$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa File: a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa (raw, json) Hash identifier: Zb+/NNAz3RJPZQWg0IgoesiHjPMnz13+zEbpvaFgqeU= Subject key identifier: CB:16:66:81:F4:C2:00:A3:11:B1:14:69:AA:CE:9F:5C:12:27:35:D6 Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 440B0193E202347FF3C8A1D24FE6F727F79E9653 Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa Signing time: Tue 20 May 2025 17:50:05 +0000 ROA not before: Tue 20 May 2025 17:50:05 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 06:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:0b:01:93:e2:02:34:7f:f3:c8:a1:d2:4f:e6:f7:27:f7:9e:96:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: May 20 17:50:05 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=c1d21938c2a4edf0aa7e3fdef20eb73a8b5617f120af924eb2b08e33bfb64bc5, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:fb:5f:33:8e:39:64:a4:22:83:78:f5:f8:6a: 10:b8:44:7b:ec:fa:cc:b9:54:81:3a:3d:12:0d:13: 99:00:31:08:fd:b7:a2:6e:f1:8f:d5:9b:a2:48:f1: c8:cd:5b:7c:99:d9:2c:fd:02:a6:44:61:22:1a:5a: 21:4b:20:7f:39:2d:a4:6c:16:e3:d2:cc:1b:62:dd: 9c:fc:8d:88:19:67:63:9d:af:18:fe:3b:7a:44:63: ac:4c:cd:2d:e5:05:33:47:64:5b:a2:bc:b6:96:9d: b5:c9:e5:be:08:46:d4:de:f4:cf:25:5a:71:15:c9: 59:2f:28:d7:7e:74:a3:1d:4d:7c:5d:25:30:28:79: 14:b9:9a:5c:3e:b0:09:38:b8:f4:27:c8:cf:b9:ee: 34:08:0b:5b:c4:cd:15:91:69:20:62:4e:5f:3d:05: 96:47:24:f0:cc:fb:28:e8:2e:8a:46:fe:84:2a:40: 99:22:da:72:a6:97:4a:0b:d4:ec:11:cc:78:bd:a5: 2e:60:71:c6:34:64:52:5c:fc:4f:75:af:98:83:fa: 60:67:94:2a:f8:b7:b6:c3:67:aa:65:f6:53:66:7b: a4:b0:40:8f:e9:81:bd:c6:8c:7a:83:d7:8d:e6:c4: d4:24:21:99:8e:8f:c7:4b:e6:0f:9b:cf:33:1d:3b: 37:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:16:66:81:F4:C2:00:A3:11:B1:14:69:AA:CE:9F:5C:12:27:35:D6 X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/a8ff9337-21d8-4d5e-b988-d1a983d73aea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption 63:e8:1b:47:f7:c4:c2:de:3e:87:91:4e:72:3e:4e:f1:c4:a6: 6d:20:ef:99:19:cd:a8:1c:dd:0d:1f:33:62:a8:d3:30:a1:32: 1c:3e:f6:d9:48:68:e4:d3:fb:94:b3:8d:78:72:d0:19:df:86: 3f:c8:7b:bc:07:56:44:6c:aa:2e:71:f5:6e:69:a4:ac:08:46: 59:40:97:bf:93:d1:42:69:a4:cd:31:f7:12:cf:6b:cc:e2:07: 95:7d:d1:d9:a7:49:c2:41:bf:5e:43:d6:ab:a0:92:58:9f:9c: a3:97:0e:ad:01:ca:c3:61:25:8a:73:cd:df:37:72:f5:9e:79: 8d:e9:97:54:5d:44:c9:b6:fa:05:87:74:00:a6:c4:3a:94:dd: 4b:8c:e9:fd:e0:5e:a6:94:d3:49:65:4e:50:b0:08:5f:15:be: 29:c6:1a:13:2e:4c:70:b7:82:a8:5f:ed:0e:41:b6:3c:c3:1a: 8c:dc:cc:83:e3:e0:a9:88:9a:f5:fe:43:68:6e:8f:f8:0e:36: b6:bd:0f:6e:23:f1:bc:6b:2e:f2:d5:ec:a6:64:92:d0:a0:dc: 86:3b:da:9a:cb:34:fd:0c:25:c2:59:15:30:26:7a:e6:6f:12: a6:30:e0:96:a3:ae:e8:da:ff:35:0b:ea:02:6b:93:8c:13:a0: 1f:02:af:96 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIURAsBk+ICNH/zyKHST+b3J/eellMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUwNTIwMTc1MDA1WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWQyMTkzOGMyYTRlZGYwYWE3ZTNmZGVmMjBlYjczYThi NTYxN2YxMjBhZjkyNGViMmIwOGUzM2JmYjY0YmM1MS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO+18zjjlkpCKDePX4ahC4RHvs+sy5VIE6PRINE5kAMQj9 t6Ju8Y/Vm6JI8cjNW3yZ2Sz9AqZEYSIaWiFLIH85LaRsFuPSzBti3Zz8jYgZZ2Od rxj+O3pEY6xMzS3lBTNHZFuivLaWnbXJ5b4IRtTe9M8lWnEVyVkvKNd+dKMdTXxd JTAoeRS5mlw+sAk4uPQnyM+57jQIC1vEzRWRaSBiTl89BZZHJPDM+yjoLopG/oQq QJki2nKml0oL1OwRzHi9pS5gccY0ZFJc/E91r5iD+mBnlCr4t7bDZ6pl9lNme6Sw QI/pgb3GjHqD143mxNQkIZmOj8dL5g+bzzMdOzfBAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUyxZmgfTCAKMRsRRpqs6fXBInNdYwHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlL2E4ZmY5MzM3LTIxZDgtNGQ1ZS1iOTg4LWQxYTk4M2Q3M2FlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQBj6BtH98TC3j6HkU5yPk7xxKZt IO+ZGc2oHN0NHzNiqNMwoTIcPvbZSGjk0/uUs414ctAZ34Y/yHu8B1ZEbKoucfVu aaSsCEZZQJe/k9FCaaTNMfcSz2vM4geVfdHZp0nCQb9eQ9aroJJYn5yjlw6tAcrD YSWKc83fN3L1nnmN6ZdUXUTJtvoFh3QApsQ6lN1LjOn94F6mlNNJZU5QsAhfFb4p xhoTLkxwt4KoX+0OQbY8wxqM3MyD4+CpiJr1/kNobo/4Dja2vQ9uI/G8ay7y1eym ZJLQoNyGO9qayzT9DCXCWRUwJnrmbxKmMOCWo67o2v81C+oCa5OME6AfAq+W -----END CERTIFICATE-----Generated at Sat Jun 14 06:19:14 2025 by rpki-client