$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1c8c053-5660-4b24-8aaa-28cebd569f74.roa File: e1c8c053-5660-4b24-8aaa-28cebd569f74.roa (raw, json) Hash identifier: hMgOpRU7OrLIymQcquESnd6PO+wJVXe4Frc73wPBjP4= Subject key identifier: 19:FE:79:10:44:C4:E8:DF:92:26:90:70:1D:7C:B2:9F:05:25:05:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 79530BF4790AAB60216591B24100F9CE0C01BF13 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1c8c053-5660-4b24-8aaa-28cebd569f74.roa Signing time: Mon 19 May 2025 17:40:12 +0000 ROA not before: Mon 19 May 2025 17:40:12 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff5:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:53:0b:f4:79:0a:ab:60:21:65:91:b2:41:00:f9:ce:0c:01:bf:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:40:12 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=5720a49ebdc059e0ccbbe6ac6878ad7109e1b25c800f5ddc1cad8e5288b27e02, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a0:4d:a4:48:1c:3f:a4:25:f1:dc:f2:71:c1: 63:ba:2d:ba:ed:d0:53:84:5a:be:6f:46:da:0f:ae: e6:5c:e8:eb:4b:ab:5b:0b:a5:65:43:f0:4f:4f:15: 8d:c5:c4:23:4b:3c:f0:1e:86:24:11:de:96:6e:25: fc:f0:c1:23:0e:66:be:a3:ec:1c:6f:d9:e6:db:43: 9c:dc:0f:a3:be:c3:f0:72:ab:3f:6d:11:14:36:8c: 31:f7:cc:ff:bd:4e:0d:47:32:33:1e:83:c0:4a:86: 76:c6:81:e5:34:4b:8f:4a:88:a6:10:ee:98:23:10: d0:09:4f:79:8d:ef:1d:6c:c3:8c:88:55:08:60:93: 8d:f2:47:4c:54:90:88:c1:5a:2f:90:5b:9b:f9:8e: 6f:d4:9f:f1:65:47:cc:cf:92:88:d0:33:0a:d4:2e: 5e:25:d5:b6:ac:bc:b4:3f:fe:ae:c9:2c:86:7f:78: 7c:50:e8:1a:fb:1c:66:b4:23:25:e8:ff:5e:46:e8: b1:fb:35:23:b7:b3:48:6a:c0:f7:4d:5a:27:12:b0: d6:6b:25:06:e4:07:9e:d7:24:f0:b6:ca:3f:dc:2c: 59:9e:a2:5a:0e:61:2e:a8:65:95:19:0b:6b:c1:f2: e4:41:e6:2f:bb:28:e5:08:a2:5b:51:3f:ab:36:9d: 15:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:FE:79:10:44:C4:E8:DF:92:26:90:70:1D:7C:B2:9F:05:25:05:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1c8c053-5660-4b24-8aaa-28cebd569f74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:8000::/40 Signature Algorithm: sha256WithRSAEncryption bf:c9:87:a8:d2:3d:ed:d0:57:6d:16:ed:d0:e4:91:da:31:d7: 69:a4:e0:30:94:b7:a1:41:77:f7:af:48:b0:99:58:e2:31:d4: e1:d6:56:18:cf:d4:10:eb:37:dd:70:02:76:db:05:bb:44:64: ed:db:00:23:5d:d6:10:c0:68:0c:eb:d8:c8:89:c4:0b:68:5f: b0:3e:90:88:f8:c0:52:3b:e7:5e:b6:bd:f9:3c:64:54:32:8d: cc:2c:b6:8e:a4:ea:d4:bf:b4:9f:3f:b0:ad:3d:ad:69:01:bd: 99:8c:82:1e:86:b7:09:93:d0:4c:af:8e:be:bb:d8:ac:7b:20: 23:0b:88:ea:1a:f1:96:9d:46:6e:64:81:76:85:c5:43:d3:2d: 48:1a:21:3f:e3:c4:b7:3c:4d:96:35:83:9b:38:3d:b7:92:fe: b9:01:51:08:66:d5:ec:07:5c:d2:39:2a:3f:b6:d0:18:ee:e1: 9d:8c:6d:70:9a:14:7e:a0:da:77:c0:fb:53:01:21:a3:31:c6: 31:c2:9f:5a:41:2a:af:8e:01:74:bc:9a:9f:35:20:4a:91:e5: 5b:8a:3e:b1:7a:2e:84:14:ea:64:46:75:f4:38:bf:2b:19:39: 50:a4:21:c5:23:87:e2:c6:19:56:20:73:a6:75:a1:77:60:c3: 97:88:cb:70 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUeVML9HkKq2AhZZGyQQD5zgwBvxMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTc0MDEyWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzIwYTQ5ZWJkYzA1OWUwY2NiYmU2YWM2ODc4YWQ3MTA5 ZTFiMjVjODAwZjVkZGMxY2FkOGU1Mjg4YjI3ZTAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVoE2kSBw/pCXx3PJxwWO6Lbrt0FOEWr5vRtoPruZc6OtL q1sLpWVD8E9PFY3FxCNLPPAehiQR3pZuJfzwwSMOZr6j7Bxv2ebbQ5zcD6O+w/By qz9tERQ2jDH3zP+9Tg1HMjMeg8BKhnbGgeU0S49KiKYQ7pgjENAJT3mN7x1sw4yI VQhgk43yR0xUkIjBWi+QW5v5jm/Un/FlR8zPkojQMwrULl4l1basvLQ//q7JLIZ/ eHxQ6Br7HGa0IyXo/15G6LH7NSO3s0hqwPdNWicSsNZrJQbkB57XJPC2yj/cLFme oloOYS6oZZUZC2vB8uRB5i+7KOUIoltRP6s2nRXZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGf55EETE6N+SJpBwHXyynwUlBTMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxYzhjMDUzLTU2NjAtNGIyNC04YWFhLTI4Y2ViZDU2OWY3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/1gDANBgkqhkiG9w0BAQsFAAOCAQEAv8mHqNI97dBXbRbt0OSR2jHX aaTgMJS3oUF3969IsJlY4jHU4dZWGM/UEOs33XACdtsFu0Rk7dsAI13WEMBoDOvY yInEC2hfsD6QiPjAUjvnXra9+TxkVDKNzCy2jqTq1L+0nz+wrT2taQG9mYyCHoa3 CZPQTK+OvrvYrHsgIwuI6hrxlp1GbmSBdoXFQ9MtSBohP+PEtzxNljWDmzg9t5L+ uQFRCGbV7Adc0jkqP7bQGO7hnYxtcJoUfqDad8D7UwEhozHGMcKfWkEqr44BdLya nzUgSpHlW4o+sXouhBTqZEZ19Di/Kxk5UKQhxSOH4sYZViBzpnWhd2DDl4jLcA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:19:31 2025 by rpki-client