$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa File: 2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa (raw, json) Hash identifier: MqAOH70DH3TJ7phPpASXnSu0S8l2k1E8tf1K8RaaK18= Subject key identifier: AE:B3:A3:C7:0E:D8:D5:15:A2:E0:41:39:43:00:49:23:27:80:FB:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 368120E90698765AD8D90A592ACB52D6E306586A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa Signing time: Mon 23 Jun 2025 15:22:10 +0000 ROA not before: Mon 23 Jun 2025 15:22:10 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:81:20:e9:06:98:76:5a:d8:d9:0a:59:2a:cb:52:d6:e3:06:58:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:22:10 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=4e87882aed127b3ef9d0cdb9860d2ce46c6f249d43da3a102673dbf2a82d34ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:84:ad:e8:7e:fe:77:a8:33:ae:b9:76:9d:7f: 5f:35:bf:45:15:c4:86:d2:38:ea:1c:cc:30:1b:39: 8d:48:dd:ee:ce:a3:09:1b:c7:9b:54:c5:19:7a:84: e4:b4:10:e3:9a:e7:b9:cb:60:39:7b:f2:b8:69:30: d3:57:af:f5:37:d2:84:0a:f6:30:74:51:cb:d1:cc: 45:32:46:80:2c:48:b5:76:33:ca:4c:5f:0b:37:1f: a8:0e:c3:c4:99:73:9f:74:52:fb:4d:1f:95:96:f4: 5a:7f:ba:a3:94:66:02:b2:c8:47:61:85:4d:52:4a: b8:6c:42:4a:e4:cf:24:d6:8e:b1:4c:73:47:77:d7: 62:e8:f3:07:da:59:f8:96:3f:5a:58:83:67:e2:37: c5:f9:24:81:b3:5e:94:97:f8:c3:2c:ed:ac:35:fc: 3c:b5:76:f2:bb:38:bc:26:11:7b:5a:15:e5:71:c2: 32:4f:81:36:6e:e4:b0:0e:57:9f:6c:05:33:77:e2: 41:81:3b:b4:47:b2:67:97:21:41:58:6e:51:f9:68: d2:a9:e9:ee:f2:ec:3a:b7:1a:ca:24:28:7a:87:d1: db:e5:6e:2c:6e:d3:d5:79:83:2c:fa:b4:42:df:08: f4:f1:6f:73:a2:84:18:4d:54:90:d7:61:ea:f5:46: e3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B3:A3:C7:0E:D8:D5:15:A2:E0:41:39:43:00:49:23:27:80:FB:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:5000::/40 Signature Algorithm: sha256WithRSAEncryption a7:d3:f7:d8:c1:5b:ab:eb:fd:10:49:ec:e8:c9:2d:8d:08:4f: 78:73:e9:4a:0e:a9:e3:97:07:74:99:56:35:78:33:3f:a0:b9: a3:8d:38:64:a7:c7:3e:78:e8:54:bf:da:93:05:7c:43:80:3b: 8a:67:ec:0a:0e:95:b2:25:16:81:3f:b1:24:ae:73:fe:4e:c4: cd:c8:12:66:35:6e:71:aa:8c:8c:1a:3c:20:b6:90:ae:96:92: d3:05:bd:3d:61:50:60:df:0d:f9:0a:d1:c4:2d:57:c6:6e:6f: 3a:fb:fe:71:07:a3:7f:15:12:6f:0a:3a:b2:c4:87:8a:d1:8d: 58:dc:1a:da:ce:f5:71:e1:ec:65:f1:b3:08:66:86:20:0c:d6: 31:53:0f:78:c0:2e:1e:3f:27:4e:35:41:ec:94:62:17:1e:86: b7:0b:36:47:40:eb:1e:89:6d:10:a1:30:fd:26:dc:89:20:fd: f7:50:ba:53:1f:b6:d4:42:2e:7f:0e:83:1e:2d:3b:66:48:fc: ef:3b:62:d3:c6:e5:9c:74:f8:4e:11:5c:60:a2:36:e4:9d:bf: 93:f7:49:48:7c:1d:0b:f3:22:bf:ad:17:1e:a1:18:c1:dc:c9: 35:1e:db:d1:ee:c7:4c:42:21:b4:e8:5c:3f:50:79:6c:f5:83: 72:20:18:85 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNoEg6QaYdlrY2QpZKstS1uMGWGowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUyMjEwWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTg3ODgyYWVkMTI3YjNlZjlkMGNkYjk4NjBkMmNlNDZj NmYyNDlkNDNkYTNhMTAyNjczZGJmMmE4MmQzNGFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChhK3ofv53qDOuuXadf181v0UVxIbSOOoczDAbOY1I3e7O owkbx5tUxRl6hOS0EOOa57nLYDl78rhpMNNXr/U30oQK9jB0UcvRzEUyRoAsSLV2 M8pMXws3H6gOw8SZc590UvtNH5WW9Fp/uqOUZgKyyEdhhU1SSrhsQkrkzyTWjrFM c0d312Lo8wfaWfiWP1pYg2fiN8X5JIGzXpSX+MMs7aw1/Dy1dvK7OLwmEXtaFeVx wjJPgTZu5LAOV59sBTN34kGBO7RHsmeXIUFYblH5aNKp6e7y7Dq3GsokKHqH0dvl bixu09V5gyz6tELfCPTxb3OihBhNVJDXYer1RuMbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrrOjxw7Y1RWi4EE5QwBJIyeA+2UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmZjEwYmNmLWEwZDEtNGY0MC1iNzljLWQ4NGIwN2QzYzdiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wUDANBgkqhkiG9w0BAQsFAAOCAQEAp9P32MFbq+v9EEns6MktjQhP eHPpSg6p45cHdJlWNXgzP6C5o404ZKfHPnjoVL/akwV8Q4A7imfsCg6VsiUWgT+x JK5z/k7EzcgSZjVucaqMjBo8ILaQrpaS0wW9PWFQYN8N+QrRxC1Xxm5vOvv+cQej fxUSbwo6ssSHitGNWNwa2s71ceHsZfGzCGaGIAzWMVMPeMAuHj8nTjVB7JRiFx6G tws2R0DrHoltEKEw/SbciSD991C6Ux+21EIufw6DHi07Zkj87zti08blnHT4ThFc YKI25J2/k/dJSHwdC/Miv60XHqEYwdzJNR7b0e7HTEIhtOhcP1B5bPWDciAYhQ== -----END CERTIFICATE-----Generated at Sun Jun 29 15:51:28 2025 by rpki-client