$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a264e569-c898-422e-8778-bb2090bc1056.roa File: a264e569-c898-422e-8778-bb2090bc1056.roa (raw, json) Hash identifier: i8ygKEkRmxeuF0eahoNad5sS8ozNDdvCqkWTDTI416s= Subject key identifier: 32:D2:DE:78:FC:D4:6C:49:43:3E:47:C0:49:69:56:98:04:18:A6:20 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 5D14068E9C01856BD0D8913D0F2AE69CAF670C30 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a264e569-c898-422e-8778-bb2090bc1056.roa Signing time: Fri 06 Jun 2025 00:20:11 +0000 ROA not before: Fri 06 Jun 2025 00:20:11 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 9498 IP address blocks: 2605:b940:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:14:06:8e:9c:01:85:6b:d0:d8:91:3d:0f:2a:e6:9c:af:67:0c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Jun 6 00:20:11 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=2ef24f946b8820f70319c6c19404734d6de803bf1d8bddc34aaaf2da3b5c89b1, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5b:94:36:b3:a6:42:d6:86:a5:51:0c:84:f5: 11:f4:c4:63:58:f2:31:54:25:ef:a7:b8:2e:02:7f: dc:c0:90:b4:1d:9c:41:d4:7a:d9:35:10:ea:51:95: 4b:f2:f2:c2:84:03:d4:46:25:3b:e9:f8:a0:c3:83: b9:b1:35:79:df:a8:48:b3:78:d2:55:e1:c5:b7:a3: ef:81:4d:d8:84:d5:14:bb:7f:75:45:bd:c7:a6:e3: a7:7c:5a:95:64:87:62:97:ca:21:1e:a8:10:2c:15: 37:33:19:83:fb:d6:99:48:85:e5:40:6a:28:75:97: f0:f8:ec:fc:c2:d8:c1:cc:17:77:8a:a0:e7:8d:3a: c1:32:4b:1a:5a:49:c3:23:f7:cb:2c:e5:ea:00:eb: 94:b9:40:b0:74:15:55:f7:2a:73:ef:54:66:2e:f7: 78:9f:b9:2e:7f:2d:31:08:17:77:10:16:0e:ea:94: 01:eb:d4:01:50:94:5b:f6:0c:44:0f:7d:18:93:25: 6d:1f:5c:4c:b9:3d:1d:1b:48:4f:e9:d5:6c:45:d3: 3f:ed:23:05:b7:31:8b:47:ae:73:48:21:6c:8a:ab: fe:ea:99:99:5e:c6:5c:8d:4c:73:16:b0:96:90:39: 14:52:d0:18:34:66:5c:77:0e:9b:18:94:08:98:98: 9b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D2:DE:78:FC:D4:6C:49:43:3E:47:C0:49:69:56:98:04:18:A6:20 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/a264e569-c898-422e-8778-bb2090bc1056.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b940:4::/48 Signature Algorithm: sha256WithRSAEncryption 2c:93:dd:f0:ca:2d:0c:20:ed:0e:78:26:0e:62:93:9e:36:6f: e9:ed:4a:c7:dd:1a:35:98:62:bc:a5:21:41:5b:33:d3:e4:d0: d2:14:6f:b9:1b:3b:82:2f:ec:33:f6:9f:62:3d:0a:dd:08:39: 77:95:89:cf:b4:e4:cc:31:e7:b1:9c:58:cb:a3:91:3e:0a:c5: 27:c2:a9:d8:99:a6:b2:02:fb:f0:2f:43:6a:62:1a:49:be:05: ef:ea:2b:d7:ab:3d:af:3d:92:4d:6c:f4:20:c9:e1:76:91:e3: fb:c5:8a:98:ed:74:38:aa:f7:9f:ad:ff:fd:cd:87:8a:36:b3: 3f:aa:c7:db:52:20:f8:6b:6c:48:53:62:ae:5d:e6:74:3e:85: 45:fc:e6:55:f9:94:6b:bc:d1:90:71:1a:99:31:5b:9d:a9:98: 0d:5a:a4:de:84:e8:34:6f:39:19:a8:db:e9:42:a2:e1:37:3f: 4f:d0:d8:06:e8:4c:ff:86:42:5a:8f:7f:ce:77:07:83:aa:71: be:0b:a1:0d:ca:be:06:b0:b7:57:ca:3d:e7:5b:3e:e0:01:5a: 65:85:e3:75:30:bf:d2:fe:c4:6d:a6:c8:6f:f1:1c:c5:87:4e: 69:11:ed:b7:ab:e3:91:05:e9:30:8d:26:bc:b2:e9:96:72:a9: 41:de:d1:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXRQGjpwBhWvQ2JE9DyrmnK9nDDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwNjA2MDAyMDExWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWYyNGY5NDZiODgyMGY3MDMxOWM2YzE5NDA0NzM0ZDZk ZTgwM2JmMWQ4YmRkYzM0YWFhZjJkYTNiNWM4OWIxMS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOW5Q2s6ZC1oalUQyE9RH0xGNY8jFUJe+nuC4Cf9zAkLQd nEHUetk1EOpRlUvy8sKEA9RGJTvp+KDDg7mxNXnfqEizeNJV4cW3o++BTdiE1RS7 f3VFvcem46d8WpVkh2KXyiEeqBAsFTczGYP71plIheVAaih1l/D47PzC2MHMF3eK oOeNOsEySxpaScMj98ss5eoA65S5QLB0FVX3KnPvVGYu93ifuS5/LTEIF3cQFg7q lAHr1AFQlFv2DEQPfRiTJW0fXEy5PR0bSE/p1WxF0z/tIwW3MYtHrnNIIWyKq/7q mZlexlyNTHMWsJaQORRS0Bg0Zlx3DpsYlAiYmJvzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMtLeePzUbElDPkfASWlWmAQYpiAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1L2EyNjRlNTY5LWM4OTgtNDIyZS04Nzc4LWJiMjA5MGJjMTA1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBblAAAQwDQYJKoZIhvcNAQELBQADggEBACyT3fDKLQwg7Q54Jg5ik542 b+ntSsfdGjWYYrylIUFbM9Pk0NIUb7kbO4Iv7DP2n2I9Ct0IOXeVic+05Mwx57Gc WMujkT4KxSfCqdiZprIC+/AvQ2piGkm+Be/qK9erPa89kk1s9CDJ4XaR4/vFipjt dDiq95+t//3Nh4o2sz+qx9tSIPhrbEhTYq5d5nQ+hUX85lX5lGu80ZBxGpkxW52p mA1apN6E6DRvORmo2+lCouE3P0/Q2AboTP+GQlqPf853B4Oqcb4LoQ3Kvgawt1fK PedbPuABWmWF43Uwv9L+xG2myG/xHMWHTmkR7ber45EF6TCNJryy6ZZyqUHe0c0= -----END CERTIFICATE-----Generated at Sun Jun 15 05:15:05 2025 by rpki-client