$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/869b59ab-0ce7-4311-8cd3-7a5d60ca3f80.roa File: 869b59ab-0ce7-4311-8cd3-7a5d60ca3f80.roa (raw, json) Hash identifier: bq1SWt5ABRD8v6YD71i2LEKn8LHekvElgxRN8mxShNs= Subject key identifier: A6:4E:3B:D4:02:29:2A:7C:E8:24:2D:CB:5E:62:A4:B1:5F:82:89:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7116B9CE4260B3369216A78743905C60EDE2BFFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/869b59ab-0ce7-4311-8cd3-7a5d60ca3f80.roa Signing time: Mon 05 May 2025 15:11:00 +0000 ROA not before: Mon 05 May 2025 15:11:00 +0000 ROA not after: Mon 09 Jun 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ffe:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 11 May 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:16:b9:ce:42:60:b3:36:92:16:a7:87:43:90:5c:60:ed:e2:bf:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 15:11:00 2025 GMT Not After : Jun 9 23:59:59 2025 GMT Subject: serialNumber=a0ce08f3a4f119dfddcf59c0cf50beb154359de0e544d47b289691c81ddd794d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:e6:2a:b5:64:e8:a5:9f:36:2e:ad:98:d8: 92:52:d3:61:01:97:51:e2:e3:3b:24:e5:45:cb:eb: a3:e4:94:6f:45:40:f3:e8:27:44:b0:53:48:4f:fc: c3:b9:e6:d7:4a:9c:3f:a2:7f:79:19:5c:1c:a3:74: 64:a9:9a:11:fc:86:6b:03:de:ff:c4:e0:7a:f6:78: 7f:1c:26:13:d4:a4:30:1f:43:4f:86:b7:bb:9a:4a: 6e:c2:fb:ea:f6:67:c4:ff:1a:ce:da:4e:6a:1d:c2: c8:9b:6c:17:17:4d:b7:c5:74:33:f5:c8:80:0f:78: 8d:55:75:eb:27:d7:d9:8f:ff:d1:b8:3a:82:cc:05: 41:0b:40:42:65:6a:33:0e:d1:0a:34:35:45:60:2d: 30:c8:d5:72:ef:23:b3:29:f9:c6:91:36:cc:07:e1: 6b:66:e0:16:90:67:ea:14:65:de:3e:9e:02:87:ca: b2:c5:75:e1:f2:79:0c:9b:c0:8e:55:76:fb:95:c5: 99:23:70:9a:ee:94:1b:71:81:bd:cf:dc:5f:6a:f6: a4:9b:38:0a:9a:c4:2f:d8:bf:f7:45:43:f6:82:86: 74:42:b8:6b:0b:0a:44:69:c2:54:15:e2:10:25:9b: 49:dd:17:ba:ac:9d:35:dc:93:a3:d9:05:04:a6:d8: 3b:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:4E:3B:D4:02:29:2A:7C:E8:24:2D:CB:5E:62:A4:B1:5F:82:89:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/869b59ab-0ce7-4311-8cd3-7a5d60ca3f80.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:2000::/40 Signature Algorithm: sha256WithRSAEncryption 71:c9:6d:f7:4c:f2:83:7b:c5:d0:6b:02:c4:2a:17:2a:24:4d: 24:68:85:90:96:7c:5e:b9:4c:05:ae:c7:ee:cc:28:5e:77:fa: 87:75:b6:f4:eb:b5:e7:38:d6:e0:cf:ee:05:c5:1e:df:62:d4: 62:a7:e9:5b:bb:53:f1:ed:ba:fd:c2:50:65:f3:67:9a:91:40: dd:20:49:96:2c:45:b3:7a:4e:5c:08:9e:c3:8e:c4:e5:73:0f: 69:8a:dd:4e:33:d7:75:2e:1d:88:84:b0:b5:4f:27:77:a8:d4: 51:d8:fa:1c:e0:4d:d8:16:7e:9d:70:41:c0:3d:03:70:2f:0c: c8:52:45:6e:b6:f5:f7:e9:fc:ea:e1:d6:1a:de:d5:43:d8:14: 11:59:08:ad:b7:33:c7:af:43:8d:b2:93:91:d0:fb:6e:7e:7a: ab:ec:a6:19:31:f1:06:e7:a5:24:42:ba:c1:c7:1a:b0:ed:e8: 94:1d:3a:72:46:dc:88:60:86:34:8d:60:ff:84:ec:2f:64:63: d0:bf:50:7f:02:07:96:83:09:40:b2:c4:b5:57:25:6c:fe:63: 06:96:bd:3b:43:db:cd:3b:c6:c5:6d:81:63:34:7f:3c:7e:1c: 3d:65:44:59:14:de:46:39:13:21:6b:d7:28:09:95:4a:f9:69: 72:6e:66:ce -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcRa5zkJgszaSFqeHQ5BcYO3iv/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTA1MTUxMTAwWhcNMjUwNjA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGNlMDhmM2E0ZjExOWRmZGRjZjU5YzBjZjUwYmViMTU0 MzU5ZGUwZTU0NGQ0N2IyODk2OTFjODFkZGQ3OTRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9/eYqtWTopZ82Lq2Y2JJS02EBl1Hi4zsk5UXL66PklG9F QPPoJ0SwU0hP/MO55tdKnD+if3kZXByjdGSpmhH8hmsD3v/E4Hr2eH8cJhPUpDAf Q0+Gt7uaSm7C++r2Z8T/Gs7aTmodwsibbBcXTbfFdDP1yIAPeI1Vdesn19mP/9G4 OoLMBUELQEJlajMO0Qo0NUVgLTDI1XLvI7Mp+caRNswH4Wtm4BaQZ+oUZd4+ngKH yrLFdeHyeQybwI5VdvuVxZkjcJrulBtxgb3P3F9q9qSbOAqaxC/Yv/dFQ/aChnRC uGsLCkRpwlQV4hAlm0ndF7qsnTXck6PZBQSm2DuJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUpk471AIpKnzoJC3LXmKksV+CibgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2OWI1OWFiLTBjZTctNDMxMS04Y2QzLTdhNWQ2MGNhM2Y4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/+IDANBgkqhkiG9w0BAQsFAAOCAQEAcclt90zyg3vF0GsCxCoXKiRN JGiFkJZ8XrlMBa7H7swoXnf6h3W29Ou15zjW4M/uBcUe32LUYqfpW7tT8e26/cJQ ZfNnmpFA3SBJlixFs3pOXAiew47E5XMPaYrdTjPXdS4diISwtU8nd6jUUdj6HOBN 2BZ+nXBBwD0DcC8MyFJFbrb19+n86uHWGt7VQ9gUEVkIrbczx69DjbKTkdD7bn56 q+ymGTHxBuelJEK6wccasO3olB06ckbciGCGNI1g/4TsL2Rj0L9QfwIHloMJQLLE tVclbP5jBpa9O0PbzTvGxW2BYzR/PH4cPWVEWRTeRjkTIWvXKAmVSvlpcm5mzg== -----END CERTIFICATE-----Generated at Sat May 10 10:37:36 2025 by rpki-client