$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa File: 65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa (raw, json) Hash identifier: /W9TbCbNMgFyGRdeKh7ak2TwZFLfQXqEPXGNAE+3LIQ= Subject key identifier: 52:86:FB:F6:24:AD:10:DF:0B:98:92:19:90:41:8D:5B:9E:C7:FF:94 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CB9A8C6D64344F178D4AC177B0580FAEACE4EB4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa Signing time: Wed 11 Jun 2025 00:31:45 +0000 ROA not before: Wed 11 Jun 2025 00:31:45 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffd:807b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:b9:a8:c6:d6:43:44:f1:78:d4:ac:17:7b:05:80:fa:ea:ce:4e:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:31:45 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=3ea606c58e7c9e38ebcbc6fdff1feb1cec184625b3766d648a1428e083eacca8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a8:b5:72:ed:82:fb:da:b3:8f:5b:ef:50:eb: 03:55:3a:bc:bb:89:ff:88:cb:44:35:c4:3c:7d:23: 64:ae:11:ec:4b:c6:7b:4f:3d:93:41:03:a4:97:ce: 19:39:52:c1:9c:19:51:03:ca:07:10:55:f1:0b:73: 5e:84:51:a6:ee:da:9d:ad:f1:33:97:49:ce:8c:af: 76:8b:6d:12:16:d8:50:09:05:5e:84:39:21:a8:85: 98:09:ab:b9:af:d5:5f:9a:27:76:f2:8c:2e:53:b2: 14:e9:a2:95:5d:55:d0:89:52:54:91:2f:94:64:b4: 09:a7:47:46:08:21:b0:71:9e:3b:e5:2a:0b:3e:8d: d4:b7:10:dc:79:aa:69:ec:32:5a:9e:cd:5a:eb:9d: 5d:c2:4b:e1:c0:b8:73:be:45:9d:a5:76:8d:06:37: d3:70:ce:28:69:3c:a3:5e:37:14:16:12:54:47:ef: 48:41:45:1c:fa:ad:bb:2b:20:8a:46:db:d3:70:9b: 57:c2:ef:95:b9:2f:0d:6f:43:a7:1f:1f:2c:e1:ea: 4a:2d:3f:98:8f:9a:26:fe:1e:dc:51:c0:09:ab:81: 80:fe:4b:b3:b7:6c:2c:62:75:bc:4e:a1:e2:a9:72: 57:dc:13:90:b3:28:d6:3e:75:75:43:25:fd:8b:26: db:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:86:FB:F6:24:AD:10:DF:0B:98:92:19:90:41:8D:5B:9E:C7:FF:94 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:807b::/48 Signature Algorithm: sha256WithRSAEncryption 6c:44:42:28:c4:92:28:79:7f:ff:f5:05:2a:c0:91:18:74:46: 59:13:4c:b5:b6:bc:c4:4a:7b:1f:54:6f:77:4a:b8:11:8d:12: af:f5:ea:85:14:77:96:19:82:a3:0d:c2:4b:d2:58:dc:5d:ff: 18:35:8a:c9:9d:f2:dc:3a:7c:ad:05:c5:8d:aa:9d:38:d4:c2: 06:5e:32:48:fa:17:60:70:59:fa:a7:32:d5:86:61:bb:ce:01: 81:56:69:1f:35:e5:d6:41:05:99:d7:c6:ab:8a:1a:09:24:a7: 14:6a:15:b8:f3:52:32:ca:5b:38:bb:4a:89:c8:68:76:66:12: fa:ad:6e:db:a1:d8:8c:73:26:23:51:14:8a:07:11:3e:ef:79: 36:93:7f:ab:b0:bd:37:9c:ef:a1:17:0e:2e:52:d1:c2:af:d7: 0d:cc:2d:91:98:62:ba:57:78:23:67:86:f2:ef:4b:2a:e3:9f: a8:0d:19:4f:09:bf:f4:27:dc:6e:29:21:0e:b5:57:93:a9:d4: d7:97:d4:0f:89:1e:11:f8:b6:59:e6:a9:5e:5f:25:f5:8d:b0: 53:d1:75:db:74:b6:87:d2:ca:91:f7:05:29:4f:5c:ed:6f:d6: 44:82:78:41:ae:7b:d7:59:0f:d6:7d:0f:b9:8d:21:d2:0a:c9: 14:e3:b0:0d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfLmoxtZDRPF41KwXewWA+urOTrQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAzMTQ1WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWE2MDZjNThlN2M5ZTM4ZWJjYmM2ZmRmZjFmZWIxY2Vj MTg0NjI1YjM3NjZkNjQ4YTE0MjhlMDgzZWFjY2E4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYqLVy7YL72rOPW+9Q6wNVOry7if+Iy0Q1xDx9I2SuEexL xntPPZNBA6SXzhk5UsGcGVEDygcQVfELc16EUabu2p2t8TOXSc6Mr3aLbRIW2FAJ BV6EOSGohZgJq7mv1V+aJ3byjC5TshTpopVdVdCJUlSRL5RktAmnR0YIIbBxnjvl Kgs+jdS3ENx5qmnsMlqezVrrnV3CS+HAuHO+RZ2ldo0GN9NwzihpPKNeNxQWElRH 70hBRRz6rbsrIIpG29Nwm1fC75W5Lw1vQ6cfHyzh6kotP5iPmib+HtxRwAmrgYD+ S7O3bCxidbxOoeKpclfcE5CzKNY+dXVDJf2LJtsxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUob79iStEN8LmJIZkEGNW57H/5QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YzdlNDM2LTUwYTAtNGM0NS1hNmQyLWE4OTljOGY1ZTc5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gHswDQYJKoZIhvcNAQELBQADggEBAGxEQijEkih5f//1BSrAkRh0 RlkTTLW2vMRKex9Ub3dKuBGNEq/16oUUd5YZgqMNwkvSWNxd/xg1ismd8tw6fK0F xY2qnTjUwgZeMkj6F2BwWfqnMtWGYbvOAYFWaR815dZBBZnXxquKGgkkpxRqFbjz UjLKWzi7SonIaHZmEvqtbtuh2IxzJiNRFIoHET7veTaTf6uwvTec76EXDi5S0cKv 1w3MLZGYYrpXeCNnhvLvSyrjn6gNGU8Jv/Qn3G4pIQ61V5Op1NeX1A+JHhH4tlnm qV5fJfWNsFPRddt0tofSypH3BSlPXO1v1kSCeEGue9dZD9Z9D7mNIdIKyRTjsA0= -----END CERTIFICATE-----Generated at Mon Jun 16 08:42:11 2025 by rpki-client