$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/020f6713-961a-446c-8dde-4a4231902f33.roa File: 020f6713-961a-446c-8dde-4a4231902f33.roa (raw, json) Hash identifier: AAMqVyVmcvUkwqdftCmSbD/3RmWwV6JhZ9F68GeATzY= Subject key identifier: 88:D3:B7:E6:DB:E4:9C:82:DB:AC:EC:00:98:20:28:30:72:0A:F5:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 277F73BA88F035B5C4F0D729F2B1029014C41E26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/020f6713-961a-446c-8dde-4a4231902f33.roa Signing time: Wed 04 Jun 2025 00:10:11 +0000 ROA not before: Wed 04 Jun 2025 00:10:11 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:7f:73:ba:88:f0:35:b5:c4:f0:d7:29:f2:b1:02:90:14:c4:1e:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:10:11 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=1456c2826e51c0a5dbc996dbac6ac676ccccff6d31184b8c11795dde85564ea0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:01:1d:14:8b:5f:a7:2f:22:70:d6:1d:fd:3f: e8:9d:92:83:ae:d4:97:25:91:7d:ef:c4:91:75:c6: 7b:84:b5:95:02:9a:a5:ea:cf:45:2d:08:6b:5a:23: bb:38:3c:0f:7a:bb:09:74:05:8a:ef:31:95:ad:75: 60:82:c9:40:ff:51:36:9c:49:4e:86:f3:fd:2f:83: 2d:48:f8:e1:59:42:cc:f2:13:c3:1e:df:59:51:26: 05:5a:6f:01:83:ee:62:17:4b:e9:b9:39:6d:f2:53: 7b:76:eb:b0:1a:da:59:0c:32:9b:12:b2:3a:32:16: 55:39:6c:af:4c:a6:b4:22:32:41:35:eb:2e:ab:76: b3:36:56:26:3f:10:a5:d9:bd:b2:6f:57:cf:06:7f: e4:01:02:1d:24:f5:42:26:30:58:75:16:c1:7c:7d: 7a:16:0a:53:c6:9b:fa:99:d5:5a:f2:63:b2:f0:08: 95:3f:b6:87:a7:a4:9e:8b:c2:e3:c3:82:b7:0c:a7: 69:02:29:95:f8:5d:5c:24:e0:76:d4:79:24:b9:46: 1e:c7:e2:62:2f:3e:02:ab:f4:82:75:77:b5:72:5f: 2e:9b:9b:ef:ba:a4:60:1d:8f:2a:3d:7e:19:dd:fc: 98:2f:e9:54:35:55:0f:d3:18:96:2b:16:5f:04:b0: 42:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:D3:B7:E6:DB:E4:9C:82:DB:AC:EC:00:98:20:28:30:72:0A:F5:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/020f6713-961a-446c-8dde-4a4231902f33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:3400::/40 Signature Algorithm: sha256WithRSAEncryption 7b:fb:0b:96:7b:c7:f6:41:24:6d:db:6b:8b:b9:8a:8c:56:5a: da:c4:55:95:24:cf:a2:0f:aa:3c:89:c0:6b:9f:27:da:f6:25: 9f:4b:e1:1c:9d:06:14:8c:a1:dc:6e:9a:9f:49:06:56:7a:b4: da:16:b7:5f:02:97:c3:82:60:8a:83:5a:9c:be:b2:4e:32:20: ec:d0:a1:93:79:86:0f:85:53:7c:8e:f4:e0:47:3e:9d:f9:1c: 9a:51:b9:dd:b5:0a:d3:8a:e7:7b:b4:da:3c:e1:ae:6b:0a:5c: d9:c8:1d:29:d2:08:c3:1e:e8:36:cd:74:6b:84:a7:c2:18:d5: 5c:95:b4:46:fe:6b:2a:09:7c:32:83:59:11:d1:fd:12:9a:5f: 4b:89:9e:56:f1:e6:cb:7c:47:04:ea:da:c1:75:30:15:5f:b9: f0:d1:0a:88:42:b8:f6:7c:d2:50:53:49:7d:38:9b:f6:e0:86: 51:b4:d7:3c:07:d9:1f:2a:2f:f4:f3:8b:b7:90:10:1c:9d:5c: 39:ff:94:0c:b2:d7:d7:82:03:60:64:f9:e0:84:52:f0:e3:13: df:f0:00:a6:ca:0c:5e:b8:27:9f:db:79:4e:09:42:1f:e7:90: 5b:40:ed:46:d1:d1:c5:0a:f6:2c:0d:3d:24:f6:27:40:56:f1: 93:f8:98:f1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJ39zuojwNbXE8Ncp8rECkBTEHiYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAxMDExWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDU2YzI4MjZlNTFjMGE1ZGJjOTk2ZGJhYzZhYzY3NmNj Y2NmZjZkMzExODRiOGMxMTc5NWRkZTg1NTY0ZWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMAR0Ui1+nLyJw1h39P+idkoOu1JclkX3vxJF1xnuEtZUC mqXqz0UtCGtaI7s4PA96uwl0BYrvMZWtdWCCyUD/UTacSU6G8/0vgy1I+OFZQszy E8Me31lRJgVabwGD7mIXS+m5OW3yU3t267Aa2lkMMpsSsjoyFlU5bK9MprQiMkE1 6y6rdrM2ViY/EKXZvbJvV88Gf+QBAh0k9UImMFh1FsF8fXoWClPGm/qZ1VryY7Lw CJU/toenpJ6LwuPDgrcMp2kCKZX4XVwk4HbUeSS5Rh7H4mIvPgKr9IJ1d7VyXy6b m++6pGAdjyo9fhnd/Jgv6VQ1VQ/TGJYrFl8EsEI9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUiNO35tvknILbrOwAmCAoMHIK9dowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyMGY2NzEzLTk2MWEtNDQ2Yy04ZGRlLTRhNDIzMTkwMmYzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4NDANBgkqhkiG9w0BAQsFAAOCAQEAe/sLlnvH9kEkbdtri7mKjFZa 2sRVlSTPog+qPInAa58n2vYln0vhHJ0GFIyh3G6an0kGVnq02ha3XwKXw4JgioNa nL6yTjIg7NChk3mGD4VTfI704Ec+nfkcmlG53bUK04rne7TaPOGuawpc2cgdKdII wx7oNs10a4SnwhjVXJW0Rv5rKgl8MoNZEdH9EppfS4meVvHmy3xHBOrawXUwFV+5 8NEKiEK49nzSUFNJfTib9uCGUbTXPAfZHyov9POLt5AQHJ1cOf+UDLLX14IDYGT5 4IRS8OMT3/AApsoMXrgnn9t5TglCH+eQW0DtRtHRxQr2LA09JPYnQFbxk/iY8Q== -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:44 2025 by rpki-client