$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74979d15-5647-4efc-ac8a-013c581338cc.roa File: 74979d15-5647-4efc-ac8a-013c581338cc.roa (raw, json) Hash identifier: By67vBUhzoFHGuXalM/iLCSLM/ldjI+YqCLWsBBisc8= Subject key identifier: 3A:DB:FA:2B:C6:66:1C:22:B1:46:27:5C:2F:DD:2B:A2:0C:5B:7E:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 535386473B548CC50F344B9E648AB2B8FE7E387E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74979d15-5647-4efc-ac8a-013c581338cc.roa Signing time: Tue 10 Jun 2025 16:21:18 +0000 ROA not before: Tue 10 Jun 2025 16:21:18 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:53:86:47:3b:54:8c:c5:0f:34:4b:9e:64:8a:b2:b8:fe:7e:38:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:21:18 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=4efcfe17070bf5f55e32d9a66ce90938024806e389d5ac416826cb3ee5db135d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:bb:33:50:3e:a0:89:b4:39:f1:fd:70:e3:8f: 3d:c2:dd:d5:19:e7:1d:8f:b4:73:56:af:59:c8:c4: ed:ae:98:87:d4:89:67:ba:e6:28:78:9f:e7:d6:f4: 80:ba:17:dc:88:4c:60:43:13:b7:18:09:73:f8:f7: da:1f:69:71:fe:86:93:1b:0e:70:9e:e8:11:c7:be: 85:e3:39:d3:f8:68:6f:40:c7:01:c5:2d:d9:33:0c: 5b:a1:98:7b:f2:35:90:c6:96:6e:88:37:a0:27:61: d1:43:3d:85:58:ab:9f:a4:5e:cf:a9:e7:2c:0e:c5: c8:f4:63:4d:fa:0a:8d:dd:f6:aa:6c:0a:7b:52:91: 4f:3f:50:97:3a:65:f4:73:0e:1e:08:44:55:5f:e7: af:87:0c:0e:1c:79:3d:7e:72:93:23:84:d0:df:4b: 0d:9b:59:84:e4:e1:4f:e9:88:9f:96:cf:6c:a3:2e: 46:46:1d:83:42:f9:f2:46:a1:84:7d:e2:20:28:93: 9e:e2:b8:ce:1c:86:7e:cf:05:88:74:e3:30:27:da: 8f:eb:a3:7c:d6:65:81:34:a6:c3:e0:60:89:af:2b: 02:cb:2b:85:3d:ca:5b:43:be:6a:bb:f8:2e:c0:e6: d0:5f:a9:15:72:2b:ce:fb:db:a6:44:d4:d9:1b:ed: 3b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:DB:FA:2B:C6:66:1C:22:B1:46:27:5C:2F:DD:2B:A2:0C:5B:7E:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74979d15-5647-4efc-ac8a-013c581338cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:5040::/48 Signature Algorithm: sha256WithRSAEncryption 4a:7b:b8:8b:f5:bc:e4:02:0f:f6:d4:1d:d3:0d:ed:f8:ab:7b: 69:7d:f6:42:f3:cc:b8:90:6a:ae:b0:24:4d:02:e9:66:83:27: 03:25:56:44:20:92:da:c4:05:ac:88:76:a8:f9:8c:a9:43:34: 63:38:c3:32:30:95:18:3c:72:68:52:ec:1c:1e:57:85:56:78: c2:35:b6:a8:fe:85:33:91:64:3f:c4:e4:cf:a8:4e:69:d2:89: 43:6c:d8:39:8e:d1:3a:96:e8:f1:60:43:39:af:5b:f7:84:89: 60:49:cd:1c:cd:8f:fc:34:41:5e:af:78:13:f9:8f:21:24:8d: 36:28:3c:42:f3:ed:88:0a:5b:11:76:0a:3b:41:ed:69:e5:b0: 8f:e9:59:f5:9c:16:e4:8d:16:db:ae:1d:c3:91:eb:2c:8b:30: 7b:02:75:69:13:78:5e:bb:66:dc:2c:a9:7e:b4:5a:14:d0:54: 00:ea:8c:f7:ec:8d:de:ef:5c:b6:10:37:ac:ed:00:78:bc:c0: d0:30:eb:f2:f5:19:0a:30:ee:b1:7c:a1:32:5e:6d:b8:5d:25: c2:71:8c:62:04:b2:b1:dd:e7:0a:f4:d8:5a:9d:93:d6:3d:16: c7:4c:75:a2:92:b4:3d:93:52:da:bc:ca:8b:1f:79:08:52:db: 2f:10:1f:10 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUU1OGRztUjMUPNEueZIqyuP5+OH4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYyMTE4WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZWZjZmUxNzA3MGJmNWY1NWUzMmQ5YTY2Y2U5MDkzODAy NDgwNmUzODlkNWFjNDE2ODI2Y2IzZWU1ZGIxMzVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTuzNQPqCJtDnx/XDjjz3C3dUZ5x2PtHNWr1nIxO2umIfU iWe65ih4n+fW9IC6F9yITGBDE7cYCXP499ofaXH+hpMbDnCe6BHHvoXjOdP4aG9A xwHFLdkzDFuhmHvyNZDGlm6IN6AnYdFDPYVYq5+kXs+p5ywOxcj0Y036Co3d9qps CntSkU8/UJc6ZfRzDh4IRFVf56+HDA4ceT1+cpMjhNDfSw2bWYTk4U/piJ+Wz2yj LkZGHYNC+fJGoYR94iAok57iuM4chn7PBYh04zAn2o/ro3zWZYE0psPgYImvKwLL K4U9yltDvmq7+C7A5tBfqRVyK87726ZE1Nkb7TuFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOtv6K8ZmHCKxRidcL90rogxbfk8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0OTc5ZDE1LTU2NDctNGVmYy1hYzhhLTAxM2M1ODEzMzhjYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AUEAwDQYJKoZIhvcNAQELBQADggEBAEp7uIv1vOQCD/bUHdMN7fir e2l99kLzzLiQaq6wJE0C6WaDJwMlVkQgktrEBayIdqj5jKlDNGM4wzIwlRg8cmhS 7BweV4VWeMI1tqj+hTORZD/E5M+oTmnSiUNs2DmO0TqW6PFgQzmvW/eEiWBJzRzN j/w0QV6veBP5jyEkjTYoPELz7YgKWxF2CjtB7WnlsI/pWfWcFuSNFtuuHcOR6yyL MHsCdWkTeF67ZtwsqX60WhTQVADqjPfsjd7vXLYQN6ztAHi8wNAw6/L1GQow7rF8 oTJebbhdJcJxjGIEsrHd5wr02Fqdk9Y9FsdMdaKStD2TUtq8yosfeQhS2y8QHxA= -----END CERTIFICATE-----Generated at Sat Jun 14 18:57:15 2025 by rpki-client