$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa File: 4b128b97-197d-4126-9887-73a31ea7479b.roa (raw, json) Hash identifier: 7qT7iCHDk1NdII498lc9lks8di2z6cyBzyDBnnBwJXI= Subject key identifier: 5C:02:E6:89:CD:D1:03:1E:0C:25:55:76:1E:B9:86:E8:90:5D:9E:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A70DE0E3F289613C481B203115F0E2D4C0F34BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa Signing time: Wed 04 Jun 2025 00:11:42 +0000 ROA not before: Wed 04 Jun 2025 00:11:42 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:70:de:0e:3f:28:96:13:c4:81:b2:03:11:5f:0e:2d:4c:0f:34:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:11:42 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=04208b50a554d92b404b3588e4dc3e19f1924c98fd40002d4b04e58c5988a17b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:20:d2:85:7c:84:cf:f6:7e:a8:49:29:35:52: 69:c5:e0:d5:2e:33:59:b2:37:26:57:38:80:e0:7f: c6:22:7b:62:73:c5:35:97:a7:b0:a6:a3:51:d9:11: 4a:da:3d:a8:2f:48:57:1c:17:a6:0f:20:7d:f1:68: cc:c0:ba:bb:c5:0b:9f:1e:07:39:63:89:94:f1:e9: a1:be:9c:3e:da:b7:e0:06:29:eb:f9:1f:47:b8:1a: 4c:6d:95:00:e7:54:41:4e:d5:65:ef:05:8f:18:e5: a0:53:4f:c9:55:89:ae:21:82:6a:54:78:dd:e8:90: 97:f6:d6:5b:b6:5a:b2:12:fa:0c:f9:c8:8c:82:99: 05:d8:30:3e:06:0a:80:bb:98:4a:31:b2:70:82:ab: 67:cf:83:a7:05:eb:c5:06:a5:e0:51:93:5a:d0:ef: 9a:17:96:4a:ef:ff:2f:4c:17:dd:08:92:b4:b6:90: 41:49:1f:3c:ab:bb:9e:f4:cb:3b:48:36:b5:f4:0a: f5:d8:27:72:82:84:16:f0:a4:e3:af:9c:74:ac:62: db:04:56:24:8c:c7:e6:9c:8f:0e:72:66:51:9b:ec: 2b:be:3c:b1:0b:64:6e:f7:b5:01:7f:1b:dd:c6:1f: 25:61:c8:de:4a:d0:15:36:c5:bf:3d:f6:d3:9a:57: 2a:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:02:E6:89:CD:D1:03:1E:0C:25:55:76:1E:B9:86:E8:90:5D:9E:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:e000::/40 Signature Algorithm: sha256WithRSAEncryption 00:f0:15:dd:52:da:ac:14:9f:7c:de:3d:2e:97:74:f2:2b:29: 80:06:c7:7f:40:ac:0f:55:8c:b6:83:a3:9a:17:f0:4a:fa:a2: 4c:39:f4:db:6b:7d:a4:39:e5:98:69:93:af:45:4c:fb:6c:a6: 27:20:cf:51:27:94:32:e5:16:bb:2e:de:34:a7:e4:4a:66:b5: 93:80:2a:54:3b:94:ec:8d:69:0c:bc:18:e1:ec:f5:26:f7:b3: 0f:54:b5:90:94:64:7b:ad:14:f3:49:64:02:b0:00:a2:39:12: 13:de:cb:2c:7e:2e:4e:b0:6a:43:97:4d:a5:a9:54:b5:63:43: 09:7e:d4:65:fb:39:6e:27:09:4e:c0:55:2b:ed:ae:5a:d5:a2: b6:87:64:68:c3:48:26:c5:2e:e2:7d:d4:6f:ae:98:d7:0d:a7: 2e:bb:f7:bd:10:f4:d1:ce:fc:2e:16:69:35:ab:bf:6b:84:93: 23:74:a7:ad:62:1d:f0:ca:95:0b:f2:ef:69:d5:d6:10:66:fe: db:d1:fe:d1:6f:02:34:72:ab:ef:f5:55:99:e6:4f:cd:33:c4: 45:27:cc:23:38:c6:cb:19:73:20:8f:d3:a8:ca:14:5b:48:6b: 41:34:ef:f9:28:be:34:c3:b3:3b:dd:c2:67:cc:ec:66:7c:85: 51:0c:19:17 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSnDeDj8olhPEgbIDEV8OLUwPNL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAxMTQyWhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDIwOGI1MGE1NTRkOTJiNDA0YjM1ODhlNGRjM2UxOWYx OTI0Yzk4ZmQ0MDAwMmQ0YjA0ZTU4YzU5ODhhMTdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuINKFfITP9n6oSSk1UmnF4NUuM1myNyZXOIDgf8Yie2Jz xTWXp7Cmo1HZEUraPagvSFccF6YPIH3xaMzAurvFC58eBzljiZTx6aG+nD7at+AG Kev5H0e4GkxtlQDnVEFO1WXvBY8Y5aBTT8lVia4hgmpUeN3okJf21lu2WrIS+gz5 yIyCmQXYMD4GCoC7mEoxsnCCq2fPg6cF68UGpeBRk1rQ75oXlkrv/y9MF90IkrS2 kEFJHzyru570yztINrX0CvXYJ3KChBbwpOOvnHSsYtsEViSMx+acjw5yZlGb7Cu+ PLELZG73tQF/G93GHyVhyN5K0BU2xb899tOaVypdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXALmic3RAx4MJVV2HrmG6JBdnhAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiMTI4Yjk3LTE5N2QtNDEyNi05ODg3LTczYTMxZWE3NDc5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9g4DANBgkqhkiG9w0BAQsFAAOCAQEAAPAV3VLarBSffN49Lpd08isp gAbHf0CsD1WMtoOjmhfwSvqiTDn022t9pDnlmGmTr0VM+2ymJyDPUSeUMuUWuy7e NKfkSma1k4AqVDuU7I1pDLwY4ez1JvezD1S1kJRke60U80lkArAAojkSE97LLH4u TrBqQ5dNpalUtWNDCX7UZfs5bicJTsBVK+2uWtWitodkaMNIJsUu4n3Ub66Y1w2n Lrv3vRD00c78LhZpNau/a4STI3SnrWId8MqVC/LvadXWEGb+29H+0W8CNHKr7/VV meZPzTPERSfMIzjGyxlzII/TqMoUW0hrQTTv+Si+NMOzO93CZ8zsZnyFUQwZFw== -----END CERTIFICATE-----Generated at Sat Jun 14 07:17:21 2025 by rpki-client