$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa File: 79483f1f-35c5-4ee2-9db8-c98fac055e03.roa (raw, json) Hash identifier: 6F1s55KH6p8l6UtV2GaEX4yHRRY0YrQO7uTGiJirWLY= Subject key identifier: AE:BB:E4:97:B4:F1:43:75:75:0B:35:17:4B:DC:1D:9A:2A:89:3D:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30230B004454663FDEB9DCF651B9AF4BA332E80C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa Signing time: Tue 24 Jun 2025 00:11:41 +0000 ROA not before: Tue 24 Jun 2025 00:11:41 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:23:0b:00:44:54:66:3f:de:b9:dc:f6:51:b9:af:4b:a3:32:e8:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:11:41 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=e22c0c120813a8d1f1d0a1058dd16225978394377349b0365d95000ac5379bb5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:66:21:a8:e9:a0:b6:d8:46:3b:e0:14:be:e2: 3f:b8:82:3c:6c:eb:0f:a8:d1:68:c5:67:46:74:21: 5b:1f:b6:32:7d:5a:53:f5:07:44:c1:57:6d:03:59: b2:56:6e:33:2a:72:43:61:76:e6:b8:65:70:23:ba: 61:0b:e7:33:87:37:3c:7c:30:bd:7e:62:74:43:db: a9:fd:fb:bc:56:c6:3b:b9:74:5f:a8:66:43:05:f8: 91:94:37:9b:c8:a6:01:d6:81:f6:ef:5d:30:f2:99: c1:31:76:19:8c:86:aa:ee:be:19:85:d6:52:a4:c5: c5:5b:7d:2f:9b:0b:83:ac:93:d0:59:66:8f:71:78: c2:98:77:cb:6d:98:cb:50:cb:62:cf:26:35:dd:8e: dc:56:cd:15:5b:91:72:86:84:c5:0e:3f:30:ac:fc: d5:91:14:b7:b5:00:ff:f3:09:a3:c8:30:75:33:4b: 5c:1c:0d:07:9a:f6:d6:8d:9d:8a:8f:5c:d5:93:94: 54:9a:81:d9:a2:95:5e:13:f0:08:d5:03:7c:ea:64: fd:74:e6:9e:67:e5:12:3e:5f:c8:79:92:76:fd:52: ec:98:a6:ca:23:2b:7e:27:01:d6:e7:ee:a2:42:65: 76:a9:36:5f:51:69:7e:7b:15:9b:2d:9f:3b:89:98: c2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:BB:E4:97:B4:F1:43:75:75:0B:35:17:4B:DC:1D:9A:2A:89:3D:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/79483f1f-35c5-4ee2-9db8-c98fac055e03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:a400::/40 Signature Algorithm: sha256WithRSAEncryption 87:88:e1:89:80:92:80:9d:62:08:50:a6:a8:bc:ad:e3:5c:db: c1:4c:65:36:e8:46:45:c9:33:cc:d9:53:e4:6c:df:89:5a:04: 6b:d0:ab:76:3e:1d:12:78:e6:a0:af:e6:ee:36:86:74:7c:3e: 6e:c1:10:00:8c:7c:9b:25:08:86:30:c2:c4:38:35:69:dc:c4: fc:47:81:50:66:67:e9:7d:e4:79:92:8a:cd:b2:ca:0e:fb:5c: 11:53:3b:c9:bb:be:c9:d7:d1:4a:9e:52:4e:38:26:5b:bb:ea: 87:e7:78:23:9b:cb:73:c1:f1:6d:db:55:5d:58:5d:03:b3:1b: bd:cb:08:22:20:66:5a:08:be:a3:96:f6:e9:02:09:d8:db:f6: c9:2b:22:6a:98:49:12:08:b5:1c:9a:95:4a:42:e4:81:70:95: 80:34:8d:54:95:c4:54:eb:0b:ca:6e:3f:08:39:57:46:36:c2: 3d:68:65:99:d7:1d:01:83:b9:85:d6:f4:8d:81:03:55:58:4d: b2:b4:c6:68:d3:74:63:ca:84:e9:12:4f:2f:32:17:44:b0:fc: e1:1c:60:16:56:22:cf:80:a4:28:4a:49:35:a1:73:fd:75:f1: f8:03:fe:f8:f8:96:6a:c6:cf:0b:eb:4e:cf:e0:86:45:49:ee: 25:d8:48:cd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMCMLAERUZj/eudz2UbmvS6My6AwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAxMTQxWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjJjMGMxMjA4MTNhOGQxZjFkMGExMDU4ZGQxNjIyNTk3 ODM5NDM3NzM0OWIwMzY1ZDk1MDAwYWM1Mzc5YmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/ZiGo6aC22EY74BS+4j+4gjxs6w+o0WjFZ0Z0IVsftjJ9 WlP1B0TBV20DWbJWbjMqckNhdua4ZXAjumEL5zOHNzx8ML1+YnRD26n9+7xWxju5 dF+oZkMF+JGUN5vIpgHWgfbvXTDymcExdhmMhqruvhmF1lKkxcVbfS+bC4Osk9BZ Zo9xeMKYd8ttmMtQy2LPJjXdjtxWzRVbkXKGhMUOPzCs/NWRFLe1AP/zCaPIMHUz S1wcDQea9taNnYqPXNWTlFSagdmilV4T8AjVA3zqZP105p5n5RI+X8h5knb9UuyY psojK34nAdbn7qJCZXapNl9RaX57FZstnzuJmML9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrrvkl7TxQ3V1CzUXS9wdmiqJPWIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5NDgzZjFmLTM1YzUtNGVlMi05ZGI4LWM5OGZhYzA1NWUwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9opDANBgkqhkiG9w0BAQsFAAOCAQEAh4jhiYCSgJ1iCFCmqLyt41zb wUxlNuhGRckzzNlT5GzfiVoEa9Crdj4dEnjmoK/m7jaGdHw+bsEQAIx8myUIhjDC xDg1adzE/EeBUGZn6X3keZKKzbLKDvtcEVM7ybu+ydfRSp5STjgmW7vqh+d4I5vL c8HxbdtVXVhdA7MbvcsIIiBmWgi+o5b26QIJ2Nv2ySsiaphJEgi1HJqVSkLkgXCV gDSNVJXEVOsLym4/CDlXRjbCPWhlmdcdAYO5hdb0jYEDVVhNsrTGaNN0Y8qE6RJP LzIXRLD84RxgFlYiz4CkKEpJNaFz/XXx+AP++PiWasbPC+tOz+CGRUnuJdhIzQ== -----END CERTIFICATE-----Generated at Tue Jul 1 05:44:50 2025 by rpki-client