$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a707de9-0f8f-4c35-b1dd-bdd213b68682.roa File: 3a707de9-0f8f-4c35-b1dd-bdd213b68682.roa (raw, json) Hash identifier: QrJHvQpwHTC3p5dltkFtPSitRJ3WTc5YmpKy/Sc3vBg= Subject key identifier: EA:43:07:D1:06:62:4E:93:13:69:79:61:22:AE:E9:A1:30:62:B0:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0193BD6F6305CAAC14754FB79F3AEBDFAB47E4D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a707de9-0f8f-4c35-b1dd-bdd213b68682.roa Signing time: Wed 11 Jun 2025 00:51:04 +0000 ROA not before: Wed 11 Jun 2025 00:51:04 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:93:bd:6f:63:05:ca:ac:14:75:4f:b7:9f:3a:eb:df:ab:47:e4:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:51:04 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=98311e1318cbcc46b4198d698dc01b3d369d54efa3aefa4e3e2eccae334c56bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c9:88:31:ad:59:d8:43:99:c0:a1:e6:00:16: d2:73:48:a7:f8:ea:bc:28:b1:b6:9b:77:2a:d5:ec: e6:79:05:67:99:51:7e:2b:72:2a:92:f3:b1:89:21: a2:16:92:26:30:a7:6c:d6:e5:4d:9c:23:7e:66:d9: 08:28:40:a8:6b:92:e6:39:86:e2:2c:da:cf:f8:cb: 8d:bd:c9:b9:d8:fc:7d:d8:82:56:21:0a:cf:6e:57: 3e:06:25:8d:72:4d:8b:06:e7:8a:78:39:0a:d8:e4: 7a:c1:01:f6:96:d6:46:39:c8:6c:77:bb:d0:1e:cc: 6a:dc:92:6d:f2:42:3f:b7:4e:d0:0f:44:28:08:1c: 03:b9:e8:34:20:bd:8e:65:e9:88:6d:a8:01:c4:90: e6:a9:90:54:c3:f1:a3:ce:b1:06:3f:52:79:0e:da: 89:f6:3c:73:4e:e2:81:cc:8f:9e:76:f4:e0:1c:de: d2:ef:84:e5:16:75:8f:89:b8:86:06:04:39:f5:23: 83:23:95:b5:1d:ab:d4:07:fc:03:f1:5b:71:26:3a: 81:5e:7a:11:2e:e9:db:cd:16:7d:f0:27:fd:0b:6a: 73:2d:4c:f4:3f:78:c2:b0:28:3b:f1:42:ad:44:68: 8b:2f:5f:4b:9b:2b:5e:0d:34:78:42:52:b4:25:17: 12:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:43:07:D1:06:62:4E:93:13:69:79:61:22:AE:E9:A1:30:62:B0:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a707de9-0f8f-4c35-b1dd-bdd213b68682.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8100::/48 Signature Algorithm: sha256WithRSAEncryption 74:8e:d4:8b:2b:8a:32:4d:85:a9:01:6d:94:37:52:6a:e4:2e: 21:c7:84:ea:95:af:52:4a:fd:e4:a7:d0:28:b4:ec:54:95:8b: 0d:4e:96:07:40:9a:c9:e1:b9:94:dd:cf:03:35:76:43:2c:a2: 21:bd:ae:a6:e7:9f:f5:86:7b:0b:6d:4f:85:72:58:35:9b:f4: d6:96:66:0a:95:48:00:11:15:f2:1b:28:6f:b8:61:78:c2:b5: 8f:b9:45:49:54:8c:b2:9b:43:10:4e:66:72:40:c1:89:84:c4: b1:2d:05:6a:cb:2d:57:24:b4:d2:ef:9c:e0:3a:05:23:81:17: 1b:f2:61:93:db:41:3f:11:15:60:f8:03:b3:75:b8:6d:9c:94: 47:ff:c7:7e:9e:eb:61:5a:29:ee:5f:f2:4a:e3:1e:b3:9b:dd: 90:b7:e6:64:28:15:7d:e5:5a:57:e4:96:c1:cf:b6:b4:46:7b: be:34:8c:ca:ce:95:08:6f:70:02:3e:2c:0e:cc:09:ed:d7:27: 82:9b:6c:d8:8b:9e:eb:f7:1e:f9:0f:d4:66:ad:5e:be:dd:06: 97:9c:4e:86:90:62:6b:00:3d:5f:5d:83:4d:c1:f8:dd:ed:32: bb:1e:f4:28:fa:3d:98:cf:e4:b0:f4:05:d8:e9:39:22:e9:e1: 93:82:85:69 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAZO9b2MFyqwUdU+3nzrr36tH5NgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDA1MTA0WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODMxMWUxMzE4Y2JjYzQ2YjQxOThkNjk4ZGMwMWIzZDM2 OWQ1NGVmYTNhZWZhNGUzZTJlY2NhZTMzNGM1NmJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYyYgxrVnYQ5nAoeYAFtJzSKf46rwosbabdyrV7OZ5BWeZ UX4rciqS87GJIaIWkiYwp2zW5U2cI35m2QgoQKhrkuY5huIs2s/4y429ybnY/H3Y glYhCs9uVz4GJY1yTYsG54p4OQrY5HrBAfaW1kY5yGx3u9AezGrckm3yQj+3TtAP RCgIHAO56DQgvY5l6YhtqAHEkOapkFTD8aPOsQY/UnkO2on2PHNO4oHMj5529OAc 3tLvhOUWdY+JuIYGBDn1I4MjlbUdq9QH/APxW3EmOoFeehEu6dvNFn3wJ/0LanMt TPQ/eMKwKDvxQq1EaIsvX0ubK14NNHhCUrQlFxJFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6kMH0QZiTpMTaXlhIq7poTBisDcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhNzA3ZGU5LTBmOGYtNGMzNS1iMWRkLWJkZDIxM2I2ODY4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gQAwDQYJKoZIhvcNAQELBQADggEBAHSO1IsrijJNhakBbZQ3Umrk LiHHhOqVr1JK/eSn0Ci07FSViw1OlgdAmsnhuZTdzwM1dkMsoiG9rqbnn/WGewtt T4VyWDWb9NaWZgqVSAARFfIbKG+4YXjCtY+5RUlUjLKbQxBOZnJAwYmExLEtBWrL LVcktNLvnOA6BSOBFxvyYZPbQT8RFWD4A7N1uG2clEf/x36e62FaKe5f8krjHrOb 3ZC35mQoFX3lWlfklsHPtrRGe740jMrOlQhvcAI+LA7MCe3XJ4KbbNiLnuv3HvkP 1GatXr7dBpecToaQYmsAPV9dg03B+N3tMrse9Cj6PZjP5LD0BdjpOSLp4ZOChWk= -----END CERTIFICATE-----Generated at Mon Jun 16 14:54:18 2025 by rpki-client