$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa File: 4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa (raw, json) Hash identifier: YO2JFJcjG61HMyqeeUOq7wCb5Wrv4kCo3jnLkvK3D4c= Subject key identifier: 01:56:86:98:60:E0:59:66:91:DF:90:61:59:0E:63:1C:4E:D5:78:13 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 79385ADBE3464F370DF3279E3E2B12201F710287 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa Signing time: Sat 31 May 2025 00:20:08 +0000 ROA not before: Sat 31 May 2025 00:20:08 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:38:5a:db:e3:46:4f:37:0d:f3:27:9e:3e:2b:12:20:1f:71:02:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: May 31 00:20:08 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=45a4a003a7779b84515f072d41fd4e4a2889a53373162389b12cebf8d45c96bc, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f4:10:aa:8d:d8:14:99:3a:25:d0:7c:39:64: 0d:29:59:d7:60:6b:8d:f8:25:d8:c0:0a:81:53:47: 3c:24:c7:8c:bd:5c:3d:cf:28:c1:2f:b5:05:12:33: cf:87:82:2f:bd:c9:21:c1:a3:6c:1f:32:a1:83:53: 89:62:14:1c:77:da:c5:61:69:4f:95:d4:4e:c9:f9: 88:cf:87:aa:02:18:05:e8:60:50:db:82:31:cf:44: 85:df:08:ea:16:f7:62:ea:75:89:6b:23:d0:f2:c6: e0:87:32:7f:d5:e3:68:85:cb:e4:ba:68:7f:c2:a8: 99:0f:0d:0d:8e:21:a4:61:81:6c:4c:64:e3:b3:2e: 47:0e:49:bc:22:0e:e2:06:0f:be:a7:1d:aa:c3:c8: 1d:4c:dc:45:47:d4:2d:e6:92:4d:36:90:e3:44:34: 98:c0:43:1e:e6:92:50:40:3d:20:f2:f4:d7:9c:3e: 8f:cc:11:67:02:db:55:4e:0a:33:92:97:e7:54:01: c9:2c:c1:76:f8:da:9b:f3:d0:c2:01:7c:c6:4e:1d: fa:bc:bd:81:ed:4e:97:dc:bc:7e:24:77:07:1f:09: c3:fa:0f:85:9b:87:a9:00:be:61:52:6a:4f:19:62: 61:f3:56:fa:f3:ab:2b:ba:a6:7c:e3:57:2e:fe:d4: 76:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:56:86:98:60:E0:59:66:91:DF:90:61:59:0E:63:1C:4E:D5:78:13 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/4aef75f4-87ef-46d3-96d7-dc53be178ebe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffc::/48 Signature Algorithm: sha256WithRSAEncryption 7f:53:97:71:ca:4d:80:3f:11:5a:00:f7:81:1e:56:c0:a0:61: 12:a7:20:f8:22:56:fe:ff:51:c8:ad:47:79:4f:c6:c6:1b:6d: b2:b3:9b:49:16:9f:3f:46:af:d2:a9:ca:fd:1e:7a:d5:cd:d3: 11:36:1f:9d:49:fe:a7:ca:9d:98:46:fa:b0:f5:a2:36:ce:55: 51:3c:dd:be:2d:7a:e2:9e:89:43:24:96:1b:ef:ca:a4:b3:50: ba:4c:87:16:74:88:5d:77:93:ba:93:cf:01:ba:83:b7:63:3b: 46:10:2c:ce:b1:7b:19:e0:e0:6e:51:e3:f5:1f:4a:85:1d:56: 10:49:fc:63:bc:ef:44:5d:cb:74:41:2b:a1:18:64:aa:5a:af: 6d:ac:93:aa:12:2c:a1:90:3c:50:3f:3f:49:2b:9d:77:9b:18: 6a:e6:0e:f4:65:9c:f1:c4:63:10:f7:8f:c0:e0:9f:9d:36:cf: 49:fe:d2:3c:dc:47:3e:e6:b9:70:1f:7a:df:01:a1:6a:2e:51: f6:de:83:9d:42:40:19:ae:cc:31:ac:3b:92:34:74:3a:17:ba: 96:b9:92:03:19:5c:61:cc:26:d0:af:92:f2:a4:80:bd:6d:74: 76:3c:fb:6f:c5:ab:86:4c:c9:99:74:fa:e1:ee:6a:cd:fb:73: 36:fa:dc:dd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeTha2+NGTzcN8yeePisSIB9xAocwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNTMxMDAyMDA4WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NWE0YTAwM2E3Nzc5Yjg0NTE1ZjA3MmQ0MWZkNGU0YTI4 ODlhNTMzNzMxNjIzODliMTJjZWJmOGQ0NWM5NmJjMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDF9BCqjdgUmTol0Hw5ZA0pWddga434JdjACoFTRzwkx4y9 XD3PKMEvtQUSM8+Hgi+9ySHBo2wfMqGDU4liFBx32sVhaU+V1E7J+YjPh6oCGAXo YFDbgjHPRIXfCOoW92LqdYlrI9DyxuCHMn/V42iFy+S6aH/CqJkPDQ2OIaRhgWxM ZOOzLkcOSbwiDuIGD76nHarDyB1M3EVH1C3mkk02kONENJjAQx7mklBAPSDy9Nec Po/MEWcC21VOCjOSl+dUAckswXb42pvz0MIBfMZOHfq8vYHtTpfcvH4kdwcfCcP6 D4Wbh6kAvmFSak8ZYmHzVvrzqyu6pnzjVy7+1Hb3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAVaGmGDgWWaR35BhWQ5jHE7VeBMwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzRhZWY3NWY0LTg3ZWYtNDZkMy05NmQ3LWRjNTNiZTE3OGViZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//wwDQYJKoZIhvcNAQELBQADggEBAH9Tl3HKTYA/EVoA94EeVsCg YRKnIPgiVv7/UcitR3lPxsYbbbKzm0kWnz9Gr9Kpyv0eetXN0xE2H51J/qfKnZhG +rD1ojbOVVE83b4teuKeiUMklhvvyqSzULpMhxZ0iF13k7qTzwG6g7djO0YQLM6x exng4G5R4/UfSoUdVhBJ/GO870Rdy3RBK6EYZKpar22sk6oSLKGQPFA/P0krnXeb GGrmDvRlnPHEYxD3j8Dgn502z0n+0jzcRz7muXAfet8BoWouUfbeg51CQBmuzDGs O5I0dDoXupa5kgMZXGHMJtCvkvKkgL1tdHY8+2/Fq4ZMyZl0+uHuas37czb63N0= -----END CERTIFICATE-----Generated at Fri Jun 6 18:18:39 2025 by rpki-client