$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f545cb29-8814-4cd2-8474-142d37f94263.roa File: f545cb29-8814-4cd2-8474-142d37f94263.roa (raw, json) Hash identifier: sA53PmteDDs4HGUPAO/JVDfLVNy8hEhSzyoofShfYBM= Subject key identifier: 92:92:B5:B3:DF:71:60:CF:CD:32:EB:FD:55:5C:DE:10:70:75:DF:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66CE570C8D43216D34D66E113038441AF6D39A19 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f545cb29-8814-4cd2-8474-142d37f94263.roa Signing time: Fri 13 Jun 2025 16:41:32 +0000 ROA not before: Fri 13 Jun 2025 16:41:32 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f12::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 19 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:ce:57:0c:8d:43:21:6d:34:d6:6e:11:30:38:44:1a:f6:d3:9a:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:41:32 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=75bf01c128b6da3776ec18f289ad74f91bef3ce9425f4cbd910d0fa8ead6c57f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:77:a3:87:50:b9:44:00:6a:b7:fb:b7:ae:03: 22:17:88:60:f7:ea:06:64:6e:e8:61:e8:ca:87:1a: 97:7a:81:8d:dd:e4:99:9b:53:79:7d:5e:26:5c:33: 24:86:75:7e:6f:25:fc:ac:95:90:32:0f:64:74:7c: db:72:4a:0f:3d:84:9d:9b:c7:6a:20:71:a1:74:ce: 57:9e:7b:13:08:74:86:12:da:4a:ed:c6:82:59:75: 95:66:59:a7:0b:2a:cc:f0:04:31:8a:ae:c7:63:5c: ee:ae:6d:af:a5:f6:c1:36:a9:55:b3:63:fa:52:b4: 32:b4:8b:c7:38:e2:d0:d4:06:6c:41:00:d6:09:49: 8c:6b:04:fd:ab:53:35:28:4d:67:a5:dd:40:18:db: 73:bf:cb:84:3e:d3:7d:ec:9a:c3:9b:ff:de:a3:7f: 46:1b:0f:c7:c8:22:2b:9a:32:39:3d:03:bf:6a:bc: 9d:0c:95:27:f7:dd:70:b5:48:f9:06:1a:b6:ae:80: 14:cb:3f:9b:8a:14:7e:1b:d8:42:26:fe:db:48:14: 88:31:6a:be:06:b8:e9:ea:57:ee:7f:02:79:eb:2b: eb:16:13:1f:51:07:1c:b5:f7:98:4c:65:fb:5f:52: 33:4d:f2:d6:17:e7:02:ef:d0:14:0b:ea:68:48:e9: 43:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:92:B5:B3:DF:71:60:CF:CD:32:EB:FD:55:5C:DE:10:70:75:DF:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f545cb29-8814-4cd2-8474-142d37f94263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12::/38 Signature Algorithm: sha256WithRSAEncryption 3a:bc:e0:84:90:89:42:60:23:f6:8f:0c:dc:a4:85:38:22:97: 12:8c:c4:43:ba:49:ba:60:61:67:d0:50:d8:99:41:30:d0:41: 8f:74:31:a3:43:b9:97:ad:d9:e4:f3:65:20:77:76:20:c0:5e: 92:1d:0f:3a:a4:01:fb:1d:55:a2:7b:99:a2:3d:01:c3:c1:61: 84:61:c4:3d:ca:e1:34:38:fc:21:78:72:ac:63:b6:3f:4f:34: 60:3a:43:9e:7f:b7:d4:f3:90:5e:68:5b:78:31:6f:72:69:42: d7:0b:f4:a4:cb:ca:3f:a0:c7:25:0f:d0:dc:9d:09:d6:07:e2: e5:17:8c:58:fb:67:fb:06:79:38:8f:09:6b:f3:99:59:e8:e7: 35:b0:ee:2e:bc:8b:d6:99:be:1e:ad:4b:26:98:72:33:25:03: 1d:1b:5a:57:5d:1e:21:32:2d:90:af:bd:37:89:5b:5f:35:9b: 9d:3e:bf:d6:25:ab:ca:07:2a:9c:fd:2a:3b:49:1b:f1:89:ed: b7:5b:9d:c9:be:de:e9:8b:d7:a0:97:d1:63:f7:e3:76:a5:d9: 8b:98:f4:88:77:ca:13:ca:64:f7:cb:b5:ac:22:7d:b2:24:ce: 86:d0:45:08:97:45:a9:bf:81:6e:82:b7:fc:65:24:02:54:3d: 52:b3:ba:76 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZs5XDI1DIW001m4RMDhEGvbTmhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTY0MTMyWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NWJmMDFjMTI4YjZkYTM3NzZlYzE4ZjI4OWFkNzRmOTFi ZWYzY2U5NDI1ZjRjYmQ5MTBkMGZhOGVhZDZjNTdmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5d6OHULlEAGq3+7euAyIXiGD36gZkbuhh6MqHGpd6gY3d 5JmbU3l9XiZcMySGdX5vJfyslZAyD2R0fNtySg89hJ2bx2ogcaF0zleeexMIdIYS 2krtxoJZdZVmWacLKszwBDGKrsdjXO6uba+l9sE2qVWzY/pStDK0i8c44tDUBmxB ANYJSYxrBP2rUzUoTWel3UAY23O/y4Q+033smsOb/96jf0YbD8fIIiuaMjk9A79q vJ0MlSf33XC1SPkGGraugBTLP5uKFH4b2EIm/ttIFIgxar4GuOnqV+5/AnnrK+sW Ex9RBxy195hMZftfUjNN8tYX5wLv0BQL6mhI6UNzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkpK1s99xYM/NMuv9VVzeEHB13x0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y1NDVjYjI5LTg4MTQtNGNkMi04NDc0LTE0MmQzN2Y5NDI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8SADANBgkqhkiG9w0BAQsFAAOCAQEAOrzghJCJQmAj9o8M3KSFOCKX EozEQ7pJumBhZ9BQ2JlBMNBBj3Qxo0O5l63Z5PNlIHd2IMBekh0POqQB+x1VonuZ oj0Bw8FhhGHEPcrhNDj8IXhyrGO2P080YDpDnn+31POQXmhbeDFvcmlC1wv0pMvK P6DHJQ/Q3J0J1gfi5ReMWPtn+wZ5OI8Ja/OZWejnNbDuLryL1pm+Hq1LJphyMyUD HRtaV10eITItkK+9N4lbXzWbnT6/1iWrygcqnP0qO0kb8Yntt1udyb7e6YvXoJfR Y/fjdqXZi5j0iHfKE8pk98u1rCJ9siTOhtBFCJdFqb+BboK3/GUkAlQ9UrO6dg== -----END CERTIFICATE-----Generated at Wed Jun 18 15:06:51 2025 by rpki-client