$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afbb9459-9f83-4359-a830-b3ddaa638879.roa File: afbb9459-9f83-4359-a830-b3ddaa638879.roa (raw, json) Hash identifier: n/P/lWP+xsUKmzkWVnQfnOQEOFVzr+Ygr9Mr6rXWSbY= Subject key identifier: D8:B4:14:EC:EA:29:1C:B7:2C:BF:E3:35:83:AF:85:DB:1A:8B:4B:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 087E7279CDB4FC5B4E2051BA3B612E070E77CD2C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afbb9459-9f83-4359-a830-b3ddaa638879.roa Signing time: Fri 13 Jun 2025 17:11:29 +0000 ROA not before: Fri 13 Jun 2025 17:11:29 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:7e:72:79:cd:b4:fc:5b:4e:20:51:ba:3b:61:2e:07:0e:77:cd:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 17:11:29 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=7c20630e2e7d418f7576c0e645e02fc612611527247b6e4adfa8b1436a8d7431, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:84:d4:1b:5c:21:5a:db:bc:75:35:72:c9:2c: cc:41:5b:3f:30:f0:02:d7:ae:ab:6e:63:59:02:03: ed:5c:1e:c9:35:e6:fb:fc:76:cf:ba:7f:0c:33:c2: f3:03:12:dd:24:60:09:52:d1:2a:02:52:ec:b6:eb: 97:3d:53:b9:43:99:13:fb:38:80:bf:5a:91:2f:c1: dc:ab:94:27:2b:06:1d:ec:fe:86:1c:09:a0:f1:1b: 93:6d:87:19:c9:be:8e:10:cc:27:34:04:06:86:68: 34:40:1f:38:ff:e5:fe:85:ef:af:21:d8:65:77:50: c0:55:f9:47:7f:83:a8:46:dc:e4:ee:98:87:2d:9c: 53:12:b9:3e:98:1f:ca:78:48:64:90:73:ca:64:4e: ab:9f:ec:0a:74:ce:76:41:00:93:4e:cf:a0:d3:8f: 52:9f:11:db:3a:b5:73:84:a0:18:a4:62:82:a9:8b: 96:b0:02:d7:56:f0:48:45:ba:f3:e1:c4:f3:09:7a: d7:0a:8e:0d:26:ac:b7:c6:d7:15:9a:a8:37:3c:f1: a0:77:74:7a:01:88:e8:18:31:98:e1:c4:bf:b5:03: 1e:64:41:de:da:f1:5f:44:e7:b5:76:7a:5f:99:a8: 3c:3b:1e:9a:02:b0:aa:92:5b:b2:b4:75:1c:5b:9b: d1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B4:14:EC:EA:29:1C:B7:2C:BF:E3:35:83:AF:85:DB:1A:8B:4B:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/afbb9459-9f83-4359-a830-b3ddaa638879.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e:4000::/37 Signature Algorithm: sha256WithRSAEncryption 3b:a4:13:ad:ea:bc:d1:b7:53:76:60:b5:56:16:98:ae:3a:d8: 5b:76:ce:25:cf:f0:ed:f9:7a:24:84:c9:c5:3c:11:93:da:e1: 5c:02:06:ba:57:05:88:3c:3a:4e:a0:ef:b2:d6:ba:6c:8e:5a: 7b:ed:68:90:9f:ec:c4:48:4d:4a:58:8b:df:30:37:32:55:47: 79:bc:bd:45:2b:a7:07:3c:20:a4:c2:18:d1:d9:6b:bb:ff:83: 3f:61:d4:1d:42:54:f4:c8:25:61:75:49:ef:96:d9:e5:22:b5: 35:a1:98:b9:88:bf:f9:2f:8a:db:d8:4b:e1:e7:62:fd:df:70: 39:70:22:b3:09:89:37:22:51:6a:f5:7d:9a:24:05:06:66:51: a2:0f:f5:a9:12:b1:d7:82:4d:ad:bf:03:11:59:55:fd:08:b0: fc:73:b5:fb:43:1d:86:c2:fb:51:b0:45:49:01:9e:1d:83:ba: 5b:c6:b7:44:2f:c9:dc:49:92:a0:5e:2a:c3:3e:78:47:41:16: 48:e8:67:2b:82:63:01:95:60:7b:42:89:0a:06:77:ad:ce:15: bc:eb:ed:8f:c1:c5:5e:a2:b1:57:cc:88:bd:25:47:e2:b1:7f: 3d:65:f2:2c:23:11:c8:74:96:52:63:27:0a:18:9a:10:08:82: e6:f3:59:bb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCH5yec20/FtOIFG6O2EuBw53zSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTcxMTI5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzIwNjMwZTJlN2Q0MThmNzU3NmMwZTY0NWUwMmZjNjEy NjExNTI3MjQ3YjZlNGFkZmE4YjE0MzZhOGQ3NDMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+hNQbXCFa27x1NXLJLMxBWz8w8ALXrqtuY1kCA+1cHsk1 5vv8ds+6fwwzwvMDEt0kYAlS0SoCUuy265c9U7lDmRP7OIC/WpEvwdyrlCcrBh3s /oYcCaDxG5NthxnJvo4QzCc0BAaGaDRAHzj/5f6F768h2GV3UMBV+Ud/g6hG3OTu mIctnFMSuT6YH8p4SGSQc8pkTquf7Ap0znZBAJNOz6DTj1KfEds6tXOEoBikYoKp i5awAtdW8EhFuvPhxPMJetcKjg0mrLfG1xWaqDc88aB3dHoBiOgYMZjhxL+1Ax5k Qd7a8V9E57V2el+ZqDw7HpoCsKqSW7K0dRxbm9GvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU2LQU7OopHLcsv+M1g6+F2xqLS0kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmYmI5NDU5LTlmODMtNDM1OS1hODMwLWIzZGRhYTYzODg3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8eQDANBgkqhkiG9w0BAQsFAAOCAQEAO6QTreq80bdTdmC1VhaYrjrY W3bOJc/w7fl6JITJxTwRk9rhXAIGulcFiDw6TqDvsta6bI5ae+1okJ/sxEhNSliL 3zA3MlVHeby9RSunBzwgpMIY0dlru/+DP2HUHUJU9MglYXVJ75bZ5SK1NaGYuYi/ +S+K29hL4edi/d9wOXAiswmJNyJRavV9miQFBmZRog/1qRKx14JNrb8DEVlV/Qiw /HO1+0MdhsL7UbBFSQGeHYO6W8a3RC/J3EmSoF4qwz54R0EWSOhnK4JjAZVge0KJ CgZ3rc4VvOvtj8HFXqKxV8yIvSVH4rF/PWXyLCMRyHSWUmMnChiaEAiC5vNZuw== -----END CERTIFICATE-----Generated at Sat Jun 14 07:00:35 2025 by rpki-client