$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa File: 4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa (raw, json) Hash identifier: qXiwbKkQ38DL+afQAFmDWVkkZzfHPBurBh/tiHEb60w= Subject key identifier: 69:CA:E0:22:1A:F0:FD:FF:89:F7:C9:5C:FA:57:6E:47:64:57:5F:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BD2B849E34F237FE77CA5CD94583B02F4E170A2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa Signing time: Fri 13 Jun 2025 16:31:20 +0000 ROA not before: Fri 13 Jun 2025 16:31:20 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:d2:b8:49:e3:4f:23:7f:e7:7c:a5:cd:94:58:3b:02:f4:e1:70:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:31:20 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=0a6caf7c9520358282b833168549dad335208d5338ac7726ba11f402e4c19888, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1f:2a:dc:e5:9b:bc:98:e5:17:41:76:e8:b9: 72:84:8f:2c:b1:db:09:6c:d6:fb:3b:e4:80:05:17: 46:7f:a7:24:bd:59:1c:ce:62:15:de:fc:4c:03:26: b4:c0:ba:18:1e:37:d6:0d:0c:b0:5d:a0:ee:60:fb: da:eb:bb:8f:64:a5:e5:c5:ca:67:e6:2b:e6:5d:56: 3f:78:35:4f:ca:2c:b2:e1:2f:46:84:2d:cc:02:a7: 64:1f:06:82:d2:66:e5:5c:c9:13:ed:89:12:1d:17: 60:70:a9:97:bf:30:bc:e6:d0:f1:b0:2c:91:31:d4: ad:f2:67:14:8d:01:6c:97:1f:d8:53:6f:23:b4:c5: 48:93:0f:89:b0:0f:de:6b:0b:8c:ca:76:35:68:02: b6:96:a7:5b:fb:a0:a5:b0:e7:a7:84:3e:4a:5c:80: 64:02:6c:35:8c:11:18:a9:54:70:c5:e9:ce:15:90: c7:87:fc:97:75:72:4c:b4:17:9e:86:bf:bf:b2:af: cf:32:aa:09:c7:f6:40:30:2b:83:07:3a:ff:c0:d9: 77:80:0a:af:55:d0:b9:5e:9b:33:9b:82:df:62:c6: 30:0e:b2:be:c7:2d:5a:49:c2:45:22:0c:1b:3c:ff: 65:2e:e7:f0:1e:06:c1:4f:fc:13:9d:f9:c0:cb:4a: 0e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CA:E0:22:1A:F0:FD:FF:89:F7:C9:5C:FA:57:6E:47:64:57:5F:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:5000::/40 Signature Algorithm: sha256WithRSAEncryption 7c:e2:ca:82:e4:df:5a:57:82:15:6a:4a:c4:07:9b:da:ac:a2: 07:76:ee:80:b6:6d:e1:6f:95:11:f4:af:be:0f:ac:58:6b:2e: f6:f0:e2:d6:e6:7d:5a:a3:37:b9:75:5f:9c:13:2d:fe:23:21: 4b:fc:92:b2:1b:f0:4f:b3:2b:39:a9:1e:c5:66:c7:ef:97:17: 46:9f:fe:72:df:b4:92:6e:7f:fb:0d:5e:9f:bc:fe:73:d7:22: 2a:4f:20:f5:a3:6b:19:e1:78:82:59:e1:ed:c5:06:94:33:f3: b9:68:9f:90:d2:f6:a4:81:8a:77:d0:9a:98:5b:3c:2d:da:a3: dc:15:40:39:57:bb:18:09:16:8d:6b:2c:e7:ec:93:63:84:91: d1:2d:83:bb:0a:45:7e:cf:20:0d:7f:e0:64:d6:b0:60:38:7f: 65:35:d9:8f:cc:0d:71:05:02:5a:73:9a:13:b9:3b:db:c8:6f: 57:57:9e:a7:38:f1:9c:8e:ec:0e:6c:47:88:74:80:60:95:8c: 13:ee:5b:4c:3a:ee:07:48:16:b8:9a:02:86:07:b9:15:75:34: f0:85:b3:4b:82:7d:bd:78:49:bf:51:39:e9:d4:29:f0:30:48: 22:18:36:b8:c0:99:46:e5:51:00:4c:48:56:29:59:f0:d6:55: ef:5a:fe:20 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUe9K4SeNPI3/nfKXNlFg7AvThcKIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYzMTIwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTZjYWY3Yzk1MjAzNTgyODJiODMzMTY4NTQ5ZGFkMzM1 MjA4ZDUzMzhhYzc3MjZiYTExZjQwMmU0YzE5ODg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4Hyrc5Zu8mOUXQXbouXKEjyyx2wls1vs75IAFF0Z/pyS9 WRzOYhXe/EwDJrTAuhgeN9YNDLBdoO5g+9rru49kpeXFymfmK+ZdVj94NU/KLLLh L0aELcwCp2QfBoLSZuVcyRPtiRIdF2BwqZe/MLzm0PGwLJEx1K3yZxSNAWyXH9hT byO0xUiTD4mwD95rC4zKdjVoAraWp1v7oKWw56eEPkpcgGQCbDWMERipVHDF6c4V kMeH/Jd1cky0F56Gv7+yr88yqgnH9kAwK4MHOv/A2XeACq9V0LlemzObgt9ixjAO sr7HLVpJwkUiDBs8/2Uu5/AeBsFP/BOd+cDLSg47AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUacrgIhrw/f+J98lc+lduR2RXXz8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjZGY1Y2ZmLWRmNTYtNGMwNS05Y2I2LTViMmFiZWIwYzc2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82UDANBgkqhkiG9w0BAQsFAAOCAQEAfOLKguTfWleCFWpKxAeb2qyi B3bugLZt4W+VEfSvvg+sWGsu9vDi1uZ9WqM3uXVfnBMt/iMhS/ySshvwT7MrOake xWbH75cXRp/+ct+0km5/+w1en7z+c9ciKk8g9aNrGeF4glnh7cUGlDPzuWifkNL2 pIGKd9CamFs8Ldqj3BVAOVe7GAkWjWss5+yTY4SR0S2DuwpFfs8gDX/gZNawYDh/ ZTXZj8wNcQUCWnOaE7k728hvV1eepzjxnI7sDmxHiHSAYJWME+5bTDruB0gWuJoC hge5FXU08IWzS4J9vXhJv1E56dQp8DBIIhg2uMCZRuVRAExIVilZ8NZV71r+IA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:30:24 2025 by rpki-client