$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa File: 4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa (raw, json) Hash identifier: 87SsqZoW1peatX/xqE1BamegHhIcIAsmKUbV5lOap28= Subject key identifier: 16:38:7A:E8:84:B7:7B:3E:BD:10:95:71:E0:8C:6B:9B:9F:1E:BD:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 335B74CABEEF58329D453108469DD9B1908D11C9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa Signing time: Mon 16 Jun 2025 15:11:31 +0000 ROA not before: Mon 16 Jun 2025 15:11:31 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fed:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:5b:74:ca:be:ef:58:32:9d:45:31:08:46:9d:d9:b1:90:8d:11:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 15:11:31 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=8816632f7021be3790e2db8fe73294dacadbd7f5d982344f4824ad2be6978f2c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:63:07:88:22:65:66:7a:b5:cc:58:65:bf:f4: c9:02:6b:01:39:4a:60:a3:4e:b6:54:75:07:34:04: b5:b8:f6:75:c1:8e:44:3e:ca:5d:56:5f:65:a2:c7: 0d:14:f4:1e:37:e3:c7:83:e7:a1:70:38:f7:88:2a: 8f:43:5f:f1:92:17:48:1f:c4:df:7d:39:95:3c:a2: 01:19:f6:b1:9a:9b:b8:86:2b:20:ed:11:92:ae:a7: 7a:31:6a:72:8e:df:8c:6c:84:b0:62:1e:5c:8c:3b: f6:0b:86:6a:a8:fe:4c:98:8f:da:f5:4b:4b:9a:1d: 53:2d:dd:95:04:fe:30:ba:b6:4a:3d:da:31:6d:1d: de:21:31:99:17:75:43:99:6c:43:a2:ce:2e:97:6a: 19:d1:8a:30:0e:9b:5c:34:15:dd:41:fa:5f:87:13: 9f:94:9f:c4:ee:a3:ea:3c:b0:d4:54:a6:3d:be:cf: d6:23:86:63:c7:4f:44:cb:2d:d9:fa:08:b7:11:14: 79:cd:cb:40:46:34:9c:ca:25:2f:a5:39:fc:2f:ee: b2:72:43:be:e6:f8:9e:3b:67:da:93:c7:8e:d7:38: 01:0d:15:18:2c:da:8b:b5:16:25:72:75:f7:7f:13: 17:8b:2e:8e:2f:95:ec:c3:bc:ee:55:ce:20:e9:30: eb:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:38:7A:E8:84:B7:7B:3E:BD:10:95:71:E0:8C:6B:9B:9F:1E:BD:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fed:c000::/40 Signature Algorithm: sha256WithRSAEncryption 63:7e:96:b5:1f:76:fd:d3:95:f7:42:1e:e9:82:c4:26:e3:81: e5:c4:ef:d0:60:86:d2:37:b6:d9:8e:78:06:24:3d:c4:82:bc: d3:82:b7:e5:19:15:21:6e:40:64:d0:b0:bc:8a:3c:44:e7:85: b8:ed:2c:88:15:bc:52:6e:07:03:08:c4:5a:a5:05:e8:3c:11: bf:2c:5a:26:ab:b4:45:89:19:96:4f:94:3c:39:49:b3:65:7d: a6:a4:b8:57:7a:71:11:87:fa:41:cf:94:9e:57:54:a4:b2:5c: 3f:64:fb:bb:08:f2:c3:10:12:f9:88:51:bd:77:95:38:56:c6: e7:f6:5b:31:1e:61:47:24:48:bd:c4:c4:32:e6:b3:18:a7:2e: 5a:25:9b:c2:f0:76:4f:b4:b4:f4:0c:04:9c:1e:bb:b9:71:12: e6:ce:ed:ab:37:52:27:bb:46:2a:72:e6:d9:b2:1f:ea:8e:41: 56:a1:9b:27:d3:a5:39:4a:c3:6b:e0:ef:63:a5:ab:b9:b0:4b: 13:0d:26:b8:c0:ed:77:44:1e:22:dc:17:05:a5:36:23:3f:06: c5:85:f4:6f:08:33:50:da:5c:03:42:c2:ac:49:b3:f2:5e:c2: 47:24:f6:1a:35:9c:ff:72:92:7a:69:03:c6:c5:85:02:25:b3: 45:17:e5:c6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM1t0yr7vWDKdRTEIRp3ZsZCNEckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTUxMTMxWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODE2NjMyZjcwMjFiZTM3OTBlMmRiOGZlNzMyOTRkYWNh ZGJkN2Y1ZDk4MjM0NGY0ODI0YWQyYmU2OTc4ZjJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9YweIImVmerXMWGW/9MkCawE5SmCjTrZUdQc0BLW49nXB jkQ+yl1WX2Wixw0U9B4348eD56FwOPeIKo9DX/GSF0gfxN99OZU8ogEZ9rGam7iG KyDtEZKup3oxanKO34xshLBiHlyMO/YLhmqo/kyYj9r1S0uaHVMt3ZUE/jC6tko9 2jFtHd4hMZkXdUOZbEOizi6XahnRijAOm1w0Fd1B+l+HE5+Un8Tuo+o8sNRUpj2+ z9YjhmPHT0TLLdn6CLcRFHnNy0BGNJzKJS+lOfwv7rJyQ77m+J47Z9qTx47XOAEN FRgs2ou1FiVydfd/ExeLLo4vlezDvO5VziDpMOtLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFjh66IS3ez69EJVx4Ixrm58evWIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmNTFlODdlLTBjYjUtNDE2YS1hNzUwLWY0MzNiMmE5ZmEwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/twDANBgkqhkiG9w0BAQsFAAOCAQEAY36WtR92/dOV90Ie6YLEJuOB 5cTv0GCG0je22Y54BiQ9xIK804K35RkVIW5AZNCwvIo8ROeFuO0siBW8Um4HAwjE WqUF6DwRvyxaJqu0RYkZlk+UPDlJs2V9pqS4V3pxEYf6Qc+UnldUpLJcP2T7uwjy wxAS+YhRvXeVOFbG5/ZbMR5hRyRIvcTEMuazGKcuWiWbwvB2T7S09AwEnB67uXES 5s7tqzdSJ7tGKnLm2bIf6o5BVqGbJ9OlOUrDa+DvY6WrubBLEw0muMDtd0QeItwX BaU2Iz8GxYX0bwgzUNpcA0LCrEmz8l7CRyT2GjWc/3KSemkDxsWFAiWzRRflxg== -----END CERTIFICATE-----Generated at Tue Jul 1 20:36:57 2025 by rpki-client