$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa File: c686f937-000a-490a-846c-e2773b637b26.roa (raw, json) Hash identifier: FNvsOUtRVkSlU9JVQFWmoPsd+lb+yXBPeYlShgIqh8E= Subject key identifier: 9A:56:83:B0:FA:AB:7E:A7:78:9E:69:1A:26:31:51:64:F5:3C:9C:E2 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 1E2A81A16F1777E162418F2EC6F326A7B3290B3C Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa Signing time: Fri 06 Jun 2025 00:20:11 +0000 ROA not before: Fri 06 Jun 2025 00:20:11 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:f40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 08 Jun 2025 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:2a:81:a1:6f:17:77:e1:62:41:8f:2e:c6:f3:26:a7:b3:29:0b:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Jun 6 00:20:11 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=337aefe1fba776bb6343b00b6a4a713c2bafb5d838bfdc62d69f0e2955c1b1e0, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:24:92:89:2f:54:13:24:92:29:49:08:fe:9f: c6:09:6a:3a:f8:e9:db:0c:50:d6:7e:ed:43:67:06: d7:b0:54:20:f5:ba:c9:ed:0b:54:31:2c:af:d2:07: 5c:ef:a7:8e:9a:85:1e:2b:bb:64:dc:e4:03:9c:19: 5c:f6:cc:56:5d:01:ac:5b:7c:c0:ad:4c:54:f4:66: 71:e8:d7:57:39:1a:83:d9:8a:eb:b1:2b:9e:71:17: 56:a3:19:83:36:b6:b7:59:ab:4e:06:60:82:f7:9c: 53:ec:be:3c:f1:fe:49:02:27:25:4d:b1:06:a4:0e: 3e:b5:a9:da:3d:d3:83:65:bf:ed:4e:61:f1:de:0a: 54:66:9e:ba:c6:f1:19:3b:8f:9c:54:0c:05:21:53: 21:a1:ca:a2:a5:88:be:fb:a2:6e:6e:c9:7f:76:ad: c0:6e:96:d6:ee:12:be:f4:1c:41:1f:77:28:36:de: 6c:ae:17:4c:25:3b:32:d0:3a:21:64:84:81:a0:a6: 57:03:a5:75:f1:b1:c1:5a:ec:9a:00:31:a4:04:76: dc:3c:f8:05:e1:af:52:c1:17:19:1e:86:ce:23:e0: 1c:0d:75:d2:b2:7a:90:45:0a:bf:12:cc:ca:3c:f3: 44:d8:ee:32:68:cd:dd:03:64:64:03:ef:52:9b:39: c3:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:56:83:B0:FA:AB:7E:A7:78:9E:69:1A:26:31:51:64:F5:3C:9C:E2 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/c686f937-000a-490a-846c-e2773b637b26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40::/32 Signature Algorithm: sha256WithRSAEncryption b4:b3:25:47:68:ae:fa:4d:09:74:1a:d4:64:da:ad:f8:f1:9e: 65:ad:de:dd:d6:e3:2f:4c:2a:bd:12:1c:f0:c6:e1:f0:9f:8b: 9a:72:a4:ef:39:8c:ba:ff:f3:f9:19:89:eb:1b:3a:8d:11:db: 91:09:ad:54:b3:e1:9b:ee:5f:a7:26:13:4d:43:8b:2f:ae:68: 69:d7:c7:83:c2:bf:51:a6:1f:75:02:4b:93:09:33:ed:41:48: d1:89:4d:16:51:3a:56:2b:01:84:36:fd:27:2c:89:88:5a:06: 35:a0:6e:7f:26:65:79:6f:ff:b3:d8:6a:37:c0:3b:2b:0f:82: a7:86:62:4a:a5:3c:30:d1:e9:cf:1b:5e:ea:c2:6e:df:63:ef: 83:98:27:6c:71:76:ed:ee:bf:12:ad:86:34:43:68:a9:64:ab: 39:5f:d7:2d:d5:f9:2f:a4:65:17:ed:49:88:72:65:23:f9:08: 07:bd:38:44:4b:01:fc:96:5b:7c:a5:d2:67:d1:fb:ab:76:c5: 2b:8f:c9:0d:ca:6c:6d:ad:3b:96:e7:73:c7:06:ff:a8:58:06: f0:92:b6:12:1a:61:6d:62:af:49:bb:14:1e:fd:f7:20:ca:34: 9b:81:2e:5c:cc:7f:07:5a:d9:be:6b:a5:50:5c:32:a3:d8:7b: 24:37:91:94 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUHiqBoW8Xd+FiQY8uxvMmp7MpCzwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNjA2MDAyMDExWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzdhZWZlMWZiYTc3NmJiNjM0M2IwMGI2YTRhNzEzYzJi YWZiNWQ4MzhiZmRjNjJkNjlmMGUyOTU1YzFiMWUwMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOJJKJL1QTJJIpSQj+n8YJajr46dsMUNZ+7UNnBtewVCD1 usntC1QxLK/SB1zvp46ahR4ru2Tc5AOcGVz2zFZdAaxbfMCtTFT0ZnHo11c5GoPZ iuuxK55xF1ajGYM2trdZq04GYIL3nFPsvjzx/kkCJyVNsQakDj61qdo904Nlv+1O YfHeClRmnrrG8Rk7j5xUDAUhUyGhyqKliL77om5uyX92rcBultbuEr70HEEfdyg2 3myuF0wlOzLQOiFkhIGgplcDpXXxscFa7JoAMaQEdtw8+AXhr1LBFxkehs4j4BwN ddKyepBFCr8SzMo880TY7jJozd0DZGQD71KbOcMzAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUmlaDsPqrfqd4nmkaJjFRZPU8nOIwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjL2M2ODZmOTM3LTAwMGEtNDkwYS04NDZjLWUyNzczYjYzN2IyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBg9AMA0GCSqGSIb3DQEBCwUAA4IBAQC0syVHaK76TQl0GtRk2q348Z5l rd7d1uMvTCq9EhzwxuHwn4uacqTvOYy6//P5GYnrGzqNEduRCa1Us+Gb7l+nJhNN Q4svrmhp18eDwr9Rph91AkuTCTPtQUjRiU0WUTpWKwGENv0nLImIWgY1oG5/JmV5 b/+z2Go3wDsrD4KnhmJKpTww0enPG17qwm7fY++DmCdscXbt7r8SrYY0Q2ipZKs5 X9ct1fkvpGUX7UmIcmUj+QgHvThESwH8llt8pdJn0furdsUrj8kNymxtrTuW53PH Bv+oWAbwkrYSGmFtYq9JuxQe/fcgyjSbgS5czH8HWtm+a6VQXDKj2HskN5GU -----END CERTIFICATE-----Generated at Sat Jun 7 04:16:20 2025 by rpki-client