$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa File: a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa (raw, json) Hash identifier: rWaM/IjICcXdRm6MfO98I8pJU3AeBxX0XXi7BMP2p2E= Subject key identifier: 56:40:22:78:24:0F:52:F5:A1:44:77:28:AD:D6:44:8E:91:37:76:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F68DBF1479540691E7A42E1110E412F8D4B04A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa Signing time: Wed 11 Jun 2025 00:41:49 +0000 ROA not before: Wed 11 Jun 2025 00:41:49 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 18 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:68:db:f1:47:95:40:69:1e:7a:42:e1:11:0e:41:2f:8d:4b:04:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:41:49 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=8a4c247a7f991f919f4b08956505b0a1a5a3cba9bc3ec6022c8835de62cdc176, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:27:96:4b:65:d0:df:b6:ce:57:08:6f:1d:72: ad:ce:ff:21:0e:66:f2:c3:1d:67:89:43:19:37:d2: 4a:04:d5:ba:fa:b0:da:40:b7:85:de:4f:02:0a:73: 7e:08:7d:f4:15:43:15:d9:18:7f:5b:8d:c7:95:19: ed:85:cd:dd:ad:ae:86:8b:c8:c8:16:48:cb:d3:aa: bd:d2:96:b0:5f:0d:3b:a1:50:9c:95:f6:89:b5:23: 82:be:44:71:88:77:6f:e2:cf:17:f5:16:af:2d:51: 5c:d9:a7:44:4d:3e:45:a1:15:d4:8c:ee:f0:0c:2c: 46:c4:dd:63:58:fa:b4:99:b2:da:89:cf:60:bc:01: d5:5e:90:2c:ce:4c:02:26:d1:bc:d2:51:e1:74:57: 27:d3:2e:7b:80:86:30:fa:63:0e:03:de:63:aa:98: 5b:7a:02:80:81:5d:e3:eb:7e:f9:50:be:30:65:16: 96:bd:42:f7:23:52:ac:97:bd:86:a4:5e:14:ec:57: c3:b7:01:4a:94:6d:88:f7:af:b4:2a:5c:e2:b6:bf: ae:68:ed:fe:ad:27:82:9c:9d:bf:af:6f:43:8f:5a: 54:04:53:26:b7:f9:e7:b7:c8:f3:68:54:c5:ef:0f: ac:fb:33:2d:05:9a:23:f3:e8:d3:b5:b4:e0:d4:5e: ed:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:40:22:78:24:0F:52:F5:A1:44:77:28:AD:D6:44:8E:91:37:76:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 4d:a9:f5:a6:1d:58:58:ea:a0:3f:6d:ec:b5:e6:e1:1e:ef:9e: fb:e3:f7:a9:ea:a6:f5:94:fd:9a:8e:d6:20:ff:b9:fe:ec:6b: d7:80:e7:69:d2:d3:cc:96:7d:c3:80:a9:0c:27:c5:74:73:17: aa:2f:13:90:31:89:09:74:bc:da:49:e9:49:0a:63:d8:77:76: a4:63:f9:ed:55:90:3b:db:7a:cc:c4:6d:4a:73:c1:49:93:f5: 2b:6e:64:b3:3c:e7:6d:93:d7:3b:60:e1:48:79:88:2d:b5:ef: fd:6a:99:44:dc:43:a1:e6:9e:cb:a9:92:c0:7d:77:d1:4c:c1: 1c:24:56:8b:8e:08:8c:bd:cd:49:6d:58:62:8e:0e:cb:cf:8b: 84:53:de:de:0e:71:63:36:04:23:6b:8e:43:04:5e:63:19:28: 48:73:f9:02:2e:04:14:3e:b0:54:4b:64:75:0e:f0:39:7a:d2: f6:83:75:30:2f:92:5d:53:56:48:75:b3:a1:cd:66:cf:62:d2: 72:57:20:24:6b:84:4e:3b:a9:2f:7b:e6:b5:49:4d:52:6c:b6: 03:eb:6a:b9:8d:91:cc:15:b5:f6:7c:8a:5c:1d:e7:56:b5:ab: f2:bd:76:73:86:28:00:65:4f:b4:b7:20:74:e8:51:dc:e6:15: 50:d8:cd:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUT2jb8UeVQGkeekLhEQ5BL41LBKYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDA0MTQ5WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YTRjMjQ3YTdmOTkxZjkxOWY0YjA4OTU2NTA1YjBhMWE1 YTNjYmE5YmMzZWM2MDIyYzg4MzVkZTYyY2RjMTc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSJ5ZLZdDfts5XCG8dcq3O/yEOZvLDHWeJQxk30koE1br6 sNpAt4XeTwIKc34IffQVQxXZGH9bjceVGe2Fzd2troaLyMgWSMvTqr3SlrBfDTuh UJyV9om1I4K+RHGId2/izxf1Fq8tUVzZp0RNPkWhFdSM7vAMLEbE3WNY+rSZstqJ z2C8AdVekCzOTAIm0bzSUeF0VyfTLnuAhjD6Yw4D3mOqmFt6AoCBXePrfvlQvjBl Fpa9QvcjUqyXvYakXhTsV8O3AUqUbYj3r7QqXOK2v65o7f6tJ4Kcnb+vb0OPWlQE Uya3+ee3yPNoVMXvD6z7My0FmiPz6NO1tODUXu37AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUVkAieCQPUvWhRHcordZEjpE3dl4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5OTkzNmZmLTIzOTctNGM0Yy1hOGQ2LTk1ZWNmNWFkOTI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hQMAwDQYJKoZIhvcNAQELBQADggEBAE2p9aYdWFjqoD9t7LXm4R7v nvvj96nqpvWU/ZqO1iD/uf7sa9eA52nS08yWfcOAqQwnxXRzF6ovE5AxiQl0vNpJ 6UkKY9h3dqRj+e1VkDvbeszEbUpzwUmT9StuZLM8522T1ztg4Uh5iC217/1qmUTc Q6HmnsupksB9d9FMwRwkVouOCIy9zUltWGKODsvPi4RT3t4OcWM2BCNrjkMEXmMZ KEhz+QIuBBQ+sFRLZHUO8Dl60vaDdTAvkl1TVkh1s6HNZs9i0nJXICRrhE47qS97 5rVJTVJstgPrarmNkcwVtfZ8ilwd51a1q/K9dnOGKABlT7S3IHToUdzmFVDYzbw= -----END CERTIFICATE-----Generated at Tue Jun 17 10:35:40 2025 by rpki-client