$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02a87590-1b18-4e21-bef6-533a9b6eb087.roa File: 02a87590-1b18-4e21-bef6-533a9b6eb087.roa (raw, json) Hash identifier: 19qyaxv0RC+PWXST8BxoQUd7pLbJcIexroPDgom/3sk= Subject key identifier: 81:C3:C2:D7:2C:0D:47:F8:21:F8:5C:DC:3C:35:85:1C:B6:C1:29:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 62EBA489737FF56E2CF01BE8D9391BDA1C655E8D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02a87590-1b18-4e21-bef6-533a9b6eb087.roa Signing time: Sat 14 Jun 2025 00:40:14 +0000 ROA not before: Sat 14 Jun 2025 00:40:14 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:eb:a4:89:73:7f:f5:6e:2c:f0:1b:e8:d9:39:1b:da:1c:65:5e:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:40:14 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=c863f6b2fefd624adf2bff1e2dd9a6be3bf55470fc6351dcac461ab76214459c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c7:b9:22:4d:89:c4:54:82:08:09:66:0b:4a: a4:39:b1:f2:6c:b8:4d:11:82:b3:3b:1b:66:57:04: 29:aa:af:f0:96:09:09:43:a1:f8:bd:db:7e:15:a1: 57:4c:34:69:6a:de:80:4a:26:67:34:c4:7b:58:f7: c8:b0:84:60:79:c0:06:ad:ca:00:b9:80:6a:57:f9: d0:c8:7f:de:56:be:0e:1b:29:3d:e4:c3:42:62:48: ef:2e:e2:f0:0c:b1:aa:98:43:db:36:55:eb:e4:48: 01:bd:ab:bb:74:65:c2:dc:c3:b3:0c:53:0a:04:6a: cf:f1:6f:af:1e:4c:a3:ff:13:f7:01:d7:ae:0c:76: 0d:38:e6:53:fb:98:b8:32:7c:69:f8:d5:19:97:3d: e4:88:5e:69:6f:4c:fb:0c:44:b0:32:eb:52:08:f9: 80:a3:5c:b6:21:a3:c8:8b:d7:01:6b:dd:38:14:99: 5d:c7:07:fc:2c:0b:b8:51:72:aa:b6:00:96:67:d0: 9b:df:fb:92:8c:ee:ba:82:a3:54:48:b2:d4:de:a1: c2:7c:45:f6:27:6c:ac:81:00:18:65:4c:c2:d1:7b: 5d:c6:7c:af:31:98:e8:48:2d:f8:a6:12:7b:ed:39: 0e:d0:8a:bc:99:28:53:0d:56:8c:70:9f:e8:b6:d7: e4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:C3:C2:D7:2C:0D:47:F8:21:F8:5C:DC:3C:35:85:1C:B6:C1:29:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/02a87590-1b18-4e21-bef6-533a9b6eb087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd::/32 Signature Algorithm: sha256WithRSAEncryption 13:5e:07:36:a0:ed:66:80:72:96:12:73:29:da:24:85:eb:d7: 1e:2f:b8:ba:d6:6c:a8:5d:4b:a9:00:1b:eb:e2:0c:f1:36:a5: a3:49:0e:68:4c:1e:d0:01:e4:53:69:63:ae:3b:e0:67:56:b7: 93:66:d7:79:2b:ed:c1:d7:a6:b4:98:cf:89:43:53:91:b9:c0: bf:b9:69:63:cf:1f:cc:3f:9f:1d:77:16:d2:de:d4:0c:2d:5a: bb:1d:c1:ad:fd:d6:8c:59:91:27:1b:a5:6b:69:f4:62:fb:c1: ea:e0:4e:83:9e:52:3e:97:8e:7c:b3:32:12:de:1e:b5:51:60: a8:3a:c3:6a:58:80:66:71:d9:14:d3:bc:fd:e6:f1:b4:c7:10: ea:62:8f:ea:a0:ec:87:aa:6a:63:01:11:b2:46:56:22:89:32: 19:af:b2:88:11:ed:55:1c:c2:f6:50:e2:58:82:c4:3b:87:35: f8:6a:12:04:17:ad:01:ed:da:03:b0:56:16:33:00:d9:74:12: 0f:ad:1a:86:69:99:73:53:53:78:be:d9:9a:c6:a8:ad:04:65: 90:15:51:67:ac:4a:5c:f5:68:f8:06:8b:25:6f:6c:22:ad:2a: cd:97:d3:b4:95:d4:b5:dd:f5:0c:2b:86:30:6a:3f:fb:64:c2: a9:2a:33:5e -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUYuukiXN/9W4s8Bvo2Tkb2hxlXo0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA0MDE0WhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODYzZjZiMmZlZmQ2MjRhZGYyYmZmMWUyZGQ5YTZiZTNi ZjU1NDcwZmM2MzUxZGNhYzQ2MWFiNzYyMTQ0NTljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3x7kiTYnEVIIICWYLSqQ5sfJsuE0RgrM7G2ZXBCmqr/CW CQlDofi9234VoVdMNGlq3oBKJmc0xHtY98iwhGB5wAatygC5gGpX+dDIf95Wvg4b KT3kw0JiSO8u4vAMsaqYQ9s2VevkSAG9q7t0ZcLcw7MMUwoEas/xb68eTKP/E/cB 164Mdg045lP7mLgyfGn41RmXPeSIXmlvTPsMRLAy61II+YCjXLYho8iL1wFr3TgU mV3HB/wsC7hRcqq2AJZn0Jvf+5KM7rqCo1RIstTeocJ8RfYnbKyBABhlTMLRe13G fK8xmOhILfimEnvtOQ7QiryZKFMNVoxwn+i21+SrAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUgcPC1ywNR/gh+FzcPDWFHLbBKV8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyYTg3NTkwLTFiMTgtNGUyMS1iZWY2LTUzM2E5YjZlYjA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB/9MA0GCSqGSIb3DQEBCwUAA4IBAQATXgc2oO1mgHKWEnMp2iSF69ce L7i61myoXUupABvr4gzxNqWjSQ5oTB7QAeRTaWOuO+BnVreTZtd5K+3B16a0mM+J Q1ORucC/uWljzx/MP58ddxbS3tQMLVq7HcGt/daMWZEnG6VrafRi+8Hq4E6DnlI+ l458szIS3h61UWCoOsNqWIBmcdkU07z95vG0xxDqYo/qoOyHqmpjARGyRlYiiTIZ r7KIEe1VHML2UOJYgsQ7hzX4ahIEF60B7doDsFYWMwDZdBIPrRqGaZlzU1N4vtma xqitBGWQFVFnrEpc9Wj4Boslb2wirSrNl9O0ldS13fUMK4Ywaj/7ZMKpKjNe -----END CERTIFICATE-----Generated at Sat Jun 14 06:45:40 2025 by rpki-client