$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f7700a2-6a4d-4cc9-9b7d-83aa88a7d298.roa File: 8f7700a2-6a4d-4cc9-9b7d-83aa88a7d298.roa (raw, json) Hash identifier: E9qM46nUre+GTJkKfUnmDLtanuij0EgmdQ9EzqRJViQ= Subject key identifier: 28:50:AD:3B:A0:3F:DA:60:20:19:D2:69:20:40:29:5E:B2:68:83:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70BC27D4F19CD22A958E005365A5A284410E3635 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f7700a2-6a4d-4cc9-9b7d-83aa88a7d298.roa Signing time: Wed 11 Jun 2025 00:20:29 +0000 ROA not before: Wed 11 Jun 2025 00:20:29 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:34c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:bc:27:d4:f1:9c:d2:2a:95:8e:00:53:65:a5:a2:84:41:0e:36:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:20:29 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=6a7b3d5b205544ad851b67bd7e6cdd7bd0fd125b1353c626763507aa41302042, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:0c:06:0b:40:f7:31:0b:05:8b:17:13:18:05: 2e:8f:6f:cf:f8:d3:4b:99:1b:f9:0c:e6:42:8a:95: 5c:cd:76:63:b0:18:7d:ae:ac:64:4d:5d:09:ba:33: a8:de:5c:1f:9e:b1:f8:f1:39:32:3b:c0:01:98:25: e6:6c:43:97:b8:02:09:22:20:53:e1:23:de:b7:d6: 77:0f:9d:f0:af:d7:6c:63:09:7c:29:c9:dc:ec:5a: 92:f4:c7:42:2d:05:fe:04:99:09:14:2f:69:7c:54: 89:8b:0c:6b:8f:ae:3a:25:af:81:8b:c5:14:ff:57: 5e:cc:ee:c7:71:23:62:7b:89:32:d0:8b:03:bf:d0: 9f:85:a0:0d:3f:28:ab:7e:01:d5:21:5f:71:cc:89: 75:d5:4f:2d:69:ac:f9:f0:ad:28:5d:e8:7c:8a:7d: 43:cb:16:a5:a5:59:fb:e0:ba:48:fa:e5:8b:f5:dc: 64:4a:38:f7:5c:c3:5b:3d:52:73:29:07:9e:cb:45: 1e:12:eb:f0:7e:dc:97:3c:b9:4d:46:51:17:63:3e: 07:c0:1b:ab:3d:80:88:b7:24:a6:5b:89:34:59:e2: 53:06:4b:96:1f:4d:39:fa:55:d5:a4:d4:dc:94:82: be:a8:73:6e:3d:62:da:4e:02:5f:da:ab:f5:92:8e: 1e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:50:AD:3B:A0:3F:DA:60:20:19:D2:69:20:40:29:5E:B2:68:83:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f7700a2-6a4d-4cc9-9b7d-83aa88a7d298.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:34c0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:51:3e:66:e8:09:70:5c:4c:45:f3:19:79:9f:76:64:7d:f0: 68:ce:b3:91:a5:44:81:16:5b:89:c3:3d:96:42:35:db:ce:61: 02:52:a6:98:63:07:2d:0d:54:0b:56:55:19:90:df:54:8c:f8: 46:49:59:0d:47:b3:c4:ed:f2:ac:68:40:06:71:d5:80:93:fb: d7:b2:60:c4:93:fe:4b:d5:54:47:b8:5a:12:d9:dc:af:36:97: 66:f4:55:7c:29:df:b1:c4:68:39:50:07:c0:e0:e9:a1:05:44: b0:18:66:f5:e0:41:8b:f3:aa:a4:2a:50:de:ab:2b:7a:93:73: d1:59:64:2b:48:7c:04:4a:44:cf:8e:3f:5c:f2:b2:2a:d4:16: 2c:01:07:bb:ef:d6:7d:f9:5d:27:a3:8e:42:ce:6b:38:49:d6: 2d:67:d2:15:c7:b7:cb:1c:ef:e6:47:65:ce:5b:04:d9:58:b5: db:53:a2:59:6f:e4:be:8f:c4:80:a9:f2:ef:64:af:2c:b0:eb: 27:63:1a:f8:82:c2:7f:1b:d1:d3:c9:ef:77:09:50:a6:36:0e: f9:0c:79:f2:e5:ec:e8:ce:2d:74:c0:5c:39:1b:54:ae:48:d6: f7:4c:45:5d:31:0a:67:00:10:c2:4d:ee:bc:ef:7c:86:2d:15: 26:1c:f5:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcLwn1PGc0iqVjgBTZaWihEEONjUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAyMDI5WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTdiM2Q1YjIwNTU0NGFkODUxYjY3YmQ3ZTZjZGQ3YmQw ZmQxMjViMTM1M2M2MjY3NjM1MDdhYTQxMzAyMDQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5DAYLQPcxCwWLFxMYBS6Pb8/400uZG/kM5kKKlVzNdmOw GH2urGRNXQm6M6jeXB+esfjxOTI7wAGYJeZsQ5e4AgkiIFPhI9631ncPnfCv12xj CXwpydzsWpL0x0ItBf4EmQkUL2l8VImLDGuPrjolr4GLxRT/V17M7sdxI2J7iTLQ iwO/0J+FoA0/KKt+AdUhX3HMiXXVTy1prPnwrShd6HyKfUPLFqWlWfvgukj65Yv1 3GRKOPdcw1s9UnMpB57LRR4S6/B+3Jc8uU1GURdjPgfAG6s9gIi3JKZbiTRZ4lMG S5YfTTn6VdWk1NyUgr6oc249YtpOAl/aq/WSjh6VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKFCtO6A/2mAgGdJpIEApXrJog8MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmNzcwMGEyLTZhNGQtNGNjOS05YjdkLTgzYWE4OGE3ZDI5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84NMAwDQYJKoZIhvcNAQELBQADggEBAFtRPmboCXBcTEXzGXmfdmR9 8GjOs5GlRIEWW4nDPZZCNdvOYQJSpphjBy0NVAtWVRmQ31SM+EZJWQ1Hs8Tt8qxo QAZx1YCT+9eyYMST/kvVVEe4WhLZ3K82l2b0VXwp37HEaDlQB8Dg6aEFRLAYZvXg QYvzqqQqUN6rK3qTc9FZZCtIfARKRM+OP1zysirUFiwBB7vv1n35XSejjkLOazhJ 1i1n0hXHt8sc7+ZHZc5bBNlYtdtTollv5L6PxICp8u9kryyw6ydjGviCwn8b0dPJ 73cJUKY2DvkMefLl7OjOLXTAXDkbVK5I1vdMRV0xCmcAEMJN7rzvfIYtFSYc9YA= -----END CERTIFICATE-----Generated at Sat Jun 14 06:47:34 2025 by rpki-client