$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa File: ceb67e80-419a-468c-9de9-477adbe51133.roa (raw, json) Hash identifier: 9Vn5tww3J6SxU4BM7invumgLy+JsK4+Vx4ALDWuYJ2I= Subject key identifier: AF:EB:E7:2A:10:EC:8C:04:D1:E8:07:98:EC:81:4B:E2:7C:64:75:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27987A0A4F6C7DD703C6A9A070D95F7EE9411FF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa Signing time: Wed 28 May 2025 00:11:17 +0000 ROA not before: Wed 28 May 2025 00:11:17 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:98:7a:0a:4f:6c:7d:d7:03:c6:a9:a0:70:d9:5f:7e:e9:41:1f:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:11:17 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=37068591235cc33b9e9c582643ebdf36d9318e4af43944467cfc3c5af01308d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:d8:1d:d8:bd:4a:da:16:8e:1b:32:d8:b3:e7: a2:23:8d:e8:3f:d7:0b:7f:72:41:31:f5:72:45:bd: e4:a5:d5:bc:77:65:79:88:2a:91:b5:14:9a:98:a2: 92:fa:77:32:23:65:7a:da:5a:f2:6a:d6:23:3d:3d: 21:2b:63:0d:e1:da:78:47:83:46:60:4f:e4:3d:b5: c1:36:a0:8e:b3:c5:0a:f5:09:8b:08:d9:69:de:87: bb:a3:79:59:89:d7:8f:a3:ae:66:88:c0:aa:f3:90: ad:eb:f8:3d:e8:99:9d:11:00:5e:e0:d0:90:24:bb: 53:bd:ec:4e:dd:76:c3:1b:09:54:c8:6a:60:ea:ac: 3b:d2:f8:2d:56:16:1e:33:c1:36:fe:64:d5:21:e3: a0:a2:11:17:54:fc:10:0d:3b:ef:80:49:96:59:ad: 23:ee:29:8b:4c:85:e7:30:72:40:7a:16:fa:1a:33: 33:75:52:ab:17:fe:b5:db:8b:9e:18:17:9b:c6:13: eb:e9:a3:d6:43:4e:c8:18:b6:fa:92:f7:e6:78:83: 41:a8:d0:57:3d:43:96:42:1c:3a:22:20:c6:03:c3: 2e:35:8b:37:1c:7c:fe:2c:8b:00:74:a6:d5:0d:e2: bf:f7:6b:ab:a5:d5:ca:ee:49:fe:b3:cc:47:30:e0: d0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:EB:E7:2A:10:EC:8C:04:D1:E8:07:98:EC:81:4B:E2:7C:64:75:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:5000::/40 Signature Algorithm: sha256WithRSAEncryption 92:71:95:bc:13:f1:7e:9e:66:10:64:b6:21:4b:50:b5:30:ca: 22:4b:74:2e:25:c9:10:53:7c:30:6a:eb:77:02:79:7a:b8:6d: 1f:52:5b:da:76:18:c5:b9:67:6b:01:24:91:d5:d2:bd:c1:b2: d6:df:3a:6d:a4:de:88:a6:eb:1b:29:58:25:24:45:6a:00:33: 52:40:86:c2:f4:5c:f2:44:98:59:7e:74:a7:b4:08:bf:b5:8e: c6:ef:5d:4a:4f:fe:5a:d8:ef:ca:b8:de:b2:12:d2:8e:06:39: 87:4e:d7:93:67:98:54:e6:9d:e1:2f:77:29:14:3f:48:2a:8d: 35:2a:35:7d:b9:63:c4:50:be:05:df:ba:4d:53:00:b9:2e:32: bd:77:45:2a:ec:3f:3a:8e:75:59:f2:b1:ce:01:69:0a:98:14: e1:17:7a:1c:39:ee:1e:ec:1f:ec:1d:66:a1:da:72:50:da:6e: 64:08:87:e4:64:d9:4f:78:87:c3:de:31:64:28:8b:5e:78:c2: e8:0f:a8:3a:2c:3a:35:05:fb:32:50:02:29:1c:ca:e9:63:1d: 4d:a7:c8:01:84:73:c2:be:72:e9:38:0f:36:26:0d:f3:15:76: 5c:eb:74:b7:55:7a:5f:ab:24:16:50:33:ba:33:cd:bb:4c:92: 34:db:a0:7a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJ5h6Ck9sfdcDxqmgcNlffulBH/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAxMTE3WhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzA2ODU5MTIzNWNjMzNiOWU5YzU4MjY0M2ViZGYzNmQ5 MzE4ZTRhZjQzOTQ0NDY3Y2ZjM2M1YWYwMTMwOGQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCq2B3YvUraFo4bMtiz56Ijjeg/1wt/ckEx9XJFveSl1bx3 ZXmIKpG1FJqYopL6dzIjZXraWvJq1iM9PSErYw3h2nhHg0ZgT+Q9tcE2oI6zxQr1 CYsI2Wneh7ujeVmJ14+jrmaIwKrzkK3r+D3omZ0RAF7g0JAku1O97E7ddsMbCVTI amDqrDvS+C1WFh4zwTb+ZNUh46CiERdU/BANO++ASZZZrSPuKYtMhecwckB6Fvoa MzN1UqsX/rXbi54YF5vGE+vpo9ZDTsgYtvqS9+Z4g0Go0Fc9Q5ZCHDoiIMYDwy41 izccfP4siwB0ptUN4r/3a6ul1cruSf6zzEcw4NAjAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUr+vnKhDsjATR6AeY7IFL4nxkdSYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlYjY3ZTgwLTQxOWEtNDY4Yy05ZGU5LTQ3N2FkYmU1MTEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6UDANBgkqhkiG9w0BAQsFAAOCAQEAknGVvBPxfp5mEGS2IUtQtTDK Ikt0LiXJEFN8MGrrdwJ5erhtH1Jb2nYYxblnawEkkdXSvcGy1t86baTeiKbrGylY JSRFagAzUkCGwvRc8kSYWX50p7QIv7WOxu9dSk/+WtjvyrjeshLSjgY5h07Xk2eY VOad4S93KRQ/SCqNNSo1fbljxFC+Bd+6TVMAuS4yvXdFKuw/Oo51WfKxzgFpCpgU 4Rd6HDnuHuwf7B1modpyUNpuZAiH5GTZT3iHw94xZCiLXnjC6A+oOiw6NQX7MlAC KRzK6WMdTafIAYRzwr5y6TgPNiYN8xV2XOt0t1V6X6skFlAzujPNu0ySNNugeg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:50:28 2025 by rpki-client