$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa File: 59031a63-ea1a-4943-86ab-19221a23ca42.roa (raw, json) Hash identifier: Z9/hDrwkD3qA17Is4srNPzxFaCpvP+FiAtAh8NvDogE= Subject key identifier: C2:8D:C0:E8:E5:B1:6B:FB:48:F1:3B:EE:AB:6E:A3:AC:A4:35:6F:F8 Certificate issuer: /CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Certificate serial: 5281A73F1DEB63190B1ABE2B66989421F9086AE4 Authority key identifier: 1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa Signing time: Fri 06 Jun 2025 00:20:12 +0000 ROA not before: Fri 06 Jun 2025 00:20:12 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:f40:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/76fe11d4-d352-4994-8f6c-d6c91b0b8415.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 07:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:81:a7:3f:1d:eb:63:19:0b:1a:be:2b:66:98:94:21:f9:08:6a:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2 Validity Not Before: Jun 6 00:20:12 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=5eaee1adaba09b6249e6833ea3660d5d7242ae248511ea5f1cb1faa266e86dcd, CN=8f95e4d1-f14f-4d61-ae00-67e047d2f102 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8e:b6:1c:70:e0:d7:78:a8:d2:61:1f:02:3a: ba:51:86:1d:90:41:57:e9:aa:40:11:53:40:d4:98: a7:0e:7c:1c:dd:b2:29:f3:ee:bc:3a:c2:2b:bf:97: 96:73:5b:51:ab:05:5a:e7:f9:6d:90:ab:40:26:fb: 4d:7f:1a:ab:2c:78:c1:04:c5:33:60:9b:9b:6a:fe: d3:e6:d6:61:e1:e0:9b:cd:8a:d2:fd:8f:33:0f:d4: e3:5f:99:a7:1c:2d:ff:5d:e7:e3:80:7e:7a:40:6d: 83:31:33:6c:ad:92:b9:a2:47:11:54:b2:b6:f3:5f: 24:89:52:77:aa:7a:0c:01:62:c6:7b:e9:d6:5e:34: 6d:57:c2:1e:79:25:d0:d0:a9:1d:a8:c6:24:e4:66: fa:e1:81:10:87:c3:23:cf:8c:29:61:f6:2e:84:af: ab:f5:7a:03:14:2d:d8:46:e2:d8:82:11:2d:80:c1: 47:59:15:68:b9:26:69:cb:4c:10:57:2f:f3:d3:83: 2a:82:ad:19:fe:02:41:bb:87:d7:c1:1b:56:db:58: 50:47:b3:7e:ca:4e:f8:b7:5d:1b:c7:17:eb:a2:0a: 22:ac:3f:c5:d6:1a:6d:c6:de:73:ca:49:7d:bb:7a: bb:a4:64:e0:01:b6:ea:4e:eb:70:9f:ae:aa:b3:07: f4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:8D:C0:E8:E5:B1:6B:FB:48:F1:3B:EE:AB:6E:A3:AC:A4:35:6F:F8 X509v3 Authority Key Identifier: keyid:1E:5F:2D:62:F8:5A:D2:84:D4:D1:89:25:6B:88:69:E8:E9:11:28:38 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/76fe11d4-d352-4994-8f6c-d6c91b0b8415/0a3db4ff-9cd8-4d02-a027-6fa90494a3a1/c167a8b3a01f06717d2af62e3809072084c3af8f48948e40e2.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/59031a63-ea1a-4943-86ab-19221a23ca42.