$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa File: d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa (raw, json) Hash identifier: ixmuzd+2LKhrdBkSGX0iGlBn83W4oL1Y9gHG8Tm7Q7w= Subject key identifier: BB:8B:53:97:17:D4:0B:B4:42:5C:C2:90:3C:7D:FE:91:53:58:D4:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29F2251B30407D797011106290C68F32CAD116F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa Signing time: Fri 16 May 2025 17:30:40 +0000 ROA not before: Fri 16 May 2025 17:30:40 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:8030::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f2:25:1b:30:40:7d:79:70:11:10:62:90:c6:8f:32:ca:d1:16:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 17:30:40 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=e922d49d63ba823db2b2fa9e37c46fcd721e7ebc208564cabf4718f4f66d3605, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:25:c4:80:8c:fe:b9:e9:ea:f5:e6:58:89:52: 57:6b:70:b9:e1:ce:0d:c1:9c:81:04:2a:bf:19:39: cf:4d:04:e2:f4:1b:e2:fd:cd:5d:30:7c:49:0e:da: 5f:d5:83:34:b8:bf:19:13:ce:2c:e3:f5:12:a6:86: 25:bf:56:29:85:11:94:54:e1:0d:44:57:2e:b1:15: 4e:07:25:71:78:17:28:31:49:29:dc:30:d1:0d:6c: 11:48:40:eb:b3:9f:01:29:6a:61:e9:1c:74:c5:4b: 29:d8:c6:64:02:b2:40:6d:f8:a8:9e:5a:0b:9a:10: 8d:9f:1c:37:31:90:b7:f6:cc:82:d1:41:65:47:04: c2:83:0a:33:21:f1:3f:4c:62:4f:08:09:6d:65:49: a5:78:8f:78:98:95:ff:ba:24:d0:72:da:0f:81:8d: dc:20:3d:b1:54:7e:dc:da:9b:12:54:11:33:dc:63: f4:ca:21:8a:88:48:86:d8:95:63:2c:67:76:1b:18: c1:30:fd:a1:ea:c8:ca:15:d2:45:43:c1:27:35:36: ac:f6:ae:f6:a3:17:75:f7:1e:b1:8b:7a:ec:4b:9a: 5d:2c:77:cc:ab:18:c4:5d:1e:77:c9:9a:dc:92:6a: 3a:ea:b8:8d:e9:81:2d:a6:51:62:a2:fc:1a:d7:70: 67:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:8B:53:97:17:D4:0B:B4:42:5C:C2:90:3C:7D:FE:91:53:58:D4:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8030::/48 Signature Algorithm: sha256WithRSAEncryption d4:28:85:57:71:8c:5d:fb:77:81:9b:b5:61:96:62:d0:57:63: 5a:ee:38:18:84:a9:5d:f6:24:cc:1c:8d:b0:6e:03:38:f1:a1: a9:32:57:44:34:91:75:78:c6:a0:31:27:af:4f:00:84:12:55: 44:59:37:02:28:44:56:0e:cb:bf:26:fe:79:5d:3e:52:c6:36: 70:9a:e8:f2:1c:e6:03:ef:d1:44:fe:6b:ff:5f:b1:48:fc:2c: 01:ed:a5:99:6f:a2:0d:fc:9a:50:80:a3:07:5c:dc:f4:71:45: 0a:93:04:db:44:b8:61:7e:f3:e6:a8:0a:51:d9:3b:96:4b:9b: fa:ec:5f:ae:7c:c5:d4:2d:89:ee:4f:b5:ee:e7:aa:8d:15:86: b2:ff:a8:ed:3f:e9:f5:86:c7:87:5e:74:3b:a2:bc:77:eb:c1: fa:4f:b8:89:e9:f9:01:dd:87:95:1d:3f:98:08:26:03:ff:ef: a2:9e:6a:c5:d2:1a:b7:c7:c9:a2:c7:93:8b:30:fb:b8:8b:32: 50:3a:e2:df:e6:e9:e9:cb:9d:89:0c:5a:b3:7a:69:a6:5f:33: bd:f6:90:fe:ff:c7:a3:fe:6a:2e:b5:ae:e1:2b:7d:44:c3:6e: 3d:23:d7:ba:e8:e6:88:2e:da:4d:90:fa:cc:44:c3:06:05:ad: e7:cd:0f:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKfIlGzBAfXlwERBikMaPMsrRFvkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTczMDQwWhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTIyZDQ5ZDYzYmE4MjNkYjJiMmZhOWUzN2M0NmZjZDcy MWU3ZWJjMjA4NTY0Y2FiZjQ3MThmNGY2NmQzNjA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLJcSAjP656er15liJUldrcLnhzg3BnIEEKr8ZOc9NBOL0 G+L9zV0wfEkO2l/VgzS4vxkTzizj9RKmhiW/VimFEZRU4Q1EVy6xFU4HJXF4Fygx SSncMNENbBFIQOuznwEpamHpHHTFSynYxmQCskBt+KieWguaEI2fHDcxkLf2zILR QWVHBMKDCjMh8T9MYk8ICW1lSaV4j3iYlf+6JNBy2g+BjdwgPbFUftzamxJUETPc Y/TKIYqISIbYlWMsZ3YbGMEw/aHqyMoV0kVDwSc1Nqz2rvajF3X3HrGLeuxLml0s d8yrGMRdHnfJmtySajrquI3pgS2mUWKi/BrXcGe7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu4tTlxfUC7RCXMKQPH3+kVNY1KMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzYzY1Y2U5LTk5MzgtNGQ5Yi1hZDVmLTNlYjdjZmQ4NTk4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgDAwDQYJKoZIhvcNAQELBQADggEBANQohVdxjF37d4GbtWGWYtBX Y1ruOBiEqV32JMwcjbBuAzjxoakyV0Q0kXV4xqAxJ69PAIQSVURZNwIoRFYOy78m /nldPlLGNnCa6PIc5gPv0UT+a/9fsUj8LAHtpZlvog38mlCAowdc3PRxRQqTBNtE uGF+8+aoClHZO5ZLm/rsX658xdQtie5Pte7nqo0VhrL/qO0/6fWGx4dedDuivHfr wfpPuInp+QHdh5UdP5gIJgP/76KeasXSGrfHyaLHk4sw+7iLMlA64t/m6enLnYkM WrN6aaZfM732kP7/x6P+ai61ruErfUTDbj0j17ro5ogu2k2Q+sxEwwYFrefNDxg= -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:03 2025 by rpki-client