$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69f13de-e073-4fa4-b4d4-2cbc556331bb.roa File: d69f13de-e073-4fa4-b4d4-2cbc556331bb.roa (raw, json) Hash identifier: e2SaSSLccQUYxTGxFltBaSS3Q+i+VMKkGeWTqfIquMU= Subject key identifier: CB:F0:C1:C0:09:2C:3F:09:0B:42:E7:A6:AA:05:89:7D:00:CB:6E:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54B583C5F175008CFA7E22CCAB3787C024505599 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69f13de-e073-4fa4-b4d4-2cbc556331bb.roa Signing time: Mon 19 May 2025 18:10:27 +0000 ROA not before: Mon 19 May 2025 18:10:27 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f15:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b5:83:c5:f1:75:00:8c:fa:7e:22:cc:ab:37:87:c0:24:50:55:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:10:27 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=672ec8b04769ea0f11d44e368ada2eb81945bd88353384fc15642b50fdf8f51f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:3d:45:03:2b:b1:17:76:bb:c8:8b:68:db:33: 2e:4c:b2:50:4e:f6:7d:7b:35:6b:1e:a7:43:e8:39: 51:f0:11:7d:72:02:6a:bd:09:5c:94:62:54:c6:c3: b8:59:ab:23:82:c2:64:ef:0b:f2:b5:1c:62:d6:70: b4:be:bf:6f:97:c7:14:f5:00:75:82:cf:67:e7:c2: 25:f1:02:8b:eb:a9:4f:9e:fc:69:1b:2d:77:b6:92: 9e:8b:37:0b:a6:96:06:6e:64:0b:78:4b:61:85:13: de:1d:e6:27:6a:65:0c:c1:89:ee:d1:0e:54:7c:2f: e6:f1:33:29:bb:fe:e8:7a:c0:97:4d:b7:94:47:64: 83:3d:f8:2a:d0:d7:a8:bf:94:cc:ca:3b:c0:65:e4: 40:34:1f:4e:ea:48:44:43:5b:b1:f5:43:9e:9a:c2: c8:70:9c:26:64:af:d8:05:0b:17:b8:66:25:cf:35: e4:a5:a4:3c:51:d8:e5:c5:44:6f:e6:e4:fe:27:a1: 60:4c:81:7b:b3:06:f2:f0:9c:45:25:f4:ad:ba:ea: 6f:5a:44:6e:9f:b4:c2:76:d7:fa:e8:6f:fc:e0:ca: 4c:b0:34:9f:52:da:5c:a7:fb:e6:0d:1d:d2:5e:21: 4f:f0:aa:8a:6d:34:62:55:23:73:ec:e9:b5:2d:e2: 8b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:F0:C1:C0:09:2C:3F:09:0B:42:E7:A6:AA:05:89:7D:00:CB:6E:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d69f13de-e073-4fa4-b4d4-2cbc556331bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15:4000::/37 Signature Algorithm: sha256WithRSAEncryption 9d:16:4c:0f:e4:36:ba:87:3d:d5:dd:c8:c9:bb:ef:4f:dc:25: 66:40:01:d4:cb:c3:bb:d0:88:23:34:14:8e:d1:7c:40:ec:7e: cd:b9:b6:29:54:a7:f8:81:a5:44:d7:a7:87:05:fb:b3:70:c6: 12:e3:b5:b2:c5:96:5e:40:bf:c5:5d:d6:27:96:3d:f5:ce:a8: 84:c9:48:b4:ae:43:a9:b0:e3:ab:b1:12:11:13:d7:36:63:9f: f4:1d:a7:52:cf:99:b8:f1:e8:60:8f:9f:00:55:15:4a:8f:ad: a2:7b:5c:1a:c0:59:58:07:da:e3:fd:23:74:fe:77:07:38:21: 28:c3:9d:89:82:63:11:23:3b:09:73:07:8a:f7:44:d8:4c:71: ca:9d:c1:af:9e:d6:3e:8f:3e:88:71:86:50:f0:0f:90:8a:bf: 30:26:4c:a5:c5:ba:7a:32:da:3c:c7:19:10:4a:84:54:3b:47: f8:3e:a3:0b:a1:bd:c8:03:b7:c7:42:db:53:19:49:21:cc:24: 87:eb:3d:3c:a1:89:6f:36:09:9e:12:e1:29:10:9b:2b:c0:d3: cd:94:ac:89:76:ea:fb:7b:d0:51:f3:1d:4b:07:62:33:5c:40: ad:20:b0:1e:d6:2d:db:10:1e:c4:e3:8a:d3:21:5b:b2:a6:08: 31:7e:7d:2b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVLWDxfF1AIz6fiLMqzeHwCRQVZkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTgxMDI3WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzJlYzhiMDQ3NjllYTBmMTFkNDRlMzY4YWRhMmViODE5 NDViZDg4MzUzMzg0ZmMxNTY0MmI1MGZkZjhmNTFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLPUUDK7EXdrvIi2jbMy5MslBO9n17NWsep0PoOVHwEX1y Amq9CVyUYlTGw7hZqyOCwmTvC/K1HGLWcLS+v2+XxxT1AHWCz2fnwiXxAovrqU+e /GkbLXe2kp6LNwumlgZuZAt4S2GFE94d5idqZQzBie7RDlR8L+bxMym7/uh6wJdN t5RHZIM9+CrQ16i/lMzKO8Bl5EA0H07qSERDW7H1Q56awshwnCZkr9gFCxe4ZiXP NeSlpDxR2OXFRG/m5P4noWBMgXuzBvLwnEUl9K266m9aRG6ftMJ21/rob/zgykyw NJ9S2lyn++YNHdJeIU/wqoptNGJVI3Ps6bUt4ouLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUy/DBwAksPwkLQuemqgWJfQDLbgAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2OWYxM2RlLWUwNzMtNGZhNC1iNGQ0LTJjYmM1NTYzMzFiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8VQDANBgkqhkiG9w0BAQsFAAOCAQEAnRZMD+Q2uoc91d3IybvvT9wl ZkAB1MvDu9CIIzQUjtF8QOx+zbm2KVSn+IGlRNenhwX7s3DGEuO1ssWWXkC/xV3W J5Y99c6ohMlItK5DqbDjq7ESERPXNmOf9B2nUs+ZuPHoYI+fAFUVSo+tontcGsBZ WAfa4/0jdP53BzghKMOdiYJjESM7CXMHivdE2Exxyp3Br57WPo8+iHGGUPAPkIq/ MCZMpcW6ejLaPMcZEEqEVDtH+D6jC6G9yAO3x0LbUxlJIcwkh+s9PKGJbzYJnhLh KRCbK8DTzZSsiXbq+3vQUfMdSwdiM1xArSCwHtYt2xAexOOK0yFbsqYIMX59Kw== -----END CERTIFICATE-----Generated at Sun Jun 1 04:38:20 2025 by rpki-client