$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa File: 57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa (raw, json) Hash identifier: lsGjWzKvhDv6z1lehc+oMKaw7P5JpahExmLtutaKMx4= Subject key identifier: A5:EC:1E:A6:4B:82:0C:55:13:58:9D:8E:A7:0C:CA:09:C4:52:E4:3E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 489740956097AD6BC6D323188866B4E9C5994A98 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa Signing time: Mon 23 Jun 2025 15:12:22 +0000 ROA not before: Mon 23 Jun 2025 15:12:22 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:97:40:95:60:97:ad:6b:c6:d3:23:18:88:66:b4:e9:c5:99:4a:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:12:22 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=b20fd3a3e78edf2144dfa01cbe63cc591fa55a1c57cfefbfc07b07c45e0aaa67, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:df:74:81:95:c4:c0:f9:9f:e4:36:5d:80:7a: a3:61:6a:07:a5:a1:24:3b:25:18:0b:21:08:09:f2: 6f:b2:90:6e:e7:fe:f9:ec:8a:4c:8b:1b:9e:d8:dd: e2:0c:64:c4:5a:b3:71:92:82:6e:57:31:f1:ca:a3: 4e:dd:06:05:70:ad:5c:1c:9d:fb:17:36:f2:81:57: 79:c3:ee:87:d2:11:7c:d3:c2:b2:92:ff:93:c4:c4: e8:df:8c:e3:15:ea:36:70:d6:e0:f9:bf:e0:f0:9a: 1d:99:7f:cb:ab:5d:aa:b9:ac:0d:41:be:44:f0:3a: ce:47:56:c5:68:bb:3b:e1:a6:0d:83:45:eb:90:08: b3:d1:70:05:78:01:ec:9f:a8:0f:4b:dd:33:9e:11: 7c:44:80:14:68:6a:8c:0f:a6:81:e5:ab:b4:aa:92: e1:1a:56:82:c2:64:4a:34:e4:09:78:ba:b1:38:2b: 9d:54:cf:41:23:79:af:ed:65:d6:31:5a:9a:6b:9c: e3:6c:ba:e2:a4:d9:69:b6:0f:99:61:a2:25:66:a3: bb:81:eb:52:bb:e1:fd:83:fe:c3:70:45:15:8c:ef: 81:f7:fa:e3:2c:83:92:e0:dd:05:ce:df:37:49:a2: 93:0d:7b:84:c2:76:2d:c3:e4:54:c4:3b:f1:52:a6: c5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:EC:1E:A6:4B:82:0C:55:13:58:9D:8E:A7:0C:CA:09:C4:52:E4:3E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57b9b652-a6e0-4d50-b4a8-bf9ea2724802.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:5000::/40 Signature Algorithm: sha256WithRSAEncryption 5f:0f:49:a6:7e:12:87:5b:1b:e1:22:c1:f9:f3:6e:c4:c6:12: b8:cc:ac:e8:56:63:10:00:85:57:71:eb:e6:be:9e:9e:b5:79: c7:74:3e:8d:8f:2c:56:45:16:f0:ef:6a:a4:67:0d:db:5c:3b: ea:0c:02:63:8c:b6:20:bc:15:5d:5a:e1:da:73:80:ac:ef:00: cc:86:b4:4d:2a:cf:30:fc:e2:95:33:5c:80:11:45:8d:8c:6f: db:e4:fb:e7:00:d9:84:43:61:43:10:e9:39:8c:58:1a:68:ef: 24:cf:64:2b:25:4e:c4:c3:94:15:98:d1:6a:1a:97:ca:ff:32: 16:5c:64:30:36:a3:7b:2c:f2:8b:72:91:e2:c0:5c:50:a3:d3: 93:8f:92:b3:f1:53:23:e6:97:5f:86:6b:6b:a7:6b:c3:e9:19: 4b:ed:8e:29:9a:42:25:4a:0b:1c:39:e7:ab:4c:a1:38:b0:a3: cd:b7:5d:37:78:53:2a:70:d6:45:e4:0f:4f:b9:52:f1:d3:ff: f4:a9:aa:8b:3c:f7:9a:2d:2c:83:6b:73:35:02:f8:c9:40:67: b6:53:7c:6f:ab:71:24:a4:67:bd:b7:30:ff:6f:dc:e5:77:27: 6f:2d:c0:4b:24:47:74:13:d0:63:88:16:99:ff:3a:bf:f5:19: 1b:7a:44:2e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSJdAlWCXrWvG0yMYiGa06cWZSpgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUxMjIyWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjBmZDNhM2U3OGVkZjIxNDRkZmEwMWNiZTYzY2M1OTFm YTU1YTFjNTdjZmVmYmZjMDdiMDdjNDVlMGFhYTY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+33SBlcTA+Z/kNl2AeqNhageloSQ7JRgLIQgJ8m+ykG7n /vnsikyLG57Y3eIMZMRas3GSgm5XMfHKo07dBgVwrVwcnfsXNvKBV3nD7ofSEXzT wrKS/5PExOjfjOMV6jZw1uD5v+Dwmh2Zf8urXaq5rA1BvkTwOs5HVsVouzvhpg2D ReuQCLPRcAV4AeyfqA9L3TOeEXxEgBRoaowPpoHlq7SqkuEaVoLCZEo05Al4urE4 K51Uz0Ejea/tZdYxWpprnONsuuKk2Wm2D5lhoiVmo7uB61K74f2D/sNwRRWM74H3 +uMsg5Lg3QXO3zdJopMNe4TCdi3D5FTEO/FSpsXRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUpewepkuCDFUTWJ2OpwzKCcRS5D4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3YjliNjUyLWE2ZTAtNGQ1MC1iNGE4LWJmOWVhMjcyNDgwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9oUDANBgkqhkiG9w0BAQsFAAOCAQEAXw9Jpn4Sh1sb4SLB+fNuxMYS uMys6FZjEACFV3Hr5r6enrV5x3Q+jY8sVkUW8O9qpGcN21w76gwCY4y2ILwVXVrh 2nOArO8AzIa0TSrPMPzilTNcgBFFjYxv2+T75wDZhENhQxDpOYxYGmjvJM9kKyVO xMOUFZjRahqXyv8yFlxkMDajeyzyi3KR4sBcUKPTk4+Ss/FTI+aXX4Zra6drw+kZ S+2OKZpCJUoLHDnnq0yhOLCjzbddN3hTKnDWReQPT7lS8dP/9Kmqizz3mi0sg2tz NQL4yUBntlN8b6txJKRnvbcw/2/c5Xcnby3ASyRHdBPQY4gWmf86v/UZG3pELg== -----END CERTIFICATE-----Generated at Tue Jul 1 03:50:41 2025 by rpki-client