$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf237dc6-5609-4c66-b845-64bc07b0d376.roa File: cf237dc6-5609-4c66-b845-64bc07b0d376.roa (raw, json) Hash identifier: OnSFMbeUUuTU/LIR4NenbQq2+ZpHbjNpOtvxbiTHsvw= Subject key identifier: 7B:0B:C3:B6:B5:6F:87:F1:FD:0D:BD:E5:90:B2:D2:D8:A5:E5:CC:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 580B776CE16786D6FE249271B6193DFBDF91EB5E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf237dc6-5609-4c66-b845-64bc07b0d376.roa Signing time: Mon 19 May 2025 16:21:12 +0000 ROA not before: Mon 19 May 2025 16:21:12 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:34c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:0b:77:6c:e1:67:86:d6:fe:24:92:71:b6:19:3d:fb:df:91:eb:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:21:12 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=ced4dd3b03694508b385f5c96ca65c4c96efd179b8f47de34578939dd7c2113f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:57:24:89:ee:50:74:c2:5a:91:8a:9e:9b:8a: 7a:47:9f:d6:9d:0d:e4:52:dc:d7:2f:c2:3e:f2:9a: 36:b9:bd:ac:1b:af:bf:bf:48:9b:93:04:2a:f9:f3: 3a:d8:56:41:cf:f6:a2:c3:60:74:f1:b3:09:ed:56: 2b:56:95:cc:6a:24:cd:27:ff:28:ec:8d:1a:ae:d8: de:3e:eb:c3:b2:cc:fa:17:ff:5c:82:27:70:7a:8b: 53:68:40:33:33:31:4c:c1:23:6a:89:c5:05:f5:3e: b7:96:85:5c:7d:97:65:12:93:c9:8f:f7:da:38:01: 88:55:ab:3d:68:e2:1f:f4:cd:87:30:39:67:39:6f: a6:7e:5a:c5:e9:b8:71:35:ba:14:70:02:84:68:9f: 17:1e:47:ca:d8:18:c3:7d:7f:67:49:26:97:26:72: a0:27:a6:fe:7c:63:91:76:82:77:46:78:71:8b:31: 16:4f:b8:db:42:2b:82:0a:9c:df:1a:18:0d:09:8c: b2:9d:c2:d9:8b:f8:54:3e:0e:d2:ba:9e:a8:04:a0: 06:86:1f:2f:37:87:ed:80:02:8f:16:9e:d2:ab:6b: 48:32:cc:d3:72:e6:39:6d:56:9d:19:a2:e6:1a:b2: cf:48:3e:32:21:b4:99:ff:af:12:50:19:c0:3e:64: 8d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0B:C3:B6:B5:6F:87:F1:FD:0D:BD:E5:90:B2:D2:D8:A5:E5:CC:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf237dc6-5609-4c66-b845-64bc07b0d376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:34c0::/46 Signature Algorithm: sha256WithRSAEncryption a8:41:20:10:da:a8:ec:b9:3e:04:66:92:de:62:8b:cd:3f:f2: 5a:33:01:35:20:9f:e3:9b:1a:e4:10:a2:88:68:0f:fd:43:31: 61:78:09:cd:42:b2:88:1a:42:15:2f:59:c8:f0:9f:94:36:15: 4c:9c:de:c8:0b:aa:4a:d1:83:5b:7c:1a:63:b4:c5:aa:d7:84: 0e:9a:7d:3c:e1:3d:db:ba:40:52:7b:b0:f6:02:8a:0c:62:8b: d1:2f:63:54:f9:09:67:2d:a2:85:c3:62:69:36:7d:18:aa:9e: dc:76:9a:1d:42:8f:85:8e:50:48:f6:fa:b1:8f:74:d0:68:4a: 78:6c:8a:92:7e:9d:a5:73:d7:ca:6c:b5:f3:a8:cb:c2:ba:ff: 86:12:b7:2b:01:ed:26:95:ab:44:11:a9:50:b2:6e:56:c7:3c: 41:06:81:17:7b:91:54:98:e5:01:5a:55:69:04:22:61:12:1c: b1:25:ab:4e:d7:00:f4:cd:da:6a:d4:33:f1:06:d2:45:bd:72: 00:37:bb:28:07:90:64:5e:9a:70:4f:30:36:16:5b:85:3a:fc: cd:ac:38:d9:36:d1:c8:63:81:a9:04:ea:71:fa:64:c9:d4:fe: 6f:e3:17:91:67:61:31:10:b9:92:2e:8c:a8:00:29:ca:fa:b4: 7a:e9:c5:7c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWAt3bOFnhtb+JJJxthk9+9+R614wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYyMTEyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZWQ0ZGQzYjAzNjk0NTA4YjM4NWY1Yzk2Y2E2NWM0Yzk2 ZWZkMTc5YjhmNDdkZTM0NTc4OTM5ZGQ3YzIxMTNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpVySJ7lB0wlqRip6binpHn9adDeRS3Ncvwj7ymja5vawb r7+/SJuTBCr58zrYVkHP9qLDYHTxswntVitWlcxqJM0n/yjsjRqu2N4+68OyzPoX /1yCJ3B6i1NoQDMzMUzBI2qJxQX1PreWhVx9l2USk8mP99o4AYhVqz1o4h/0zYcw OWc5b6Z+WsXpuHE1uhRwAoRonxceR8rYGMN9f2dJJpcmcqAnpv58Y5F2gndGeHGL MRZPuNtCK4IKnN8aGA0JjLKdwtmL+FQ+DtK6nqgEoAaGHy83h+2AAo8WntKra0gy zNNy5jltVp0ZouYass9IPjIhtJn/rxJQGcA+ZI1/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUewvDtrVvh/H9Db3lkLLS2KXlzNswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmMjM3ZGM2LTU2MDktNGM2Ni1iODQ1LTY0YmMwN2IwZDM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7NMAwDQYJKoZIhvcNAQELBQADggEBAKhBIBDaqOy5PgRmkt5ii80/ 8lozATUgn+ObGuQQoohoD/1DMWF4Cc1CsogaQhUvWcjwn5Q2FUyc3sgLqkrRg1t8 GmO0xarXhA6afTzhPdu6QFJ7sPYCigxii9EvY1T5CWctooXDYmk2fRiqntx2mh1C j4WOUEj2+rGPdNBoSnhsipJ+naVz18pstfOoy8K6/4YStysB7SaVq0QRqVCyblbH PEEGgRd7kVSY5QFaVWkEImESHLElq07XAPTN2mrUM/EG0kW9cgA3uygHkGRemnBP MDYWW4U6/M2sONk20chjgakE6nH6ZMnU/m/jF5FnYTEQuZIujKgAKcr6tHrpxXw= -----END CERTIFICATE-----Generated at Sun Jun 1 05:09:01 2025 by rpki-client