$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa File: fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa (raw, json) Hash identifier: KseYX7HYjMK71eP5EiIBYTLAnV5+4uDKuKClE2EjMM4= Subject key identifier: F7:71:07:A7:92:3F:BC:77:B7:B0:72:FC:FE:0C:D7:F1:24:60:46:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 412F117598043302FF0832B88A780F442DBE42C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa Signing time: Fri 23 May 2025 00:20:24 +0000 ROA not before: Fri 23 May 2025 00:20:24 +0000 ROA not after: Fri 27 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:2f:11:75:98:04:33:02:ff:08:32:b8:8a:78:0f:44:2d:be:42:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 23 00:20:24 2025 GMT Not After : Jun 27 23:59:59 2025 GMT Subject: serialNumber=1eca949b5e259c4c88f8164b4d9b678a760be584b2c55cd9e270e57c66979b9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ae:f3:ad:ad:54:6b:a4:92:ae:d4:5c:5a:05: 1a:46:db:69:42:35:55:39:dc:8f:b0:5e:1e:bd:d3: 4c:68:3d:c7:31:63:76:7b:21:15:d5:28:37:d9:f4: a0:6b:51:92:65:0e:8d:30:6f:b8:f5:57:17:15:4f: 65:20:7a:c1:bc:46:71:55:6c:70:84:d0:aa:de:64: 01:20:e6:d7:e0:41:16:fb:3a:92:df:77:33:45:8a: e7:dc:68:76:6f:37:33:78:60:4e:83:b4:bf:99:02: a0:2d:f1:d3:36:ff:b2:3f:77:c2:e3:b7:d4:71:c4: 88:c0:57:a2:f2:4e:a0:76:02:d0:6d:1d:0e:e0:21: bd:db:4d:f8:4b:26:5f:e1:2c:86:af:9d:17:20:b0: 68:60:94:34:58:49:c2:42:05:ac:7f:89:80:b0:71: f7:77:73:02:53:4d:69:89:8f:ce:97:76:a6:ee:47: ce:95:af:c4:f9:fb:69:df:e3:d5:65:b8:04:73:0e: ee:92:db:8d:0f:6b:46:b6:e5:d9:10:04:a7:54:66: 92:10:6f:51:b6:94:91:d5:1e:8e:b5:27:61:ef:41: 52:cf:f7:61:13:62:73:c5:89:5d:c7:64:d2:63:7e: 73:b4:3e:68:69:ac:fb:38:f7:07:c6:95:83:90:07: bd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:71:07:A7:92:3F:BC:77:B7:B0:72:FC:FE:0C:D7:F1:24:60:46:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:7400::/40 Signature Algorithm: sha256WithRSAEncryption 58:4c:65:e7:a7:63:18:ba:0f:a4:2e:24:f1:93:27:20:95:c4: 8c:8a:39:9d:83:44:e2:f4:45:9b:3e:43:f6:82:fa:60:cd:99: 65:2f:e0:4c:09:11:3e:a9:4f:1d:3f:d2:63:89:64:63:61:49: 55:f2:e7:1f:39:7d:3e:1d:d7:80:48:58:d5:15:7c:0d:d9:2c: 53:6f:5a:1b:fd:5c:57:59:b1:27:e2:23:44:32:7d:db:a6:d8: b0:26:ea:cf:7c:b6:86:e5:60:a9:4c:21:83:66:8f:0d:9c:01: a8:3e:5f:52:79:b4:61:92:ce:95:22:8d:38:be:b8:81:05:10: fb:c6:f4:49:17:4f:1b:42:b1:1a:4f:4f:c6:a4:b1:33:31:89: 4f:04:88:86:ae:7e:ca:96:7a:73:8e:21:a6:b0:a1:bc:10:73: 59:61:95:d7:6c:2e:e7:75:8a:1a:d0:3a:81:5a:3d:74:59:fb: 67:98:41:52:2d:6d:05:be:d5:c0:7e:5f:ae:ea:b7:c9:80:f0: 66:97:52:4b:68:05:4b:4e:e4:99:14:0e:e6:63:96:4e:78:94: cc:d4:04:e1:42:64:e4:00:92:77:60:48:1c:37:5e:38:00:cc: 95:35:30:c3:17:af:0c:59:4f:85:e2:b0:27:f4:99:ba:f1:fa: fb:ae:9d:79 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQS8RdZgEMwL/CDK4ingPRC2+QsAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIzMDAyMDI0WhcNMjUwNjI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWNhOTQ5YjVlMjU5YzRjODhmODE2NGI0ZDliNjc4YTc2 MGJlNTg0YjJjNTVjZDllMjcwZTU3YzY2OTc5YjliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClrvOtrVRrpJKu1FxaBRpG22lCNVU53I+wXh6900xoPccx Y3Z7IRXVKDfZ9KBrUZJlDo0wb7j1VxcVT2UgesG8RnFVbHCE0KreZAEg5tfgQRb7 OpLfdzNFiufcaHZvNzN4YE6DtL+ZAqAt8dM2/7I/d8Ljt9RxxIjAV6LyTqB2AtBt HQ7gIb3bTfhLJl/hLIavnRcgsGhglDRYScJCBax/iYCwcfd3cwJTTWmJj86Xdqbu R86Vr8T5+2nf49VluARzDu6S240Pa0a25dkQBKdUZpIQb1G2lJHVHo61J2HvQVLP 92ETYnPFiV3HZNJjfnO0PmhprPs49wfGlYOQB71lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU93EHp5I/vHe3sHL8/gzX8SRgRjEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkNzdlMTYxLWJmNjYtNGY5Yy1hNGM3LWEwNTIxMDA2ZmM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vdDANBgkqhkiG9w0BAQsFAAOCAQEAWExl56djGLoPpC4k8ZMnIJXE jIo5nYNE4vRFmz5D9oL6YM2ZZS/gTAkRPqlPHT/SY4lkY2FJVfLnHzl9Ph3XgEhY 1RV8DdksU29aG/1cV1mxJ+IjRDJ926bYsCbqz3y2huVgqUwhg2aPDZwBqD5fUnm0 YZLOlSKNOL64gQUQ+8b0SRdPG0KxGk9PxqSxMzGJTwSIhq5+ypZ6c44hprChvBBz WWGV12wu53WKGtA6gVo9dFn7Z5hBUi1tBb7VwH5fruq3yYDwZpdSS2gFS07kmRQO 5mOWTniUzNQE4UJk5ACSd2BIHDdeOADMlTUwwxevDFlPheKwJ/SZuvH6+66deQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:26:01 2025 by rpki-client