$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e06c10d5-25fa-4779-8d71-f83b48e0f4a8.roa File: e06c10d5-25fa-4779-8d71-f83b48e0f4a8.roa (raw, json) Hash identifier: NLbIfc2UjFkB6b47EPzoEakVOjjfiALDGWlFHqBcxA4= Subject key identifier: C0:E5:1F:D7:FA:2B:E4:ED:6B:70:2A:B0:72:6D:03:D5:70:6C:87:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49085FDE9E907DF61DD70A7EE01C92E4F2769A34 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e06c10d5-25fa-4779-8d71-f83b48e0f4a8.roa Signing time: Fri 30 May 2025 00:10:34 +0000 ROA not before: Fri 30 May 2025 00:10:34 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:08:5f:de:9e:90:7d:f6:1d:d7:0a:7e:e0:1c:92:e4:f2:76:9a:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:10:34 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=192170b30e4e81fd2ab843c5dd250fc47d6b373cd2a79496678a06b64546b098, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9c:95:82:71:6f:d5:11:2b:f8:82:0d:fa:6e: 19:fc:81:10:61:9c:aa:99:c3:9d:ab:19:2c:33:64: 87:42:ee:d9:90:5c:63:29:32:74:8f:f1:da:64:6e: 61:5e:9f:f5:c9:7e:07:cf:a0:4c:2a:a7:0e:6c:71: de:1a:ce:68:92:3d:d1:83:6e:b4:ed:0c:de:2c:f5: 2a:96:07:d3:99:88:16:20:84:15:1c:e2:5e:15:d8: d2:bf:16:b8:35:e8:2d:81:cb:ed:c9:07:48:64:73: cb:dd:04:70:9f:56:88:53:8b:1d:87:e2:08:8c:f6: 20:b5:34:62:dd:e8:1c:a8:2f:6a:3a:34:ac:57:3e: 93:ca:cc:7a:f1:bd:5d:1e:88:8c:0e:a7:64:3b:14: 5b:ec:ca:4b:77:b4:6b:6b:20:0b:2b:0f:80:41:a4: 25:b5:7c:7d:d1:e2:35:32:76:3e:64:f7:ec:86:79: 80:b1:6f:cc:dd:97:e7:be:f6:b6:ea:41:e1:32:db: ee:f1:8f:56:d5:d1:c3:d7:7b:47:9b:6d:30:c2:35: 1d:4f:24:35:0f:d5:60:43:e1:83:5f:fb:b0:c8:61: 6f:e4:5a:46:f9:30:84:42:07:76:07:95:05:2f:6b: 78:0a:6b:46:a4:59:d3:73:40:83:43:4e:7f:e6:63: 85:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E5:1F:D7:FA:2B:E4:ED:6B:70:2A:B0:72:6D:03:D5:70:6C:87:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e06c10d5-25fa-4779-8d71-f83b48e0f4a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:2000::/40 Signature Algorithm: sha256WithRSAEncryption 57:42:40:ec:c4:50:a7:59:53:2a:1b:3e:d1:db:3d:9c:1d:4c: 63:52:be:3d:5e:cc:a4:38:57:50:05:d2:a2:a6:0b:20:b7:cd: f5:3a:76:de:a0:1c:e5:7e:c9:cc:e6:d0:f1:29:5e:d6:89:5b: d6:dd:74:d1:d8:b7:90:76:7a:d8:1f:51:68:99:35:e2:1f:5b: 81:82:a2:93:fa:a7:a6:2e:73:3b:55:8c:2c:08:a1:d2:5b:b8: b4:8e:1a:3d:eb:77:bb:e0:35:47:e9:48:70:e5:1b:db:e1:ea: d4:7c:54:d7:9d:9d:46:ba:e7:a6:1d:3b:d9:e0:2e:3f:33:9f: 2c:50:5c:b5:44:e2:a3:cd:63:d3:8c:b5:bb:af:dc:d7:a0:4b: bf:96:ad:4d:cb:33:52:45:04:ed:29:6a:11:00:f9:4b:f5:93: 63:e9:61:99:6e:00:e9:5d:21:8b:fe:a2:0d:59:4a:f4:5f:1c: 59:24:09:2e:35:01:ee:c5:5b:f5:3c:6e:95:08:2f:a4:b5:b0: 12:18:03:5d:93:59:7e:8f:c7:06:93:0e:11:55:11:c4:41:f7: e6:66:d9:d7:2e:f6:d8:64:32:2f:c5:36:60:bd:32:86:37:3a: 6f:11:39:ef:b4:e7:45:91:e7:75:6b:51:c4:0e:8d:33:c5:c0: fb:57:67:d9 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSQhf3p6QffYd1wp+4ByS5PJ2mjQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAxMDM0WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTIxNzBiMzBlNGU4MWZkMmFiODQzYzVkZDI1MGZjNDdk NmIzNzNjZDJhNzk0OTY2NzhhMDZiNjQ1NDZiMDk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvnJWCcW/VESv4gg36bhn8gRBhnKqZw52rGSwzZIdC7tmQ XGMpMnSP8dpkbmFen/XJfgfPoEwqpw5scd4azmiSPdGDbrTtDN4s9SqWB9OZiBYg hBUc4l4V2NK/Frg16C2By+3JB0hkc8vdBHCfVohTix2H4giM9iC1NGLd6ByoL2o6 NKxXPpPKzHrxvV0eiIwOp2Q7FFvsykt3tGtrIAsrD4BBpCW1fH3R4jUydj5k9+yG eYCxb8zdl+e+9rbqQeEy2+7xj1bV0cPXe0ebbTDCNR1PJDUP1WBD4YNf+7DIYW/k Wkb5MIRCB3YHlQUva3gKa0akWdNzQINDTn/mY4VLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUwOUf1/or5O1rcCqwcm0D1XBsh6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwNmMxMGQ1LTI1ZmEtNDc3OS04ZDcxLWY4M2I0OGUwZjRhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4IDANBgkqhkiG9w0BAQsFAAOCAQEAV0JA7MRQp1lTKhs+0ds9nB1M Y1K+PV7MpDhXUAXSoqYLILfN9Tp23qAc5X7JzObQ8Sle1olb1t100di3kHZ62B9R aJk14h9bgYKik/qnpi5zO1WMLAih0lu4tI4aPet3u+A1R+lIcOUb2+Hq1HxU152d Rrrnph072eAuPzOfLFBctUTio81j04y1u6/c16BLv5atTcszUkUE7SlqEQD5S/WT Y+lhmW4A6V0hi/6iDVlK9F8cWSQJLjUB7sVb9TxulQgvpLWwEhgDXZNZfo/HBpMO EVURxEH35mbZ1y722GQyL8U2YL0yhjc6bxE577TnRZHndWtRxA6NM8XA+1dn2Q== -----END CERTIFICATE-----Generated at Sun Jun 1 05:00:32 2025 by rpki-client