$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa File: e9bd7780-4f41-490c-9ef8-0c9f02433493.roa (raw, json) Hash identifier: 1F2/Adxbgn2+XUlfebyeZnNQ02axZTAl0ZFYGXCgXTY= Subject key identifier: 4E:16:A2:2B:FA:3B:B9:B7:36:9B:77:76:13:14:47:6E:9E:DB:5B:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C301DBCB446D702F4CE00F9457D92660A5D4F87 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa Signing time: Mon 19 May 2025 17:41:33 +0000 ROA not before: Mon 19 May 2025 17:41:33 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff5:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:30:1d:bc:b4:46:d7:02:f4:ce:00:f9:45:7d:92:66:0a:5d:4f:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:41:33 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=19c3111ff691d186b96fffa9c37a8fd76bc957568427862f6523d57cad66c5b4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:ec:5f:28:17:3e:9b:70:b9:4f:48:c6:7b: 3b:a7:51:b1:c2:55:4a:d5:a7:27:71:56:67:32:f3: 5f:fe:e2:39:59:a5:6c:ca:ea:74:12:e8:e7:8d:dd: e8:f6:09:5d:45:0e:34:a4:06:07:69:fa:9b:fa:9b: dc:3e:b3:85:91:c6:7a:96:6f:c5:f3:5e:9b:13:f5: b7:44:93:98:f1:e3:6d:e0:23:42:84:d2:41:59:f3: 36:84:74:9f:2e:63:35:95:db:64:1e:fc:87:0f:12: 3f:2f:b4:39:43:a3:74:11:78:3f:2b:97:40:97:65: 1b:41:47:e1:13:11:24:54:b9:cc:d9:db:8a:b6:dc: cc:2d:6d:58:4f:62:6a:20:9d:c5:f0:f7:73:c5:0a: f3:90:44:f2:86:8e:39:9b:b5:3c:ac:2b:5b:63:58: 79:4e:65:a0:2f:4e:d3:08:76:83:0f:c9:d4:31:ad: 41:1f:f6:4b:04:01:62:7e:49:60:6f:78:4b:38:cb: c3:ba:2b:ec:b3:f9:f1:7e:9b:b7:ab:ab:de:0a:ed: b5:c8:80:d6:98:b6:15:63:75:1c:5c:b0:80:7c:8d: f4:44:8f:8b:ef:d3:93:3f:e1:cd:07:6e:0a:0f:c5: ec:74:fb:67:cb:ab:9d:80:0a:3a:1f:c4:a3:42:55: 3a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:16:A2:2B:FA:3B:B9:B7:36:9B:77:76:13:14:47:6E:9E:DB:5B:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9bd7780-4f41-490c-9ef8-0c9f02433493.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:2000::/40 Signature Algorithm: sha256WithRSAEncryption 94:b8:14:12:c0:85:61:55:6d:59:87:af:44:6e:d2:22:d1:06: ab:82:d9:7c:44:12:c3:29:6f:fc:25:79:a1:b1:80:39:84:2e: 28:27:80:98:86:2d:ad:d2:19:71:6f:0a:af:18:4f:da:d9:9c: 97:00:3e:e0:3b:1a:a3:48:1a:c3:85:d0:69:06:cf:e8:9e:64: 37:f0:8e:4f:7a:08:91:bf:f2:be:a4:0f:05:b1:64:ff:fe:7d: 95:63:26:73:28:10:66:ba:4d:d8:4f:ba:2d:9c:c6:e6:a3:19: 0a:1a:6b:a4:9b:e9:d2:b6:76:b8:49:7e:c7:89:7d:d4:09:a0: 2d:85:38:40:24:e6:12:89:c2:04:d5:b4:f5:6e:79:9d:d5:6c: bb:c6:95:c7:01:d4:7b:27:d5:f1:f6:38:02:1f:b0:73:72:b7: 0e:fe:79:e9:f2:01:e4:9e:00:65:99:b1:b8:4f:2a:be:ae:2f: 89:74:e4:5b:12:32:a1:b6:5e:4b:6a:ab:ab:f1:63:39:46:3a: 0d:85:40:ca:ac:66:55:ad:b1:b7:1f:b7:7c:f2:61:b0:11:61: df:68:49:42:25:6b:13:b0:f5:14:f6:14:8e:51:10:13:f1:07: c5:45:ff:37:0d:d8:92:2b:85:90:d2:a2:39:1a:83:ac:38:84: 57:56:2c:ce -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDDAdvLRG1wL0zgD5RX2SZgpdT4cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTc0MTMzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWMzMTExZmY2OTFkMTg2Yjk2ZmZmYTljMzdhOGZkNzZi Yzk1NzU2ODQyNzg2MmY2NTIzZDU3Y2FkNjZjNWI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2WexfKBc+m3C5T0jGezunUbHCVUrVpydxVmcy81/+4jlZ pWzK6nQS6OeN3ej2CV1FDjSkBgdp+pv6m9w+s4WRxnqWb8XzXpsT9bdEk5jx423g I0KE0kFZ8zaEdJ8uYzWV22Qe/IcPEj8vtDlDo3QReD8rl0CXZRtBR+ETESRUuczZ 24q23MwtbVhPYmogncXw93PFCvOQRPKGjjmbtTysK1tjWHlOZaAvTtMIdoMPydQx rUEf9ksEAWJ+SWBveEs4y8O6K+yz+fF+m7erq94K7bXIgNaYthVjdRxcsIB8jfRE j4vv05M/4c0HbgoPxex0+2fLq52ACjofxKNCVTpnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUThaiK/o7ubc2m3d2ExRHbp7bWwwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5YmQ3NzgwLTRmNDEtNDkwYy05ZWY4LTBjOWYwMjQzMzQ5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/1IDANBgkqhkiG9w0BAQsFAAOCAQEAlLgUEsCFYVVtWYevRG7SItEG q4LZfEQSwylv/CV5obGAOYQuKCeAmIYtrdIZcW8KrxhP2tmclwA+4Dsao0gaw4XQ aQbP6J5kN/COT3oIkb/yvqQPBbFk//59lWMmcygQZrpN2E+6LZzG5qMZChprpJvp 0rZ2uEl+x4l91AmgLYU4QCTmEonCBNW09W55ndVsu8aVxwHUeyfV8fY4Ah+wc3K3 Dv556fIB5J4AZZmxuE8qvq4viXTkWxIyobZeS2qrq/FjOUY6DYVAyqxmVa2xtx+3 fPJhsBFh32hJQiVrE7D1FPYUjlEQE/EHxUX/Nw3YkiuFkNKiORqDrDiEV1Yszg== -----END CERTIFICATE-----Generated at Sun Jun 1 04:32:55 2025 by rpki-client