$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4130699-dfb5-4db7-81a6-b209888061e9.roa File: a4130699-dfb5-4db7-81a6-b209888061e9.roa (raw, json) Hash identifier: +NVYhRMmW7X2c19Ws6DipslIgOVKCUe6WwoXa6fBCvk= Subject key identifier: 34:E2:F6:12:33:CD:B8:BC:FF:4A:2A:0A:79:CE:F0:D1:5A:AB:73:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E886C947510AB1DA27B10BC124BDCB1AC8084D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4130699-dfb5-4db7-81a6-b209888061e9.roa Signing time: Tue 03 Jun 2025 20:22:16 +0000 ROA not before: Tue 03 Jun 2025 20:22:16 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:88:6c:94:75:10:ab:1d:a2:7b:10:bc:12:4b:dc:b1:ac:80:84:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 20:22:16 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=1c34dd077b59c081a934fee0d1a9b03176721508d0cd385b8714208b78cca4a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7a:ef:c7:b2:69:91:9d:98:fa:ef:e3:54:7d: 99:0c:43:24:3e:84:66:bb:aa:27:18:c5:2d:40:b8: 21:d3:ac:49:78:d1:bb:3c:b4:bd:81:9f:cb:83:3e: 4a:98:e7:23:7a:c1:b8:c7:c3:b8:d1:b2:6b:05:c2: d6:c1:c1:1d:ab:61:34:7a:d3:5c:93:ce:c2:c8:38: 9e:5d:1a:b0:57:1c:29:d4:ac:3e:b0:4d:96:a9:fb: 3f:0a:77:9d:87:c0:11:bc:1c:d7:b2:28:b2:e9:38: 48:79:9e:ba:93:a9:e5:fd:b4:47:16:06:e3:a2:74: ac:fc:d0:a5:f2:a4:60:b8:3f:c7:57:7b:14:6c:c8: 95:a7:33:c7:93:98:83:8e:2e:35:11:d0:32:8a:c2: 92:4b:3c:e7:50:1f:0c:c8:82:91:a9:a0:cd:ac:fd: 26:8f:9d:6d:45:60:91:18:bc:b5:0e:44:2c:18:41: af:a9:b7:1c:d4:5b:f3:7b:d9:6b:e8:e2:06:ae:cb: a5:7e:db:0e:1f:38:96:90:f0:c3:f0:eb:d9:9f:73: 4c:c6:6d:56:14:b1:26:82:cc:52:93:ba:02:e8:a8: 14:fa:7d:ee:a7:9b:2e:b7:34:cb:50:2c:9d:e4:8c: 2c:de:2b:b7:43:5a:5b:91:61:cd:8e:ff:94:39:65: 2f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:E2:F6:12:33:CD:B8:BC:FF:4A:2A:0A:79:CE:F0:D1:5A:AB:73:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4130699-dfb5-4db7-81a6-b209888061e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:2000::/40 Signature Algorithm: sha256WithRSAEncryption 1c:13:5b:42:35:cc:2c:4b:aa:38:b1:be:62:70:fa:d1:6c:ce: 8f:20:73:a5:7e:5a:d0:cb:72:63:e3:d6:85:8c:aa:bc:14:f1: b1:ca:84:56:45:4e:72:ca:2d:bd:29:fc:66:3a:59:60:0e:bf: 36:0d:a5:63:93:2f:b7:ae:6f:7f:12:47:98:6f:67:d8:c9:8c: b3:7a:c5:f8:0b:b1:92:f8:e2:d9:cd:cc:f4:d0:b0:31:6e:38: f7:02:b9:83:e8:aa:39:dd:66:c0:2b:f8:a8:13:a5:a1:ad:9e: 6e:c2:43:0c:fe:85:a3:ac:4e:41:58:82:24:0a:ac:8b:cf:e1: 59:ce:19:ca:7f:f0:e8:9a:d3:30:19:4a:ce:a0:0e:af:3f:12: a3:84:59:08:6e:3a:61:0b:ec:8d:2b:04:04:f9:2c:ff:07:63: 8d:73:df:c2:c7:ba:63:12:9e:f8:5e:bb:b6:1d:34:97:2c:f0: e2:df:8b:cc:82:09:3d:07:6d:aa:f8:90:73:a8:72:2e:aa:40: 12:34:ee:d2:40:f4:f8:e3:25:a1:1d:32:d8:e1:fc:29:b7:8e: 16:8a:a3:89:5d:6c:71:c2:31:03:90:c8:6a:d3:2a:3f:75:95: 6d:57:7f:8e:04:f8:ef:4b:6d:f5:54:05:b1:55:46:cb:06:ec: 39:86:05:ad -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbohslHUQqx2iexC8EkvcsayAhNcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMjAyMjE2WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzM0ZGQwNzdiNTljMDgxYTkzNGZlZTBkMWE5YjAzMTc2 NzIxNTA4ZDBjZDM4NWI4NzE0MjA4Yjc4Y2NhNGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5eu/HsmmRnZj67+NUfZkMQyQ+hGa7qicYxS1AuCHTrEl4 0bs8tL2Bn8uDPkqY5yN6wbjHw7jRsmsFwtbBwR2rYTR601yTzsLIOJ5dGrBXHCnU rD6wTZap+z8Kd52HwBG8HNeyKLLpOEh5nrqTqeX9tEcWBuOidKz80KXypGC4P8dX exRsyJWnM8eTmIOOLjUR0DKKwpJLPOdQHwzIgpGpoM2s/SaPnW1FYJEYvLUORCwY Qa+ptxzUW/N72Wvo4gauy6V+2w4fOJaQ8MPw69mfc0zGbVYUsSaCzFKTugLoqBT6 fe6nmy63NMtQLJ3kjCzeK7dDWluRYc2O/5Q5ZS/lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNOL2EjPNuLz/SioKec7w0VqrcyIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0MTMwNjk5LWRmYjUtNGRiNy04MWE2LWIyMDk4ODgwNjFlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+5IDANBgkqhkiG9w0BAQsFAAOCAQEAHBNbQjXMLEuqOLG+YnD60WzO jyBzpX5a0MtyY+PWhYyqvBTxscqEVkVOcsotvSn8ZjpZYA6/Ng2lY5Mvt65vfxJH mG9n2MmMs3rF+Auxkvji2c3M9NCwMW449wK5g+iqOd1mwCv4qBOloa2ebsJDDP6F o6xOQViCJAqsi8/hWc4Zyn/w6JrTMBlKzqAOrz8So4RZCG46YQvsjSsEBPks/wdj jXPfwse6YxKe+F67th00lyzw4t+LzIIJPQdtqviQc6hyLqpAEjTu0kD0+OMloR0y 2OH8KbeOFoqjiV1sccIxA5DIatMqP3WVbVd/jgT470tt9VQFsVVGywbsOYYFrQ== -----END CERTIFICATE-----Generated at Sat Jun 14 06:36:30 2025 by rpki-client