$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa File: c2c6afd4-768e-4ed4-82e9-013c34669118.roa (raw, json) Hash identifier: 1MNmceVfiYckZIf7Kuylafp0hwrwhedgQUk6IIcJXr8= Subject key identifier: 90:F0:E6:B4:45:0E:E8:82:F8:DA:1C:6A:B3:29:2C:DC:7D:40:CA:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65752F6150998BF570839B10FE7783A48D4FE028 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa Signing time: Tue 10 Jun 2025 16:21:13 +0000 ROA not before: Tue 10 Jun 2025 16:21:13 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:75:2f:61:50:99:8b:f5:70:83:9b:10:fe:77:83:a4:8d:4f:e0:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:21:13 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=2ba20d78f5c29a3099f6ebdddeb4df724310c8cd63d850be2d3b3321cd3bd23d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e9:e1:42:62:bb:a9:72:c2:76:62:9b:9a:66: 80:ea:bd:50:48:9e:88:19:8e:01:dc:f2:31:22:1b: 3d:72:d1:34:33:b4:0b:62:26:66:91:6f:63:71:b1: 0a:d7:7f:8e:f7:9e:df:f7:35:38:ce:6c:40:83:22: 3e:ba:81:64:10:b2:31:e2:3d:53:70:fb:25:30:9d: b2:63:43:2e:9d:c4:cc:79:28:80:f1:e3:50:cb:3c: 9c:0d:08:ae:3a:2b:c3:fb:fe:93:e9:64:2c:6d:1d: 51:0f:f7:f9:60:d6:2b:88:f3:37:63:6b:8a:c0:45: 3b:7d:91:1b:65:c1:46:de:d3:43:d8:46:bc:e9:67: 0a:2d:dd:d4:c9:84:df:c9:e6:0d:e8:4c:2d:4c:f1: 3f:cb:57:b8:09:1d:71:3b:70:d0:fb:13:3b:e7:08: bc:47:ec:8a:7a:d3:b0:a7:96:1e:26:f1:c6:4c:6b: 2e:1a:d2:65:a0:1d:d9:68:ee:46:10:0c:04:be:f9: 49:bd:02:03:89:65:39:fa:75:6b:b7:2a:e4:6f:72: 59:fa:af:f4:13:86:0d:4d:16:ad:47:33:8d:b2:1b: 09:91:95:f3:a1:51:13:24:51:bc:d0:80:92:ef:42: f1:3b:ad:7b:62:95:41:26:7b:d2:e3:9b:15:e6:9d: e9:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:F0:E6:B4:45:0E:E8:82:F8:DA:1C:6A:B3:29:2C:DC:7D:40:CA:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption a9:91:4b:e4:59:b3:55:89:a2:ed:51:3d:0f:c3:63:f0:20:c3: 40:25:4d:33:97:bb:2b:fb:fa:e8:69:a6:38:2a:e3:99:33:46: 42:2e:79:7d:50:a6:c7:a5:2c:c4:c9:a7:9d:8d:2f:1d:a5:ed: 01:29:f2:3e:7e:b0:1c:93:cb:6a:77:93:57:81:f8:ce:d1:e1: dc:cb:fb:62:ad:99:92:e3:7b:e9:cd:01:fb:48:17:ef:99:fc: b0:f2:fa:c6:53:7a:ab:54:d0:b3:d3:db:c8:dc:31:fc:83:98: 1d:6f:a3:bf:29:0f:5c:ca:50:df:ed:98:11:89:94:f8:7a:95: 68:ad:84:e5:89:cb:89:7d:75:7e:bb:c3:1a:97:8a:d6:13:6f: 38:c6:5e:7e:a0:7f:70:67:88:48:df:67:fd:f7:5d:c8:aa:f5: b7:3b:c7:23:a6:bc:0d:8f:d5:af:37:28:1d:48:c5:03:a7:bc: f2:59:f8:ae:32:29:77:f4:02:40:e2:1b:72:9f:bd:27:14:6e: 0c:8f:9c:a7:9b:0f:d9:61:af:c5:f8:87:ce:d9:ac:8d:81:6b: 59:f7:cd:86:97:09:95:69:68:4d:0d:de:1d:a2:ee:45:20:7f: f4:37:9a:c1:85:91:ff:f6:ba:6b:0c:a6:68:0b:f0:53:63:29: ec:f9:fd:de -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZXUvYVCZi/Vwg5sQ/neDpI1P4CgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTYyMTEzWhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYmEyMGQ3OGY1YzI5YTMwOTlmNmViZGRkZWI0ZGY3MjQz MTBjOGNkNjNkODUwYmUyZDNiMzMyMWNkM2JkMjNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDr6eFCYrupcsJ2YpuaZoDqvVBInogZjgHc8jEiGz1y0TQz tAtiJmaRb2NxsQrXf473nt/3NTjObECDIj66gWQQsjHiPVNw+yUwnbJjQy6dxMx5 KIDx41DLPJwNCK46K8P7/pPpZCxtHVEP9/lg1iuI8zdja4rARTt9kRtlwUbe00PY RrzpZwot3dTJhN/J5g3oTC1M8T/LV7gJHXE7cND7EzvnCLxH7Ip607Cnlh4m8cZM ay4a0mWgHdlo7kYQDAS++Um9AgOJZTn6dWu3KuRvcln6r/QThg1NFq1HM42yGwmR lfOhURMkUbzQgJLvQvE7rXtilUEme9LjmxXmnemZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUkPDmtEUO6IL42hxqsyks3H1AyrUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyYzZhZmQ0LTc2OGUtNGVkNC04MmU5LTAxM2MzNDY2OTExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wMAwDQYJKoZIhvcNAQELBQADggEBAKmRS+RZs1WJou1RPQ/DY/Ag w0AlTTOXuyv7+uhppjgq45kzRkIueX1QpselLMTJp52NLx2l7QEp8j5+sByTy2p3 k1eB+M7R4dzL+2KtmZLje+nNAftIF++Z/LDy+sZTeqtU0LPT28jcMfyDmB1vo78p D1zKUN/tmBGJlPh6lWithOWJy4l9dX67wxqXitYTbzjGXn6gf3BniEjfZ/33Xciq 9bc7xyOmvA2P1a83KB1IxQOnvPJZ+K4yKXf0AkDiG3KfvScUbgyPnKebD9lhr8X4 h87ZrI2Ba1n3zYaXCZVpaE0N3h2i7kUgf/Q3msGFkf/2umsMpmgL8FNjKez5/d4= -----END CERTIFICATE-----Generated at Sat Jun 14 18:53:23 2025 by rpki-client