$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa File: 2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa (raw, json) Hash identifier: hVQf2A88VVGI4RYZBLyydlmJjcvI0FaT/EvIuixZdZ4= Subject key identifier: D1:98:31:8A:1E:59:AA:88:2E:CC:98:82:99:D7:CE:65:80:0B:38:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E41662E0F2CF7A5A5A99063C2510DFB6CBA92ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa Signing time: Tue 24 Jun 2025 00:11:46 +0000 ROA not before: Tue 24 Jun 2025 00:11:46 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:41:66:2e:0f:2c:f7:a5:a5:a9:90:63:c2:51:0d:fb:6c:ba:92:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:11:46 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=93c19f610b725e03f655181f2d147ba0548a608ff5dd96e08779e65838dbc1b9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c0:99:01:77:6b:a8:d1:1e:80:b2:8f:af:27: b6:b3:f6:c2:26:0e:2a:98:36:47:a2:71:25:1d:bb: 1e:b6:cc:be:71:f5:4c:f1:5e:1d:bd:48:be:7b:de: 57:33:e8:0d:ed:e7:12:b7:91:b7:b1:d9:5d:71:ec: 08:a2:b7:4d:17:64:c1:ba:3e:06:8d:92:4e:a4:c6: 16:eb:7d:ba:8d:93:cc:1f:ae:c1:df:06:15:17:ac: 5f:fe:cf:88:22:b6:2c:7f:ce:50:fc:f8:03:79:f2: db:cf:f5:98:25:27:c6:63:49:27:b1:d0:c7:ba:49: 5c:ee:d7:95:52:9c:f8:f7:c4:e0:93:40:c2:37:fd: a0:5f:f0:25:90:e6:57:31:75:8f:a4:49:c7:8e:f5: 9b:dd:c5:ae:5f:c3:e4:af:58:99:96:47:05:65:02: 9a:ee:de:b9:72:41:4d:95:8c:00:6f:14:db:73:ae: 8f:22:6b:1d:07:59:4b:c8:17:7e:77:9b:9d:7b:60: 78:91:38:dd:c0:f2:e6:a8:a2:10:6b:ca:aa:4b:db: 21:30:a7:6d:85:4a:e8:3d:39:68:dc:0f:ce:c3:de: c8:73:25:42:c3:4e:23:70:27:fe:32:33:a6:73:f5: e0:ca:c8:ad:ba:a6:fb:0d:a7:a6:2e:66:96:7e:0e: e7:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:98:31:8A:1E:59:AA:88:2E:CC:98:82:99:D7:CE:65:80:0B:38:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8d69d7-280f-4ea4-ae81-341431cb2ffc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:2000::/40 Signature Algorithm: sha256WithRSAEncryption 34:6f:e5:be:1a:99:61:8d:45:53:d2:af:fe:47:79:d6:e0:df: 77:a0:e3:97:46:45:01:41:8c:3c:4d:4c:55:58:0e:e7:c2:f4: 73:6a:ee:fe:68:a5:83:72:d3:ad:aa:de:90:bd:fe:33:7f:9e: 41:7a:97:9c:63:ba:99:30:87:35:24:4c:41:7c:61:be:68:0c: b5:13:e1:e1:09:cc:8b:c6:1a:e6:b9:6e:ef:ca:2e:33:d0:aa: 8a:39:2c:f2:9f:99:96:02:2a:b2:87:11:31:ee:3f:e0:d8:41: 5b:0f:9c:49:c4:20:6a:24:48:8e:ba:5d:8a:3f:8b:c6:a0:04: 0c:6b:00:0b:08:b6:77:1f:f0:14:04:5e:6c:c3:08:6e:2d:c8: 6c:96:fd:f6:14:57:fd:83:85:f9:e0:b2:0f:48:89:10:1e:17: e3:bd:02:7c:23:4d:8c:dc:4a:0e:a4:2e:aa:b7:e5:5f:36:45: f1:64:03:bf:90:99:31:01:2f:f6:3d:3a:3e:1c:7e:1f:e9:48: e4:ac:f2:fa:7c:59:cb:bf:69:42:5b:22:c3:d3:be:4a:3b:31: fd:e2:74:7d:fc:26:45:b7:88:65:c2:aa:8c:b8:e4:86:95:4c: 39:10:08:ce:fb:48:60:eb:76:ec:d0:20:c6:05:96:93:82:11: c3:26:2a:86 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXkFmLg8s96WlqZBjwlEN+2y6ku0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAxMTQ2WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2MxOWY2MTBiNzI1ZTAzZjY1NTE4MWYyZDE0N2JhMDU0 OGE2MDhmZjVkZDk2ZTA4Nzc5ZTY1ODM4ZGJjMWI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0wJkBd2uo0R6Aso+vJ7az9sImDiqYNkeicSUdux62zL5x 9UzxXh29SL573lcz6A3t5xK3kbex2V1x7Aiit00XZMG6PgaNkk6kxhbrfbqNk8wf rsHfBhUXrF/+z4gitix/zlD8+AN58tvP9ZglJ8ZjSSex0Me6SVzu15VSnPj3xOCT QMI3/aBf8CWQ5lcxdY+kSceO9Zvdxa5fw+SvWJmWRwVlApru3rlyQU2VjABvFNtz ro8iax0HWUvIF353m517YHiRON3A8uaoohBryqpL2yEwp22FSug9OWjcD87D3shz JULDTiNwJ/4yM6Zz9eDKyK26pvsNp6YuZpZ+DueDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0Zgxih5ZqoguzJiCmdfOZYALOMgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjOGQ2OWQ3LTI4MGYtNGVhNC1hZTgxLTM0MTQzMWNiMmZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xIDANBgkqhkiG9w0BAQsFAAOCAQEANG/lvhqZYY1FU9Kv/kd51uDf d6Djl0ZFAUGMPE1MVVgO58L0c2ru/milg3LTrarekL3+M3+eQXqXnGO6mTCHNSRM QXxhvmgMtRPh4QnMi8Ya5rlu78ouM9Cqijks8p+ZlgIqsocRMe4/4NhBWw+cScQg aiRIjrpdij+LxqAEDGsACwi2dx/wFARebMMIbi3IbJb99hRX/YOF+eCyD0iJEB4X 470CfCNNjNxKDqQuqrflXzZF8WQDv5CZMQEv9j06Phx+H+lI5Kzy+nxZy79pQlsi w9O+Sjsx/eJ0ffwmRbeIZcKqjLjkhpVMORAIzvtIYOt27NAgxgWWk4IRwyYqhg== -----END CERTIFICATE-----Generated at Sun Jun 29 04:38:34 2025 by rpki-client