$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa File: 7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa (raw, json) Hash identifier: ppuyyoHxUg+H3yI9pODoRz9Avh/gkgeyrfQ+KWM9O3w= Subject key identifier: 8D:7B:86:67:B3:9A:5D:45:C5:5A:68:99:78:C0:1F:89:AC:8C:32:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A05CBD966B908A5C91B050A2AEA8979685DC080 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa Signing time: Fri 13 Jun 2025 16:21:10 +0000 ROA not before: Fri 13 Jun 2025 16:21:10 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:e040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:05:cb:d9:66:b9:08:a5:c9:1b:05:0a:2a:ea:89:79:68:5d:c0:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:21:10 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=7ad283b7dcdd76d8132af593cd5ade8cf3c18752c8e1e28dc086aeae04cf5206, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ec:8c:1e:95:2c:d7:36:f0:56:64:bf:35:aa: 99:d1:0b:70:eb:9e:fb:7f:2b:ce:0f:c7:11:d1:c6: 78:31:1e:ac:ed:34:88:b1:a8:e2:ba:91:2e:a2:55: 3d:f4:0d:59:39:bd:58:8a:75:60:b3:e5:4b:2c:a8: 83:b6:dc:9c:7c:6a:03:86:49:8e:5f:a3:65:12:10: bc:5f:80:b2:69:28:1f:f1:78:be:47:cf:6e:63:69: c6:50:58:c9:a2:98:00:51:4e:b3:62:08:90:6d:62: b1:ec:d1:4e:1c:98:b9:94:a5:83:2f:b9:39:12:f3: ad:9f:4d:09:18:c9:5f:de:b6:d2:a8:a3:85:2c:3d: af:0c:e9:31:cd:39:a5:8e:07:4d:f0:9a:29:9c:c0: a0:d0:bd:92:81:ae:bd:b5:56:68:13:8c:be:43:08: 59:85:8e:1a:17:f6:2f:5b:1e:f5:07:46:b4:e6:e9: d3:68:5f:ff:2e:81:67:3a:b4:82:aa:ff:86:10:3f: f5:fe:5a:20:f5:7d:fa:ab:0e:25:6f:26:97:b2:55: 83:e5:66:f8:ff:8e:04:eb:e7:49:26:f4:d7:78:3a: 6a:9c:ba:da:8a:4d:31:3a:6a:75:07:97:81:97:1d: 19:bc:2a:4e:4b:c0:57:9f:5f:09:11:82:cd:5f:e9: b9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7B:86:67:B3:9A:5D:45:C5:5A:68:99:78:C0:1F:89:AC:8C:32:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e4db87c-7f99-41e2-8a26-12ed8f71c528.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:e040::/46 Signature Algorithm: sha256WithRSAEncryption a7:94:9d:d8:a1:9c:e5:e7:43:f0:79:d9:f9:6e:c9:e2:0b:27: 41:72:ce:fc:c3:12:2b:0e:b7:d1:20:12:a8:d1:de:59:e5:88: f2:61:15:62:e1:10:2b:44:f7:f4:ff:37:14:0d:f2:1d:95:8e: 2c:35:97:e9:a6:95:50:e7:6d:dd:af:1c:9d:29:d8:9b:67:6c: bd:0d:f9:12:8c:f6:a3:1c:59:71:07:df:33:48:ce:83:4b:0d: bb:46:16:4e:de:ce:42:75:71:b6:ba:a4:40:c1:0c:5d:5b:52: 19:26:af:7d:c1:27:e1:af:48:5f:d4:c7:1b:96:fc:59:0e:d4: 41:a1:21:e3:cf:06:e3:3a:16:8b:27:be:f1:63:c1:1c:c3:cd: b7:b5:75:63:24:18:69:e3:06:1f:f4:11:c2:77:14:ac:8b:e0: 62:31:4e:18:cd:b9:32:a5:39:ea:72:ea:cb:77:9f:37:ea:31: 02:d2:99:1c:b4:5c:e5:90:ff:4f:4e:1b:e9:bb:a7:b6:56:d6: 06:31:0c:50:fb:a8:bb:83:bb:63:21:33:ce:26:e3:a1:dd:3a: 6c:dd:fa:fe:8c:a7:05:3a:2a:7a:4a:87:56:c5:47:71:66:0b: 40:fd:ea:2d:22:07:eb:52:43:16:ba:b6:84:af:2d:51:7c:18: 6d:31:e3:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOgXL2Wa5CKXJGwUKKuqJeWhdwIAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYyMTEwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWQyODNiN2RjZGQ3NmQ4MTMyYWY1OTNjZDVhZGU4Y2Yz YzE4NzUyYzhlMWUyOGRjMDg2YWVhZTA0Y2Y1MjA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt7IwelSzXNvBWZL81qpnRC3Drnvt/K84PxxHRxngxHqzt NIixqOK6kS6iVT30DVk5vViKdWCz5UssqIO23Jx8agOGSY5fo2USELxfgLJpKB/x eL5Hz25jacZQWMmimABRTrNiCJBtYrHs0U4cmLmUpYMvuTkS862fTQkYyV/ettKo o4UsPa8M6THNOaWOB03wmimcwKDQvZKBrr21VmgTjL5DCFmFjhoX9i9bHvUHRrTm 6dNoX/8ugWc6tIKq/4YQP/X+WiD1ffqrDiVvJpeyVYPlZvj/jgTr50km9Nd4Omqc utqKTTE6anUHl4GXHRm8Kk5LwFefXwkRgs1f6bmtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjXuGZ7OaXUXFWmiZeMAfiayMMvQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdlNGRiODdjLTdmOTktNDFlMi04YTI2LTEyZWQ4ZjcxYzUyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9p4EAwDQYJKoZIhvcNAQELBQADggEBAKeUndihnOXnQ/B52fluyeIL J0FyzvzDEisOt9EgEqjR3lnliPJhFWLhECtE9/T/NxQN8h2Vjiw1l+mmlVDnbd2v HJ0p2JtnbL0N+RKM9qMcWXEH3zNIzoNLDbtGFk7ezkJ1cba6pEDBDF1bUhkmr33B J+GvSF/UxxuW/FkO1EGhIePPBuM6FosnvvFjwRzDzbe1dWMkGGnjBh/0EcJ3FKyL 4GIxThjNuTKlOepy6st3nzfqMQLSmRy0XOWQ/09OG+m7p7ZW1gYxDFD7qLuDu2Mh M84m46HdOmzd+v6MpwU6KnpKh1bFR3FmC0D96i0iB+tSQxa6toSvLVF8GG0x4z8= -----END CERTIFICATE-----Generated at Sat Jun 14 06:24:10 2025 by rpki-client