$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2db5e928-de62-49bc-a803-dc9b3ce29b28.roa File: 2db5e928-de62-49bc-a803-dc9b3ce29b28.roa (raw, json) Hash identifier: oITsV9AeExag+W1O9Xv1GnUTm0X5Tc8hERgn3v0+LY4= Subject key identifier: 57:1B:0F:F1:55:CE:20:87:9B:A6:31:0C:E7:32:73:F1:57:C4:58:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0BD7DB088E6A250B7A49E7313D8436A1C1C3DFB7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2db5e928-de62-49bc-a803-dc9b3ce29b28.roa Signing time: Wed 11 Jun 2025 00:20:31 +0000 ROA not before: Wed 11 Jun 2025 00:20:31 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:60c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:d7:db:08:8e:6a:25:0b:7a:49:e7:31:3d:84:36:a1:c1:c3:df:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:20:31 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=c018e39eb863c16b6cf56b30791b4eae33fdae934b72fa482db7f7aceb542232, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:47:41:b9:e0:fe:0b:b8:ff:cf:65:c6:34:eb: b8:60:23:65:89:ac:48:36:a1:73:8d:82:49:9c:64: 92:75:42:e5:9b:5b:9d:27:28:fd:bc:26:d3:be:78: bf:6f:92:3c:33:b3:57:15:ed:26:7e:6d:0d:ff:df: de:af:76:05:2f:04:eb:82:a3:cd:ba:ae:a9:9d:ce: 0b:8d:47:af:96:32:aa:d6:5e:d1:fb:62:f3:68:c9: d2:0b:2c:e6:d5:99:a6:5e:87:7f:46:4f:29:60:44: 7b:a2:df:c6:a4:07:a0:89:21:e4:b9:01:7d:de:d5: d3:0f:d5:5a:0d:e2:11:fa:e8:c7:c0:ab:22:31:5d: 91:ee:3a:b9:43:60:22:88:7f:6c:ed:90:b0:2c:05: 0d:99:a7:ed:d9:0c:f3:93:59:68:12:80:41:d6:57: a6:1c:51:41:af:2e:9b:a2:8a:ae:16:5b:2c:9b:66: bf:ee:2c:fe:64:f1:58:f2:d5:0f:dc:1c:84:ed:fe: 39:80:ad:2d:82:6a:54:59:71:25:57:79:16:5a:55: a8:0f:aa:6d:d4:a7:0a:4f:4c:13:23:c3:3e:4b:67: ab:4d:97:97:3e:0f:39:b2:cd:3a:53:cf:8c:94:58: b4:13:7d:78:d8:a8:99:1d:e9:3c:a4:dd:c8:77:70: c5:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:1B:0F:F1:55:CE:20:87:9B:A6:31:0C:E7:32:73:F1:57:C4:58:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2db5e928-de62-49bc-a803-dc9b3ce29b28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:60c0::/48 Signature Algorithm: sha256WithRSAEncryption 27:c8:a2:9f:c1:55:d8:26:93:2c:0b:6b:b7:a8:eb:9e:36:ec: 4b:60:8f:16:65:ee:8e:a7:60:09:1a:71:2e:b6:d2:8c:8a:46: 6d:80:ae:ea:6d:05:d7:2d:d8:e6:9c:09:83:b9:47:c1:17:fd: 6e:25:dd:3f:e2:65:f3:bc:71:58:32:ba:8b:32:9b:4f:e0:c0: 2f:e7:fb:43:d9:83:d4:b4:b5:2a:4a:42:d8:ac:d1:c7:5a:03: e3:0d:c9:0e:cc:1d:7b:fc:27:91:8b:fc:48:75:6a:08:81:05: 72:79:52:8d:ec:a3:4f:18:a3:5a:b0:dd:84:d8:96:d0:14:ae: 80:0d:6d:56:c2:e8:03:c5:12:e2:0a:19:0d:f0:6e:7e:7d:02: f5:b3:5d:60:20:df:32:fb:f0:f2:6b:aa:0a:94:3e:6e:50:1f: 66:45:27:98:70:0a:4c:db:76:dd:72:31:75:c2:49:62:b2:ac: 6d:c7:54:fe:e7:22:f1:f1:7c:c7:b4:d5:16:04:ae:6c:23:62: 35:45:d1:8d:81:75:9c:40:1a:93:81:9d:be:1c:ca:27:81:bd: 8e:e7:89:2a:f2:d7:de:ef:97:3e:1e:70:f2:a1:d1:6d:7f:1d: 22:2d:ce:8f:82:11:f5:1a:c0:78:4d:47:d1:e2:90:67:e3:0b: 9b:c9:3d:ba -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUC9fbCI5qJQt6SecxPYQ2ocHD37cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAyMDMxWhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMDE4ZTM5ZWI4NjNjMTZiNmNmNTZiMzA3OTFiNGVhZTMz ZmRhZTkzNGI3MmZhNDgyZGI3ZjdhY2ViNTQyMjMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcR0G54P4LuP/PZcY067hgI2WJrEg2oXONgkmcZJJ1QuWb W50nKP28JtO+eL9vkjwzs1cV7SZ+bQ3/396vdgUvBOuCo826rqmdzguNR6+WMqrW XtH7YvNoydILLObVmaZeh39GTylgRHui38akB6CJIeS5AX3e1dMP1VoN4hH66MfA qyIxXZHuOrlDYCKIf2ztkLAsBQ2Zp+3ZDPOTWWgSgEHWV6YcUUGvLpuiiq4WWyyb Zr/uLP5k8Vjy1Q/cHITt/jmArS2CalRZcSVXeRZaVagPqm3UpwpPTBMjwz5LZ6tN l5c+DzmyzTpTz4yUWLQTfXjYqJkd6Tyk3ch3cMUtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVxsP8VXOIIebpjEM5zJz8VfEWFgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkYjVlOTI4LWRlNjItNDliYy1hODAzLWRjOWIzY2UyOWIyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84YMAwDQYJKoZIhvcNAQELBQADggEBACfIop/BVdgmkywLa7eo6542 7EtgjxZl7o6nYAkacS620oyKRm2AruptBdct2OacCYO5R8EX/W4l3T/iZfO8cVgy uosym0/gwC/n+0PZg9S0tSpKQtis0cdaA+MNyQ7MHXv8J5GL/Eh1agiBBXJ5Uo3s o08Yo1qw3YTYltAUroANbVbC6APFEuIKGQ3wbn59AvWzXWAg3zL78PJrqgqUPm5Q H2ZFJ5hwCkzbdt1yMXXCSWKyrG3HVP7nIvHxfMe01RYErmwjYjVF0Y2BdZxAGpOB nb4cyieBvY7niSry197vlz4ecPKh0W1/HSItzo+CEfUawHhNR9HikGfjC5vJPbo= -----END CERTIFICATE-----Generated at Sun Jun 15 08:33:37 2025 by rpki-client