$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa File: 91a27594-a038-483a-a558-a5377f4d266f.roa (raw, json) Hash identifier: kgdp6QUOgA77WqdwfbboJQv/eaST56k2Jukn1n7oRv4= Subject key identifier: 87:DC:4F:A5:D7:B2:85:43:D5:16:70:70:EE:58:02:C7:3B:98:EF:3A Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 0354D0BB38B4056B6BDC921524148D0D65A9C52C Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa Signing time: Sat 31 May 2025 00:20:07 +0000 ROA not before: Sat 31 May 2025 00:20:07 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:54:d0:bb:38:b4:05:6b:6b:dc:92:15:24:14:8d:0d:65:a9:c5:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: May 31 00:20:07 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=dd542c5a8249b1014527fd81ac0a4c243da8346e0fcc07094da7c3aba35a8451, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4c:20:0e:bf:41:1a:7b:56:e6:d9:84:02:a5: 40:59:74:9f:05:eb:a4:32:89:64:88:10:21:5e:dd: c2:d0:9b:fb:50:2d:31:81:a5:d2:02:22:72:56:e0: 48:5f:79:dd:d5:c2:bf:5d:56:0c:c9:32:14:a5:8f: f9:2a:e5:43:1c:d7:af:cc:b6:47:5a:07:89:f5:c6: 05:5d:60:3c:09:1c:4d:50:13:07:48:e2:27:e5:18: 46:a7:4b:f1:13:b7:df:18:a5:dc:de:b7:65:3a:1e: 85:6f:9f:c4:11:02:a0:c4:1b:ff:3a:d8:3d:cb:11: f9:d7:0f:22:6d:04:ae:38:03:00:c7:ba:8b:02:ca: 85:ec:f7:01:50:33:49:17:e8:89:bb:bc:88:b9:7d: e0:43:9f:ec:64:78:f2:f2:06:d4:dc:52:4e:4f:3c: 09:ef:1e:8d:a0:23:f9:2d:d6:28:0a:ab:70:a3:5c: 8f:2c:6e:f9:88:07:86:5d:2c:fe:27:eb:8e:b7:4c: d8:03:fd:20:de:9f:07:2f:3e:64:77:21:3c:d4:5a: 57:42:db:54:99:68:94:4d:9b:60:b0:e7:71:be:68: d0:be:23:9b:1d:62:60:76:bc:b2:0b:97:65:78:a0: da:16:c8:d2:82:67:9e:27:2f:8e:63:b6:c5:5f:c0: 49:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DC:4F:A5:D7:B2:85:43:D5:16:70:70:EE:58:02:C7:3B:98:EF:3A X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/91a27594-a038-483a-a558-a5377f4d266f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffc::/48 Signature Algorithm: sha256WithRSAEncryption 9f:ca:93:3d:1e:1f:a2:66:10:7d:cc:c2:0b:9f:46:eb:54:b5: 01:54:66:bf:e7:52:21:97:63:61:b8:5f:6d:51:0e:46:df:b7: 8e:45:3f:34:65:87:98:90:8d:b2:49:00:96:09:d8:b6:3a:c2: df:02:05:fd:0c:f9:55:2e:2a:42:f2:4d:74:d8:33:0d:d7:76: c4:86:a7:b7:09:6e:8b:d4:1c:6b:e6:ff:6c:41:bb:29:dd:53: 42:e6:5e:3f:33:ee:b1:f1:8b:18:a4:40:05:77:3e:9e:5a:72: 75:65:fb:e5:18:41:dc:11:19:48:a0:7c:66:ec:62:1a:74:3e: 2b:d9:93:cc:61:71:f9:ca:99:68:1a:ef:a6:1b:70:f5:d0:eb: 87:3a:d2:f9:82:b0:4f:9e:4f:19:0b:75:9f:16:ed:37:63:da: 17:be:dd:fa:a4:fa:f2:fe:66:43:ea:b3:93:d9:77:79:3e:98: e4:26:20:26:92:b4:ee:81:35:89:34:b0:3b:1d:c5:4c:3c:08: 51:ee:67:e1:e6:28:ba:1c:df:3c:db:84:f2:aa:25:e1:9b:34: 61:e1:2d:57:b9:f5:c1:f0:92:a4:c3:ad:ed:a8:49:a3:1a:3c: c6:4d:79:c1:dd:3a:5c:17:04:0f:9f:02:52:3e:32:8c:d2:25: b3:c6:6b:2c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUA1TQuzi0BWtr3JIVJBSNDWWpxSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNTMxMDAyMDA3WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDU0MmM1YTgyNDliMTAxNDUyN2ZkODFhYzBhNGMyNDNk YTgzNDZlMGZjYzA3MDk0ZGE3YzNhYmEzNWE4NDUxMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDETCAOv0Eae1bm2YQCpUBZdJ8F66QyiWSIECFe3cLQm/tQ LTGBpdICInJW4Ehfed3Vwr9dVgzJMhSlj/kq5UMc16/MtkdaB4n1xgVdYDwJHE1Q EwdI4iflGEanS/ETt98Ypdzet2U6HoVvn8QRAqDEG/862D3LEfnXDyJtBK44AwDH uosCyoXs9wFQM0kX6Im7vIi5feBDn+xkePLyBtTcUk5PPAnvHo2gI/kt1igKq3Cj XI8sbvmIB4ZdLP4n6463TNgD/SDenwcvPmR3ITzUWldC21SZaJRNm2Cw53G+aNC+ I5sdYmB2vLILl2V4oNoWyNKCZ54nL45jtsVfwEllAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUh9xPpdeyhUPVFnBw7lgCxzuY7zowHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzkxYTI3NTk0LWEwMzgtNDgzYS1hNTU4LWE1Mzc3ZjRkMjY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//wwDQYJKoZIhvcNAQELBQADggEBAJ/Kkz0eH6JmEH3MwgufRutU tQFUZr/nUiGXY2G4X21RDkbft45FPzRlh5iQjbJJAJYJ2LY6wt8CBf0M+VUuKkLy TXTYMw3XdsSGp7cJbovUHGvm/2xBuyndU0LmXj8z7rHxixikQAV3Pp5acnVl++UY QdwRGUigfGbsYhp0PivZk8xhcfnKmWga76YbcPXQ64c60vmCsE+eTxkLdZ8W7Tdj 2he+3fqk+vL+ZkPqs5PZd3k+mOQmICaStO6BNYk0sDsdxUw8CFHuZ+HmKLoc3zzb hPKqJeGbNGHhLVe59cHwkqTDre2oSaMaPMZNecHdOlwXBA+fAlI+MozSJbPGayw= -----END CERTIFICATE-----Generated at Fri Jun 6 04:35:30 2025 by rpki-client