$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa File: 8d41710e-c6e8-4052-a1da-98784984e015.roa (raw, json) Hash identifier: vLlI3d0a3U9eaphlHZiqDhh01DHjFpxxQN5jN7JxtUs= Subject key identifier: 5B:2F:B6:95:51:FB:B7:F0:DF:B3:8C:73:2B:61:A1:64:A8:8D:8A:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25F83DBE9FECF63775C14812BC3DDCFABBC83E0A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa Signing time: Fri 13 Jun 2025 15:41:55 +0000 ROA not before: Fri 13 Jun 2025 15:41:55 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:2040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f8:3d:be:9f:ec:f6:37:75:c1:48:12:bc:3d:dc:fa:bb:c8:3e:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:41:55 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=23560eef64db4339923f54487d3543b845a5e6944e2ee5e7b15ef77eff6881eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fe:b0:6d:e0:8a:23:ed:b8:9a:d3:b7:eb:c5: 82:ca:76:6c:cd:c2:2f:19:4a:15:6d:92:0a:b7:e2: 98:89:06:94:41:cb:70:61:38:71:86:bf:e1:b4:ea: 54:28:66:ab:c0:8b:9f:95:ad:03:6b:5a:c7:41:14: e2:5f:40:45:83:01:de:94:71:53:30:b1:77:59:19: 1f:d7:39:d4:06:01:39:75:fd:3c:55:c2:fc:9b:05: 9d:79:e6:bf:21:0c:ce:ea:6f:16:9a:06:54:00:32: 1c:09:ab:c4:64:4b:38:99:81:dd:85:83:8d:a1:43: cf:76:c1:3d:b7:b2:6c:32:2f:d1:3a:71:a3:fa:eb: a2:62:9d:e4:26:83:3e:b0:7a:35:5f:db:ab:f5:7d: 71:04:3f:1b:ef:17:e2:06:8f:f4:5a:3a:1e:f5:ec: 85:95:7e:a8:a3:a4:b4:09:ce:3e:c1:d0:ee:ad:ed: ee:38:d9:be:a2:f9:92:cd:3f:ee:c9:5d:be:4c:91: 9b:b4:9e:c2:94:5d:87:b1:08:cb:a5:15:d7:0a:46: c5:27:45:db:fa:dd:64:2c:33:b5:d7:d8:21:af:fc: 1a:ac:db:d4:49:fa:2b:5b:35:2d:e2:a7:c8:b0:78: ee:8e:d0:c0:be:96:58:a6:8b:7a:a1:fc:7c:7c:e0: cf:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:2F:B6:95:51:FB:B7:F0:DF:B3:8C:73:2B:61:A1:64:A8:8D:8A:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:2040::/46 Signature Algorithm: sha256WithRSAEncryption 6e:84:7c:f8:be:e8:3f:0f:4a:ba:3c:d2:be:bc:cc:72:3f:ec: 7a:50:0c:91:df:34:01:df:3a:a9:9a:cd:5a:76:ee:8f:1e:13: fb:f1:68:4b:a5:30:f4:76:29:9e:ba:96:c0:e2:13:20:1d:fc: aa:a7:47:d4:8b:7c:41:93:71:61:c6:0b:ae:91:75:33:cd:df: 7e:c1:59:6a:39:49:16:79:29:a7:42:25:f5:c9:89:f4:d1:85: e0:4a:ad:fe:0c:0f:3b:12:8f:3f:9c:16:ea:b9:81:62:a8:4f: c7:b2:15:52:b8:7a:79:f9:39:3b:20:2c:fa:0d:4b:f9:75:33: 6a:85:5b:fa:f7:7c:8d:9e:11:ea:37:5e:f0:62:3a:ed:e4:8d: b2:fb:05:76:02:f8:c2:2e:67:30:ff:85:c4:17:46:1c:bd:92: 17:f4:6b:56:f4:99:43:62:a4:cc:ef:cf:de:8e:62:6a:36:ee: ef:f5:34:c8:c0:cf:95:08:f2:6a:43:dc:0c:5d:ca:b8:e0:41: 1e:5a:3c:51:c4:7e:5e:79:24:74:82:69:74:aa:41:14:f7:d6: 5b:f5:41:10:5a:3a:e8:a4:18:da:c1:21:3f:f5:ce:d7:df:39: 9a:7d:8a:81:0d:bc:d2:08:3b:1c:48:f9:4a:d8:1a:fc:bf:9a: 61:c8:33:94 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJfg9vp/s9jd1wUgSvD3c+rvIPgowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTU0MTU1WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMzU2MGVlZjY0ZGI0MzM5OTIzZjU0NDg3ZDM1NDNiODQ1 YTVlNjk0NGUyZWU1ZTdiMTVlZjc3ZWZmNjg4MWViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa/rBt4Ioj7bia07frxYLKdmzNwi8ZShVtkgq34piJBpRB y3BhOHGGv+G06lQoZqvAi5+VrQNrWsdBFOJfQEWDAd6UcVMwsXdZGR/XOdQGATl1 /TxVwvybBZ155r8hDM7qbxaaBlQAMhwJq8RkSziZgd2Fg42hQ892wT23smwyL9E6 caP666JineQmgz6wejVf26v1fXEEPxvvF+IGj/RaOh717IWVfqijpLQJzj7B0O6t 7e442b6i+ZLNP+7JXb5MkZu0nsKUXYexCMulFdcKRsUnRdv63WQsM7XX2CGv/Bqs 29RJ+itbNS3ip8iweO6O0MC+llimi3qh/Hx84M/zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWy+2lVH7t/Dfs4xzK2GhZKiNisgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNDE3MTBlLWM2ZTgtNDA1Mi1hMWRhLTk4Nzg0OTg0ZTAxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7IEAwDQYJKoZIhvcNAQELBQADggEBAG6EfPi+6D8PSro80r68zHI/ 7HpQDJHfNAHfOqmazVp27o8eE/vxaEulMPR2KZ66lsDiEyAd/KqnR9SLfEGTcWHG C66RdTPN337BWWo5SRZ5KadCJfXJifTRheBKrf4MDzsSjz+cFuq5gWKoT8eyFVK4 enn5OTsgLPoNS/l1M2qFW/r3fI2eEeo3XvBiOu3kjbL7BXYC+MIuZzD/hcQXRhy9 khf0a1b0mUNipMzvz96OYmo27u/1NMjAz5UI8mpD3AxdyrjgQR5aPFHEfl55JHSC aXSqQRT31lv1QRBaOuikGNrBIT/1ztffOZp9ioENvNIIOxxI+UrYGvy/mmHIM5Q= -----END CERTIFICATE-----Generated at Tue Jun 17 09:00:28 2025 by rpki-client