$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa File: 66edf542-bd09-43ab-8640-a67a7cbe5a17.roa (raw, json) Hash identifier: HZYk44SLEa7erJfYF/afwzwUHwPxWiraXhtiGs4AIwc= Subject key identifier: BD:2C:82:D0:99:6B:E3:6B:C8:A9:45:47:9A:41:60:81:A0:D1:94:DE Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 4E9360ED27064CD48578052597C67EB9D4543049 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa Signing time: Fri 06 Jun 2025 00:20:35 +0000 ROA not before: Fri 06 Jun 2025 00:20:35 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:b140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:93:60:ed:27:06:4c:d4:85:78:05:25:97:c6:7e:b9:d4:54:30:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Jun 6 00:20:35 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=487a5797f7ab285faa0f7a3c68391d6bfc5a55bec6e8610f169b9e50e83644e8, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:47:e8:a3:6f:c1:76:b8:f7:d2:f4:02:31:58: a1:09:11:62:76:64:e3:23:ec:07:59:df:34:c2:6d: a2:c2:9b:2e:a9:e9:19:d2:73:3d:a8:54:dd:ab:5c: a2:58:e2:cf:8b:13:1d:b6:93:9f:16:76:bb:57:b8: 8d:7f:c0:94:c2:95:79:3d:30:6b:8e:69:96:a4:0b: 68:94:10:fa:98:88:79:8a:8d:e2:8b:73:bb:9d:c9: 58:31:2d:f7:ab:8e:0b:17:10:a7:00:cb:6e:25:5c: 19:3e:7e:c3:36:92:7f:dc:df:7c:53:e3:a6:0c:d7: 81:43:d0:a9:7a:59:a7:54:1e:7e:2e:aa:b5:50:14: c9:9f:82:fe:cd:44:7e:53:5e:71:65:79:7b:2a:27: b1:0e:9e:51:76:db:86:55:b2:e0:8f:d2:ff:68:a0: b3:d7:ee:ac:55:b9:f6:d0:58:a7:3d:a6:f8:0c:44: 27:42:63:10:66:85:19:6b:35:5f:f2:93:1b:78:88: 29:59:59:e1:fd:63:ac:3e:e8:fd:c6:61:7a:6d:a5: c8:52:c4:27:48:5c:83:c9:e3:29:38:85:cc:bd:c6: d3:a4:a3:03:b2:23:4a:56:e9:80:9a:1d:ea:46:f9: 00:20:1d:84:b6:dd:2d:dd:c7:37:80:09:9a:e1:94: 7b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2C:82:D0:99:6B:E3:6B:C8:A9:45:47:9A:41:60:81:A0:D1:94:DE X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b140::/32 Signature Algorithm: sha256WithRSAEncryption 0e:62:29:57:0b:89:df:91:40:21:33:6a:b9:c3:ac:3e:76:95: e1:a0:a8:e6:96:b0:2a:ef:c1:ae:08:96:8d:ae:5e:f8:ee:4e: b8:7a:15:5b:67:5a:47:dc:d8:c4:f7:8f:b0:40:c9:4a:74:9c: 45:49:30:18:59:49:88:72:c4:f2:00:ca:b5:d3:76:8c:84:0a: 44:7a:63:cf:68:8f:78:f1:89:01:3e:6a:3a:52:86:a4:17:9a: df:9c:b5:e8:5b:4e:69:64:f0:37:3a:a9:b0:ac:93:a6:fe:ba: 77:ac:62:55:85:68:82:0f:38:b6:dc:ab:1f:e6:7b:37:08:bb: 96:86:f7:bf:31:75:03:23:63:0f:a6:dd:72:30:8d:e6:c2:57: 31:c6:ad:77:33:44:47:13:d8:ac:8b:aa:54:33:46:4c:23:ad: b2:1b:76:9f:c3:d8:3c:60:7e:3f:5a:ae:d6:b9:ef:dc:a0:90: ca:2d:28:87:52:de:94:13:bd:ee:11:2f:f3:74:bd:11:1c:7f: ad:1f:3c:80:a1:a7:f2:c0:dd:8d:a8:93:e1:56:41:3d:e9:8e: f8:ed:0d:5c:8b:fb:7e:e2:95:9d:0c:e5:b7:66:7b:45:d7:c0: ad:55:7a:8a:f1:b7:52:f3:e6:d8:fc:c7:f0:59:9d:8a:2c:dc: 0d:0d:2d:7b -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUTpNg7ScGTNSFeAUll8Z+udRUMEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwNjA2MDAyMDM1WhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODdhNTc5N2Y3YWIyODVmYWEwZjdhM2M2ODM5MWQ2YmZj NWE1NWJlYzZlODYxMGYxNjliOWU1MGU4MzY0NGU4MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCR+ijb8F2uPfS9AIxWKEJEWJ2ZOMj7AdZ3zTCbaLCmy6p 6RnScz2oVN2rXKJY4s+LEx22k58WdrtXuI1/wJTClXk9MGuOaZakC2iUEPqYiHmK jeKLc7udyVgxLferjgsXEKcAy24lXBk+fsM2kn/c33xT46YM14FD0Kl6WadUHn4u qrVQFMmfgv7NRH5TXnFleXsqJ7EOnlF224ZVsuCP0v9ooLPX7qxVufbQWKc9pvgM RCdCYxBmhRlrNV/ykxt4iClZWeH9Y6w+6P3GYXptpchSxCdIXIPJ4yk4hcy9xtOk owOyI0pW6YCaHepG+QAgHYS23S3dxzeACZrhlHsPAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUvSyC0Jlr42vIqUVHmkFggaDRlN4wHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzY2ZWRmNTQyLWJkMDktNDNhYi04NjQwLWE2N2E3Y2JlNWExNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBbFAMA0GCSqGSIb3DQEBCwUAA4IBAQAOYilXC4nfkUAhM2q5w6w+dpXh oKjmlrAq78GuCJaNrl747k64ehVbZ1pH3NjE94+wQMlKdJxFSTAYWUmIcsTyAMq1 03aMhApEemPPaI948YkBPmo6UoakF5rfnLXoW05pZPA3OqmwrJOm/rp3rGJVhWiC Dzi23Ksf5ns3CLuWhve/MXUDI2MPpt1yMI3mwlcxxq13M0RHE9isi6pUM0ZMI62y G3afw9g8YH4/Wq7Wue/coJDKLSiHUt6UE73uES/zdL0RHH+tHzyAoafywN2NqJPh VkE96Y747Q1ci/t+4pWdDOW3ZntF18CtVXqK8bdS8+bY/MfwWZ2KLNwNDS17 -----END CERTIFICATE-----Generated at Sat Jun 14 06:38:27 2025 by rpki-client