$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa File: ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa (raw, json) Hash identifier: 74UkpXm1vKDjcsXglk/HpOUs//fMsPoe3usVy9AJNDE= Subject key identifier: 7F:B1:DC:29:37:03:B1:2A:7F:E9:2F:B2:17:FB:80:A9:14:B9:BB:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EEB7042B3C926469FB8A07549E39D3867436830 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa Signing time: Fri 13 Jun 2025 15:00:15 +0000 ROA not before: Fri 13 Jun 2025 15:00:15 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff6:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 17 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:eb:70:42:b3:c9:26:46:9f:b8:a0:75:49:e3:9d:38:67:43:68:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:00:15 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=9cf8ce1d218a2ea5325e364f28a28ef64a755a47b19716c67403e5d1402ece7f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2a:64:97:12:f7:db:d1:63:f5:05:1f:18:49: f2:40:1d:78:62:66:ff:1e:33:90:70:f2:3e:74:ec: de:cb:11:d6:d8:30:35:05:f8:39:79:51:ea:be:89: 7a:fe:71:39:a3:a5:47:fa:bf:ec:1c:f3:9c:8f:43: ee:5f:69:e2:68:16:b0:27:cc:cb:95:71:ec:10:04: 8c:fa:94:37:f7:aa:f6:6a:5d:3e:99:70:8c:da:78: c0:3f:82:8c:e9:46:2f:f7:7e:86:26:38:cc:ca:4e: 92:7f:5b:eb:4a:94:39:a3:7a:01:e4:c8:13:1e:5e: 5f:b0:08:0d:8a:2c:64:16:3f:06:84:ef:f7:eb:8e: 52:4c:bc:39:f5:49:74:b8:47:d4:59:66:47:18:d1: 56:c0:46:10:6c:b5:69:7a:01:b9:a2:61:be:6e:50: b7:63:db:cc:ac:8f:93:5a:db:59:60:b3:d4:e8:6d: e9:5b:38:46:f4:74:8b:cf:c7:2b:e4:f0:e1:08:ba: 70:b5:b8:9d:c8:33:34:29:43:02:38:e5:f1:a4:67: 74:fe:fe:9c:5b:7e:de:8e:63:e6:ca:23:02:23:97: f3:fa:4d:d4:3e:50:5f:db:63:e5:3b:71:f3:71:3f: 45:7a:4e:58:20:f7:b8:f8:3a:c8:fb:d7:29:8a:46: bf:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:B1:DC:29:37:03:B1:2A:7F:E9:2F:B2:17:FB:80:A9:14:B9:BB:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba0ecf03-8344-40b3-b6e9-02cbee7fa1f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:2000::/48 Signature Algorithm: sha256WithRSAEncryption 86:ed:fd:67:6f:28:97:39:57:74:a1:62:16:61:f2:3a:7d:9e: 57:96:3e:13:df:e6:3e:7d:63:63:34:ca:28:8e:b2:d2:5e:26: bd:98:82:90:d5:fd:84:d5:3b:e4:7e:99:37:d6:86:27:9a:28: f9:bb:2e:80:48:fc:ff:b8:98:8d:bd:86:a7:8c:76:08:1d:f4: 7a:86:1d:1f:ea:96:74:6c:29:99:25:96:7c:30:c2:70:36:af: fe:2f:12:33:c0:28:2c:4b:18:71:91:d4:2b:dd:77:2c:db:33: fc:ff:19:60:c8:d0:e1:7e:0b:a5:68:e5:c7:25:42:bd:cf:4a: 3c:20:95:e2:56:73:17:42:ad:c4:17:9e:e7:ee:25:14:46:62: 39:5c:9c:d1:d9:96:93:b5:1d:69:eb:50:60:2f:e6:61:c6:00: 05:54:4d:9e:08:80:df:4a:64:70:00:d0:60:f2:ff:e8:3f:9f: 07:a1:fc:c4:cb:17:a9:45:48:b7:2c:1f:2c:99:e4:ec:6d:3c: f4:38:ac:bc:b4:43:cc:21:67:18:50:eb:eb:26:91:aa:01:91: ab:55:84:06:07:e3:f2:1a:38:54:de:21:65:4b:f8:a8:4e:f2: 71:62:5a:ff:b8:4c:77:cf:71:bc:0f:fc:7c:94:ce:88:38:4a: 04:87:58:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULutwQrPJJkafuKB1SeOdOGdDaDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUwMDE1WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Y2Y4Y2UxZDIxOGEyZWE1MzI1ZTM2NGYyOGEyOGVmNjRh NzU1YTQ3YjE5NzE2YzY3NDAzZTVkMTQwMmVjZTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsKmSXEvfb0WP1BR8YSfJAHXhiZv8eM5Bw8j507N7LEdbY MDUF+Dl5Ueq+iXr+cTmjpUf6v+wc85yPQ+5faeJoFrAnzMuVcewQBIz6lDf3qvZq XT6ZcIzaeMA/gozpRi/3foYmOMzKTpJ/W+tKlDmjegHkyBMeXl+wCA2KLGQWPwaE 7/frjlJMvDn1SXS4R9RZZkcY0VbARhBstWl6AbmiYb5uULdj28ysj5Na21lgs9To belbOEb0dIvPxyvk8OEIunC1uJ3IMzQpQwI45fGkZ3T+/pxbft6OY+bKIwIjl/P6 TdQ+UF/bY+U7cfNxP0V6Tlgg97j4Osj71ymKRr8RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf7HcKTcDsSp/6S+yF/uAqRS5u5IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMGVjZjAzLTgzNDQtNDBiMy1iNmU5LTAyY2JlZTdmYTFmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2IAAwDQYJKoZIhvcNAQELBQADggEBAIbt/WdvKJc5V3ShYhZh8jp9 nleWPhPf5j59Y2M0yiiOstJeJr2YgpDV/YTVO+R+mTfWhieaKPm7LoBI/P+4mI29 hqeMdggd9HqGHR/qlnRsKZkllnwwwnA2r/4vEjPAKCxLGHGR1CvddyzbM/z/GWDI 0OF+C6Vo5cclQr3PSjwgleJWcxdCrcQXnufuJRRGYjlcnNHZlpO1HWnrUGAv5mHG AAVUTZ4IgN9KZHAA0GDy/+g/nweh/MTLF6lFSLcsHyyZ5OxtPPQ4rLy0Q8whZxhQ 6+smkaoBkatVhAYH4/IaOFTeIWVL+KhO8nFiWv+4THfPcbwP/HyUzog4SgSHWEU= -----END CERTIFICATE-----Generated at Mon Jun 16 11:56:32 2025 by rpki-client