$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa4791-2396-4651-8851-2a7cbc3cb36f.roa File: adaa4791-2396-4651-8851-2a7cbc3cb36f.roa (raw, json) Hash identifier: OARiJO/DLexJBHzdRZ0FivHOd+3KRuYvcILG+e8PzkM= Subject key identifier: F5:B7:A7:60:87:1C:BE:4E:9B:05:A9:E5:BC:6C:A1:84:C6:B4:98:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46F3967B4BED012A2D5889290BFD3FE8C49C06ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa4791-2396-4651-8851-2a7cbc3cb36f.roa Signing time: Tue 10 Jun 2025 16:31:47 +0000 ROA not before: Tue 10 Jun 2025 16:31:47 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:40d0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f3:96:7b:4b:ed:01:2a:2d:58:89:29:0b:fd:3f:e8:c4:9c:06:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:31:47 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=845d102bceb291b8ae443f49e1541167fddf9efa2702ec6d515a40805d06c382, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6c:98:de:af:44:5f:78:10:bd:4b:ab:fc:5b: 29:78:fd:fb:30:ce:5e:88:7a:3a:23:fd:46:e9:de: 70:a7:f3:2e:32:19:73:a3:ab:85:e1:da:9e:dc:9b: d5:e7:b7:f6:97:87:91:44:2f:69:9d:27:49:5c:94: fb:82:c4:c4:e1:4a:db:9e:e0:ec:96:c9:02:87:af: 0d:54:2f:04:87:64:38:74:a9:8a:ec:69:d6:48:79: 74:27:b1:d2:a6:97:5e:32:6b:02:77:b3:0b:7a:1a: ea:d9:74:a4:dd:31:a3:28:2a:c2:77:a7:b3:b0:36: f5:dc:7a:c3:5b:99:5b:e7:b8:8a:d7:6f:de:4b:d5: f6:c3:25:a2:b0:b7:7c:d1:0b:f0:54:47:63:9b:c3: df:0d:e8:0b:88:63:40:27:0e:f6:26:a8:74:0a:19: 03:48:06:05:1d:01:3b:49:9c:34:73:18:ab:35:c5: 61:45:c4:96:37:b6:2c:de:73:06:ec:da:dd:93:e9: e1:45:97:8b:cd:ca:00:e0:12:87:d7:0f:ea:88:fc: 92:0b:15:b4:95:5d:d0:a4:97:82:87:0d:f3:c2:51: 42:7c:9d:bb:18:68:92:85:71:91:e6:da:79:d8:48: 3e:23:a9:82:aa:1c:c4:89:f8:36:43:d1:ef:f7:b5: 41:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B7:A7:60:87:1C:BE:4E:9B:05:A9:E5:BC:6C:A1:84:C6:B4:98:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adaa4791-2396-4651-8851-2a7cbc3cb36f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:40d0::/48 Signature Algorithm: sha256WithRSAEncryption c4:3e:ef:24:5a:5e:cf:a4:cd:3e:7d:33:de:03:00:56:0c:26: 07:d9:61:59:3e:86:e2:e0:89:e6:86:9d:32:4a:7c:59:50:02: 76:29:d5:23:9c:d0:c7:62:e1:f9:ce:da:0e:5e:67:c9:7f:07: c3:ff:bc:67:66:3a:31:57:9a:79:1b:a1:92:5c:96:37:93:4e: e4:68:7b:89:f3:9b:4f:b4:20:d0:35:2b:46:2e:bb:47:b2:b8: 5b:45:00:be:1c:11:53:49:51:72:2e:b8:17:5d:37:3f:56:5b: 79:5f:ec:21:bd:fc:08:34:a3:de:29:52:1c:22:94:6d:f8:08: 02:ed:70:b1:00:04:7e:cf:71:00:69:e8:e8:7e:26:92:82:40: 7e:91:32:13:3b:12:22:a1:2d:80:f2:1e:7f:53:23:ea:5e:c0: 44:7e:09:ef:f8:1a:aa:1a:e1:59:88:3f:c4:aa:3d:af:73:b9: 3d:b3:d8:4d:76:37:0b:71:ed:57:a6:5b:08:d8:f3:74:67:2f: 3e:1b:70:5b:3a:3b:7a:f0:6f:1f:7e:9f:fa:a5:f7:be:aa:b3: 3d:81:98:0c:7a:71:6b:95:6d:31:a7:15:3a:23:d9:f0:fa:3a: 0f:54:c2:a7:56:a9:e3:43:0c:96:75:26:51:76:98:5c:f3:ea: 64:a4:44:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURvOWe0vtASotWIkpC/0/6MScBu0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYzMTQ3WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDVkMTAyYmNlYjI5MWI4YWU0NDNmNDllMTU0MTE2N2Zk ZGY5ZWZhMjcwMmVjNmQ1MTVhNDA4MDVkMDZjMzgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHbJjer0RfeBC9S6v8Wyl4/fswzl6Iejoj/Ubp3nCn8y4y GXOjq4Xh2p7cm9Xnt/aXh5FEL2mdJ0lclPuCxMThStue4OyWyQKHrw1ULwSHZDh0 qYrsadZIeXQnsdKml14yawJ3swt6GurZdKTdMaMoKsJ3p7OwNvXcesNbmVvnuIrX b95L1fbDJaKwt3zRC/BUR2Obw98N6AuIY0AnDvYmqHQKGQNIBgUdATtJnDRzGKs1 xWFFxJY3tizecwbs2t2T6eFFl4vNygDgEofXD+qI/JILFbSVXdCkl4KHDfPCUUJ8 nbsYaJKFcZHm2nnYSD4jqYKqHMSJ+DZD0e/3tUEHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU9benYIccvk6bBanlvGyhhMa0mDMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkYWE0NzkxLTIzOTYtNDY1MS04ODUxLTJhN2NiYzNjYjM2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQNAwDQYJKoZIhvcNAQELBQADggEBAMQ+7yRaXs+kzT59M94DAFYM JgfZYVk+huLgieaGnTJKfFlQAnYp1SOc0Mdi4fnO2g5eZ8l/B8P/vGdmOjFXmnkb oZJcljeTTuRoe4nzm0+0INA1K0Yuu0eyuFtFAL4cEVNJUXIuuBddNz9WW3lf7CG9 /Ag0o94pUhwilG34CALtcLEABH7PcQBp6Oh+JpKCQH6RMhM7EiKhLYDyHn9TI+pe wER+Ce/4Gqoa4VmIP8SqPa9zuT2z2E12Nwtx7VemWwjY83RnLz4bcFs6O3rwbx9+ n/ql976qsz2BmAx6cWuVbTGnFToj2fD6Og9UwqdWqeNDDJZ1JlF2mFzz6mSkRJ0= -----END CERTIFICATE-----Generated at Sat Jun 14 06:49:50 2025 by rpki-client