$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa File: d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa (raw, json) Hash identifier: jI+Ds8nBh5nDDHPn8jUDdoItTquZdpD4sW8gc3MUM7E= Subject key identifier: 4C:FF:50:7A:81:4B:83:71:88:01:13:4B:92:95:E1:81:8F:72:62:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7617365D7A78AA9479B1B1CCF22810EFE97DAE20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa Signing time: Wed 11 Jun 2025 00:11:46 +0000 ROA not before: Wed 11 Jun 2025 00:11:46 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:17:36:5d:7a:78:aa:94:79:b1:b1:cc:f2:28:10:ef:e9:7d:ae:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:11:46 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=279736dd6bf72ae41cb4f9047de798c14d5f22aed286b36512649b0f0e3ad9cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8e:59:4c:02:7a:a4:c5:37:58:a2:f4:25:29: 80:6d:81:68:d0:87:c9:4c:9c:37:b9:e4:f6:d4:3f: bc:d4:66:2d:22:d4:1e:f2:44:bf:b9:d2:8e:ed:a7: e0:9f:13:ba:6a:1d:3d:c5:28:d3:f0:d3:93:49:d8: 2e:7c:9d:97:3c:25:c5:9d:aa:61:a4:a0:3a:ca:49: 8a:ee:6d:6a:52:ee:a7:ce:48:df:e1:c6:ab:d0:8e: de:74:7b:54:2a:82:da:84:09:2b:47:9c:cf:39:54: e6:df:f7:c6:86:26:e1:53:e8:50:53:03:00:6d:3c: 5d:9d:51:3e:d7:ef:c8:6b:a1:12:5b:5f:94:f1:60: eb:55:64:59:d2:2b:65:b2:d1:f9:6d:3e:e3:b6:5f: ab:a8:1a:88:9a:6c:86:67:fb:12:ca:dd:9a:b7:a0: 32:0e:ac:df:b4:a0:87:7e:ab:ad:4a:8e:24:c3:86: 8c:c7:8a:55:57:9e:b3:0e:cc:2b:23:3b:be:2e:00: 21:dd:46:b2:e6:4a:81:26:31:26:cd:cd:31:df:c4: 17:85:8c:1c:88:2b:0f:02:03:ed:34:92:ab:00:1d: f8:ea:b9:ee:8f:ad:85:78:92:7f:93:35:a1:5b:dd: 3a:51:54:78:5a:2f:65:c0:4a:55:6b:03:a5:6d:01: 59:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:FF:50:7A:81:4B:83:71:88:01:13:4B:92:95:E1:81:8F:72:62:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8a20ddd-dd3f-4259-b041-244eaf7ffe03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:5000::/40 Signature Algorithm: sha256WithRSAEncryption d9:23:49:97:0d:cc:80:01:2f:9d:c0:91:93:5d:f4:6c:2d:c6: 07:ea:b3:7e:99:d3:0e:66:2e:f1:36:de:1b:47:44:44:3f:dd: fd:ad:07:82:0b:2d:1f:f0:b6:2e:7a:e9:7d:1f:91:6f:89:6f: 21:74:05:f9:61:af:82:27:99:78:90:e2:2d:b0:07:38:fe:92: 77:c4:c0:cb:1d:9d:90:36:3d:03:55:47:c9:42:ed:d5:f8:d7: ca:ff:b6:04:20:f0:18:09:48:2e:a9:b8:0b:aa:87:2b:b6:b6: f8:34:dd:7f:02:21:11:8b:7f:d4:4a:de:f8:af:c6:e9:9c:a8: 6d:fa:f3:57:31:58:39:87:97:13:f3:85:7b:1a:38:fc:3c:7d: b8:ed:cb:a6:7f:f2:25:55:35:23:cd:78:ac:ff:3c:4a:c7:47: 96:17:3a:de:b2:83:21:40:fa:a7:c1:ae:41:f6:61:04:88:e3: b0:cc:c9:1c:69:7f:46:91:8b:79:af:95:2c:ca:1a:6a:40:43: e6:95:27:8d:09:40:65:9a:84:46:95:72:1c:6c:12:f9:e9:e8: 75:9a:89:c3:a2:5b:7d:62:48:4d:2b:0a:3a:8a:5c:bd:fb:64: 25:35:d3:f2:cd:34:fe:70:25:ce:23:74:10:84:78:66:8c:a9: a1:d8:fe:66 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdhc2XXp4qpR5sbHM8igQ7+l9riAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAxMTQ2WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzk3MzZkZDZiZjcyYWU0MWNiNGY5MDQ3ZGU3OThjMTRk NWYyMmFlZDI4NmIzNjUxMjY0OWIwZjBlM2FkOWNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVjllMAnqkxTdYovQlKYBtgWjQh8lMnDe55PbUP7zUZi0i 1B7yRL+50o7tp+CfE7pqHT3FKNPw05NJ2C58nZc8JcWdqmGkoDrKSYrubWpS7qfO SN/hxqvQjt50e1QqgtqECStHnM85VObf98aGJuFT6FBTAwBtPF2dUT7X78hroRJb X5TxYOtVZFnSK2Wy0fltPuO2X6uoGoiabIZn+xLK3Zq3oDIOrN+0oId+q61KjiTD hozHilVXnrMOzCsjO74uACHdRrLmSoEmMSbNzTHfxBeFjByIKw8CA+00kqsAHfjq ue6PrYV4kn+TNaFb3TpRVHhaL2XASlVrA6VtAVmXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUTP9QeoFLg3GIARNLkpXhgY9yYj4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4YTIwZGRkLWRkM2YtNDI1OS1iMDQxLTI0NGVhZjdmZmUwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/yUDANBgkqhkiG9w0BAQsFAAOCAQEA2SNJlw3MgAEvncCRk130bC3G B+qzfpnTDmYu8TbeG0dERD/d/a0HggstH/C2LnrpfR+Rb4lvIXQF+WGvgieZeJDi LbAHOP6Sd8TAyx2dkDY9A1VHyULt1fjXyv+2BCDwGAlILqm4C6qHK7a2+DTdfwIh EYt/1Ere+K/G6ZyobfrzVzFYOYeXE/OFexo4/Dx9uO3Lpn/yJVU1I814rP88SsdH lhc63rKDIUD6p8GuQfZhBIjjsMzJHGl/RpGLea+VLMoaakBD5pUnjQlAZZqERpVy HGwS+enodZqJw6JbfWJITSsKOopcvftkJTXT8s00/nAlziN0EIR4Zoypodj+Zg== -----END CERTIFICATE-----Generated at Sat Jun 14 07:00:47 2025 by rpki-client