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2f059a21-d41b-4846-b7ae-7ea38c32fd4c/HwZxfSr2LjgJByCEw6-PSJSOQOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:f40:8000::/39 Signature Algorithm: sha256WithRSAEncryption 83:e1:37:94:35:98:f6:51:d7:9c:28:3c:d7:28:a0:76:d8:08: 31:03:46:94:84:c4:a7:a5:6c:79:0b:89:4f:06:9c:a8:cb:e1: 7d:a2:ea:ab:b8:86:89:50:6d:e7:4f:7e:54:15:d2:a1:e0:ae: eb:1a:15:76:67:a2:bf:3a:f6:c6:ce:12:85:80:d6:4c:3b:3f: 59:2e:62:4a:46:0e:8e:55:0c:16:40:bc:73:5c:ec:95:19:7c: c8:c1:cf:30:46:41:ed:92:07:93:21:02:26:e3:a1:e3:5e:f1: 28:07:1e:e4:61:64:a5:e5:91:4f:bb:fe:9d:e6:6a:65:03:60: a6:b1:99:d1:f9:90:bd:48:57:70:40:7f:8d:ed:1c:97:79:bc: 7d:58:0b:82:89:69:fe:43:f2:e5:08:8e:d4:67:7d:62:73:44: a6:ed:99:a7:e2:43:8d:7b:63:54:31:9d:9b:df:ad:2f:16:41: 43:11:7f:80:b7:c8:cf:d4:69:4c:6d:35:a6:2c:01:e1:2e:26: fe:2d:43:18:8d:9d:b6:2d:70:6a:ba:3d:4a:0a:dd:30:70:c5: 37:d2:d8:35:03:04:7a:4c:6d:eb:2d:ee:b2:83:66:fa:af:f5: 51:46:aa:2a:ea:cf:20:1c:c2:f7:01:0d:cc:b5:d3:dc:5e:43: d3:fc:e7:78 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUoGnPx3rYxkLGr4rZpiUIfkIauQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYzE2N2E4YjNhMDFmMDY3MTdkMmFmNjJlMzgwOTA3MjA4 NGMzYWY4ZjQ4OTQ4ZTQwZTIwHhcNMjUwNjA2MDAyMDEyWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWFlZTFhZGFiYTA5YjYyNDllNjgzM2VhMzY2MGQ1ZDcy NDJhZTI0ODUxMWVhNWYxY2IxZmFhMjY2ZTg2ZGNkMS0wKwYDVQQDEyQ4Zjk1ZTRk MS1mMTRmLTRkNjEtYWUwMC02N2UwNDdkMmYxMDIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpjrYccODXeKjSYR8COrpRhh2QQVfpqkARU0DUmKcOfBzd sinz7rw6wiu/l5ZzW1GrBVrn+W2Qq0Am+01/GqsseMEExTNgm5tq/tPm1mHh4JvN itL9jzMP1ONfmaccLf9d5+OAfnpAbYMxM2ytkrmiRxFUsrbzXySJUneqegwBYsZ7 6dZeNG1Xwh55JdDQqR2oxiTkZvrhgRCHwyPPjClh9i6Er6v1egMULdhG4tiCES2A wUdZFWi5JmnLTBBXL/PTgyqCrRn+AkG7h9fBG1bbWFBHs37KTvi3XRvHF+uiCiKs P8XWGm3G3nPKSX27erukZOABtupO63CfrqqzB/QHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUwo3A6OWxa/tI8Tvuq26jrKQ1b/gwHwYDVR0jBBgwFoAUHl8tYvha0oTU 0Ykla4hp6OkRKDgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc2ZmUxMWQ0LWQzNTItNDk5NC04ZjZjLWQ2YzkxYjBiODQxNS8wYTNkYjRmZi05 Y2Q4LTRkMDItYTAyNy02ZmE5MDQ5NGEzYTEvYzE2N2E4YjNhMDFmMDY3MTdkMmFm NjJlMzgwOTA3MjA4NGMzYWY4ZjQ4OTQ4ZTQwZTIuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMmYwNTlhMjEtZDQxYi00ODQ2LWI3YWUtN2Vh MzhjMzJmZDRjLzU5MDMxYTYzLWVhMWEtNDk0My04NmFiLTE5MjIxYTIzY2E0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzJmMDU5YTIxLWQ0MWItNDg0Ni1iN2Fl LTdlYTM4YzMyZmQ0Yy9Id1p4ZlNyMkxqZ0pCeUNFdzYtUFNKU09RT0kuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmBg9AgDANBgkqhkiG9w0BAQsFAAOCAQEAg+E3lDWY9lHXnCg81yigdtgI MQNGlITEp6VseQuJTwacqMvhfaLqq7iGiVBt509+VBXSoeCu6xoVdmeivzr2xs4S hYDWTDs/WS5iSkYOjlUMFkC8c1zslRl8yMHPMEZB7ZIHkyECJuOh417xKAce5GFk peWRT7v+neZqZQNgprGZ0fmQvUhXcEB/je0cl3m8fVgLgolp/kPy5QiO1Gd9YnNE pu2Zp+JDjXtjVDGdm9+tLxZBQxF/gLfIz9RpTG01piwB4S4m/i1DGI2dti1waro9 SgrdMHDFN9LYNQMEekxt6y3usoNm+q/1UUaqKurPIBzC9wENzLXT3F5D0/zneA== -----END CERTIFICATE-----Generated at Tue Jun 17 21:47:19 2025 by rpki-client