$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa File: cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa (raw, json) Hash identifier: 2M7dJWSqc9GVDBdmN1rsAyqM/2AYK7TPFlTCFYXSzWo= Subject key identifier: 47:C2:D5:12:D8:E3:0C:0D:3C:71:24:27:37:AA:E1:35:EA:B5:F2:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76F72E96BA3F9862B937DD7B4F9EF75971BDB38B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa Signing time: Fri 16 May 2025 16:40:33 +0000 ROA not before: Fri 16 May 2025 16:40:33 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:40e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:f7:2e:96:ba:3f:98:62:b9:37:dd:7b:4f:9e:f7:59:71:bd:b3:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:40:33 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=33787816568932aa88e4d6f22f179c6986283bbddfa5a1f5e129d992636b513c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:11:53:3a:ed:f7:67:95:68:62:c4:f6:4c:b8: 10:9c:ca:28:79:0a:a3:3a:61:6a:f0:89:00:cc:9b: 82:c1:c7:10:d6:af:3f:56:35:b7:2e:a1:03:00:16: 1f:a2:bc:c3:65:ae:d8:6a:d2:c0:69:0c:2f:d2:18: 4f:81:17:bc:61:f2:4e:47:91:e5:40:a4:54:b1:93: 75:40:d6:f0:dc:f2:22:9d:f2:97:1d:91:6c:14:fd: 1e:eb:06:c7:1c:c8:26:3a:81:20:49:65:96:13:65: f9:fe:bf:d3:e5:12:dd:17:04:1b:89:ff:06:22:b0: ef:a4:63:23:18:a8:f3:0f:d0:d2:ba:67:85:b2:5b: 44:56:18:38:16:f7:53:c9:a1:a0:f9:32:27:91:98: a4:49:fb:1b:54:c4:b4:7b:b9:e8:5e:f0:e6:81:ad: 9b:97:9e:80:3f:0c:96:ab:cc:ee:a4:fb:9c:a5:a9: 86:ff:c3:ab:fb:ef:eb:4f:04:11:74:b2:c3:5d:80: 15:19:7e:5f:2e:b9:d3:41:67:f7:d4:8a:d2:4f:71: e7:84:fa:0a:25:91:9f:8a:bd:02:4f:a3:4b:d0:f7: d0:3c:31:31:39:e9:96:10:34:ee:72:27:9d:78:5d: c5:80:5f:ed:16:e2:e1:7e:5e:4d:40:93:21:1f:62: b3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C2:D5:12:D8:E3:0C:0D:3C:71:24:27:37:AA:E1:35:EA:B5:F2:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb583196-dcb1-451f-b8a3-2f474dc16d0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:40e0::/48 Signature Algorithm: sha256WithRSAEncryption 1c:68:24:2b:fb:f4:24:91:2c:c2:8f:0f:6f:a8:1d:9e:bd:ee: 8f:c7:c5:a0:dd:2c:3a:0e:f8:dc:ca:76:c3:9f:fe:b0:38:af: d6:10:4e:49:43:21:4f:9c:28:a3:a7:c7:fb:37:37:36:d2:67: 0a:01:12:d7:5f:f1:a5:6e:5b:d9:63:22:69:01:ad:55:5a:29: 60:1d:c7:23:98:84:31:2d:d5:b8:7c:04:91:be:a4:c0:b4:d2: d8:3d:64:d6:60:53:ba:34:14:f2:d8:c4:ad:51:a2:a8:65:cf: b0:d7:ce:70:24:df:27:96:e3:b0:ba:ee:a1:17:d4:4d:f9:e5: e5:76:d2:d6:7b:17:54:7b:88:c0:f3:13:67:cb:fb:2b:82:69: df:06:45:20:07:57:64:34:a1:be:42:6a:5a:ad:92:3e:50:10: 5e:59:7e:eb:88:0d:b4:1b:5b:ea:a6:d4:fb:7b:ec:2b:67:ec: 04:14:28:4a:f8:0b:7a:9a:8b:09:c3:e8:4a:ac:76:b4:82:10: 7c:6e:b4:95:8c:ff:69:1f:c5:98:5d:72:cb:c5:b7:b7:99:49: 9a:97:2f:e5:de:b8:65:99:13:34:ed:f1:f1:61:8a:a7:43:de: 9e:f1:e2:8f:f3:a2:78:6e:e2:f6:2c:fa:3d:65:7b:50:e5:22: ad:b2:48:ff -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdvculro/mGK5N917T573WXG9s4swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTY0MDMzWhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzc4NzgxNjU2ODkzMmFhODhlNGQ2ZjIyZjE3OWM2OTg2 MjgzYmJkZGZhNWExZjVlMTI5ZDk5MjYzNmI1MTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtEVM67fdnlWhixPZMuBCcyih5CqM6YWrwiQDMm4LBxxDW rz9WNbcuoQMAFh+ivMNlrthq0sBpDC/SGE+BF7xh8k5HkeVApFSxk3VA1vDc8iKd 8pcdkWwU/R7rBsccyCY6gSBJZZYTZfn+v9PlEt0XBBuJ/wYisO+kYyMYqPMP0NK6 Z4WyW0RWGDgW91PJoaD5MieRmKRJ+xtUxLR7uehe8OaBrZuXnoA/DJarzO6k+5yl qYb/w6v77+tPBBF0ssNdgBUZfl8uudNBZ/fUitJPceeE+golkZ+KvQJPo0vQ99A8 MTE56ZYQNO5yJ514XcWAX+0W4uF+Xk1AkyEfYrMTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUR8LVEtjjDA08cSQnN6rhNeq18oQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiNTgzMTk2LWRjYjEtNDUxZi1iOGEzLTJmNDc0ZGMxNmQwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQOAwDQYJKoZIhvcNAQELBQADggEBABxoJCv79CSRLMKPD2+oHZ69 7o/HxaDdLDoO+NzKdsOf/rA4r9YQTklDIU+cKKOnx/s3NzbSZwoBEtdf8aVuW9lj ImkBrVVaKWAdxyOYhDEt1bh8BJG+pMC00tg9ZNZgU7o0FPLYxK1Roqhlz7DXznAk 3yeW47C67qEX1E355eV20tZ7F1R7iMDzE2fL+yuCad8GRSAHV2Q0ob5Calqtkj5Q EF5ZfuuIDbQbW+qm1Pt77Ctn7AQUKEr4C3qaiwnD6EqsdrSCEHxutJWM/2kfxZhd csvFt7eZSZqXL+XeuGWZEzTt8fFhiqdD3p7x4o/zonhu4vYs+j1le1DlIq2ySP8= -----END CERTIFICATE-----Generated at Sun Jun 1 05:01:18 2025 by rpki-client