$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa File: de2acc05-058e-454c-bf61-f70e34b6d2ff.roa (raw, json) Hash identifier: Uph9U4gngkJZQURYTZs25eXkE0+xsGztBY0yM0a0u6g= Subject key identifier: 5A:68:4E:80:0E:F6:73:A7:AF:D3:07:FD:35:9D:92:9B:3F:11:AD:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55C4FDFEBC206743DCC85DD5A3B951FAF25C8006 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa Signing time: Fri 06 Jun 2025 00:11:33 +0000 ROA not before: Fri 06 Jun 2025 00:11:33 +0000 ROA not after: Fri 11 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:4000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:c4:fd:fe:bc:20:67:43:dc:c8:5d:d5:a3:b9:51:fa:f2:5c:80:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 6 00:11:33 2025 GMT Not After : Jul 11 23:59:59 2025 GMT Subject: serialNumber=21cfa4f9575a16901381e2c61c57ef24aa8cf2b45119df841d5278900f629908, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1b:dd:1d:c6:ff:a1:6b:cf:c9:58:16:47:7a: cc:49:10:81:7e:d7:0f:1b:22:ea:be:19:85:5a:e9: 48:09:53:da:24:f1:d3:e6:9e:83:66:3c:27:e0:23: 1f:91:23:4a:3e:5f:03:26:fa:b7:e4:3e:33:03:ad: 1c:fe:81:2b:7b:14:f3:e4:d6:86:b3:52:93:7b:95: ac:c0:19:0d:64:ec:84:05:76:42:69:e3:bf:68:fc: 5e:6d:c4:ea:71:2c:03:a9:1e:5e:a2:d0:de:f5:2f: b7:16:93:75:85:f0:87:8b:f8:f7:88:30:e9:30:40: 23:92:84:87:30:41:e5:a9:59:0b:d6:27:f8:55:7c: d4:b2:9b:32:ba:4d:9b:70:8d:e9:41:f5:ce:f2:bb: 01:c4:aa:7c:ad:fd:60:3f:11:53:0e:86:36:6d:eb: 5b:21:32:f3:6a:91:31:74:a3:16:39:1e:23:1e:71: e2:9a:70:75:c6:0c:cf:c2:50:9a:36:44:b1:b1:07: 71:ec:57:f3:df:15:02:cb:ed:c2:1f:e8:af:00:08: ce:c7:10:19:df:c7:c7:eb:5b:70:0d:db:e9:e7:04: 13:22:a3:fe:42:6c:2a:aa:f7:8c:92:b6:3d:31:31: 9d:8a:a0:d8:98:ac:44:6a:54:a7:3a:9f:62:f3:9f: 13:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:68:4E:80:0E:F6:73:A7:AF:D3:07:FD:35:9D:92:9B:3F:11:AD:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:4000::/39 Signature Algorithm: sha256WithRSAEncryption 70:b5:ab:ef:94:62:a2:67:6f:9d:56:ae:e1:94:53:35:d3:ff: 62:49:8f:f3:78:fc:75:70:2d:a2:96:77:70:3c:d3:8d:0b:7b: 28:10:b2:42:ae:57:87:43:cf:e1:a7:aa:de:88:cd:85:c0:01: 44:94:50:32:19:11:56:6e:5d:fe:e2:3e:1f:43:35:d0:b3:6d: b3:f8:93:f1:49:36:b4:44:01:74:c5:1e:a7:a1:0e:de:05:82: ad:59:fa:66:40:a5:f7:9f:15:9c:af:f0:42:d1:1b:5b:32:eb: 19:38:0c:47:ed:86:2e:87:ab:34:b5:e7:b1:86:68:b8:cc:89: 22:b5:84:ab:cc:0b:15:07:18:45:5c:f3:b5:ed:ce:b2:56:02: 23:c1:85:c2:b3:b8:10:2e:7f:e3:ce:22:55:13:ec:1f:c6:97: 11:10:38:e2:e1:48:87:26:66:ad:d3:68:db:07:21:0b:ee:ce: b8:99:ad:20:e8:f4:45:fa:c5:69:0e:88:c8:bb:a7:21:ac:90: 3f:0f:cb:2b:10:5d:dc:9e:af:83:43:05:55:d4:2a:42:f1:59: cb:11:52:a4:d9:12:af:fa:d3:4e:16:51:00:c7:38:87:c6:39: e5:a0:aa:0b:22:6b:d6:84:12:c8:ef:18:04:14:f7:04:e1:42: c4:34:e2:67 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVcT9/rwgZ0PcyF3Vo7lR+vJcgAYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA2MDAxMTMzWhcNMjUwNzExMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMWNmYTRmOTU3NWExNjkwMTM4MWUyYzYxYzU3ZWYyNGFh OGNmMmI0NTExOWRmODQxZDUyNzg5MDBmNjI5OTA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJG90dxv+ha8/JWBZHesxJEIF+1w8bIuq+GYVa6UgJU9ok 8dPmnoNmPCfgIx+RI0o+XwMm+rfkPjMDrRz+gSt7FPPk1oazUpN7lazAGQ1k7IQF dkJp479o/F5txOpxLAOpHl6i0N71L7cWk3WF8IeL+PeIMOkwQCOShIcwQeWpWQvW J/hVfNSymzK6TZtwjelB9c7yuwHEqnyt/WA/EVMOhjZt61shMvNqkTF0oxY5HiMe ceKacHXGDM/CUJo2RLGxB3HsV/PfFQLL7cIf6K8ACM7HEBnfx8frW3AN2+nnBBMi o/5CbCqq94yStj0xMZ2KoNiYrERqVKc6n2LznxNNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWmhOgA72c6ev0wf9NZ2Smz8RrfgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlMmFjYzA1LTA1OGUtNDU0Yy1iZjYxLWY3MGUzNGI2ZDJmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/2QDANBgkqhkiG9w0BAQsFAAOCAQEAcLWr75RiomdvnVau4ZRTNdP/ YkmP83j8dXAtopZ3cDzTjQt7KBCyQq5Xh0PP4aeq3ojNhcABRJRQMhkRVm5d/uI+ H0M10LNts/iT8Uk2tEQBdMUep6EO3gWCrVn6ZkCl958VnK/wQtEbWzLrGTgMR+2G LoerNLXnsYZouMyJIrWEq8wLFQcYRVzzte3OslYCI8GFwrO4EC5/484iVRPsH8aX ERA44uFIhyZmrdNo2wchC+7OuJmtIOj0RfrFaQ6IyLunIayQPw/LKxBd3J6vg0MF VdQqQvFZyxFSpNkSr/rTThZRAMc4h8Y55aCqCyJr1oQSyO8YBBT3BOFCxDTiZw== -----END CERTIFICATE-----Generated at Sat Jun 14 06:25:14 2025 by rpki-client