$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c085180-9c0d-46df-8d8f-283057871dbf.roa File: 0c085180-9c0d-46df-8d8f-283057871dbf.roa (raw, json) Hash identifier: h66Hhwzv9JVZzU53PI3ib+aE1bW1yMJODs7+xCwVsLQ= Subject key identifier: 01:07:78:0C:1E:66:79:79:38:74:94:63:84:68:D2:5C:03:C4:D4:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27D6F1059AC458BBC8BD034664C55551C98D1710 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c085180-9c0d-46df-8d8f-283057871dbf.roa Signing time: Tue 24 Jun 2025 00:20:26 +0000 ROA not before: Tue 24 Jun 2025 00:20:26 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:d6:f1:05:9a:c4:58:bb:c8:bd:03:46:64:c5:55:51:c9:8d:17:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:20:26 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=7e592d496bf18d86bf33b1a828e66a9978255c8f3a9a43c9a9e0a6d168dc9915, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:45:46:c4:da:fa:b4:dd:e3:48:97:01:ca:d2: 24:4d:45:dd:5a:bf:29:ef:b5:02:d8:a9:a4:20:2b: 28:fc:39:2a:af:4a:20:1d:f2:84:f4:1a:df:f7:a0: ec:72:ef:75:b0:74:e1:3c:24:ff:8b:5a:f9:ab:09: c9:53:2a:0c:60:d3:ed:04:de:ce:7c:93:5a:9e:46: c1:97:8a:f0:1b:cf:49:5e:e5:3b:17:e7:b3:25:37: 2e:88:74:92:b6:41:a8:f5:54:eb:a2:62:44:f8:f3: 46:fb:54:38:fc:1e:9b:84:c6:f0:b5:30:3e:90:c2: 79:c0:66:60:d4:69:7b:79:bf:8b:ca:77:f9:ee:7c: 40:36:8c:35:11:66:1c:52:0c:73:1a:22:0c:6b:9e: 32:83:33:fc:d5:b5:26:d6:39:62:da:a6:bc:9e:b9: d3:0e:28:e2:3d:e7:40:37:46:62:52:d1:32:05:dc: 4f:95:c4:fd:56:e1:b6:14:52:f9:48:c7:4e:11:7d: 60:69:ca:44:4c:89:3e:ba:10:82:e9:33:ef:af:4b: fa:9c:15:b3:6a:ae:34:f9:0f:4f:dc:a8:8a:9a:83: 99:e2:d0:85:9b:04:21:8d:99:cd:e3:70:28:38:6f: 76:93:43:59:ed:70:3b:d0:54:60:43:e1:5a:77:c9: 3b:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:07:78:0C:1E:66:79:79:38:74:94:63:84:68:D2:5C:03:C4:D4:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c085180-9c0d-46df-8d8f-283057871dbf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:e000::/40 Signature Algorithm: sha256WithRSAEncryption 46:38:9d:32:d9:d6:58:02:94:a3:e6:ed:2e:13:8a:a6:a0:a0: 48:31:b7:76:b4:60:0b:ca:8b:c1:b3:46:6a:ad:aa:21:62:20: cf:dd:86:79:8c:e9:c9:5d:f7:30:4a:0d:11:48:b9:7f:f7:75: 40:59:23:cf:f0:f1:86:e5:33:3a:e9:a6:ae:2a:9c:9d:ea:ed: 1b:e7:7f:20:1b:a5:cb:a0:11:7c:56:42:77:a0:8a:d2:3b:d0: 64:b8:2c:14:67:5f:6c:e6:09:b2:c4:f7:5d:49:94:6b:0d:3b: 71:9e:16:35:ac:04:2e:3d:30:8c:03:1d:a3:fc:e9:9e:16:70: ef:be:ba:50:e5:0e:46:3f:15:91:a7:c3:f4:09:72:74:7a:e4: 62:7c:8e:5e:b2:66:9e:03:a9:25:e8:e0:b2:4f:59:39:3f:9a: f2:d0:97:46:39:67:57:0b:89:f0:d8:31:97:d9:5b:75:80:58: fd:ea:d0:43:cf:39:8c:8f:f7:2d:9d:65:9b:5f:98:81:4e:d7: 0c:22:46:6c:64:92:98:82:46:96:48:73:25:f3:c7:fd:7c:51: cb:6f:0a:9f:9e:ea:67:2d:06:79:3a:bb:fe:50:f0:60:5a:7c: bd:2d:b6:74:1e:7b:33:48:bd:6f:41:14:b8:12:22:23:14:45: 95:c4:ae:82 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJ9bxBZrEWLvIvQNGZMVVUcmNFxAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAyMDI2WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTU5MmQ0OTZiZjE4ZDg2YmYzM2IxYTgyOGU2NmE5OTc4 MjU1YzhmM2E5YTQzYzlhOWUwYTZkMTY4ZGM5OTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxRUbE2vq03eNIlwHK0iRNRd1avynvtQLYqaQgKyj8OSqv SiAd8oT0Gt/3oOxy73WwdOE8JP+LWvmrCclTKgxg0+0E3s58k1qeRsGXivAbz0le 5TsX57MlNy6IdJK2Qaj1VOuiYkT480b7VDj8HpuExvC1MD6QwnnAZmDUaXt5v4vK d/nufEA2jDURZhxSDHMaIgxrnjKDM/zVtSbWOWLapryeudMOKOI950A3RmJS0TIF 3E+VxP1W4bYUUvlIx04RfWBpykRMiT66EILpM++vS/qcFbNqrjT5D0/cqIqag5ni 0IWbBCGNmc3jcCg4b3aTQ1ntcDvQVGBD4Vp3yTvNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUAQd4DB5meXk4dJRjhGjSXAPE1LgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjMDg1MTgwLTljMGQtNDZkZi04ZDhmLTI4MzA1Nzg3MWRiZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/x4DANBgkqhkiG9w0BAQsFAAOCAQEARjidMtnWWAKUo+btLhOKpqCg SDG3drRgC8qLwbNGaq2qIWIgz92GeYzpyV33MEoNEUi5f/d1QFkjz/DxhuUzOumm riqcnertG+d/IBuly6ARfFZCd6CK0jvQZLgsFGdfbOYJssT3XUmUaw07cZ4WNawE Lj0wjAMdo/zpnhZw7766UOUORj8VkafD9AlydHrkYnyOXrJmngOpJejgsk9ZOT+a 8tCXRjlnVwuJ8Ngxl9lbdYBY/erQQ885jI/3LZ1lm1+YgU7XDCJGbGSSmIJGlkhz JfPH/XxRy28Kn57qZy0GeTq7/lDwYFp8vS22dB57M0i9b0EUuBIiIxRFlcSugg== -----END CERTIFICATE-----Generated at Tue Jul 1 08:11:45 2025 by rpki-client