$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e34974-8c10-424f-b908-fd4ff152e924.roa File: d0e34974-8c10-424f-b908-fd4ff152e924.roa (raw, json) Hash identifier: hFr73p4a14z63sbiXQD8Ca5VluNH17nAbCjHw7xETw8= Subject key identifier: F3:5C:DA:41:12:63:CD:0D:A4:9D:FC:70:CB:BD:4E:4B:76:77:DF:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 20C4F9E0652961FC94B8FB0580A93C4D53126889 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e34974-8c10-424f-b908-fd4ff152e924.roa Signing time: Wed 28 May 2025 00:11:21 +0000 ROA not before: Wed 28 May 2025 00:11:21 +0000 ROA not after: Wed 02 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:c4:f9:e0:65:29:61:fc:94:b8:fb:05:80:a9:3c:4d:53:12:68:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 28 00:11:21 2025 GMT Not After : Jul 2 23:59:59 2025 GMT Subject: serialNumber=41661da26410eabc1f7fccae24448933a3d00bb8ce91acae3631f8aafafb4886, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6d:8d:57:7a:bd:92:2f:9f:48:ed:dc:0f:03: 4f:9b:d9:d7:ac:ad:22:69:a9:af:a7:65:b5:09:c9: ec:8f:c2:58:3d:3d:ef:37:03:2d:f4:b3:d6:79:fe: 11:0f:8b:48:8c:3c:ac:d7:14:9d:4a:dc:a7:17:e7: 32:0b:7a:49:70:4b:be:f9:f7:a8:90:07:da:1f:18: 3a:b2:7f:12:c8:65:c2:dd:32:d1:48:8e:bf:48:c6: f5:42:48:e7:f6:c1:14:d4:dc:c2:64:6d:0f:92:03: dc:02:56:1a:23:79:90:b5:1b:f7:26:f0:e5:bd:24: 9c:24:fe:08:54:9a:37:c4:97:10:cd:3e:00:b8:42: 72:10:da:bb:46:24:26:d6:88:61:0a:47:24:4f:af: 35:da:77:80:c4:85:05:f7:39:4d:d1:23:07:63:e4: 53:44:f5:db:2b:26:d4:f1:b6:e1:4b:8b:ce:14:2a: 7c:9c:bc:58:b3:28:55:84:b9:f4:51:e9:88:ba:fe: 1b:1d:cd:07:f5:bb:8a:aa:a5:fc:18:62:75:ad:cb: ab:57:fb:11:f2:8f:91:26:c1:f5:73:c2:58:e0:7a: 89:bf:8d:6e:4c:94:de:26:0e:3d:41:79:25:21:e5: 2b:c2:5e:e7:e1:d7:80:71:31:df:06:89:4e:09:4d: bf:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:5C:DA:41:12:63:CD:0D:A4:9D:FC:70:CB:BD:4E:4B:76:77:DF:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0e34974-8c10-424f-b908-fd4ff152e924.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:1000::/40 Signature Algorithm: sha256WithRSAEncryption 36:9c:0e:4c:91:34:ee:03:ef:f6:a9:db:f7:14:40:eb:61:3c: 5a:d3:f2:ea:f9:31:be:dd:b9:3a:b3:14:84:6b:24:d0:bf:09: 51:ef:91:12:ba:d7:f8:bf:6d:de:5b:c3:02:27:6b:ef:4d:1c: 40:37:8b:92:01:d4:42:05:19:99:7b:a6:39:ad:f5:ac:b0:ac: 2e:0b:cc:8d:22:8e:a0:eb:d9:aa:db:d2:b1:75:7d:ef:db:23: 96:02:24:bd:7c:5c:33:1d:7d:fa:6e:2a:d1:ef:08:b1:5c:39: bc:96:96:24:b0:35:ae:31:4d:40:4d:43:58:5c:2e:a4:51:da: ab:20:8d:e1:b0:01:18:19:fd:4b:7a:94:89:2f:f6:a4:d9:3b: 57:e8:09:95:8c:b3:5e:72:27:5c:46:f5:fd:9c:31:57:25:a5: 23:77:34:23:e1:65:87:68:7b:50:1a:15:6d:7c:cc:e1:79:43: 74:64:bf:27:db:b3:c9:e2:f0:61:a6:ff:5e:58:6b:1c:99:e7: 23:59:05:26:8e:71:de:d0:9a:fe:af:28:de:e2:b7:84:6b:78: fa:aa:95:6f:8e:28:09:3a:d3:40:c1:50:fb:85:a1:ed:7f:ce: 24:6e:e2:66:73:18:3d:c0:75:f2:b1:65:c4:7a:59:2e:de:43: 62:ad:7a:88 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIMT54GUpYfyUuPsFgKk8TVMSaIkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI4MDAxMTIxWhcNMjUwNzAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTY2MWRhMjY0MTBlYWJjMWY3ZmNjYWUyNDQ0ODkzM2Ez ZDAwYmI4Y2U5MWFjYWUzNjMxZjhhYWZhZmI0ODg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZbY1Xer2SL59I7dwPA0+b2desrSJpqa+nZbUJyeyPwlg9 Pe83Ay30s9Z5/hEPi0iMPKzXFJ1K3KcX5zILeklwS77596iQB9ofGDqyfxLIZcLd MtFIjr9IxvVCSOf2wRTU3MJkbQ+SA9wCVhojeZC1G/cm8OW9JJwk/ghUmjfElxDN PgC4QnIQ2rtGJCbWiGEKRyRPrzXad4DEhQX3OU3RIwdj5FNE9dsrJtTxtuFLi84U KnycvFizKFWEufRR6Yi6/hsdzQf1u4qqpfwYYnWty6tX+xHyj5EmwfVzwljgeom/ jW5MlN4mDj1BeSUh5SvCXufh14BxMd8GiU4JTb+/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU81zaQRJjzQ2knfxwy71OS3Z333kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwZTM0OTc0LThjMTAtNDI0Zi1iOTA4LWZkNGZmMTUyZTkyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4EDANBgkqhkiG9w0BAQsFAAOCAQEANpwOTJE07gPv9qnb9xRA62E8 WtPy6vkxvt25OrMUhGsk0L8JUe+RErrX+L9t3lvDAidr700cQDeLkgHUQgUZmXum Oa31rLCsLgvMjSKOoOvZqtvSsXV979sjlgIkvXxcMx19+m4q0e8IsVw5vJaWJLA1 rjFNQE1DWFwupFHaqyCN4bABGBn9S3qUiS/2pNk7V+gJlYyzXnInXEb1/ZwxVyWl I3c0I+Flh2h7UBoVbXzM4XlDdGS/J9uzyeLwYab/XlhrHJnnI1kFJo5x3tCa/q8o 3uK3hGt4+qqVb44oCTrTQMFQ+4Wh7X/OJG7iZnMYPcB18rFlxHpZLt5DYq16iA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:54:34 2025 by rpki-client