$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3be35316-a5c7-4283-90cb-ca7d1808ae8b.roa File: 3be35316-a5c7-4283-90cb-ca7d1808ae8b.roa (raw, json) Hash identifier: hdwfvnQCIcIIQSEvYopc36oKOHkL36w3n1mL1kDs9Ek= Subject key identifier: 37:6E:48:57:5B:20:B5:D8:A1:BB:90:BC:A8:55:59:E3:54:85:DC:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DA4A434D720D464D5DA299AFB29FCEC3B8C4A47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3be35316-a5c7-4283-90cb-ca7d1808ae8b.roa Signing time: Fri 13 Jun 2025 15:31:13 +0000 ROA not before: Fri 13 Jun 2025 15:31:13 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:3480::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:a4:a4:34:d7:20:d4:64:d5:da:29:9a:fb:29:fc:ec:3b:8c:4a:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:31:13 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=445f9dfcc7248883006622bfd31c8645f44bd1758ac906da8a181eaaed25d36e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:14:73:1c:c5:3b:39:0f:ad:90:18:06:7e:87: ba:c5:57:ba:8c:68:e3:72:e0:3a:a4:98:e6:9d:4a: f8:5b:6e:05:c5:4f:d8:02:0e:91:c1:50:70:ac:43: 6e:4e:bd:f6:21:ff:32:36:e0:c2:e6:be:c1:71:9e: 5c:fc:0f:90:f7:23:47:b1:c9:8d:23:31:71:fd:03: e4:70:97:51:08:2f:a3:b5:ac:b2:2f:94:b7:d8:ef: 70:fc:40:de:9f:b9:dc:ee:4f:2e:33:4c:28:e9:a4: 3e:9f:35:56:9f:a4:b9:0f:89:3d:78:dc:56:40:ff: bd:09:c4:6a:0d:32:a5:5a:e2:ed:ee:f2:11:aa:e7: 01:eb:0f:8d:65:f8:99:dc:b9:d8:9c:3e:6b:92:bb: 2f:fe:6a:b7:77:13:87:b4:e2:2e:38:5f:75:b5:91: 02:f6:14:ba:90:6b:e9:2b:75:f5:1b:1d:8d:f5:2f: 2f:a0:c4:a8:0b:88:4b:6c:6f:65:93:76:c8:47:fa: 0d:8c:7f:bf:cc:6b:03:59:64:bb:28:6e:f4:c2:ee: 8c:ff:6d:d0:b9:92:9e:da:69:cf:b5:a9:e5:9b:87: 13:2f:75:87:ca:fd:e2:b0:bf:1c:7f:49:43:3f:21: 71:5f:27:2a:a7:06:be:d1:25:8c:15:0e:84:1e:8d: 3f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6E:48:57:5B:20:B5:D8:A1:BB:90:BC:A8:55:59:E3:54:85:DC:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3be35316-a5c7-4283-90cb-ca7d1808ae8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:3480::/46 Signature Algorithm: sha256WithRSAEncryption 00:66:90:97:be:48:c4:12:8c:d5:f4:e3:7f:1c:66:0b:85:03: d8:49:24:68:42:22:2c:57:da:31:6f:53:c2:c2:63:c9:2f:ab: 58:d9:9c:67:2f:4e:07:e5:20:c1:38:2f:cd:db:f5:45:49:9b: ce:ef:f2:58:10:de:55:a7:39:1c:d8:4b:fd:66:e3:48:f5:de: f4:4b:9e:5a:d6:76:e9:91:f1:af:29:54:d6:6a:b7:62:a6:86: 45:e9:17:8b:9c:87:33:d0:d5:a6:7e:7d:b8:01:ce:31:67:4c: 2f:c6:15:b7:2a:33:38:26:b2:d9:78:55:ab:95:34:58:1d:47: 5a:eb:16:7f:95:f5:15:6d:13:bd:e2:1b:3e:c9:7d:ce:60:c0: 31:bd:5a:5b:36:d7:66:64:e6:ad:56:0e:b7:58:52:51:30:2b: cc:aa:d0:9f:0e:e7:9c:2e:8a:bc:c5:52:ef:0b:ea:2f:2e:26: 7b:11:73:59:23:10:89:3f:49:79:80:10:66:8c:12:71:3b:2f: 7a:bd:ff:ff:9f:86:f0:aa:0f:fa:a6:a7:15:f4:9b:65:3f:f4: f1:11:d1:52:6b:6d:0b:59:01:b6:4d:b4:e8:45:fc:75:2e:5f: 34:06:7e:82:23:f2:a8:14:30:80:19:31:60:5a:fa:72:0f:9d: 7f:d8:b4:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTaSkNNcg1GTV2ima+yn87DuMSkcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUzMTEzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NDVmOWRmY2M3MjQ4ODgzMDA2NjIyYmZkMzFjODY0NWY0 NGJkMTc1OGFjOTA2ZGE4YTE4MWVhYWVkMjVkMzZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPFHMcxTs5D62QGAZ+h7rFV7qMaONy4DqkmOadSvhbbgXF T9gCDpHBUHCsQ25OvfYh/zI24MLmvsFxnlz8D5D3I0exyY0jMXH9A+Rwl1EIL6O1 rLIvlLfY73D8QN6fudzuTy4zTCjppD6fNVafpLkPiT143FZA/70JxGoNMqVa4u3u 8hGq5wHrD41l+JncudicPmuSuy/+ard3E4e04i44X3W1kQL2FLqQa+krdfUbHY31 Ly+gxKgLiEtsb2WTdshH+g2Mf7/MawNZZLsobvTC7oz/bdC5kp7aac+1qeWbhxMv dYfK/eKwvxx/SUM/IXFfJyqnBr7RJYwVDoQejT/VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUN25IV1sgtdihu5C8qFVZ41SF3CUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiZTM1MzE2LWE1YzctNDI4My05MGNiLWNhN2QxODA4YWU4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pNIAwDQYJKoZIhvcNAQELBQADggEBAABmkJe+SMQSjNX0438cZguF A9hJJGhCIixX2jFvU8LCY8kvq1jZnGcvTgflIME4L83b9UVJm87v8lgQ3lWnORzY S/1m40j13vRLnlrWdumR8a8pVNZqt2KmhkXpF4uchzPQ1aZ+fbgBzjFnTC/GFbcq Mzgmstl4VauVNFgdR1rrFn+V9RVtE73iGz7Jfc5gwDG9Wls212Zk5q1WDrdYUlEw K8yq0J8O55wuirzFUu8L6i8uJnsRc1kjEIk/SXmAEGaMEnE7L3q9//+fhvCqD/qm pxX0m2U/9PER0VJrbQtZAbZNtOhF/HUuXzQGfoIj8qgUMIAZMWBa+nIPnX/YtJU= -----END CERTIFICATE-----Generated at Tue Jul 1 21:13:36 2025 by rpki-client