$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa File: 09f53be8-3eb1-472a-9d79-dad807a72234.roa (raw, json) Hash identifier: DP+Oofl/0VXd4RNVWt9B+YmGDsHQhRWrlcF0KoitaIU= Subject key identifier: E2:6C:B2:8D:72:35:C8:4A:CC:4F:C3:B0:FE:61:15:CE:9A:9F:27:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14867B40704103DBD9001722438C74235284CE05 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa Signing time: Fri 13 Jun 2025 16:30:31 +0000 ROA not before: Fri 13 Jun 2025 16:30:31 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:86:7b:40:70:41:03:db:d9:00:17:22:43:8c:74:23:52:84:ce:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:30:31 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=e6f860746530f59113cd8ef157dc9f3a8c11a63fbb9125416067c291a4f0356e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:e4:96:9b:f3:9d:9d:c8:da:d0:f6:74:59:98: 38:e1:ca:19:d6:d7:d2:54:23:84:4d:b7:cb:1d:da: ea:05:c6:92:59:70:1e:bd:24:b9:51:1c:e1:6d:04: dd:4a:ec:34:68:b6:7f:8b:04:c0:20:56:5f:62:e2: 67:05:20:f9:18:47:cd:db:24:1d:0c:b4:40:03:f9: 8e:00:58:18:1e:ee:32:64:92:56:12:0e:ec:31:b7: 27:31:35:18:23:8d:a4:f6:76:da:5c:a1:78:e8:4e: e9:fb:e0:a5:b5:24:b7:2f:e1:c6:d0:a1:c6:40:86: 8d:10:95:38:32:81:14:29:11:40:0d:9d:f3:b4:83: 4a:f2:62:fd:1b:7c:fd:02:8f:0b:e1:1b:5b:56:5b: 56:8f:b4:bc:fb:22:0a:c0:68:c2:93:71:cc:57:02: 63:2e:08:51:8f:32:94:fe:a2:53:81:d4:7a:66:dc: 94:fd:1f:f4:6b:70:12:93:49:21:bd:3d:e3:ad:94: f1:98:cb:f2:89:9d:c2:b2:ac:5a:2b:f1:25:6c:4e: 2f:d0:ce:d7:73:4a:bd:6a:05:67:07:2c:2a:51:be: 85:f3:88:c3:f2:77:c3:e1:f9:85:d4:08:bb:28:e3: 6c:fd:82:e5:ae:cf:0d:6a:4c:a9:fd:45:3a:28:b1: 86:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:6C:B2:8D:72:35:C8:4A:CC:4F:C3:B0:FE:61:15:CE:9A:9F:27:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09f53be8-3eb1-472a-9d79-dad807a72234.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:8000::/40 Signature Algorithm: sha256WithRSAEncryption 60:da:15:38:a4:ca:78:b9:d3:24:fd:d2:f7:98:ec:a6:01:ec: 5b:38:7b:eb:0e:be:a1:c1:d8:46:76:95:3e:a3:97:24:5c:ff: 91:ab:ab:36:5b:01:16:46:31:a3:e4:f6:0e:6b:3d:6d:ca:fb: 01:fe:f1:8a:30:16:81:2b:64:19:f8:3d:1b:7b:ba:f2:d7:a6: eb:dd:8b:97:a0:36:85:13:52:6e:b9:0c:6c:cd:56:13:fc:6d: 56:91:7e:af:21:99:4f:8c:22:b1:e8:74:9b:e6:04:69:e0:ff: 1d:67:76:76:af:d8:f5:a0:04:89:56:5c:13:65:50:e3:cb:f0: f4:a3:b0:1f:ee:2d:69:f7:e1:8d:c5:67:77:dd:35:ff:05:ff: a5:0f:0e:cb:21:36:bb:d0:ad:92:b1:bf:15:cb:61:98:7a:6a: 00:5a:a3:b9:03:c3:6c:48:9d:a0:48:1c:1d:71:0c:6a:e3:dc: b7:62:65:bc:26:d6:2c:c5:8e:84:86:1e:70:b3:38:71:1d:ce: 5e:35:ce:f1:70:b2:5a:b9:fb:5b:a7:c2:4d:92:a4:95:89:fc: fa:c0:ba:75:4b:eb:1c:87:54:b9:9d:f1:1d:d7:03:0a:3d:16: 58:75:c3:19:ef:9f:45:40:99:18:b0:01:83:cc:59:c6:bb:d4: c8:ab:40:f0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFIZ7QHBBA9vZABciQ4x0I1KEzgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYzMDMxWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmY4NjA3NDY1MzBmNTkxMTNjZDhlZjE1N2RjOWYzYThj MTFhNjNmYmI5MTI1NDE2MDY3YzI5MWE0ZjAzNTZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg5Jab852dyNrQ9nRZmDjhyhnW19JUI4RNt8sd2uoFxpJZ cB69JLlRHOFtBN1K7DRotn+LBMAgVl9i4mcFIPkYR83bJB0MtEAD+Y4AWBge7jJk klYSDuwxtycxNRgjjaT2dtpcoXjoTun74KW1JLcv4cbQocZAho0QlTgygRQpEUAN nfO0g0ryYv0bfP0CjwvhG1tWW1aPtLz7IgrAaMKTccxXAmMuCFGPMpT+olOB1Hpm 3JT9H/RrcBKTSSG9PeOtlPGYy/KJncKyrFor8SVsTi/QztdzSr1qBWcHLCpRvoXz iMPyd8Ph+YXUCLso42z9guWuzw1qTKn9RToosYaZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4myyjXI1yErMT8Ow/mEVzpqfJy8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5ZjUzYmU4LTNlYjEtNDcyYS05ZDc5LWRhZDgwN2E3MjIzNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wgDANBgkqhkiG9w0BAQsFAAOCAQEAYNoVOKTKeLnTJP3S95jspgHs Wzh76w6+ocHYRnaVPqOXJFz/kaurNlsBFkYxo+T2Dms9bcr7Af7xijAWgStkGfg9 G3u68tem692Ll6A2hRNSbrkMbM1WE/xtVpF+ryGZT4wiseh0m+YEaeD/HWd2dq/Y 9aAEiVZcE2VQ48vw9KOwH+4taffhjcVnd901/wX/pQ8OyyE2u9CtkrG/FcthmHpq AFqjuQPDbEidoEgcHXEMauPct2JlvCbWLMWOhIYecLM4cR3OXjXO8XCyWrn7W6fC TZKklYn8+sC6dUvrHIdUuZ3xHdcDCj0WWHXDGe+fRUCZGLABg8xZxrvUyKtA8A== -----END CERTIFICATE-----Generated at Sat Jun 14 07:03:08 2025 by rpki-client