$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa File: dbdd7149-1b63-485c-91e0-217a5a311a88.roa (raw, json) Hash identifier: Tz+SX9GtvJQM26WpgVogLRUZ9p5K1o9lHwMGd8IYEqc= Subject key identifier: DA:85:16:11:CD:09:8E:EF:7B:EE:95:32:DD:40:C8:E4:3C:5F:A5:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08D5F3F2921C2846817132A32AE153455CEF302F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa Signing time: Wed 11 Jun 2025 00:31:05 +0000 ROA not before: Wed 11 Jun 2025 00:31:05 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:80f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 20 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:d5:f3:f2:92:1c:28:46:81:71:32:a3:2a:e1:53:45:5c:ef:30:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:31:05 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=5a7a84607cde37bea7d875cd00654f1d5a14296dbcde78f494387b5e08700f74, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ed:07:37:e4:c4:f9:a4:62:93:98:8f:4d:bb: d5:fb:a9:f5:0b:9c:47:8c:b5:d5:b6:90:2b:05:fe: bc:ae:44:fa:87:96:92:18:96:76:e6:67:c9:ad:b4: 76:98:64:17:78:38:2c:26:ad:e8:4f:28:9b:a0:3e: 94:63:e1:bc:f1:01:b9:a0:e6:c6:3b:a9:20:f7:b5: a0:a1:66:0e:2a:15:62:eb:9e:1e:7b:c6:6d:d7:e5: e9:07:92:f7:ee:6d:61:87:32:9a:5e:27:f4:f0:ca: 6c:75:67:ed:01:52:c5:52:de:96:01:9a:62:5e:22: fc:43:ff:e4:9e:3a:a9:0c:ad:ce:e6:fa:05:37:23: f0:ee:f1:a2:07:b3:6d:e1:02:eb:b9:5b:60:96:84: f9:41:7b:61:bd:21:80:94:49:72:64:2d:f7:68:88: 04:cc:1d:e3:3f:f6:8d:eb:b5:fc:7a:9d:a9:f3:ed: e8:e0:a1:f5:6a:52:22:92:de:24:d5:ec:35:2a:01: c8:e9:2c:29:07:ea:27:b1:28:42:b8:80:5d:d9:1a: 2e:55:a7:e3:3f:82:ef:8f:61:79:09:55:cb:54:08: 61:4e:0d:8d:c4:f6:48:1e:9b:f0:42:f2:38:ad:9e: e0:03:f8:7d:d9:49:33:e0:34:47:5f:61:8c:ef:f2: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:85:16:11:CD:09:8E:EF:7B:EE:95:32:DD:40:C8:E4:3C:5F:A5:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dbdd7149-1b63-485c-91e0-217a5a311a88.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:80f0::/48 Signature Algorithm: sha256WithRSAEncryption 2a:7e:5f:f5:dd:c8:e8:93:f2:60:15:e3:ca:e3:7f:02:bb:9c: f7:92:a3:64:bb:f2:a3:64:19:23:a4:8d:8e:ab:85:e0:17:16: 02:18:fa:af:28:bf:af:7c:c9:c7:82:8a:2f:31:08:cf:4d:ff: a4:aa:41:da:1b:30:43:64:de:c2:af:f7:a3:3e:07:5f:33:44: 0f:e8:c3:12:54:a8:bf:73:87:b8:e0:c9:69:93:22:bb:02:5c: ef:ef:38:31:e3:ea:3f:e2:29:c9:cc:9c:c2:8d:58:d4:0f:e0: 61:79:9a:22:d5:c2:59:c4:f5:2e:61:95:e3:b6:0d:db:1d:4d: 4f:2e:2f:b6:4f:e9:31:3d:99:de:47:ff:fe:3e:50:94:a9:a4: db:58:8b:68:d0:e8:e5:5a:41:28:aa:e5:4e:2e:09:7a:fa:e0: 0b:fb:1d:90:3b:4f:29:0a:17:36:2e:74:93:c9:c8:ac:8d:8e: de:5e:2b:7c:57:ef:0b:9b:b5:a4:a9:9a:61:fe:d6:5e:a4:e0: 6e:45:c6:3b:c8:e6:36:23:03:d0:97:ba:a2:a8:c0:6c:be:a8: b3:e5:8e:b5:01:77:82:67:a0:d4:c0:bd:49:8d:45:ce:da:54: 52:e8:3d:ec:7a:21:24:85:b8:88:27:38:8e:33:fb:5c:4c:3e: 16:f0:0b:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCNXz8pIcKEaBcTKjKuFTRVzvMC8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAzMTA1WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTdhODQ2MDdjZGUzN2JlYTdkODc1Y2QwMDY1NGYxZDVh MTQyOTZkYmNkZTc4ZjQ5NDM4N2I1ZTA4NzAwZjc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi7Qc35MT5pGKTmI9Nu9X7qfULnEeMtdW2kCsF/ryuRPqH lpIYlnbmZ8mttHaYZBd4OCwmrehPKJugPpRj4bzxAbmg5sY7qSD3taChZg4qFWLr nh57xm3X5ekHkvfubWGHMppeJ/Twymx1Z+0BUsVS3pYBmmJeIvxD/+SeOqkMrc7m +gU3I/Du8aIHs23hAuu5W2CWhPlBe2G9IYCUSXJkLfdoiATMHeM/9o3rtfx6nanz 7ejgofVqUiKS3iTV7DUqAcjpLCkH6iexKEK4gF3ZGi5Vp+M/gu+PYXkJVctUCGFO DY3E9kgem/BC8jitnuAD+H3ZSTPgNEdfYYzv8i2dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2oUWEc0Jju977pUy3UDI5DxfpR0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiZGQ3MTQ5LTFiNjMtNDg1Yy05MWUwLTIxN2E1YTMxMWE4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgPAwDQYJKoZIhvcNAQELBQADggEBACp+X/XdyOiT8mAV48rjfwK7 nPeSo2S78qNkGSOkjY6rheAXFgIY+q8ov698yceCii8xCM9N/6SqQdobMENk3sKv 96M+B18zRA/owxJUqL9zh7jgyWmTIrsCXO/vODHj6j/iKcnMnMKNWNQP4GF5miLV wlnE9S5hleO2DdsdTU8uL7ZP6TE9md5H//4+UJSppNtYi2jQ6OVaQSiq5U4uCXr6 4Av7HZA7TykKFzYudJPJyKyNjt5eK3xX7wubtaSpmmH+1l6k4G5FxjvI5jYjA9CX uqKowGy+qLPljrUBd4JnoNTAvUmNRc7aVFLoPex6ISSFuIgnOI4z+1xMPhbwC5U= -----END CERTIFICATE-----Generated at Thu Jun 19 08:06:57 2025 by rpki-client