$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa File: 943694fe-e278-4d76-b786-7df26f151dd9.roa (raw, json) Hash identifier: wQ7GsZh9IMUgLxNZ2UHiKF+iqp6kf+4YO+Y3y4ui1Ac= Subject key identifier: E1:04:61:77:23:F0:7F:BB:9A:80:51:D5:93:04:4F:84:53:00:84:34 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 74EB4D2A097C5793AE30E399F9EE0AAB141E12FA Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa Signing time: Sat 31 May 2025 00:20:04 +0000 ROA not before: Sat 31 May 2025 00:20:04 +0000 ROA not after: Sat 05 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:fffe::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 05 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:eb:4d:2a:09:7c:57:93:ae:30:e3:99:f9:ee:0a:ab:14:1e:12:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: May 31 00:20:04 2025 GMT Not After : Jul 5 23:59:59 2025 GMT Subject: serialNumber=d5cec874619cd83dcdef253040031ac35e8052d9871797d4c1415bd34e7095b3, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:49:26:7e:9a:a5:c9:e5:a4:d5:84:2b:a9:aa: 11:76:45:24:a3:c7:06:ce:53:bf:3c:c5:da:91:67: c5:10:b9:ae:95:61:45:28:e7:df:03:de:cb:e5:81: f6:31:26:7f:55:af:4b:9f:9c:68:91:9e:70:d8:e8: 51:8a:be:13:d4:3d:7d:b2:3e:86:b2:6c:2e:ec:b6: 0d:ce:5e:b2:6f:a2:de:83:d0:11:0b:95:bc:ef:e7: c9:16:ad:90:2d:45:13:a3:e9:72:96:01:80:87:d1: 34:f2:bc:f5:39:5a:58:93:69:49:e8:04:1d:61:58: a6:27:b4:d4:78:31:f8:c3:9b:18:b9:9a:ee:c9:2f: d1:5e:73:d9:54:87:c0:0c:9a:fb:f9:91:88:6b:9d: 52:a8:f0:2b:0f:54:bc:32:41:33:bd:c7:3f:bb:1f: 55:3c:4c:d5:47:43:ef:13:e3:be:7a:e7:24:4e:4d: e8:be:33:12:ac:bc:60:03:6c:ac:28:09:f7:ce:b9: ac:17:86:67:d5:09:9c:f7:22:c6:b7:e6:00:a0:cc: 59:3a:2c:db:3b:2e:44:29:4e:74:b5:f0:ab:40:01: 48:1b:42:cc:3c:66:a3:b6:73:ac:01:76:be:70:fe: e8:0f:2a:cb:3c:2b:4b:0b:9b:e8:68:d6:fa:8f:f6: 85:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:04:61:77:23:F0:7F:BB:9A:80:51:D5:93:04:4F:84:53:00:84:34 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/943694fe-e278-4d76-b786-7df26f151dd9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:fffe::/48 Signature Algorithm: sha256WithRSAEncryption 6a:80:30:08:bd:8d:56:d6:dc:4d:ae:f9:44:db:4c:bb:ba:ec: 57:65:29:45:f7:91:5d:02:16:02:de:4d:08:a8:4b:18:80:7d: 6a:7b:ee:b8:c5:37:45:40:3d:ed:d1:fb:52:fa:bd:c8:3e:42: 4e:e8:77:24:25:54:a7:c8:4d:b8:0a:5c:45:1b:ec:83:db:1d: 74:c8:ad:95:bc:56:a1:28:90:1a:d2:1b:e1:24:99:7e:4e:6a: 16:a9:01:62:b7:73:fe:77:8b:a8:24:e4:e2:0d:3d:26:48:17: fa:7a:52:c8:fe:98:81:8a:dd:3c:fe:6b:8f:d4:54:37:af:15: b0:c6:d6:b3:65:de:47:ce:4e:77:5e:42:c3:51:71:ef:0a:ad: 0d:81:12:cc:4c:96:4c:19:45:3f:e3:51:31:8c:d3:9f:30:58: ac:02:f2:95:fa:1c:13:63:bc:e1:b0:9b:93:3a:56:4f:7f:ef: 4d:5c:7e:a6:3c:31:3d:f7:06:96:b4:18:0d:29:34:6e:12:88: 65:a5:63:09:5e:75:45:93:54:df:40:da:a4:15:4e:35:a4:46: f8:5e:3e:b2:7d:3c:95:7a:db:5e:8c:a6:34:0c:f6:e3:ea:c3: 79:a6:71:c5:a4:fc:95:b3:d6:bf:9b:d4:00:57:a6:07:61:17: 04:c0:ba:20 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdOtNKgl8V5OuMOOZ+e4KqxQeEvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNTMxMDAyMDA0WhcNMjUwNzA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWNlYzg3NDYxOWNkODNkY2RlZjI1MzA0MDAzMWFjMzVl ODA1MmQ5ODcxNzk3ZDRjMTQxNWJkMzRlNzA5NWIzMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXSSZ+mqXJ5aTVhCupqhF2RSSjxwbOU788xdqRZ8UQua6V YUUo598D3svlgfYxJn9Vr0ufnGiRnnDY6FGKvhPUPX2yPoaybC7stg3OXrJvot6D 0BELlbzv58kWrZAtRROj6XKWAYCH0TTyvPU5WliTaUnoBB1hWKYntNR4MfjDmxi5 mu7JL9Fec9lUh8AMmvv5kYhrnVKo8CsPVLwyQTO9xz+7H1U8TNVHQ+8T47565yRO Tei+MxKsvGADbKwoCffOuawXhmfVCZz3Isa35gCgzFk6LNs7LkQpTnS18KtAAUgb Qsw8ZqO2c6wBdr5w/ugPKss8K0sLm+ho1vqP9oVdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4QRhdyPwf7uagFHVkwRPhFMAhDQwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzk0MzY5NGZlLWUyNzgtNGQ3Ni1iNzg2LTdkZjI2ZjE1MWRkOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBg9A//4wDQYJKoZIhvcNAQELBQADggEBAGqAMAi9jVbW3E2u+UTbTLu6 7FdlKUX3kV0CFgLeTQioSxiAfWp77rjFN0VAPe3R+1L6vcg+Qk7odyQlVKfITbgK XEUb7IPbHXTIrZW8VqEokBrSG+EkmX5OahapAWK3c/53i6gk5OINPSZIF/p6Usj+ mIGK3Tz+a4/UVDevFbDG1rNl3kfOTndeQsNRce8KrQ2BEsxMlkwZRT/jUTGM058w WKwC8pX6HBNjvOGwm5M6Vk9/701cfqY8MT33Bpa0GA0pNG4SiGWlYwledUWTVN9A 2qQVTjWkRvhePrJ9PJV6216MpjQM9uPqw3mmccWk/JWz1r+b1ABXpgdhFwTAuiA= -----END CERTIFICATE-----Generated at Wed Jun 4 10:35:44 2025 by rpki-client