$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c1a5029-7410-499a-b77d-92c3cfc4dffe.roa File: 6c1a5029-7410-499a-b77d-92c3cfc4dffe.roa (raw, json) Hash identifier: xkmCfGb/zl+0iYpOuLLTv8wn5PcDeDAyiYwLdb3m9Is= Subject key identifier: 59:BC:94:A3:DE:5D:AD:46:6A:4B:C9:2D:46:61:98:F5:05:0A:D2:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04607FCD43D697A1D56DE332B6DF0301AA10FC8B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c1a5029-7410-499a-b77d-92c3cfc4dffe.roa Signing time: Thu 26 Jun 2025 19:22:49 +0000 ROA not before: Thu 26 Jun 2025 19:22:49 +0000 ROA not after: Thu 31 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:60:7f:cd:43:d6:97:a1:d5:6d:e3:32:b6:df:03:01:aa:10:fc:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 26 19:22:49 2025 GMT Not After : Jul 31 23:59:59 2025 GMT Subject: serialNumber=79735d7bc326855a76dbd3a3c03f95fd48e741ace84a1cfefddb80c407c7160e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:04:98:7e:e9:77:a0:d3:ed:2f:75:8d:cc:25: 87:2b:2a:2f:93:0f:c9:5f:df:dd:ec:0a:a4:4c:08: ad:6e:73:fa:ac:32:09:d6:55:d4:a9:8b:af:a0:68: f5:59:c1:95:2b:c9:a8:75:ea:51:a4:c3:db:d5:ca: 89:e0:10:14:64:7e:2e:26:b0:ac:78:76:94:40:3a: bd:5a:2e:06:dc:60:a2:49:5c:e3:d7:ff:5f:d9:7a: 72:4f:fc:6c:74:97:45:1b:ae:b1:15:63:ad:8e:a4: df:e0:03:7f:a1:2a:0b:c0:3c:08:96:63:6b:cf:0d: c0:a4:ce:c0:c4:af:5d:df:53:70:4f:e7:b2:67:b2: cc:40:52:d9:da:c9:09:93:d6:c6:ad:99:0f:b8:61: c1:6e:35:8a:74:cc:bf:85:ef:83:09:c9:7f:69:d9: 69:bf:41:4e:92:f2:a8:d6:ad:fe:c8:b9:58:77:4c: a1:b4:a1:40:f3:40:c0:0e:3d:e6:14:f7:df:7c:1c: 4f:0c:b6:66:88:00:4e:99:4d:cc:e4:5b:8f:09:3b: b5:0b:b2:26:51:99:fa:9d:e5:44:c2:e6:09:21:f5: d1:c1:4d:45:39:40:fe:38:91:b3:5c:b0:f9:1b:a9: cb:7d:68:3f:5d:d5:91:02:60:ac:d0:d9:16:69:ed: c6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:BC:94:A3:DE:5D:AD:46:6A:4B:C9:2D:46:61:98:F5:05:0A:D2:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6c1a5029-7410-499a-b77d-92c3cfc4dffe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:1000::/40 Signature Algorithm: sha256WithRSAEncryption 5e:91:1e:65:6d:90:6d:98:25:8b:56:3e:3c:73:82:9b:46:35: 8c:3e:a8:d1:b1:63:2b:64:30:43:36:52:31:f2:e4:b1:4e:69: 76:a4:69:f7:72:26:c0:8b:e4:2d:c3:8f:f3:5b:f9:07:04:94: cb:ba:e6:40:b5:eb:73:39:83:07:ed:cd:7d:37:24:fa:1e:63: 16:d8:2d:ce:59:26:b5:08:53:2d:9a:79:f8:f2:0a:db:2c:a0: ff:0a:5c:cc:e7:7d:75:82:80:5e:21:46:cc:95:88:f4:96:32: f7:49:ab:4e:a0:a5:5f:bd:ba:09:eb:a7:f1:5a:79:4d:18:55: 65:c0:82:ee:de:3e:8d:43:a8:53:02:0f:ab:00:1c:a8:d7:58: f9:ae:a7:7b:97:af:b2:4d:39:5e:1b:af:d1:c8:07:a0:5d:87: 67:99:44:0a:eb:c7:ea:14:6a:88:a4:c9:46:09:92:40:be:3d: 64:33:f2:41:63:0e:cd:62:90:ee:44:b7:d6:91:2c:55:bf:6b: 7b:e4:ec:cb:ca:71:41:aa:bf:29:9f:23:b0:d3:34:8f:73:81: cf:7f:b7:6e:35:bb:47:ca:51:ee:9c:ae:1a:d9:29:c3:e5:7a: cd:1f:8c:c3:8b:46:95:c5:a3:83:ad:82:97:85:05:44:1a:da: d9:cc:e8:51 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBGB/zUPWl6HVbeMytt8DAaoQ/IswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI2MTkyMjQ5WhcNMjUwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTczNWQ3YmMzMjY4NTVhNzZkYmQzYTNjMDNmOTVmZDQ4 ZTc0MWFjZTg0YTFjZmVmZGRiODBjNDA3YzcxNjBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYBJh+6Xeg0+0vdY3MJYcrKi+TD8lf393sCqRMCK1uc/qs MgnWVdSpi6+gaPVZwZUryah16lGkw9vVyongEBRkfi4msKx4dpRAOr1aLgbcYKJJ XOPX/1/ZenJP/Gx0l0UbrrEVY62OpN/gA3+hKgvAPAiWY2vPDcCkzsDEr13fU3BP 57JnssxAUtnayQmT1satmQ+4YcFuNYp0zL+F74MJyX9p2Wm/QU6S8qjWrf7IuVh3 TKG0oUDzQMAOPeYU9998HE8MtmaIAE6ZTczkW48JO7ULsiZRmfqd5UTC5gkh9dHB TUU5QP44kbNcsPkbqct9aD9d1ZECYKzQ2RZp7cY9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWbyUo95drUZqS8ktRmGY9QUK0pYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZjMWE1MDI5LTc0MTAtNDk5YS1iNzdkLTkyYzNjZmM0ZGZmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/zEDANBgkqhkiG9w0BAQsFAAOCAQEAXpEeZW2QbZgli1Y+PHOCm0Y1 jD6o0bFjK2QwQzZSMfLksU5pdqRp93ImwIvkLcOP81v5BwSUy7rmQLXrczmDB+3N fTck+h5jFtgtzlkmtQhTLZp5+PIK2yyg/wpczOd9dYKAXiFGzJWI9JYy90mrTqCl X726Ceun8Vp5TRhVZcCC7t4+jUOoUwIPqwAcqNdY+a6ne5evsk05Xhuv0cgHoF2H Z5lECuvH6hRqiKTJRgmSQL49ZDPyQWMOzWKQ7kS31pEsVb9re+Tsy8pxQaq/KZ8j sNM0j3OBz3+3bjW7R8pR7pyuGtkpw+V6zR+Mw4tGlcWjg62Cl4UFRBra2czoUQ== -----END CERTIFICATE-----Generated at Mon Jun 30 20:31:14 2025 by rpki-client