$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fa66cbb-8c26-4db5-a3a6-9e49d44547c7.roa File: 1fa66cbb-8c26-4db5-a3a6-9e49d44547c7.roa (raw, json) Hash identifier: skkIten7qit4AGdTGk/hT74MGwWivDwou0k93tZ0e9o= Subject key identifier: BE:28:D4:50:33:EA:B7:26:26:75:38:A1:4E:44:38:D4:03:43:2B:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E8198066BC483DDBFEF309D1926B30072E3C560 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fa66cbb-8c26-4db5-a3a6-9e49d44547c7.roa Signing time: Fri 13 Jun 2025 17:30:33 +0000 ROA not before: Fri 13 Jun 2025 17:30:33 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f18:2000::/35 maxlen: 35 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:81:98:06:6b:c4:83:dd:bf:ef:30:9d:19:26:b3:00:72:e3:c5:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 17:30:33 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=b84872a9ba93382598535aeaaddda6078859477f988199f4f8bb324204d6bc90, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0f:f6:da:af:9c:36:60:95:e9:7d:c9:58:fc: a1:a4:d2:5a:25:8c:06:0b:cb:d0:bb:f5:51:c8:1b: 12:fc:8d:00:63:eb:f6:59:00:b1:75:ad:f6:0b:86: 83:34:b9:5c:4d:18:bd:39:b4:3f:24:9b:d0:af:3e: 09:17:4e:3b:af:65:bf:01:1e:fe:8d:e1:ce:dd:19: b8:dc:3a:a1:50:a8:12:ba:08:21:8c:9d:66:06:cb: 01:db:2a:7e:0d:fb:cc:6c:a4:37:a7:34:06:52:20: f2:5d:31:0c:63:9b:e9:ea:1b:36:5a:1b:70:c3:58: d7:c0:7a:e9:5e:05:bd:9a:1d:75:85:68:e1:08:e2: bf:b9:64:c0:1f:9a:99:28:23:7b:28:5b:e6:bf:c4: ab:ac:9a:05:b6:af:4f:4d:69:87:9b:72:c4:1a:79: c3:77:5b:99:1e:62:d5:5a:29:f5:eb:06:d9:c6:54: 62:68:15:d5:59:30:23:db:0a:5d:03:0b:b6:9c:87: 61:dd:4e:6f:82:b2:78:32:ed:2a:43:34:e1:5e:93: 11:4f:d0:a9:95:53:2c:39:b9:75:d8:3c:82:40:5e: 96:81:ff:e7:96:3b:ec:4a:86:17:23:d6:f3:29:0b: 28:78:0e:17:92:cd:fd:11:8d:6b:7c:b7:52:52:24: 27:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:28:D4:50:33:EA:B7:26:26:75:38:A1:4E:44:38:D4:03:43:2B:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fa66cbb-8c26-4db5-a3a6-9e49d44547c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f18:2000::/35 Signature Algorithm: sha256WithRSAEncryption 57:89:c3:27:b4:0b:96:0b:e0:c3:ec:0b:62:d7:eb:22:1a:20: 60:ed:a7:38:2a:8a:7a:68:91:1e:53:9d:1d:cc:5c:40:1e:db: 09:71:22:6d:aa:cb:0e:cd:26:de:4b:5b:db:c3:f8:23:bc:72: bd:06:18:43:07:9d:ba:0e:12:3a:84:85:c0:99:32:7e:ed:a4: e7:58:d2:c6:fa:ba:90:00:17:e8:65:c0:61:49:76:3d:83:f2: 13:dd:18:ac:28:1c:b7:30:56:b0:e8:02:0c:30:31:8f:78:ad: bf:c5:80:6b:dc:c0:f4:7f:5c:1a:fc:2c:dd:3a:ec:9c:ba:a8: 89:67:9c:6c:70:97:98:a0:e5:49:f6:c2:fb:79:5b:2e:ca:98: 5e:ed:e4:37:5f:63:ea:22:8b:09:19:b2:f3:1b:6d:93:21:03: 6a:b9:fa:39:97:ed:57:c5:5b:51:9a:cd:66:f5:c2:b2:26:5b: 51:b1:38:77:27:45:05:bc:95:5d:ca:91:c9:fe:03:23:ba:13: 65:2d:59:ce:42:2c:7e:ae:cd:7d:09:1a:26:7b:5e:48:38:94: 24:81:63:f6:ec:cf:1b:b3:d7:a5:36:f0:e5:0f:df:fc:6e:b0: a8:6a:dd:b5:10:e1:9f:cb:9f:fe:ab:6b:e7:9c:5d:79:94:4e: 40:2c:da:6e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHoGYBmvEg92/7zCdGSazAHLjxWAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTczMDMzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiODQ4NzJhOWJhOTMzODI1OTg1MzVhZWFhZGRkYTYwNzg4 NTk0NzdmOTg4MTk5ZjRmOGJiMzI0MjA0ZDZiYzkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChD/bar5w2YJXpfclY/KGk0loljAYLy9C79VHIGxL8jQBj 6/ZZALF1rfYLhoM0uVxNGL05tD8km9CvPgkXTjuvZb8BHv6N4c7dGbjcOqFQqBK6 CCGMnWYGywHbKn4N+8xspDenNAZSIPJdMQxjm+nqGzZaG3DDWNfAeuleBb2aHXWF aOEI4r+5ZMAfmpkoI3soW+a/xKusmgW2r09NaYebcsQaecN3W5keYtVaKfXrBtnG VGJoFdVZMCPbCl0DC7ach2HdTm+Csngy7SpDNOFekxFP0KmVUyw5uXXYPIJAXpaB /+eWO+xKhhcj1vMpCyh4DheSzf0RjWt8t1JSJCeXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvijUUDPqtyYmdTihTkQ41ANDK2gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYTY2Y2JiLThjMjYtNGRiNS1hM2E2LTllNDlkNDQ1NDdjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgUmAB8YIDANBgkqhkiG9w0BAQsFAAOCAQEAV4nDJ7QLlgvgw+wLYtfrIhog YO2nOCqKemiRHlOdHcxcQB7bCXEibarLDs0m3ktb28P4I7xyvQYYQwedug4SOoSF wJkyfu2k51jSxvq6kAAX6GXAYUl2PYPyE90YrCgctzBWsOgCDDAxj3itv8WAa9zA 9H9cGvws3TrsnLqoiWecbHCXmKDlSfbC+3lbLsqYXu3kN19j6iKLCRmy8xttkyED arn6OZftV8VbUZrNZvXCsiZbUbE4dydFBbyVXcqRyf4DI7oTZS1ZzkIsfq7NfQka JnteSDiUJIFj9uzPG7PXpTbw5Q/f/G6wqGrdtRDhn8uf/qtr55xdeZROQCzabg== -----END CERTIFICATE-----Generated at Sat Jun 14 06:34:20 2025 by rpki-client