$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/330c9f9f-fd15-45ce-9483-bc877672941d.roa File: 330c9f9f-fd15-45ce-9483-bc877672941d.roa (raw, json) Hash identifier: P+5gVvli0DZhRWUx3BP733zB9B3dqgjdrADbKfPULQM= Subject key identifier: AE:84:B8:36:67:1E:4E:DA:8E:01:8A:AD:0B:02:C4:26:56:0C:29:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 601BC418586B06A82780C8E35ED7106B70963707 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/330c9f9f-fd15-45ce-9483-bc877672941d.roa Signing time: Mon 05 May 2025 15:20:08 +0000 ROA not before: Mon 05 May 2025 15:20:08 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 12 May 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:1b:c4:18:58:6b:06:a8:27:80:c8:e3:5e:d7:10:6b:70:96:37:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:20:08 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=938096d1693ed279945054934f09d6f2067cc5a3c54e4f071f8d6168cd43a511, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:db:34:2a:44:1e:61:b7:02:bc:18:90:83:31: 70:68:b9:71:5e:77:4e:48:bf:a0:51:7c:63:b6:68: 22:15:72:43:13:b6:35:08:56:13:8f:c1:fd:b9:6f: 9a:c6:7b:f6:7d:83:39:a0:39:7c:03:68:57:10:a4: 42:88:10:2c:3a:76:06:66:f2:f5:2f:35:b7:44:54: 24:5f:40:e2:d8:26:f8:da:93:8f:9f:70:61:15:b0: a3:0b:e0:70:88:f2:11:69:55:22:77:0f:4a:95:2b: 54:92:d2:bf:b5:31:7c:1b:7e:f5:fa:f2:6b:bb:8a: fe:16:7f:b5:f4:45:07:1a:40:4e:84:9e:7c:c0:4d: 04:73:72:d6:99:eb:19:4d:2b:34:1c:e6:93:ef:b2: c5:0f:4f:1e:c9:f9:11:a7:86:c6:50:e1:8b:5c:be: 13:06:4b:12:e1:2b:b9:56:fb:3c:7a:2a:71:0a:85: dc:eb:16:d4:10:34:f6:2a:5a:3e:82:a5:45:a9:32: 3e:e8:94:01:64:45:ca:f3:5d:6a:49:1e:29:ff:77: 65:40:19:d7:e9:64:0e:c8:7b:87:e6:e0:b1:98:09: 43:8f:fd:c3:4b:a7:62:57:80:5a:8a:76:32:5c:65: 0f:26:0b:79:9c:81:dd:2a:0a:e6:d7:9c:1e:a7:84: 55:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:84:B8:36:67:1E:4E:DA:8E:01:8A:AD:0B:02:C4:26:56:0C:29:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/330c9f9f-fd15-45ce-9483-bc877672941d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:c000::/40 Signature Algorithm: sha256WithRSAEncryption 11:d9:8c:51:0d:2a:e2:68:4d:5d:18:f6:eb:53:dd:d0:7f:e1: 5b:59:fd:68:97:fb:8d:1f:49:00:2a:e7:c9:d0:ab:8a:eb:07: ea:a4:81:d8:aa:d2:93:46:cc:aa:6f:f0:ad:4b:b0:24:6f:ae: 79:20:a3:6a:1c:1d:9c:0e:fd:b7:0a:72:b7:69:39:91:cc:69: f2:31:7e:49:d2:96:0e:ed:e6:52:d2:d0:22:ef:3c:4b:11:71: 85:d1:89:ef:ea:a6:a8:7d:39:86:69:ce:5b:61:ee:57:37:22: 0b:ed:d2:93:33:df:93:9f:80:33:5b:2b:5c:1a:34:5c:9d:4a: 7e:7f:c8:cc:cf:68:21:08:a4:e0:11:55:78:c7:a2:ad:20:37: 05:25:72:cd:80:b3:ab:51:fc:55:d3:e1:7b:31:66:82:f8:b2: 97:60:bd:2f:20:71:8e:55:34:c3:25:da:7e:11:a5:78:aa:3a: 42:2b:84:fd:c6:df:fb:12:80:d6:15:d5:fa:10:93:13:09:c5: 09:0f:46:ca:84:81:a3:20:ef:a4:fa:33:1c:10:cc:60:df:e0: b9:95:67:b7:3e:1b:3a:80:ce:6b:84:21:a2:bc:1a:04:dd:96: 41:0e:e8:f9:4e:ec:78:af:22:31:aa:5d:51:e5:6c:fd:ee:fd: f4:f3:77:de -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYBvEGFhrBqgngMjjXtcQa3CWNwcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUyMDA4WhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzgwOTZkMTY5M2VkMjc5OTQ1MDU0OTM0ZjA5ZDZmMjA2 N2NjNWEzYzU0ZTRmMDcxZjhkNjE2OGNkNDNhNTExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA2zQqRB5htwK8GJCDMXBouXFed05Iv6BRfGO2aCIVckMT tjUIVhOPwf25b5rGe/Z9gzmgOXwDaFcQpEKIECw6dgZm8vUvNbdEVCRfQOLYJvja k4+fcGEVsKML4HCI8hFpVSJ3D0qVK1SS0r+1MXwbfvX68mu7iv4Wf7X0RQcaQE6E nnzATQRzctaZ6xlNKzQc5pPvssUPTx7J+RGnhsZQ4YtcvhMGSxLhK7lW+zx6KnEK hdzrFtQQNPYqWj6CpUWpMj7olAFkRcrzXWpJHin/d2VAGdfpZA7Ie4fm4LGYCUOP /cNLp2JXgFqKdjJcZQ8mC3mcgd0qCubXnB6nhFVvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUroS4NmceTtqOAYqtCwLEJlYMKXUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzMGM5ZjlmLWZkMTUtNDVjZS05NDgzLWJjODc3NjcyOTQxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+wDANBgkqhkiG9w0BAQsFAAOCAQEAEdmMUQ0q4mhNXRj261Pd0H/h W1n9aJf7jR9JACrnydCriusH6qSB2KrSk0bMqm/wrUuwJG+ueSCjahwdnA79twpy t2k5kcxp8jF+SdKWDu3mUtLQIu88SxFxhdGJ7+qmqH05hmnOW2HuVzciC+3SkzPf k5+AM1srXBo0XJ1Kfn/IzM9oIQik4BFVeMeirSA3BSVyzYCzq1H8VdPhezFmgviy l2C9LyBxjlU0wyXafhGleKo6QiuE/cbf+xKA1hXV+hCTEwnFCQ9GyoSBoyDvpPoz HBDMYN/guZVntz4bOoDOa4QhorwaBN2WQQ7o+U7seK8iMapdUeVs/e799PN33g== -----END CERTIFICATE-----Generated at Sun May 11 03:41:04 2025 by rpki-client