$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa File: abba2545-31ab-4828-b5fd-dd228d23ed7a.roa (raw, json) Hash identifier: WUDj7wpxEaf42GU+IGHFmgh/oolqNm3hQCw9Yx8wBIc= Subject key identifier: 52:7D:D7:31:0B:ED:66:5E:C2:C4:17:66:CB:CA:3F:6E:0B:E2:A8:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27903F006708C30B8A3F278EA739CC1B0917365C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa Signing time: Tue 10 Jun 2025 17:01:35 +0000 ROA not before: Tue 10 Jun 2025 17:01:35 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:90:3f:00:67:08:c3:0b:8a:3f:27:8e:a7:39:cc:1b:09:17:36:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 17:01:35 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=b1b64652a3c66a57dd438d498a0da84319c8b50186b1f74de16fbbfc74d73a92, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:48:1c:a7:a3:dd:54:7b:ea:39:51:ea:11:43: 11:67:0f:35:6d:b7:a9:87:18:e4:97:7a:02:e9:37: 79:12:63:46:48:71:43:56:33:d6:6f:80:7e:c9:8c: 8d:f5:44:ad:1a:8f:53:de:8a:7e:b0:f0:fc:76:a7: 65:62:3e:51:ca:2c:74:d7:1c:d2:c0:b6:0a:e3:c7: ea:db:68:6b:e4:18:93:9c:11:0a:c3:28:32:b3:64: 2d:6d:9f:60:4a:6a:d5:ac:da:85:ec:e1:e7:ca:62: 2c:2e:db:c7:b5:99:82:db:49:3a:f0:5a:30:84:f8: 51:b5:fb:f1:66:a4:3a:38:9f:05:ff:ab:e8:3e:9d: 3a:7f:e5:a1:a4:2d:a9:7c:8b:33:e2:ae:e2:f0:d5: 66:49:40:31:e8:d0:70:c9:03:ce:1c:70:c1:bc:5e: 7f:67:4f:56:5e:e8:d2:93:89:bb:12:a2:b2:db:d0: 59:a2:09:4c:da:f4:09:05:2e:c1:5e:0d:fc:46:08: e3:f4:81:1b:e6:87:88:ad:f1:cb:0d:51:80:53:5a: c2:c3:8f:12:43:3c:f0:a3:12:8d:fc:de:3d:47:2b: c8:1f:b8:18:e9:8d:44:1e:27:a0:96:68:8e:ec:95: d8:0b:9a:65:2b:eb:f9:38:e3:da:4c:ff:27:b8:b8: 0f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:7D:D7:31:0B:ED:66:5E:C2:C4:17:66:CB:CA:3F:6E:0B:E2:A8:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8140::/48 Signature Algorithm: sha256WithRSAEncryption c1:fa:2d:f6:3e:4f:5e:23:a7:07:6e:46:cd:d3:8d:f5:1e:ec: 22:b1:4b:9d:66:de:74:b7:f5:80:a7:d1:37:90:d7:43:c5:5c: a6:47:e3:ec:2c:30:c4:ab:76:7a:77:ad:eb:8d:9e:74:35:e5: 9b:57:53:6b:ef:83:40:d7:88:b5:14:ba:63:9c:c2:f4:6b:24: 25:50:26:84:6e:16:dd:7e:a9:d2:66:c4:1a:cc:00:c8:77:16: d9:58:86:72:a0:a7:21:62:b8:9c:30:e3:ff:6f:78:05:24:24: fe:03:95:14:d4:cc:f7:26:68:c5:eb:bc:ad:4e:0c:c4:a4:a7: 94:65:4c:25:2f:a9:01:1f:64:72:92:c8:7e:87:76:79:98:10: 90:38:af:16:67:99:32:e0:04:92:dd:e7:4a:03:00:b8:c6:0f: af:cb:77:b3:f2:fd:c4:bb:e4:d0:74:3d:23:b1:03:ae:f2:77: 8f:65:3b:cf:af:4d:0d:a4:6a:7c:a5:05:ff:76:fc:bf:de:3e: c8:ba:2e:6f:f4:7c:cf:33:ca:9c:9a:d1:d3:8d:9d:55:b3:56: 77:87:6f:84:ad:b7:48:75:8c:8e:a8:62:e0:12:4b:d0:b6:4b: 4b:40:ff:28:4f:f6:2b:de:69:28:52:65:d1:0b:da:2a:4f:01: 16:2c:4b:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ5A/AGcIwwuKPyeOpznMGwkXNlwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTcwMTM1WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMWI2NDY1MmEzYzY2YTU3ZGQ0MzhkNDk4YTBkYTg0MzE5 YzhiNTAxODZiMWY3NGRlMTZmYmJmYzc0ZDczYTkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvSByno91Ue+o5UeoRQxFnDzVtt6mHGOSXegLpN3kSY0ZI cUNWM9ZvgH7JjI31RK0aj1Pein6w8Px2p2ViPlHKLHTXHNLAtgrjx+rbaGvkGJOc EQrDKDKzZC1tn2BKatWs2oXs4efKYiwu28e1mYLbSTrwWjCE+FG1+/FmpDo4nwX/ q+g+nTp/5aGkLal8izPiruLw1WZJQDHo0HDJA84ccMG8Xn9nT1Ze6NKTibsSorLb 0FmiCUza9AkFLsFeDfxGCOP0gRvmh4it8csNUYBTWsLDjxJDPPCjEo383j1HK8gf uBjpjUQeJ6CWaI7sldgLmmUr6/k449pM/ye4uA+HAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUn3XMQvtZl7CxBdmy8o/bgviqHowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiYmEyNTQ1LTMxYWItNDgyOC1iNWZkLWRkMjI4ZDIzZWQ3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gUAwDQYJKoZIhvcNAQELBQADggEBAMH6LfY+T14jpwduRs3TjfUe 7CKxS51m3nS39YCn0TeQ10PFXKZH4+wsMMSrdnp3reuNnnQ15ZtXU2vvg0DXiLUU umOcwvRrJCVQJoRuFt1+qdJmxBrMAMh3FtlYhnKgpyFiuJww4/9veAUkJP4DlRTU zPcmaMXrvK1ODMSkp5RlTCUvqQEfZHKSyH6HdnmYEJA4rxZnmTLgBJLd50oDALjG D6/Ld7Py/cS75NB0PSOxA67yd49lO8+vTQ2kanylBf92/L/ePsi6Lm/0fM8zypya 0dONnVWzVneHb4Stt0h1jI6oYuASS9C2S0tA/yhP9iveaShSZdEL2ipPARYsS4A= -----END CERTIFICATE-----Generated at Sun Jun 15 08:40:24 2025 by rpki-client