$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2656b6ba-12bc-4975-86b6-982bf7da8589.roa File: 2656b6ba-12bc-4975-86b6-982bf7da8589.roa (raw, json) Hash identifier: G5xQ1X7Ms5fpDXSyFg9NyP2O9pV5S4sSmHctEGNJ8DI= Subject key identifier: 3D:A6:5E:48:41:CE:A0:0D:8E:28:35:F1:A0:C0:C2:C4:9B:E6:06:36 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 32CF7663B409C20D9B24AEEB22A51BFC8AE21A61 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2656b6ba-12bc-4975-86b6-982bf7da8589.roa Signing time: Fri 13 Jun 2025 16:00:24 +0000 ROA not before: Fri 13 Jun 2025 16:00:24 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7:6040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:cf:76:63:b4:09:c2:0d:9b:24:ae:eb:22:a5:1b:fc:8a:e2:1a:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:00:24 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=b187c93f39d5da2bbf292e38964a70cbf133b082e8ee8c1c16fcedd69994c90d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5f:49:37:9b:62:4d:58:36:e7:28:72:6d:c3: e5:26:89:be:09:12:f1:9f:99:56:7e:5b:bf:00:7d: 6f:9c:18:fc:4f:28:39:2b:50:1f:ce:fc:ae:1e:3f: 3c:a2:b8:61:c7:e6:6e:82:35:78:ad:fc:87:08:d1: de:4c:f1:c1:ed:a3:5d:4d:a2:a4:76:fb:1a:4e:33: 5d:50:0b:52:34:ea:6d:08:f5:98:d9:ee:70:29:29: 4c:53:8d:0d:7a:64:6a:df:be:f8:b6:f1:6e:d5:1c: 67:ea:50:5f:d5:fd:5e:74:73:09:05:e6:fa:e3:09: f2:98:08:15:90:57:82:a2:46:89:20:7a:b2:5a:d5: a7:a7:7f:ed:ae:3f:98:c7:41:15:67:1c:ab:8d:27: 77:27:98:82:7f:ef:37:cc:c2:da:18:fb:76:8f:03: 0e:60:c9:93:8b:f2:b2:9e:7e:e3:d8:fd:45:78:42: ca:7d:ee:4c:63:31:04:04:51:83:cb:fc:0f:d1:8a: 4f:49:75:e4:3d:7a:9c:e6:2f:3b:9c:d9:76:40:23: 32:2b:2f:40:ed:98:9d:3e:c9:7e:ce:d4:e2:e6:8f: a1:79:cb:d1:47:58:ef:63:c3:e1:8b:56:ae:81:f9: fa:cc:4a:87:ec:aa:96:32:b0:0f:c2:6a:44:99:77: 69:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A6:5E:48:41:CE:A0:0D:8E:28:35:F1:A0:C0:C2:C4:9B:E6:06:36 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2656b6ba-12bc-4975-86b6-982bf7da8589.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:6040::/46 Signature Algorithm: sha256WithRSAEncryption ca:40:6b:da:86:2d:f6:b8:c3:03:5d:07:0b:8d:d5:2b:9d:72: dd:f1:97:d9:0d:5d:91:26:e9:99:51:19:c4:a3:24:91:c7:80: 15:73:6d:fa:09:4c:46:0e:93:75:cc:7c:1f:58:bb:ef:70:9e: 5c:5f:32:37:14:5c:87:08:fd:80:47:ca:22:83:f1:7b:f4:09: c0:b2:6b:39:40:82:8b:4d:aa:43:b2:56:d3:4d:74:24:3f:ef: 46:b0:24:29:64:b2:2f:6b:9d:6b:dc:5f:8b:51:ed:40:63:5c: ee:b6:ec:9b:52:ba:de:45:2f:62:e5:bc:cd:92:5d:7b:00:32: 9f:da:22:df:84:8e:15:78:1c:26:af:97:e2:fd:5d:ed:c5:17: f1:a8:7a:a2:9f:35:24:5f:f8:47:e6:2e:94:92:eb:2e:18:f0: 12:67:ac:47:41:b8:b0:15:48:bf:91:5b:f2:2c:ea:67:31:35: 36:1f:53:1f:50:37:3e:7c:46:c4:ae:7a:b6:de:ec:ab:f7:99: 06:89:10:60:5e:87:9b:e1:26:05:3f:4c:71:41:17:97:de:72: fa:46:49:ae:ac:e0:ae:1b:39:61:d3:53:bf:0f:c0:fa:8c:8a: 91:8c:73:b5:ad:7d:5c:22:a8:d3:c2:38:8f:59:ef:bc:7c:e4: e2:1c:c2:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMs92Y7QJwg2bJK7rIqUb/IriGmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYwMDI0WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTg3YzkzZjM5ZDVkYTJiYmYyOTJlMzg5NjRhNzBjYmYx MzNiMDgyZThlZThjMWMxNmZjZWRkNjk5OTRjOTBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfX0k3m2JNWDbnKHJtw+Umib4JEvGfmVZ+W78AfW+cGPxP KDkrUB/O/K4ePzyiuGHH5m6CNXit/IcI0d5M8cHto11NoqR2+xpOM11QC1I06m0I 9ZjZ7nApKUxTjQ16ZGrfvvi28W7VHGfqUF/V/V50cwkF5vrjCfKYCBWQV4KiRokg erJa1aenf+2uP5jHQRVnHKuNJ3cnmIJ/7zfMwtoY+3aPAw5gyZOL8rKefuPY/UV4 Qsp97kxjMQQEUYPL/A/Rik9JdeQ9epzmLzuc2XZAIzIrL0DtmJ0+yX7O1OLmj6F5 y9FHWO9jw+GLVq6B+frMSofsqpYysA/CakSZd2lPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPaZeSEHOoA2OKDXxoMDCxJvmBjYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2NTZiNmJhLTEyYmMtNDk3NS04NmI2LTk4MmJmN2RhODU4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3YEAwDQYJKoZIhvcNAQELBQADggEBAMpAa9qGLfa4wwNdBwuN1Sud ct3xl9kNXZEm6ZlRGcSjJJHHgBVzbfoJTEYOk3XMfB9Yu+9wnlxfMjcUXIcI/YBH yiKD8Xv0CcCyazlAgotNqkOyVtNNdCQ/70awJClksi9rnWvcX4tR7UBjXO627JtS ut5FL2LlvM2SXXsAMp/aIt+EjhV4HCavl+L9Xe3FF/GoeqKfNSRf+EfmLpSS6y4Y 8BJnrEdBuLAVSL+RW/Is6mcxNTYfUx9QNz58RsSuerbe7Kv3mQaJEGBeh5vhJgU/ THFBF5fecvpGSa6s4K4bOWHTU78PwPqMipGMc7WtfVwiqNPCOI9Z77x85OIcwm8= -----END CERTIFICATE-----Generated at Sat Jun 14 07:14:59 2025 by rpki-client