$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa File: 9824ff97-2456-49b2-84a0-9566b712b248.roa (raw, json) Hash identifier: lJ5v93V9qs4+A8oiCS08dW6ycxSiI7a9JNXZPd/WblE= Subject key identifier: EF:58:6F:CB:24:C0:ED:F0:B7:C2:18:0A:26:AE:54:C0:44:80:50:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0851673AB03512DDA63FF8D8E39A1F3538019469 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa Signing time: Wed 04 Jun 2025 00:11:47 +0000 ROA not before: Wed 04 Jun 2025 00:11:47 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:51:67:3a:b0:35:12:dd:a6:3f:f8:d8:e3:9a:1f:35:38:01:94:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:11:47 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=4d01e431de3482196e97f60f7050240b31d24381fb550f145da56fb77694d1c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:be:d0:82:ce:83:49:07:0b:d4:ef:75:2d:04: d1:04:33:b8:15:63:c6:d8:3f:63:e2:f4:39:9e:ca: 17:6c:5d:00:42:ae:36:a3:04:e9:c4:20:45:05:c3: 91:b5:99:e7:ff:9a:42:46:75:7f:24:85:c6:b8:76: 8a:41:a0:36:b8:03:f1:50:26:45:fd:29:1f:fe:c4: 84:cc:2d:c6:b4:f8:e6:81:6c:63:cc:f6:47:f7:40: 1a:d7:32:9a:89:4c:bb:5c:8b:f0:e7:27:52:75:41: 01:62:2e:0b:77:ba:fb:9c:f2:10:75:c9:29:b9:26: 5e:04:43:1a:c6:52:8a:39:21:6c:35:fc:70:56:eb: 46:2a:dd:2a:c9:72:64:c1:2a:e5:b3:bf:37:76:89: 42:30:79:55:6f:17:53:42:84:09:fa:e3:a8:e1:32: 6f:97:3c:59:94:88:f8:d3:3b:46:3f:98:3f:bb:06: 5a:80:69:28:aa:8e:b4:c3:f5:aa:0e:72:a4:b5:39: b5:bb:66:1c:fa:b9:58:d2:a5:ab:1d:fd:58:16:8a: a4:4e:9b:67:7c:d5:ad:1e:c2:ab:a3:8c:86:3e:53: 2b:3c:cf:8a:a4:db:1b:c1:84:ce:f4:a6:bd:9a:15: a9:44:ed:c3:71:0c:e6:61:b2:7f:46:18:0d:f0:1a: 83:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:58:6F:CB:24:C0:ED:F0:B7:C2:18:0A:26:AE:54:C0:44:80:50:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:7400::/40 Signature Algorithm: sha256WithRSAEncryption 69:f8:1b:f3:ad:2c:f6:12:f0:6e:04:bd:4c:cf:1d:39:8e:0e: b8:66:c6:68:41:b5:3b:ca:1c:42:02:26:22:42:40:7a:95:6e: c5:d1:7d:fa:81:96:2c:01:1c:39:da:c0:e4:c6:14:6a:54:03: 0b:69:0f:30:a6:0f:95:d3:da:73:8a:4b:9b:37:e5:55:9b:cb: 85:4e:25:a2:ae:6d:0f:0f:dc:95:d3:4a:79:c9:ba:82:e3:5e: 54:02:80:09:b4:50:2b:e3:4c:ac:e9:7a:d4:c3:1c:57:db:d6: 0c:2e:02:97:3f:d6:52:f2:b2:82:b2:fd:36:f8:37:8f:98:94: 51:c0:71:66:95:e2:30:47:5f:e7:d2:0f:f0:35:b4:5a:8a:4b: 16:c0:2b:ce:8b:fb:44:fa:5e:6f:d6:08:d2:0e:ff:83:e8:cf: ea:9d:21:c8:98:a2:e6:db:be:c0:8e:82:48:d7:ae:11:34:62: 87:2b:31:02:f5:7a:73:d7:2f:33:22:ee:6b:b1:3b:b6:12:69: d6:d1:c8:da:09:60:56:5e:9e:25:aa:3e:fb:9d:b3:f5:ee:24: 60:d8:75:6d:31:3c:13:cf:a1:f5:ee:68:4c:3e:e3:44:d8:1e: 2a:f3:ea:fd:ef:48:26:c3:c7:e1:3d:70:dd:c7:b9:26:73:b5: 16:80:ff:b6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCFFnOrA1Et2mP/jY45ofNTgBlGkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAxMTQ3WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDAxZTQzMWRlMzQ4MjE5NmU5N2Y2MGY3MDUwMjQwYjMx ZDI0MzgxZmI1NTBmMTQ1ZGE1NmZiNzc2OTRkMWM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrvtCCzoNJBwvU73UtBNEEM7gVY8bYP2Pi9DmeyhdsXQBC rjajBOnEIEUFw5G1mef/mkJGdX8khca4dopBoDa4A/FQJkX9KR/+xITMLca0+OaB bGPM9kf3QBrXMpqJTLtci/DnJ1J1QQFiLgt3uvuc8hB1ySm5Jl4EQxrGUoo5IWw1 /HBW60Yq3SrJcmTBKuWzvzd2iUIweVVvF1NChAn646jhMm+XPFmUiPjTO0Y/mD+7 BlqAaSiqjrTD9aoOcqS1ObW7Zhz6uVjSpasd/VgWiqROm2d81a0ewqujjIY+Uys8 z4qk2xvBhM70pr2aFalE7cNxDOZhsn9GGA3wGoNbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU71hvyyTA7fC3whgKJq5UwESAUHUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4MjRmZjk3LTI0NTYtNDliMi04NGEwLTk1NjZiNzEyYjI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gdDANBgkqhkiG9w0BAQsFAAOCAQEAafgb860s9hLwbgS9TM8dOY4O uGbGaEG1O8ocQgImIkJAepVuxdF9+oGWLAEcOdrA5MYUalQDC2kPMKYPldPac4pL mzflVZvLhU4loq5tDw/cldNKecm6guNeVAKACbRQK+NMrOl61MMcV9vWDC4Clz/W UvKygrL9Nvg3j5iUUcBxZpXiMEdf59IP8DW0WopLFsArzov7RPpeb9YI0g7/g+jP 6p0hyJii5tu+wI6CSNeuETRihysxAvV6c9cvMyLua7E7thJp1tHI2glgVl6eJao+ +52z9e4kYNh1bTE8E8+h9e5oTD7jRNgeKvPq/e9IJsPH4T1w3ce5JnO1FoD/tg== -----END CERTIFICATE-----Generated at Sun Jun 15 10:15:53 2025 by rpki-client