$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa File: fba6b008-4b15-445e-bf72-4181fbf88a82.roa (raw, json) Hash identifier: zRK6SdhjLUMQjw2PWtfWXN6urj4KoyrIczUBefLwPxU= Subject key identifier: B0:74:94:E6:BC:30:5A:CC:87:C5:4D:A6:F7:94:F4:E2:7E:2B:E7:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BB4F5F285477DE70ACFC8C9B615D7960D0F2A9E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa Signing time: Wed 11 Jun 2025 00:31:41 +0000 ROA not before: Wed 11 Jun 2025 00:31:41 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:6040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b4:f5:f2:85:47:7d:e7:0a:cf:c8:c9:b6:15:d7:96:0d:0f:2a:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:31:41 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=7e3fc81336e5f38f1be882f4dc0cb9b460fa43fb18049eda66f1cd2d5a70bd96, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:95:e3:2d:d9:54:d2:4c:53:9d:23:21:63:18: 15:88:29:b6:4b:37:ac:07:10:72:5a:ed:a7:98:d9: 62:b2:b9:59:07:3f:93:9d:c0:ed:b0:f6:e7:4c:e4: 0f:6b:98:34:7b:8a:3f:7e:b3:c9:24:cd:59:0c:75: a5:56:6c:59:8a:62:78:95:56:a3:14:ae:22:7b:5d: 3f:57:b6:77:c7:0d:e6:22:db:53:1a:88:bb:ec:d4: db:42:d5:bb:24:77:60:19:00:39:6e:b1:62:c2:4f: 15:69:17:eb:63:e7:26:23:aa:6b:26:66:71:2d:67: 1a:d7:48:de:d4:1d:ec:5e:4d:1e:e5:7b:04:32:75: 45:f7:aa:1e:af:bb:69:ec:e7:98:d2:96:9d:81:ae: 55:6f:da:bb:4e:26:93:58:48:3e:70:4f:ba:d2:45: b1:f7:0d:6a:ce:a8:3f:04:17:3f:db:7f:d3:a8:c2: d8:52:75:68:39:e6:6e:9f:75:e4:18:ca:5b:51:b3: fd:54:5d:c4:95:35:55:4c:23:f0:6b:4b:4f:41:52: f0:9e:e6:63:31:5f:4c:11:e6:17:87:05:5e:aa:4c: 92:1a:d7:5b:87:8f:b0:98:7b:ba:03:db:30:65:4b: 14:5c:cf:6f:42:bf:f4:c2:9c:3f:d8:4a:72:bf:d1: ca:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:74:94:E6:BC:30:5A:CC:87:C5:4D:A6:F7:94:F4:E2:7E:2B:E7:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fba6b008-4b15-445e-bf72-4181fbf88a82.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:6040::/48 Signature Algorithm: sha256WithRSAEncryption 59:85:db:24:51:bd:6f:e7:f7:5b:bd:01:36:a9:af:6a:9b:d5: 2d:c5:b2:0d:b5:8b:32:78:f7:32:4e:9d:0e:44:5b:29:28:57: 56:5f:e5:bf:9a:af:02:4c:e6:f9:d3:8a:0e:1f:b3:8d:7b:4f: df:8c:94:14:83:86:aa:e8:70:df:8a:b6:0d:69:3a:fa:8d:e4: 2e:04:28:83:22:64:c5:8b:38:b4:57:dc:8d:e2:95:22:a2:7d: 08:21:19:6e:1e:b0:c8:f0:19:66:db:a7:89:47:51:63:ed:9a: 73:da:9e:53:64:11:4b:29:12:7e:65:21:9f:00:f5:f3:08:cc: f2:bc:44:2f:4b:2c:10:8a:eb:ed:56:98:90:75:43:91:a5:87: 2a:82:5c:44:e2:ce:0c:26:91:d5:90:e5:bd:ad:7d:60:ce:9d: c8:32:dd:16:b9:57:95:bf:e4:c9:79:d0:ef:69:51:ab:e6:85: b4:44:0f:b1:6b:e1:a9:23:00:6d:65:9c:d4:ed:47:ea:04:9b: 3f:4d:83:e3:d0:b1:e4:ae:6b:23:4a:27:7c:cf:f5:b2:24:6b: 5a:f6:69:28:62:f2:50:49:c6:85:52:5e:04:4e:d5:7d:33:f4: b9:c7:14:49:3c:9a:ff:b0:1f:27:1d:c7:85:0b:be:a3:e3:ec: e1:fd:84:9d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO7T18oVHfecKz8jJthXXlg0PKp4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAzMTQxWhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTNmYzgxMzM2ZTVmMzhmMWJlODgyZjRkYzBjYjliNDYw ZmE0M2ZiMTgwNDllZGE2NmYxY2QyZDVhNzBiZDk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAleMt2VTSTFOdIyFjGBWIKbZLN6wHEHJa7aeY2WKyuVkH P5OdwO2w9udM5A9rmDR7ij9+s8kkzVkMdaVWbFmKYniVVqMUriJ7XT9XtnfHDeYi 21MaiLvs1NtC1bskd2AZADlusWLCTxVpF+tj5yYjqmsmZnEtZxrXSN7UHexeTR7l ewQydUX3qh6vu2ns55jSlp2BrlVv2rtOJpNYSD5wT7rSRbH3DWrOqD8EFz/bf9Oo wthSdWg55m6fdeQYyltRs/1UXcSVNVVMI/BrS09BUvCe5mMxX0wR5heHBV6qTJIa 11uHj7CYe7oD2zBlSxRcz29Cv/TCnD/YSnK/0cpXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsHSU5rwwWsyHxU2m95T04n4r54AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiYTZiMDA4LTRiMTUtNDQ1ZS1iZjcyLTQxODFmYmY4OGE4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AYEAwDQYJKoZIhvcNAQELBQADggEBAFmF2yRRvW/n91u9ATapr2qb 1S3Fsg21izJ49zJOnQ5EWykoV1Zf5b+arwJM5vnTig4fs417T9+MlBSDhqrocN+K tg1pOvqN5C4EKIMiZMWLOLRX3I3ilSKifQghGW4esMjwGWbbp4lHUWPtmnPanlNk EUspEn5lIZ8A9fMIzPK8RC9LLBCK6+1WmJB1Q5GlhyqCXETizgwmkdWQ5b2tfWDO ncgy3Ra5V5W/5Ml50O9pUavmhbRED7Fr4akjAG1lnNTtR+oEmz9Ng+PQseSuayNK J3zP9bIka1r2aShi8lBJxoVSXgRO1X0z9LnHFEk8mv+wHycdx4ULvqPj7OH9hJ0= -----END CERTIFICATE-----Generated at Sat Jun 14 06:55:24 2025 by rpki-client