$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977eb9d-099b-4d38-9530-e53860d229d8.roa File: c977eb9d-099b-4d38-9530-e53860d229d8.roa (raw, json) Hash identifier: p0uhB27q7BTT8lXKZyZS6b6QYy6G7mJUj0yrjBCWilw= Subject key identifier: 4B:B9:28:88:75:74:79:33:0B:2F:45:D3:B7:DF:CA:7D:FA:0A:C9:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16D7F1FFD167773F588CFC49703DE708096D28BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977eb9d-099b-4d38-9530-e53860d229d8.roa Signing time: Fri 13 Jun 2025 15:30:29 +0000 ROA not before: Fri 13 Jun 2025 15:30:29 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:3440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:d7:f1:ff:d1:67:77:3f:58:8c:fc:49:70:3d:e7:08:09:6d:28:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:30:29 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=e60e6bcab7098b94a3d38e3bfa7142737148c37990972280155a91f0ae3d20e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b4:65:ce:8b:c3:de:7b:53:7d:c5:c7:46:88: f9:8d:00:19:9b:f2:b6:cb:6e:87:44:8d:4b:06:3b: 5d:5c:87:81:81:d9:1a:3c:9f:c9:bc:f0:7d:68:90: 65:b7:86:27:8b:65:53:cc:89:f8:88:d6:a3:65:fc: f6:a9:bb:5f:7b:97:37:6c:a2:b4:19:a1:4a:77:e3: 84:3f:bd:fb:90:e2:18:ca:d3:af:44:4b:d9:7f:5b: 13:d0:d8:c1:03:4e:c2:d6:40:23:6b:49:13:5b:29: 32:b7:cd:20:58:b5:9b:c7:7b:35:2e:9e:dd:ab:1d: a8:df:f8:04:37:6d:5c:04:5c:26:d2:20:d8:3d:92: c0:88:cb:eb:2e:a2:24:ee:58:fc:12:3f:2d:f1:e8: a3:0b:e7:da:e6:2f:d3:0d:bb:af:6c:52:6e:16:39: 85:98:8e:20:04:4e:86:cb:12:f6:3a:24:b1:8b:74: 4a:b1:bc:c5:8c:e6:21:65:6c:5e:14:b5:d2:11:32: 47:5e:fb:d1:a1:36:e9:64:97:04:df:14:8c:0c:d6: 50:cd:2a:23:99:f7:a3:c7:7d:ac:f8:06:55:3a:21: fe:eb:bf:00:6d:d5:c8:51:f6:f3:e8:2d:85:c8:cc: c1:22:50:e1:ee:3f:25:10:51:b7:8b:62:af:4d:ee: a2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:B9:28:88:75:74:79:33:0B:2F:45:D3:B7:DF:CA:7D:FA:0A:C9:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977eb9d-099b-4d38-9530-e53860d229d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:3440::/48 Signature Algorithm: sha256WithRSAEncryption 68:df:13:2e:cf:32:9d:4a:65:0f:83:df:b8:fb:15:3f:0a:b3: c7:3b:41:fe:f9:23:f7:ad:66:43:8f:b6:88:06:51:a2:ce:96: 7c:2b:8f:e9:f7:0e:4d:10:dc:cb:21:9c:88:ce:d9:a8:9a:d6: 3b:d8:8b:be:67:95:ce:4b:d0:1f:5b:27:b8:9a:ab:b5:b7:f6: eb:bb:e6:10:ae:f9:42:d8:45:f9:53:a3:11:05:8e:db:b6:37: 1f:dc:6e:9b:a6:ee:88:81:c9:be:4a:7f:2a:8f:03:f4:6a:d1: 16:d6:8f:35:b1:1d:1c:fe:b3:53:fc:94:2a:b8:46:0e:93:4e: 91:fb:f4:d8:aa:89:d9:22:63:9d:3c:c5:12:3d:3e:bf:2a:ad: 4c:10:4d:74:0d:c3:0a:1c:62:5a:85:c1:ec:24:73:ae:bd:f5: 3b:70:c7:9e:1a:ff:40:3b:50:3e:ec:dd:a7:a5:c1:ce:0f:b2: 78:38:c7:15:9e:21:f6:32:b6:4f:5a:ee:91:a9:7b:63:92:95: c2:ea:c3:5c:57:2c:53:3c:d5:ff:94:1e:5b:5b:42:46:ba:c8: c5:32:d0:f3:64:0f:c7:8b:f5:45:81:ff:01:6b:9b:87:7f:61: 55:dc:39:f8:6e:87:21:b8:44:10:3e:2b:27:ff:a3:0f:44:3d: e0:b2:b8:c8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFtfx/9Fndz9YjPxJcD3nCAltKL8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUzMDI5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjBlNmJjYWI3MDk4Yjk0YTNkMzhlM2JmYTcxNDI3Mzcx NDhjMzc5OTA5NzIyODAxNTVhOTFmMGFlM2QyMGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4tGXOi8Pee1N9xcdGiPmNABmb8rbLbodEjUsGO11ch4GB 2Ro8n8m88H1okGW3hieLZVPMifiI1qNl/Papu197lzdsorQZoUp344Q/vfuQ4hjK 069ES9l/WxPQ2MEDTsLWQCNrSRNbKTK3zSBYtZvHezUunt2rHajf+AQ3bVwEXCbS INg9ksCIy+suoiTuWPwSPy3x6KML59rmL9MNu69sUm4WOYWYjiAETobLEvY6JLGL dEqxvMWM5iFlbF4UtdIRMkde+9GhNulklwTfFIwM1lDNKiOZ96PHfaz4BlU6If7r vwBt1chR9vPoLYXIzMEiUOHuPyUQUbeLYq9N7qLVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS7koiHV0eTMLL0XTt9/KffoKyYQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NzdlYjlkLTA5OWItNGQzOC05NTMwLWU1Mzg2MGQyMjlkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8ANEAwDQYJKoZIhvcNAQELBQADggEBAGjfEy7PMp1KZQ+D37j7FT8K s8c7Qf75I/etZkOPtogGUaLOlnwrj+n3Dk0Q3MshnIjO2aia1jvYi75nlc5L0B9b J7iaq7W39uu75hCu+ULYRflToxEFjtu2Nx/cbpum7oiByb5KfyqPA/Rq0RbWjzWx HRz+s1P8lCq4Rg6TTpH79NiqidkiY508xRI9Pr8qrUwQTXQNwwocYlqFwewkc669 9Ttwx54a/0A7UD7s3aelwc4Psng4xxWeIfYytk9a7pGpe2OSlcLqw1xXLFM81f+U HltbQka6yMUy0PNkD8eL9UWB/wFrm4d/YVXcOfhuhyG4RBA+Kyf/ow9EPeCyuMg= -----END CERTIFICATE-----Generated at Sat Jun 14 18:51:13 2025 by rpki-client