$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa File: b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa (raw, json) Hash identifier: bXz2Lqzx9EmBaD++1BouCl0a5qiWw0v5G7F6jIuGbvU= Subject key identifier: DE:CB:7A:0B:80:EE:42:97:79:18:0D:06:EF:6C:45:07:D6:B5:FE:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 322D429BE775238B9A099E3EC64FEF62243071DF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa Signing time: Wed 11 Jun 2025 00:40:27 +0000 ROA not before: Wed 11 Jun 2025 00:40:27 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:2d:42:9b:e7:75:23:8b:9a:09:9e:3e:c6:4f:ef:62:24:30:71:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:40:27 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=16dd680b06f0361d8f6005d5890ff040e9cad8df3ff967c50d2ee2ef3765498c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4f:76:68:72:eb:42:80:c3:4d:3e:db:70:db: 73:3b:5b:92:38:d7:8c:88:b9:d6:5b:ed:db:76:30: 58:2e:c0:8a:9a:fc:a5:26:c5:05:26:6c:c9:6f:32: 6f:c2:0a:f4:94:13:ef:c0:bc:2c:18:8f:1f:aa:f9: a5:95:2a:a9:6e:f8:c2:68:f4:10:95:25:76:0f:0c: 9a:f1:b9:de:fc:b9:84:37:bc:19:f5:99:f1:60:69: c7:45:11:3e:25:a5:da:b8:04:38:bc:54:df:ce:93: f2:87:a0:d6:a4:db:68:f9:2d:4e:ad:53:1f:36:cb: 69:05:18:80:60:81:74:9d:39:e1:c4:c9:1b:76:d1: c2:db:50:ff:2c:6a:42:87:b5:d8:34:14:33:4e:ec: 66:81:65:22:4a:ed:5f:fc:c0:19:48:ed:2e:04:0a: ed:52:00:3c:25:dc:d3:27:62:73:d8:6d:b4:aa:0b: c4:22:29:66:a0:15:3f:ca:e7:6f:1f:98:73:d1:74: 1c:0c:27:e8:c5:2f:a1:bd:80:e6:38:67:66:79:70: 8f:f0:18:35:a2:87:28:53:92:5a:73:fc:a2:94:a3: 3b:c6:7c:70:47:e4:39:aa:df:60:25:46:de:ce:10: 98:76:07:67:e8:3b:11:53:69:ee:89:a7:6f:a2:76: 14:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:CB:7A:0B:80:EE:42:97:79:18:0D:06:EF:6C:45:07:D6:B5:FE:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:2000::/40 Signature Algorithm: sha256WithRSAEncryption 05:d4:f5:48:42:92:d6:5d:f7:83:5e:c5:67:d2:07:95:bf:32: e5:38:aa:b5:98:f9:9a:5b:fd:4f:80:ee:73:c6:2e:25:9e:91: 92:79:64:47:4a:5c:a3:5c:9b:e9:0f:76:ab:2c:61:bc:8a:16: ff:29:41:f7:9d:42:c0:93:73:ee:4a:18:bf:39:b8:db:79:f3: d1:56:cf:09:5f:f3:ea:a9:ed:b8:a0:d2:19:ff:64:9b:f3:71: 54:4b:ba:02:b7:59:53:31:79:a5:48:83:9c:ea:d0:a8:ae:56: 3b:4a:6d:1f:43:d7:c9:56:2e:2a:7a:48:09:28:28:05:59:c3: 5b:60:59:37:ab:60:88:15:2e:c4:a2:0f:38:96:b8:28:32:6b: 0d:92:81:a0:54:52:cd:35:56:fe:d8:73:fa:31:93:5b:97:b4: 2e:e9:c8:61:1d:fe:55:0f:4a:cd:9c:c1:da:6e:92:ab:a8:6e: d5:c6:98:3e:b5:67:b3:43:a0:f5:56:5e:16:e4:af:bd:be:71: a4:a5:24:48:52:34:77:d7:c8:3d:d2:58:bf:99:6c:bb:07:43: eb:69:96:5e:ff:71:15:f8:9a:20:a4:82:f1:44:8a:af:be:b5: 69:66:3e:dc:86:9d:46:75:f4:fd:47:e1:e6:94:26:59:70:d6: 0a:36:b5:70 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMi1Cm+d1I4uaCZ4+xk/vYiQwcd8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDA0MDI3WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNmRkNjgwYjA2ZjAzNjFkOGY2MDA1ZDU4OTBmZjA0MGU5 Y2FkOGRmM2ZmOTY3YzUwZDJlZTJlZjM3NjU0OThjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwT3ZocutCgMNNPttw23M7W5I414yIudZb7dt2MFguwIqa /KUmxQUmbMlvMm/CCvSUE+/AvCwYjx+q+aWVKqlu+MJo9BCVJXYPDJrxud78uYQ3 vBn1mfFgacdFET4lpdq4BDi8VN/Ok/KHoNak22j5LU6tUx82y2kFGIBggXSdOeHE yRt20cLbUP8sakKHtdg0FDNO7GaBZSJK7V/8wBlI7S4ECu1SADwl3NMnYnPYbbSq C8QiKWagFT/K528fmHPRdBwMJ+jFL6G9gOY4Z2Z5cI/wGDWihyhTklpz/KKUozvG fHBH5Dmq32AlRt7OEJh2B2foOxFTae6Jp2+idhR7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3st6C4DuQpd5GA0G72xFB9a1/oUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxZTY4ZDZkLTY4MjMtNDUwMC1hYTk0LWJmMWE4MjRhOThmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//IDANBgkqhkiG9w0BAQsFAAOCAQEABdT1SEKS1l33g17FZ9IHlb8y 5TiqtZj5mlv9T4Duc8YuJZ6RknlkR0pco1yb6Q92qyxhvIoW/ylB951CwJNz7koY vzm423nz0VbPCV/z6qntuKDSGf9km/NxVEu6ArdZUzF5pUiDnOrQqK5WO0ptH0PX yVYuKnpICSgoBVnDW2BZN6tgiBUuxKIPOJa4KDJrDZKBoFRSzTVW/thz+jGTW5e0 LunIYR3+VQ9KzZzB2m6Sq6hu1caYPrVns0Og9VZeFuSvvb5xpKUkSFI0d9fIPdJY v5lsuwdD62mWXv9xFfiaIKSC8USKr761aWY+3IadRnX0/Ufh5pQmWXDWCja1cA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:44:18 2025 by rpki-client