$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa File: c222f035-1c02-4052-94b2-4fc3e0405321.roa (raw, json) Hash identifier: kZbZGxTmgpin655GWeyheKRaAaUyVwE2HJwvnRXyV7k= Subject key identifier: E3:01:34:F5:36:F4:8A:33:04:4E:24:42:EE:DF:87:B0:74:A9:89:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57349371009A34DB7B7F761BA51B1CC58FD27373 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa Signing time: Sat 14 Jun 2025 00:40:20 +0000 ROA not before: Sat 14 Jun 2025 00:40:20 +0000 ROA not after: Sat 19 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f20:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:34:93:71:00:9a:34:db:7b:7f:76:1b:a5:1b:1c:c5:8f:d2:73:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 14 00:40:20 2025 GMT Not After : Jul 19 23:59:59 2025 GMT Subject: serialNumber=1433305b4a7cb02fbf42653c814d9e69b312be557f7df82c6986079976281cde, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:37:88:ef:55:02:68:d1:f2:46:09:62:d6:2a: 82:64:a9:87:e3:81:46:e8:18:a8:c0:65:63:fb:0c: 2d:51:0f:14:f9:70:0e:56:00:66:ee:73:38:7c:b5: 6c:4b:3f:0d:da:bd:19:1e:61:92:68:8d:80:12:3c: 5a:04:1e:90:8c:41:56:eb:8e:a2:37:71:83:8e:30: d2:13:45:d7:e2:c2:42:e1:b8:4c:5b:cb:15:27:d3: 42:03:8a:82:16:85:c6:b3:0d:2b:d1:ef:54:2a:fe: 2f:59:a5:21:9d:8b:fe:11:e6:04:43:e9:a7:e4:6b: b7:2e:5d:e7:8c:c3:93:24:26:c3:42:47:ac:81:1a: 16:23:9f:13:69:b8:17:22:02:99:90:6f:4e:c7:a8: 43:f6:f1:76:52:13:97:4e:96:55:db:b4:84:7c:c5: da:2d:e9:b4:61:e0:e8:80:9f:57:fb:3d:9a:50:ff: f3:c6:cd:cb:16:71:37:dc:74:19:c4:69:e9:7f:65: aa:00:0d:05:22:e3:56:a9:ff:8b:b3:f2:56:25:a6: e4:97:f2:30:d0:e1:c4:1e:14:da:c6:79:63:ca:c2: a6:7d:41:1a:5a:f4:7d:7b:be:45:98:86:f1:f4:8a: 4d:9f:ff:2c:65:91:91:e0:80:9b:2e:fb:eb:cb:67: 8b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:01:34:F5:36:F4:8A:33:04:4E:24:42:EE:DF:87:B0:74:A9:89:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f20:8000::/36 Signature Algorithm: sha256WithRSAEncryption 2a:83:87:44:0d:ca:0c:90:89:e7:f3:db:a0:b0:1d:60:28:88: 93:a3:cd:a9:d1:73:8d:7a:3f:bc:f9:ed:0b:90:cc:58:a0:bc: d8:d0:d9:91:78:1b:57:a8:a0:3e:df:e7:13:5a:d5:98:00:86: ee:02:f4:67:0a:ee:1a:84:d8:88:d3:c2:1d:d5:af:18:3e:ff: a7:e4:9e:26:b2:96:12:69:a2:0d:9e:d7:eb:a9:0e:45:02:a2: 10:99:85:f6:0b:58:cb:c9:c3:79:fb:32:26:b1:3c:dc:6f:c0: d3:bf:62:13:19:fc:e0:c5:aa:63:64:da:39:ab:c8:09:25:a7: a8:5f:e4:5e:a3:16:10:1a:39:1a:21:fd:26:d4:8c:d2:ae:14: 64:ca:c9:cc:23:f2:46:16:2e:88:7f:0e:0b:26:10:fd:86:2f: 65:d1:49:b7:41:9c:a2:f1:cb:3f:bf:1f:12:bb:e4:aa:c7:89: 14:68:b5:d1:1f:1d:0e:8e:03:c2:2a:c8:50:f8:c6:37:63:a4: 2b:45:b4:ec:75:40:f9:5e:40:e1:08:a4:de:2c:28:ba:b3:b1: 04:1c:12:04:cd:04:1a:37:6d:c1:3b:3e:39:7b:51:9e:37:3b: 95:92:ff:30:ca:4f:89:44:c2:b5:24:47:23:3b:95:54:8d:62: 6d:67:06:5c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVzSTcQCaNNt7f3YbpRscxY/Sc3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE0MDA0MDIwWhcNMjUwNzE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDMzMzA1YjRhN2NiMDJmYmY0MjY1M2M4MTRkOWU2OWIz MTJiZTU1N2Y3ZGY4MmM2OTg2MDc5OTc2MjgxY2RlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2N4jvVQJo0fJGCWLWKoJkqYfjgUboGKjAZWP7DC1RDxT5 cA5WAGbuczh8tWxLPw3avRkeYZJojYASPFoEHpCMQVbrjqI3cYOOMNITRdfiwkLh uExbyxUn00IDioIWhcazDSvR71Qq/i9ZpSGdi/4R5gRD6afka7cuXeeMw5MkJsNC R6yBGhYjnxNpuBciApmQb07HqEP28XZSE5dOllXbtIR8xdot6bRh4OiAn1f7PZpQ //PGzcsWcTfcdBnEael/ZaoADQUi41ap/4uz8lYlpuSX8jDQ4cQeFNrGeWPKwqZ9 QRpa9H17vkWYhvH0ik2f/yxlkZHggJsu++vLZ4tJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4wE09Tb0ijMETiRC7t+HsHSpid0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMjJmMDM1LTFjMDItNDA1Mi05NGIyLTRmYzNlMDQwNTMyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8ggDANBgkqhkiG9w0BAQsFAAOCAQEAKoOHRA3KDJCJ5/PboLAdYCiI k6PNqdFzjXo/vPntC5DMWKC82NDZkXgbV6igPt/nE1rVmACG7gL0ZwruGoTYiNPC HdWvGD7/p+SeJrKWEmmiDZ7X66kORQKiEJmF9gtYy8nDefsyJrE83G/A079iExn8 4MWqY2TaOavICSWnqF/kXqMWEBo5GiH9JtSM0q4UZMrJzCPyRhYuiH8OCyYQ/YYv ZdFJt0GcovHLP78fErvkqseJFGi10R8dDo4DwirIUPjGN2OkK0W07HVA+V5A4Qik 3iwourOxBBwSBM0EGjdtwTs+OXtRnjc7lZL/MMpPiUTCtSRHIzuVVI1ibWcGXA== -----END CERTIFICATE-----Generated at Sat Jun 14 18:57:21 2025 by rpki-client