$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2f9d226-eaf1-484a-a4df-4eaefc245485.roa File: c2f9d226-eaf1-484a-a4df-4eaefc245485.roa (raw, json) Hash identifier: qjP7wjKCPen+rAxiZn8sgaiWK7feolxXpHc8AMReJ6c= Subject key identifier: DA:28:13:3B:FE:9E:2E:BC:91:37:CD:6D:B3:EB:15:5D:43:BD:F7:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 053E1541BC3DA7EC2BAB679C68D440BEBAE236BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2f9d226-eaf1-484a-a4df-4eaefc245485.roa Signing time: Fri 13 Jun 2025 16:12:00 +0000 ROA not before: Fri 13 Jun 2025 16:12:00 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:80c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:3e:15:41:bc:3d:a7:ec:2b:ab:67:9c:68:d4:40:be:ba:e2:36:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:12:00 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=14c007fc68715881d5bf67792e93ec50bd29263a85010d72ffad9ba4b9cda813, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:57:1d:15:c7:3a:51:37:65:e7:66:05:28:6d: db:7f:47:e6:3a:c7:79:f2:c7:7b:62:59:03:ed:b4: 64:bc:bf:5b:23:fc:6f:b4:82:95:45:af:a4:42:b2: 91:29:95:70:63:18:c3:61:3c:ac:da:dd:3b:fb:aa: 5b:55:96:5f:a7:b8:f6:07:21:b0:d2:4e:28:72:ca: cd:c0:e4:4f:9d:2e:72:77:34:53:a5:52:a2:6d:2c: f2:6a:a8:21:1a:09:6b:0b:dc:26:86:5c:ee:7e:4c: 42:83:ee:14:20:14:de:7f:c5:ee:b9:e8:a7:1d:90: d4:21:e1:9e:6b:b8:3b:5a:8b:c3:8e:32:a0:a7:01: 5e:8d:8a:4b:e0:a6:1e:ba:fc:a1:94:b8:8a:e6:88: 8a:bf:6a:99:59:24:13:ed:af:05:85:19:04:54:80: 6e:f2:f6:16:3b:c4:c8:a3:ee:7e:79:ca:10:ac:fc: 61:4b:60:78:1a:04:06:17:7b:02:d5:74:0e:d4:be: ed:f6:32:f1:b5:09:69:cc:80:5e:21:50:e7:bd:11: 89:8f:c2:3c:c8:90:48:a9:f5:6b:37:a9:ef:03:62: 7d:e4:0d:05:e5:7a:9e:21:ec:77:d2:94:91:de:38: 97:1d:12:e2:47:05:3e:39:2e:eb:87:2d:c9:cf:0a: e3:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:28:13:3B:FE:9E:2E:BC:91:37:CD:6D:B3:EB:15:5D:43:BD:F7:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2f9d226-eaf1-484a-a4df-4eaefc245485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:80c0::/46 Signature Algorithm: sha256WithRSAEncryption b5:36:28:ce:0c:87:c8:11:b2:16:d3:c6:82:aa:6b:f6:80:c9: 49:24:14:4d:7f:7c:fb:1b:6c:72:e7:dd:d8:e3:50:74:19:ba: 0f:08:d9:c9:74:aa:f8:e2:96:e6:85:21:77:ee:e5:7a:69:57: e5:f1:f7:fe:9b:bc:96:ce:1f:ca:14:cf:cd:98:d3:93:ac:f1: 19:a2:12:36:5e:93:fb:0a:0d:b2:bd:de:93:03:e2:f2:ce:3f: 21:bd:c7:5c:13:1a:4f:c9:fe:cf:ef:cb:dd:16:04:a9:b1:ec: d5:7c:43:a0:11:83:ec:49:20:d7:bd:6a:27:19:30:41:47:2a: ba:f0:ca:c1:cb:f3:94:fb:f9:1c:6c:fb:bb:5d:b2:e3:d9:dd: 45:ed:16:20:b3:7a:6f:c2:10:e5:1d:a7:59:f8:d8:a4:3f:c8: 5d:50:0d:ac:6e:6a:11:19:8e:3b:dd:7a:38:29:0f:ff:9d:f5: 70:49:2c:07:4c:72:cd:40:7c:64:f9:63:31:34:eb:c6:e4:0b: 7a:d7:be:15:f5:75:79:d5:26:70:dd:29:be:a4:37:77:c9:14: 4a:2c:86:9f:7a:91:e8:f4:2e:c3:e2:fc:11:79:65:61:64:3f: ef:f2:9d:18:9d:1a:80:55:f7:8c:94:2b:3f:39:d2:dc:39:37: a1:9f:d7:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBT4VQbw9p+wrq2ecaNRAvrriNrwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYxMjAwWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNGMwMDdmYzY4NzE1ODgxZDViZjY3NzkyZTkzZWM1MGJk MjkyNjNhODUwMTBkNzJmZmFkOWJhNGI5Y2RhODEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkVx0VxzpRN2XnZgUobdt/R+Y6x3nyx3tiWQPttGS8v1sj /G+0gpVFr6RCspEplXBjGMNhPKza3Tv7qltVll+nuPYHIbDSTihyys3A5E+dLnJ3 NFOlUqJtLPJqqCEaCWsL3CaGXO5+TEKD7hQgFN5/xe656KcdkNQh4Z5ruDtai8OO MqCnAV6Nikvgph66/KGUuIrmiIq/aplZJBPtrwWFGQRUgG7y9hY7xMij7n55yhCs /GFLYHgaBAYXewLVdA7Uvu32MvG1CWnMgF4hUOe9EYmPwjzIkEip9Ws3qe8DYn3k DQXlep4h7HfSlJHeOJcdEuJHBT45LuuHLcnPCuOZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2igTO/6eLryRN81ts+sVXUO9950wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyZjlkMjI2LWVhZjEtNDg0YS1hNGRmLTRlYWVmYzI0NTQ4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7gMAwDQYJKoZIhvcNAQELBQADggEBALU2KM4Mh8gRshbTxoKqa/aA yUkkFE1/fPsbbHLn3djjUHQZug8I2cl0qvjiluaFIXfu5XppV+Xx9/6bvJbOH8oU z82Y05Os8RmiEjZek/sKDbK93pMD4vLOPyG9x1wTGk/J/s/vy90WBKmx7NV8Q6AR g+xJINe9aicZMEFHKrrwysHL85T7+Rxs+7tdsuPZ3UXtFiCzem/CEOUdp1n42KQ/ yF1QDaxuahEZjjvdejgpD/+d9XBJLAdMcs1AfGT5YzE068bkC3rXvhX1dXnVJnDd Kb6kN3fJFEoshp96kej0LsPi/BF5ZWFkP+/ynRidGoBV94yUKz850tw5N6Gf14A= -----END CERTIFICATE-----Generated at Sat Jun 14 06:33:19 2025 by rpki-client