$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa File: 3e37dce6-073c-42e1-9afc-071c9e360693.roa (raw, json) Hash identifier: 4rRXMMiVWtyRd/TdBST1+HwwUjmPZdK0o27Fbr7FJSE= Subject key identifier: 0A:31:8F:65:76:09:96:87:FB:6B:78:6A:00:04:EF:84:01:38:AD:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39D69B3A3B73EA0FD3048CC8AD47F131E7A9C822 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa Signing time: Fri 13 Jun 2025 16:52:02 +0000 ROA not before: Fri 13 Jun 2025 16:52:02 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d6:9b:3a:3b:73:ea:0f:d3:04:8c:c8:ad:47:f1:31:e7:a9:c8:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:52:02 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=57a5e88bdf6c954304222fa6937b90fdcbb8b2be1c7986f6ce675c3bf16154f6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:3a:29:d6:d0:ae:43:ff:ed:93:ef:32:75:f3: 9e:95:25:ef:e6:d0:0b:34:2e:c8:8a:6b:66:62:3c: f4:9e:c2:ca:12:31:45:81:e4:f7:95:ac:b3:49:fd: 6a:44:b8:f6:66:f0:bd:c3:29:37:b0:f9:6e:91:a8: d6:bb:ca:e6:a6:4d:52:74:59:17:bb:74:db:56:be: ba:86:90:b9:bd:35:1c:67:74:4b:e4:0c:56:70:61: d5:6f:c5:63:f4:b8:e4:21:6d:d6:a5:73:80:ca:b4: b4:14:6f:6e:bf:5e:8f:b1:00:8a:44:e9:da:21:cd: 33:c6:31:b9:a1:d3:66:7c:7e:96:25:c0:bb:04:03: 06:dd:e3:3d:a2:91:2e:63:e3:23:ca:63:1a:c9:8d: 96:bf:c8:61:e0:e0:26:fa:c8:79:aa:09:0c:62:8a: ef:ef:fa:0c:96:36:42:35:26:cd:23:a9:e9:a1:aa: f6:fc:cc:aa:70:ef:78:bd:72:67:49:95:2f:c6:79: ec:c5:63:ec:98:0d:d2:76:cb:e8:44:de:a4:25:06: f7:2a:d8:55:8b:bd:01:53:ba:80:d4:33:f7:0a:69: 74:e2:9a:1c:ba:5c:1d:09:8a:9d:21:c3:2f:9f:34: 95:d8:64:a2:57:bc:66:f4:c3:b7:9a:ce:db:e9:f9: e3:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:31:8F:65:76:09:96:87:FB:6B:78:6A:00:04:EF:84:01:38:AD:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16::/34 Signature Algorithm: sha256WithRSAEncryption 9a:ce:26:86:df:f1:6b:25:3c:78:db:0a:de:22:af:2e:10:c2: 58:cb:cf:36:5a:c1:8f:f7:cc:94:78:2d:ad:71:ba:de:3d:29: df:da:71:db:df:fd:fa:3b:be:a4:fc:d3:54:21:cb:7e:79:05: a9:f3:70:6f:45:96:dc:fb:0c:a3:c6:91:ff:5c:0a:ef:c3:4b: 68:44:0c:b1:06:72:b1:71:0b:2b:15:92:78:c5:ae:41:6d:d1: 5f:73:6b:1f:cc:d1:a5:88:3e:c5:a1:69:ac:4d:d2:90:c2:85: c7:07:b1:07:22:24:44:be:ea:ec:4d:27:c1:30:5c:b8:ac:c8: 5b:43:d1:b9:7d:d8:ab:9b:59:d3:08:8a:b5:2d:d2:e8:a2:af: 52:cf:5f:4c:b1:0e:1c:a6:e6:cb:bc:90:c7:88:33:9a:dc:eb: bb:1b:22:f9:84:6c:f4:61:0e:b1:d9:86:21:99:b3:db:ab:c2: 02:ad:b4:fc:9c:d0:fc:13:bd:b1:5b:c2:e0:f8:fe:4b:02:a4: 94:54:5d:26:8f:f1:99:96:be:94:b3:65:54:d3:c5:41:2c:ef: 06:5b:a3:10:f8:0b:1b:ef:9b:b4:e8:fe:a2:c2:89:16:69:36: c0:49:12:9a:9a:6b:eb:54:2b:7b:a7:eb:63:4a:62:0f:a6:82: 49:ee:2b:7c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOdabOjtz6g/TBIzIrUfxMeepyCIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTY1MjAyWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2E1ZTg4YmRmNmM5NTQzMDQyMjJmYTY5MzdiOTBmZGNi YjhiMmJlMWM3OTg2ZjZjZTY3NWMzYmYxNjE1NGY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYOinW0K5D/+2T7zJ1856VJe/m0As0LsiKa2ZiPPSewsoS MUWB5PeVrLNJ/WpEuPZm8L3DKTew+W6RqNa7yuamTVJ0WRe7dNtWvrqGkLm9NRxn dEvkDFZwYdVvxWP0uOQhbdalc4DKtLQUb26/Xo+xAIpE6dohzTPGMbmh02Z8fpYl wLsEAwbd4z2ikS5j4yPKYxrJjZa/yGHg4Cb6yHmqCQxiiu/v+gyWNkI1Js0jqemh qvb8zKpw73i9cmdJlS/GeezFY+yYDdJ2y+hE3qQlBvcq2FWLvQFTuoDUM/cKaXTi mhy6XB0Jip0hwy+fNJXYZKJXvGb0w7eaztvp+eM5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCjGPZXYJlof7a3hqAATvhAE4rUUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMzdkY2U2LTA3M2MtNDJlMS05YWZjLTA3MWM5ZTM2MDY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgYmAB8WADANBgkqhkiG9w0BAQsFAAOCAQEAms4mht/xayU8eNsK3iKvLhDC WMvPNlrBj/fMlHgtrXG63j0p39px29/9+ju+pPzTVCHLfnkFqfNwb0WW3PsMo8aR /1wK78NLaEQMsQZysXELKxWSeMWuQW3RX3NrH8zRpYg+xaFprE3SkMKFxwexByIk RL7q7E0nwTBcuKzIW0PRuX3Yq5tZ0wiKtS3S6KKvUs9fTLEOHKbmy7yQx4gzmtzr uxsi+YRs9GEOsdmGIZmz26vCAq20/JzQ/BO9sVvC4Pj+SwKklFRdJo/xmZa+lLNl VNPFQSzvBlujEPgLG++btOj+osKJFmk2wEkSmppr61Qre6frY0piD6aCSe4rfA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:25:18 2025 by rpki-client