$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa File: ea48da40-e606-40ca-a47e-49973c2920b0.roa (raw, json) Hash identifier: 9Do3xQ68zpx75wIuMU8ePRUwcJjGShT94NKsAkGS4ZY= Subject key identifier: 2E:9E:CB:5D:88:92:41:3A:C5:36:2F:7E:00:8B:C5:34:D7:9F:23:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16FCEE41807D2A9E23172A32D758D1DBE838C484 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa Signing time: Mon 19 May 2025 17:40:27 +0000 ROA not before: Mon 19 May 2025 17:40:27 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb8:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:fc:ee:41:80:7d:2a:9e:23:17:2a:32:d7:58:d1:db:e8:38:c4:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 17:40:27 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=0d2572c409a3ee6dca2c51b97511eb127f99f6c2a5b4970ee89bf810f4392939, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:93:2a:b2:1e:a9:26:f7:98:32:81:9d:b0:78: 01:cb:4c:05:e6:e7:69:b7:32:cc:b6:b4:a9:ea:d6: bf:a9:0e:01:77:00:ac:f4:bb:be:00:f3:79:05:35: de:75:86:8b:0b:83:35:47:d6:a5:ca:3f:48:d2:96: 3c:d8:55:1b:65:d5:43:48:db:62:10:9b:32:33:46: 66:7e:5e:9e:6d:26:d0:6a:e4:ad:de:58:4e:72:47: 21:3d:0b:23:67:3f:b8:52:b7:9f:bd:bb:7b:8e:14: 6f:1f:fd:0f:20:64:bc:93:59:28:7b:8a:37:4c:16: 46:4a:5d:02:8e:7f:fc:00:29:ea:cf:59:7d:e4:f0: 28:f4:cd:3a:c8:fe:62:83:f8:f9:0b:0a:7c:47:33: b1:ae:3d:b9:a0:3a:c1:f0:d5:53:10:01:47:a9:d1: 9a:47:06:af:b9:5c:73:20:b2:31:7b:3f:ef:ea:a3: a9:47:73:9c:51:ca:80:79:22:d0:16:5a:9d:69:07: 0b:ae:0b:18:da:40:0b:e2:82:33:8c:56:f7:aa:b0: 14:f5:84:06:89:de:19:c9:82:41:ed:bb:dc:99:7f: a6:25:03:60:76:59:6d:9b:6a:0d:1c:48:b9:10:c5: 8b:ba:de:d1:57:34:76:ba:91:4f:8a:98:b2:17:cb: d2:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:9E:CB:5D:88:92:41:3A:C5:36:2F:7E:00:8B:C5:34:D7:9F:23:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea48da40-e606-40ca-a47e-49973c2920b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/39 Signature Algorithm: sha256WithRSAEncryption 13:3a:5c:94:5d:c8:55:a0:08:a8:ec:c4:97:51:45:42:24:3b: 9a:35:dd:0e:4b:4f:da:82:be:17:a0:f6:19:de:a8:ce:66:a7: 96:b2:5d:ad:c4:ed:83:ee:db:cd:40:76:aa:60:ed:1b:25:63: 14:47:22:2a:50:18:0b:37:4d:fb:f9:11:d6:cf:a6:7c:2b:85: 3f:c5:78:1e:4d:5b:7e:50:32:e7:05:ad:e8:31:58:17:63:76: 02:32:5a:5d:7a:25:78:ae:65:e5:1b:2a:fd:65:1b:57:c7:fa: f5:4a:45:70:ab:8c:55:d0:bd:b9:5a:89:5d:03:ed:51:43:5b: e7:1a:4f:e9:ff:1f:69:55:54:06:f4:70:34:92:06:f6:26:80: 7c:45:6b:0c:d4:65:1e:01:42:14:5c:29:73:5f:87:41:48:60: b0:e0:e7:6c:39:94:e0:5e:7a:0b:74:30:20:1d:0c:16:4d:df: 2e:c3:3d:c6:7e:19:b3:ab:d3:4f:f8:c1:c9:c0:e2:c9:c0:a6: c5:f5:44:dd:6e:99:f4:96:f7:06:51:65:9e:f4:cd:c3:93:63: 76:64:a3:4c:9d:fd:2f:c0:86:d4:26:4f:7d:a8:44:ed:ba:18: ac:54:d3:f4:4f:27:6c:62:1c:df:68:e1:76:0b:c7:0e:3c:ee: 41:d0:40:54 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFvzuQYB9Kp4jFyoy11jR2+g4xIQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTc0MDI3WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDI1NzJjNDA5YTNlZTZkY2EyYzUxYjk3NTExZWIxMjdm OTlmNmMyYTViNDk3MGVlODliZjgxMGY0MzkyOTM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQkyqyHqkm95gygZ2weAHLTAXm52m3Msy2tKnq1r+pDgF3 AKz0u74A83kFNd51hosLgzVH1qXKP0jSljzYVRtl1UNI22IQmzIzRmZ+Xp5tJtBq 5K3eWE5yRyE9CyNnP7hSt5+9u3uOFG8f/Q8gZLyTWSh7ijdMFkZKXQKOf/wAKerP WX3k8Cj0zTrI/mKD+PkLCnxHM7GuPbmgOsHw1VMQAUep0ZpHBq+5XHMgsjF7P+/q o6lHc5xRyoB5ItAWWp1pBwuuCxjaQAvigjOMVveqsBT1hAaJ3hnJgkHtu9yZf6Yl A2B2WW2bag0cSLkQxYu63tFXNHa6kU+KmLIXy9L3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULp7LXYiSQTrFNi9+AIvFNNefI74wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhNDhkYTQwLWU2MDYtNDBjYS1hNDdlLTQ5OTczYzI5MjBiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAEzpclF3IVaAIqOzEl1FFQiQ7 mjXdDktP2oK+F6D2Gd6ozmanlrJdrcTtg+7bzUB2qmDtGyVjFEciKlAYCzdN+/kR 1s+mfCuFP8V4Hk1bflAy5wWt6DFYF2N2AjJaXXoleK5l5Rsq/WUbV8f69UpFcKuM VdC9uVqJXQPtUUNb5xpP6f8faVVUBvRwNJIG9iaAfEVrDNRlHgFCFFwpc1+HQUhg sODnbDmU4F56C3QwIB0MFk3fLsM9xn4Zs6vTT/jBycDiycCmxfVE3W6Z9Jb3BlFl nvTNw5NjdmSjTJ39L8CG1CZPfahE7boYrFTT9E8nbGIc32jhdgvHDjzuQdBAVA== -----END CERTIFICATE-----Generated at Sun Jun 1 04:59:43 2025 by rpki-client