$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edd1223a-6776-4911-b74c-bf19916f1367.roa File: edd1223a-6776-4911-b74c-bf19916f1367.roa (raw, json) Hash identifier: EVjtE8x1pczBvAeE2kg/BcQY9AUpGqLsXF/8ZwH6ARc= Subject key identifier: 4C:E3:34:13:08:E1:C3:65:87:D0:FD:A5:64:C3:F7:A6:27:61:48:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21C668C56DF1DE84FAA435E312F7E0DD032815F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edd1223a-6776-4911-b74c-bf19916f1367.roa Signing time: Sat 17 May 2025 00:22:04 +0000 ROA not before: Sat 17 May 2025 00:22:04 +0000 ROA not after: Sat 21 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8070::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c6:68:c5:6d:f1:de:84:fa:a4:35:e3:12:f7:e0:dd:03:28:15:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:22:04 2025 GMT Not After : Jun 21 23:59:59 2025 GMT Subject: serialNumber=7d7aa202823819b25a3c141e0b6b135257756fea9fe3fe5edc184f7f0758264f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:9d:b4:36:2b:9c:e3:80:20:f4:69:86:be: 28:0a:c0:21:9a:dc:7e:4e:91:4a:ac:91:ad:0b:f3: d6:2f:05:11:1e:8b:52:0d:04:a0:d5:2f:f3:b6:75: ee:92:d7:37:4a:64:8f:e1:2f:b5:65:04:59:df:81: e9:34:22:06:c2:47:ef:a5:65:99:98:7d:47:08:4c: b6:3a:a4:6c:ac:80:04:06:5b:9c:a8:a4:ee:c0:95: b0:15:c2:18:ab:45:39:1e:20:b5:fd:6c:f6:2f:31: c7:02:77:a0:8f:fe:da:66:23:0a:7b:b8:f1:df:a6: 68:12:23:34:6c:8e:9c:02:0c:0b:e1:50:e7:3b:e4: ea:55:2a:39:ad:10:27:6c:00:71:f0:9e:0f:1a:45: 85:9d:54:5f:4a:c0:a0:1a:ed:58:b4:cd:a6:ed:8b: 80:91:33:13:01:39:25:6d:da:fa:ca:fb:44:e1:b4: 41:36:ea:77:5b:8e:aa:b5:88:0a:40:58:a4:7b:57: 93:6e:f1:49:f7:e6:5c:d9:10:25:d8:2d:a4:2c:47: 70:56:5b:13:a9:7b:97:3a:e6:85:1b:91:dc:0d:57: db:39:2d:e1:3d:0c:ec:88:e6:bb:9c:59:bd:e1:cc: 97:2b:96:1d:a9:eb:e4:8e:60:1a:24:3d:0b:56:85: 70:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:E3:34:13:08:E1:C3:65:87:D0:FD:A5:64:C3:F7:A6:27:61:48:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edd1223a-6776-4911-b74c-bf19916f1367.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8070::/48 Signature Algorithm: sha256WithRSAEncryption 1a:5e:9a:ee:d1:5f:19:3f:f9:9e:37:49:69:7f:46:18:f9:69: f2:d4:9d:3c:c7:62:14:63:73:9b:a5:e6:6f:5a:9c:1f:3f:3c: dc:d1:d2:7c:5b:69:9b:4b:af:4a:e6:69:cf:3a:96:fe:d3:ce: e8:99:d5:48:12:11:47:80:d3:98:3c:5a:b8:09:c7:e1:69:a8: 8e:96:a3:f6:2c:d1:51:fa:c4:ff:74:a4:70:84:60:f8:16:7b: f0:7d:6c:f9:6d:78:65:dc:9a:cb:77:6a:a6:a4:b2:5b:cb:6b: 48:15:a7:bd:c0:73:ac:7f:c8:91:ca:85:94:4d:6e:03:23:e7: f3:5e:a2:f1:04:c3:5f:30:2a:40:e0:cd:f3:5f:45:1b:7c:19: e2:27:8d:c5:4c:b8:02:10:fb:eb:db:ec:93:d6:51:1e:98:c8: 3c:83:aa:b2:ee:33:61:56:da:2b:62:8b:31:5e:1d:9c:4a:b9: 43:2b:5e:f4:76:28:a1:83:76:a2:4d:75:4a:f5:41:28:0a:ea: 9f:3a:b1:09:ab:ab:b0:9c:66:53:eb:3f:b8:eb:db:11:ef:bd: 86:23:67:ee:5b:b8:4f:bb:50:25:32:b1:7b:83:a9:b6:89:28: 9e:e1:00:db:55:8b:6f:7e:88:e0:c4:90:08:db:a5:f2:f5:45: cb:c7:75:82 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIcZoxW3x3oT6pDXjEvfg3QMoFfAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE3MDAyMjA0WhcNMjUwNjIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDdhYTIwMjgyMzgxOWIyNWEzYzE0MWUwYjZiMTM1MjU3 NzU2ZmVhOWZlM2ZlNWVkYzE4NGY3ZjA3NTgyNjRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCIJ20Niuc44Ag9GmGvigKwCGa3H5OkUqska0L89YvBREe i1INBKDVL/O2de6S1zdKZI/hL7VlBFnfgek0IgbCR++lZZmYfUcITLY6pGysgAQG W5yopO7AlbAVwhirRTkeILX9bPYvMccCd6CP/tpmIwp7uPHfpmgSIzRsjpwCDAvh UOc75OpVKjmtECdsAHHwng8aRYWdVF9KwKAa7Vi0zabti4CRMxMBOSVt2vrK+0Th tEE26ndbjqq1iApAWKR7V5Nu8Un35lzZECXYLaQsR3BWWxOpe5c65oUbkdwNV9s5 LeE9DOyI5rucWb3hzJcrlh2p6+SOYBokPQtWhXA9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTOM0Ewjhw2WH0P2lZMP3pidhSNcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VkZDEyMjNhLTY3NzYtNDkxMS1iNzRjLWJmMTk5MTZmMTM2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gHAwDQYJKoZIhvcNAQELBQADggEBABpemu7RXxk/+Z43SWl/Rhj5 afLUnTzHYhRjc5ul5m9anB8/PNzR0nxbaZtLr0rmac86lv7TzuiZ1UgSEUeA05g8 WrgJx+FpqI6Wo/Ys0VH6xP90pHCEYPgWe/B9bPlteGXcmst3aqakslvLa0gVp73A c6x/yJHKhZRNbgMj5/NeovEEw18wKkDgzfNfRRt8GeInjcVMuAIQ++vb7JPWUR6Y yDyDqrLuM2FW2itiizFeHZxKuUMrXvR2KKGDdqJNdUr1QSgK6p86sQmrq7CcZlPr P7jr2xHvvYYjZ+5buE+7UCUysXuDqbaJKJ7hANtVi29+iODEkAjbpfL1RcvHdYI= -----END CERTIFICATE-----Generated at Sun Jun 1 04:59:41 2025 by rpki-client