$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0d353d-c483-4a75-8b4d-9310ac524acd.roa File: ba0d353d-c483-4a75-8b4d-9310ac524acd.roa (raw, json) Hash identifier: jWJKs7EnllKsIxjcS/zEBMRQtpc6yY8ZoB+9nfTz+IM= Subject key identifier: 3F:66:B7:64:32:6E:EF:BC:1A:D8:97:59:C0:80:F4:1C:58:AE:9D:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 291550EB9B62493377843AFF848F335FC0D641D9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0d353d-c483-4a75-8b4d-9310ac524acd.roa Signing time: Tue 10 Jun 2025 16:31:13 +0000 ROA not before: Tue 10 Jun 2025 16:31:13 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:15:50:eb:9b:62:49:33:77:84:3a:ff:84:8f:33:5f:c0:d6:41:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:31:13 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=1aadaedbe80b36cd0494fe9c2c4f68fdf5f1a389f8235e31eda2a070d65dbb46, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:97:95:05:20:47:c6:b7:f9:fb:84:f7:9e:a9: 39:77:cb:5f:b9:1f:10:4e:c7:dc:1a:0e:6c:4d:54: 34:9d:30:e5:8d:0d:c3:61:de:25:0c:03:9e:72:5a: 64:f1:4d:33:07:2b:03:17:c5:3f:38:39:61:a0:f4: 51:92:62:4f:b7:e4:54:c4:fc:0a:a9:6c:cc:d3:a3: 20:3e:e5:39:78:9b:2e:00:79:18:93:66:bd:1c:1d: b6:c5:7b:49:6b:15:a4:d8:aa:f6:3c:db:29:06:60: f3:a4:16:52:a1:25:d4:49:4e:85:ee:9a:68:de:1e: 16:34:98:d8:21:7d:14:c8:8d:50:44:4d:dc:00:70: b9:99:d3:c2:82:f3:c0:c5:5a:43:a4:15:49:42:87: 89:77:a3:9f:a4:84:f8:66:30:82:15:36:f0:fb:d0: cf:9f:fb:e5:31:11:43:68:82:9d:3b:f6:30:3d:23: 41:12:61:2c:d3:ce:cf:d5:4f:13:ab:b2:1d:b1:f5: cc:2b:aa:94:b4:eb:4b:bf:2f:21:01:58:52:a4:93: a1:c3:41:a3:f7:b7:bb:25:14:98:31:83:95:ec:00: 45:42:2b:6b:55:7c:31:ed:63:13:48:37:2b:bf:21: 3d:e9:e0:bb:c5:a6:7b:5b:74:94:13:05:9e:9a:c3: b4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:66:B7:64:32:6E:EF:BC:1A:D8:97:59:C0:80:F4:1C:58:AE:9D:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0d353d-c483-4a75-8b4d-9310ac524acd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:2040::/48 Signature Algorithm: sha256WithRSAEncryption 8f:29:91:01:b0:70:89:c9:89:ff:1b:1e:c0:fe:a7:4d:73:05: bd:db:d6:34:c9:27:9a:e8:45:77:38:9b:9d:fe:e9:38:94:7a: 4d:55:98:9c:37:3e:c2:ed:cc:c8:86:b3:de:f2:f6:a3:80:96: bd:36:63:a3:c2:f6:a1:91:82:1f:f0:28:8f:0b:f9:44:a9:5d: aa:49:93:e0:17:9f:e7:9f:3c:41:6b:34:1c:f3:88:ef:06:6f: d2:92:87:a1:ab:40:24:f5:1e:a8:2c:0b:fc:97:9a:3a:85:fd: 0c:0c:90:ff:94:4b:ac:bd:ee:0e:64:a2:47:23:e2:80:79:31: e5:11:0e:af:30:95:12:77:92:6b:f2:75:d5:a4:d9:44:27:39: 6c:8e:b2:de:a6:ab:c3:2a:7c:33:31:89:cc:3a:93:9b:e3:c6: 44:21:73:7e:c6:8f:32:e9:f9:37:0c:39:05:72:91:6d:86:ad: 7d:9f:ed:d9:a0:2d:a6:93:bc:a6:90:e1:64:8f:75:37:3a:6e: e6:e9:71:89:f4:ed:5c:12:f7:de:6a:97:72:03:04:ec:11:a7: 66:85:eb:e6:13:36:4a:2b:95:52:a8:34:11:51:df:e8:f3:3f: ba:3c:c4:46:40:23:17:f2:cb:b1:4a:73:c7:18:d5:90:09:41: d3:87:f0:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKRVQ65tiSTN3hDr/hI8zX8DWQdkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYzMTEzWhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYWFkYWVkYmU4MGIzNmNkMDQ5NGZlOWMyYzRmNjhmZGY1 ZjFhMzg5ZjgyMzVlMzFlZGEyYTA3MGQ2NWRiYjQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMl5UFIEfGt/n7hPeeqTl3y1+5HxBOx9waDmxNVDSdMOWN DcNh3iUMA55yWmTxTTMHKwMXxT84OWGg9FGSYk+35FTE/AqpbMzToyA+5Tl4my4A eRiTZr0cHbbFe0lrFaTYqvY82ykGYPOkFlKhJdRJToXummjeHhY0mNghfRTIjVBE TdwAcLmZ08KC88DFWkOkFUlCh4l3o5+khPhmMIIVNvD70M+f++UxEUNogp079jA9 I0ESYSzTzs/VTxOrsh2x9cwrqpS060u/LyEBWFKkk6HDQaP3t7slFJgxg5XsAEVC K2tVfDHtYxNINyu/IT3p4LvFpntbdJQTBZ6aw7SjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUP2a3ZDJu77wa2JdZwID0HFiundwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMGQzNTNkLWM0ODMtNGE3NS04YjRkLTkzMTBhYzUyNGFjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hIEAwDQYJKoZIhvcNAQELBQADggEBAI8pkQGwcInJif8bHsD+p01z Bb3b1jTJJ5roRXc4m53+6TiUek1VmJw3PsLtzMiGs97y9qOAlr02Y6PC9qGRgh/w KI8L+USpXapJk+AXn+efPEFrNBzziO8Gb9KSh6GrQCT1HqgsC/yXmjqF/QwMkP+U S6y97g5kokcj4oB5MeURDq8wlRJ3kmvyddWk2UQnOWyOst6mq8MqfDMxicw6k5vj xkQhc37GjzLp+TcMOQVykW2GrX2f7dmgLaaTvKaQ4WSPdTc6bubpcYn07VwS995q l3IDBOwRp2aF6+YTNkorlVKoNBFR3+jzP7o8xEZAIxfyy7FKc8cY1ZAJQdOH8H0= -----END CERTIFICATE-----Generated at Sat Jun 14 07:00:39 2025 by rpki-client