$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1cdc500-54c5-447c-974f-78ae9d1df2ff.roa File: e1cdc500-54c5-447c-974f-78ae9d1df2ff.roa (raw, json) Hash identifier: bvaKNJacDM+Gn8dTKdvH1LTQKo62j4cXdMRjdi1zoTM= Subject key identifier: 2F:31:AB:5B:34:B7:76:41:B0:0C:1D:2B:2B:4F:65:B7:E1:F9:2F:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EA158542DC07060A4DAE32D1F5A69269A407D5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1cdc500-54c5-447c-974f-78ae9d1df2ff.roa Signing time: Mon 19 May 2025 16:22:00 +0000 ROA not before: Mon 19 May 2025 16:22:00 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff7:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:a1:58:54:2d:c0:70:60:a4:da:e3:2d:1f:5a:69:26:9a:40:7d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 16:22:00 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=1d1e9a02c64303c1a1eb48ed6e6e895927b6727efecee01f016a28dae099bcb9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:09:68:1e:31:f1:83:39:9e:0e:a7:42:43:c1: 7b:48:ae:2e:db:0e:86:c5:e0:5c:da:2c:3a:5b:1b: 09:47:56:e2:9f:9a:77:f8:2d:ec:15:e9:e6:58:85: e7:70:95:6a:bf:a4:07:58:a2:59:ec:14:2c:c0:47: ed:65:d9:a6:66:fb:10:7e:21:63:ea:b9:e9:fa:bd: 3b:0b:70:35:8a:23:3f:d1:2e:e7:9d:6f:da:ae:67: 04:5a:9b:38:a0:cb:8a:f1:ed:b4:a4:76:79:46:00: 9b:92:9a:3c:d9:2d:6d:31:e7:33:eb:9c:4f:c7:20: fc:c1:61:48:6c:2a:f8:ab:b0:fd:62:14:3d:f6:9b: 5d:5d:c6:16:b9:e2:c6:8b:83:63:0b:71:dd:06:c2: b7:d2:2b:61:23:49:ed:cc:72:27:76:8d:ac:44:ef: 90:4d:24:dc:f0:ae:73:cf:7e:76:59:6f:80:4b:d5: e9:f6:9f:ec:ac:4f:9f:90:b0:5e:68:4a:57:ba:59: 6e:d7:32:26:6b:af:1a:f9:58:0e:a5:8b:14:e2:b1: fc:4b:b3:43:d7:75:47:73:03:62:4d:07:ff:5f:85: 5a:a2:e9:a4:dc:1b:67:1e:e8:5b:6e:b8:e2:ac:be: db:8f:90:27:03:68:32:44:58:c0:f9:04:18:be:97: 84:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:31:AB:5B:34:B7:76:41:B0:0C:1D:2B:2B:4F:65:B7:E1:F9:2F:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e1cdc500-54c5-447c-974f-78ae9d1df2ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:8000::/39 Signature Algorithm: sha256WithRSAEncryption 6a:e3:5e:14:dc:64:d9:ab:a6:9c:c3:d8:77:40:72:4a:d4:9b: 4a:43:40:95:98:33:5d:61:e0:2b:99:b3:db:19:de:a2:b7:9d: 23:1b:1b:ff:6b:d8:5e:e8:bf:0d:13:be:4d:bd:17:4a:e1:8b: cd:ca:1c:3e:e3:32:8a:52:27:1d:67:3a:e8:60:12:c2:54:3a: b9:5a:2d:9f:bb:df:29:1a:f2:b9:27:20:7b:a4:29:f2:4b:1a: ac:49:c1:ff:96:2a:f4:7c:c5:67:31:04:6e:4c:29:d5:8a:4a: 69:c2:16:06:c2:2a:7e:45:3c:a8:11:a7:fb:a2:f6:ac:00:18: 6d:9b:db:20:39:f2:0b:b2:b7:f7:2e:df:df:72:d0:50:20:a3: 0e:0b:c3:c9:3d:04:63:db:3c:51:17:1b:20:4e:d8:c8:d0:97: e6:8b:17:04:5e:90:3c:72:09:12:4f:2c:25:53:54:88:89:fe: 15:12:a9:44:8f:b7:e6:8d:ae:cd:f4:b4:97:44:04:5c:b2:ca: e0:ef:7d:bf:7f:64:2e:61:d3:12:83:c8:b0:7f:2a:51:25:18: db:dc:da:08:01:41:ba:fb:3d:6b:82:49:66:df:1d:2b:cd:a6: b0:22:14:89:6d:40:fc:8e:f2:44:b4:e1:a6:52:d1:71:71:f4: bc:80:54:90 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfqFYVC3AcGCk2uMtH1ppJppAfV0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTYyMjAwWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDFlOWEwMmM2NDMwM2MxYTFlYjQ4ZWQ2ZTZlODk1OTI3 YjY3MjdlZmVjZWUwMWYwMTZhMjhkYWUwOTliY2I5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0CWgeMfGDOZ4Op0JDwXtIri7bDobF4FzaLDpbGwlHVuKf mnf4LewV6eZYhedwlWq/pAdYolnsFCzAR+1l2aZm+xB+IWPquen6vTsLcDWKIz/R Luedb9quZwRamzigy4rx7bSkdnlGAJuSmjzZLW0x5zPrnE/HIPzBYUhsKvirsP1i FD32m11dxha54saLg2MLcd0GwrfSK2EjSe3Mcid2jaxE75BNJNzwrnPPfnZZb4BL 1en2n+ysT5+QsF5oSle6WW7XMiZrrxr5WA6lixTisfxLs0PXdUdzA2JNB/9fhVqi 6aTcG2ce6FtuuOKsvtuPkCcDaDJEWMD5BBi+l4SxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULzGrWzS3dkGwDB0rK09lt+H5L/wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxY2RjNTAwLTU0YzUtNDQ3Yy05NzRmLTc4YWU5ZDFkZjJmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/3gDANBgkqhkiG9w0BAQsFAAOCAQEAauNeFNxk2aumnMPYd0ByStSb SkNAlZgzXWHgK5mz2xneoredIxsb/2vYXui/DRO+Tb0XSuGLzcocPuMyilInHWc6 6GASwlQ6uVotn7vfKRryuScge6Qp8ksarEnB/5Yq9HzFZzEEbkwp1YpKacIWBsIq fkU8qBGn+6L2rAAYbZvbIDnyC7K39y7f33LQUCCjDgvDyT0EY9s8URcbIE7YyNCX 5osXBF6QPHIJEk8sJVNUiIn+FRKpRI+35o2uzfS0l0QEXLLK4O99v39kLmHTEoPI sH8qUSUY29zaCAFBuvs9a4JJZt8dK82msCIUiW1A/I7yRLThplLRcXH0vIBUkA== -----END CERTIFICATE-----Generated at Sun Jun 1 05:05:08 2025 by rpki-client