$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/271e21d3-7150-47c8-982a-f53b364d1cec.roa File: 271e21d3-7150-47c8-982a-f53b364d1cec.roa (raw, json) Hash identifier: syooypQYdCmvmH9clvVlqzPi2Kk12y9z2Phtx1v8ko0= Subject key identifier: 03:E9:1C:E7:60:17:4A:FB:02:D5:9A:D4:6C:37:34:43:F8:65:19:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CB067C1287CC81CB05AD08B0C0F2127C57B676E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/271e21d3-7150-47c8-982a-f53b364d1cec.roa Signing time: Wed 11 Jun 2025 00:40:14 +0000 ROA not before: Wed 11 Jun 2025 00:40:14 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:b0:67:c1:28:7c:c8:1c:b0:5a:d0:8b:0c:0f:21:27:c5:7b:67:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:40:14 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=bc5894a6bff0bda49a7cd68cf7d928362e4497eebf30dafa6af47650e18a9004, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a8:03:b3:ec:a8:d5:b8:61:b4:a6:4a:96:24: 42:65:35:20:1c:4b:47:50:5f:5f:12:42:f5:21:ed: 3f:5d:d5:30:fd:4e:8f:a1:37:8e:b4:44:81:ef:ec: 55:e6:c0:dd:b4:c9:25:bf:c6:f8:b1:7c:b6:31:9c: e9:1a:4f:66:41:62:f9:c6:81:e1:c2:70:48:cc:3a: 9b:5a:65:1a:cf:2d:8e:7b:a0:29:be:8f:20:ad:8d: b0:af:1c:41:72:50:7b:34:8b:c4:10:64:18:9c:90: 73:e5:db:68:c6:00:18:61:09:6d:fd:d9:2a:23:56: 88:3a:bf:8c:54:f6:a3:94:e7:b6:ca:46:bd:57:89: 1e:65:3a:2c:9e:9b:70:b6:d8:16:a5:ca:21:1e:e6: 74:5e:c0:47:e0:c0:dd:73:ad:34:4f:a9:5e:55:fb: fe:64:87:c3:6e:c2:64:f5:2f:89:f0:ca:fa:09:1f: 50:e8:d8:83:ef:03:88:38:87:28:aa:ca:ff:75:d6: 23:16:8f:e2:72:f8:d2:72:95:97:37:22:28:f7:d9: 33:a2:81:af:b6:17:1e:9e:a5:97:c7:df:92:d3:b3: 45:22:d4:e6:ae:59:8a:42:ca:59:dd:f5:77:e2:fd: c6:5f:c1:52:76:92:25:14:08:6a:79:18:02:9f:c5: b3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E9:1C:E7:60:17:4A:FB:02:D5:9A:D4:6C:37:34:43:F8:65:19:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/271e21d3-7150-47c8-982a-f53b364d1cec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4080::/48 Signature Algorithm: sha256WithRSAEncryption d4:e5:c5:ba:4d:ee:15:6f:b6:0f:7a:c5:9d:4f:70:23:c0:17: a3:91:56:eb:6a:bc:19:87:eb:65:7f:ff:8b:05:60:24:c0:68: 95:cb:7b:c9:7c:fe:90:11:aa:df:a3:6e:03:46:dc:86:bd:e6: 54:8b:11:4a:07:af:9f:94:a4:3d:a1:28:35:ec:54:84:4e:2d: 31:03:e2:0a:2a:e3:d7:8d:cc:77:1f:69:ad:4b:9d:88:4e:8e: 09:bc:78:e0:60:89:97:e1:63:f8:ba:c0:63:d5:4a:cb:4f:2c: 82:02:3e:db:4d:89:52:23:ec:ec:8d:e2:c3:1d:e3:ee:45:b9: af:52:5a:f4:db:be:a3:fa:ba:ab:31:43:a2:56:e4:bc:80:6f: b7:72:9b:aa:1f:f7:1a:cc:d8:8b:ff:03:38:fc:46:a3:c9:d2: ea:fd:aa:64:36:3d:7e:dc:50:ed:bf:8b:ea:ae:5c:de:10:c8: 1f:ff:e9:fd:b5:32:87:87:1d:82:e3:ba:68:11:6e:d2:40:41: a4:80:af:29:4b:34:c6:84:27:1a:d3:14:01:db:b5:05:66:c0: a1:a6:11:df:ae:be:65:74:97:e2:00:58:8c:0b:72:98:e2:b2: 5c:3a:39:27:91:87:ff:10:4c:88:3f:11:33:64:db:a8:1d:68: 5f:01:78:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHLBnwSh8yBywWtCLDA8hJ8V7Z24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDA0MDE0WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzU4OTRhNmJmZjBiZGE0OWE3Y2Q2OGNmN2Q5MjgzNjJl NDQ5N2VlYmYzMGRhZmE2YWY0NzY1MGUxOGE5MDA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcqAOz7KjVuGG0pkqWJEJlNSAcS0dQX18SQvUh7T9d1TD9 To+hN460RIHv7FXmwN20ySW/xvixfLYxnOkaT2ZBYvnGgeHCcEjMOptaZRrPLY57 oCm+jyCtjbCvHEFyUHs0i8QQZBickHPl22jGABhhCW392SojVog6v4xU9qOU57bK Rr1XiR5lOiyem3C22BalyiEe5nRewEfgwN1zrTRPqV5V+/5kh8NuwmT1L4nwyvoJ H1Do2IPvA4g4hyiqyv911iMWj+Jy+NJylZc3Iij32TOiga+2Fx6epZfH35LTs0Ui 1OauWYpCylnd9Xfi/cZfwVJ2kiUUCGp5GAKfxbPZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUA+kc52AXSvsC1ZrUbDc0Q/hlGS0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3MWUyMWQzLTcxNTAtNDdjOC05ODJhLWY1M2IzNjRkMWNlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQIAwDQYJKoZIhvcNAQELBQADggEBANTlxbpN7hVvtg96xZ1PcCPA F6ORVutqvBmH62V//4sFYCTAaJXLe8l8/pARqt+jbgNG3Ia95lSLEUoHr5+UpD2h KDXsVIROLTED4goq49eNzHcfaa1LnYhOjgm8eOBgiZfhY/i6wGPVSstPLIICPttN iVIj7OyN4sMd4+5Fua9SWvTbvqP6uqsxQ6JW5LyAb7dym6of9xrM2Iv/Azj8RqPJ 0ur9qmQ2PX7cUO2/i+quXN4QyB//6f21MoeHHYLjumgRbtJAQaSArylLNMaEJxrT FAHbtQVmwKGmEd+uvmV0l+IAWIwLcpjislw6OSeRh/8QTIg/ETNk26gdaF8BeOs= -----END CERTIFICATE-----Generated at Sat Jun 14 06:41:37 2025 by rpki-client