8b lxf92T/xjyJJyJV8Fq2sx7bN7ngTrlIMm1kHopuRjJaIy1PRBJ57LMF0QBAxBXPD u9L/72uxZtY5CWNFhylPL/2hU/2wt/8XdD0H4Hpr6Rc8J1D1xNsZ1nRWMTc+i1ET K1gBfq/fmwDraBGd6IcoovSTwu0T2Wxmg5ogVmFVUP2vVOLsUAZJmh3gcB387oGM vYcYjAZWj06udsat5usziCwx/PlR1CMPHKE5ppqLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKP+SWGY5UCM5fZKHFKIowA/pGTkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NWFlMzdjLWNmNjYtNDQxMC1iYjU2LTNkNjQ5N2I3Njk2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wCAwDQYJKoZIhvcNAQELBQADggEBAINg26lIMfOv1taHj85hJI8t 1+FK2Cl/Axr8EOLYR0nXIKnJTAWtqJK31pbY1PLCsN4B21RKsTpJQ3xKPlKWfPy5 f3o7osYhlIyT7FAiTNgEOVIWCq8ijAa/iJhnha/WbDfWqZvDyx/5zpsgh1+cJNJf MkCO1PYkqXYNJA2bSo1/xDYqIe259AQ0L5G0maJLvtIowK97U/UTO1iZ4T1B77+X Uas7fIBqi4lysCS/P8l+pr4mPugGgRW1gw+1cVFB9FWRqR+j6pmBg2RmA72beBE1 zZZllohXSw0M+r6d+wfWgCQ7m8CIzIEgNOb+WpTKekeERkRcZKjAkhHe0YGBsmg= -----END CERTIFICATE-----Generated at Sun Jun 1 04:39:21 2025 by rpki-client