$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/020f6713-961a-446c-8dde-4a4231902f33.roa File: 020f6713-961a-446c-8dde-4a4231902f33.roa (raw, json) Hash identifier: Mij1wOcRlPeCQDWH3uHok6rodaOfSf+sXWkEJkTOxhM= Subject key identifier: 9C:A9:68:4F:C8:3F:CE:13:0D:0B:FE:00:FA:18:EB:9E:EF:79:0A:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BE915F5E3B0EE28FA1BE940A452B0F6B33A9849 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/020f6713-961a-446c-8dde-4a4231902f33.roa Signing time: Mon 30 Jun 2025 15:11:34 +0000 ROA not before: Mon 30 Jun 2025 15:11:34 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:e9:15:f5:e3:b0:ee:28:fa:1b:e9:40:a4:52:b0:f6:b3:3a:98:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:11:34 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=0d10274ce7faf3347c4a379339a6077948597582aa3800d8a6d0e37918af8d1c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4e:d3:ab:06:f6:6a:90:b0:11:74:98:36:8c: 75:c8:af:3e:3e:e1:e6:c8:16:ee:f1:2d:46:2d:0a: f8:68:a3:aa:74:a1:ba:44:c9:68:12:90:1e:6a:74: e4:80:36:7b:0a:fa:67:de:e0:29:18:06:68:8f:f4: 81:98:0e:04:bd:04:3b:12:72:ba:d2:2d:a5:d8:ab: 40:a6:1d:9a:b2:10:4e:c5:10:c1:84:aa:fd:d1:af: 3c:cb:07:27:cb:ac:33:4f:0d:12:51:8d:72:ba:72: 01:eb:44:80:6e:eb:6c:d8:29:bb:c3:01:49:f9:e2: 69:36:54:61:f9:fb:3c:4d:bf:75:f7:55:b3:c2:e2: 9a:f7:a9:cb:91:f4:2a:02:d3:a2:18:e4:cf:34:96: ab:65:9c:bd:b8:e5:5e:e1:05:cd:ca:be:bb:35:6d: c1:f8:e3:02:19:da:d1:a8:1d:d2:c6:23:47:05:16: b1:ed:94:78:40:4c:d2:9e:2d:28:08:e1:2a:39:35: 2f:e2:7c:38:a4:d9:c0:21:0f:48:1f:32:b4:83:e9: 80:cc:ee:fc:e8:06:cf:8c:7a:27:41:70:dd:4b:1d: f8:0b:5f:4f:74:86:11:42:d5:37:59:51:bc:c8:80: e0:a7:31:99:b9:20:35:f2:22:5f:b0:48:4a:71:ef: 52:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A9:68:4F:C8:3F:CE:13:0D:0B:FE:00:FA:18:EB:9E:EF:79:0A:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/020f6713-961a-446c-8dde-4a4231902f33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:3400::/40 Signature Algorithm: sha256WithRSAEncryption 97:03:e6:2f:a4:10:81:6f:9d:99:fc:02:a3:24:12:33:40:aa: be:b3:70:b0:73:ee:91:a6:f0:09:cf:cc:ad:d0:9c:45:a8:97: a8:08:ca:1d:c6:89:74:38:e2:e9:00:d9:cb:09:37:99:33:0f: 4c:b4:48:17:83:7c:f0:f8:12:97:c1:fe:d0:85:47:a8:13:a6: 70:7b:83:df:69:13:09:2d:66:ba:4d:2f:b6:dd:75:f5:5d:03: 4d:3d:84:68:3d:9f:18:e6:5c:be:a5:39:b7:2e:78:e5:3b:3a: d1:6e:15:93:34:1b:bf:81:b3:f0:35:3c:3c:df:e6:ba:d8:0a: bd:3d:e1:92:52:68:25:57:64:0e:0d:8d:31:ae:68:a3:06:f7: b9:a6:f6:72:14:cb:e5:70:64:a6:fd:77:e3:c5:01:d6:46:11: 06:68:f6:dc:6f:d7:fd:d3:f4:93:c6:b8:5f:1d:d9:5e:e2:09: 67:6c:11:47:ca:c9:14:ac:08:b5:4a:1e:8a:c8:75:f7:85:b4: e7:e3:3c:18:b8:a9:19:41:33:6c:d7:10:0b:3a:0f:92:7b:99: 44:9e:c7:29:a4:ce:58:aa:10:a9:48:d0:8b:2d:f1:68:41:32: b5:b4:35:aa:7c:76:75:0b:e8:16:99:3d:6e:c2:f5:18:5d:09: a6:c9:38:71 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUK+kV9eOw7ij6G+lApFKw9rM6mEkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUxMTM0WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDEwMjc0Y2U3ZmFmMzM0N2M0YTM3OTMzOWE2MDc3OTQ4 NTk3NTgyYWEzODAwZDhhNmQwZTM3OTE4YWY4ZDFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbTtOrBvZqkLARdJg2jHXIrz4+4ebIFu7xLUYtCvhoo6p0 obpEyWgSkB5qdOSANnsK+mfe4CkYBmiP9IGYDgS9BDsScrrSLaXYq0CmHZqyEE7F EMGEqv3RrzzLByfLrDNPDRJRjXK6cgHrRIBu62zYKbvDAUn54mk2VGH5+zxNv3X3 VbPC4pr3qcuR9CoC06IY5M80lqtlnL245V7hBc3Kvrs1bcH44wIZ2tGoHdLGI0cF FrHtlHhATNKeLSgI4So5NS/ifDik2cAhD0gfMrSD6YDM7vzoBs+MeidBcN1LHfgL X090hhFC1TdZUbzIgOCnMZm5IDXyIl+wSEpx71LZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnKloT8g/zhMNC/4A+hjrnu95CqowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyMGY2NzEzLTk2MWEtNDQ2Yy04ZGRlLTRhNDIzMTkwMmYzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4NDANBgkqhkiG9w0BAQsFAAOCAQEAlwPmL6QQgW+dmfwCoyQSM0Cq vrNwsHPukabwCc/MrdCcRaiXqAjKHcaJdDji6QDZywk3mTMPTLRIF4N88PgSl8H+ 0IVHqBOmcHuD32kTCS1muk0vtt119V0DTT2EaD2fGOZcvqU5ty545Ts60W4VkzQb v4Gz8DU8PN/mutgKvT3hklJoJVdkDg2NMa5oowb3uab2chTL5XBkpv1348UB1kYR Bmj23G/X/dP0k8a4Xx3ZXuIJZ2wRR8rJFKwItUoeish194W05+M8GLipGUEzbNcQ CzoPknuZRJ7HKaTOWKoQqUjQiy3xaEEytbQ1qnx2dQvoFpk9bsL1GF0Jpsk4cQ== -----END CERTIFICATE-----Generated at Tue Jul 1 04:40:50 2025 by rpki-client