$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907c2395-b661-4997-9c87-b20a9e615473.roa File: 907c2395-b661-4997-9c87-b20a9e615473.roa (raw, json) Hash identifier: lsYKNSB2iU91b3UzW/K5syPTyNzeZiO8afzVkDsvfqs= Subject key identifier: 0E:12:57:E8:88:EB:7D:17:94:28:B0:1E:CB:61:A0:97:EA:6E:4C:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D615924C906A606DC5BE032346E50335F4A334C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907c2395-b661-4997-9c87-b20a9e615473.roa Signing time: Mon 23 Jun 2025 15:12:31 +0000 ROA not before: Mon 23 Jun 2025 15:12:31 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:61:59:24:c9:06:a6:06:dc:5b:e0:32:34:6e:50:33:5f:4a:33:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:12:31 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=2feadc6b2309d371ec9d2b74d1067e171c94bea54c202a61114580d82782e148, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6b:17:55:b6:21:10:61:83:d2:e0:08:90:80: 20:d2:29:f8:c0:72:26:6d:81:f1:c6:d3:64:88:0d: 47:29:9e:0e:1a:32:29:67:7e:04:87:21:04:6b:14: 18:77:fc:fd:27:5c:47:a3:9d:0d:5e:fc:89:60:77: a6:38:d0:e7:aa:4f:8e:cd:89:48:60:21:b7:ab:29: 18:cc:9e:83:48:42:30:93:42:60:3a:ce:d5:1b:fd: c1:c9:40:61:04:9e:53:ae:c3:7f:fa:f2:5c:4f:95: 51:01:b4:54:18:52:a9:d9:e3:57:15:80:c1:cb:6b: 51:9f:31:9e:05:e1:a3:d5:fd:f5:66:ac:0f:49:6c: a7:fd:a8:eb:2e:1c:e2:9e:21:d9:ff:ec:ec:6b:ae: 70:f5:83:33:cb:8c:57:34:94:d7:bd:65:6e:a2:6a: fe:83:69:58:a7:e7:d5:e9:2f:1f:67:a8:d3:53:a9: f2:16:ed:37:11:57:44:57:27:92:9e:99:59:44:8f: e5:55:be:93:e3:58:2c:83:0a:3f:56:4f:d3:f4:02: 68:23:f0:75:48:76:38:46:76:ce:c4:d4:3e:83:79: e3:51:39:d9:67:00:43:cd:58:a1:cb:93:ee:8b:fc: 2c:7a:50:42:85:cd:38:44:43:42:1c:a7:d0:1b:f6: 18:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:12:57:E8:88:EB:7D:17:94:28:B0:1E:CB:61:A0:97:EA:6E:4C:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907c2395-b661-4997-9c87-b20a9e615473.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:5000::/40 Signature Algorithm: sha256WithRSAEncryption 95:dd:ad:0a:1a:0f:e3:00:3f:58:ee:9e:fc:f2:cf:5f:4f:b1: a9:a7:e7:4d:7b:b0:24:23:af:82:ea:16:69:b0:c7:c5:c2:c0: 0a:54:0e:c5:4f:29:7d:ac:9e:70:da:86:fd:5e:c3:2c:df:30: a7:50:c1:00:16:7d:17:bc:99:d2:13:e8:b2:96:b7:fc:54:fa: f9:75:80:c5:d9:19:d3:84:72:a7:ff:7b:49:0c:3d:9e:4b:40: e9:12:4a:43:94:9f:3e:17:19:ba:51:0f:66:ab:15:7f:74:bb: e4:f0:ec:a1:bc:5a:c9:f9:13:20:ef:bf:9a:5f:46:aa:fb:0b: 57:4f:b9:90:06:cb:ed:7b:1c:47:75:ca:1f:3e:e9:61:86:a4: 20:a3:5d:fa:fe:8f:65:a5:00:26:78:2d:b2:0f:ab:07:b6:4c: d7:9d:58:b5:a1:e8:ab:4b:13:6b:5a:c1:87:36:c4:bb:ec:f0: 4f:33:1d:c1:3c:ef:eb:63:fc:d6:de:8e:dc:6f:92:a1:4a:21: 01:88:73:0e:5a:32:fb:a0:b7:30:cf:26:87:06:49:14:27:62: 38:79:18:1e:46:e0:0f:2e:55:17:b1:a4:7f:57:3b:24:07:02: 76:63:8e:25:69:41:f3:2c:07:c8:a3:3f:26:00:f4:b7:e9:2a: d5:41:8d:bc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHWFZJMkGpgbcW+AyNG5QM19KM0wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUxMjMxWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmVhZGM2YjIzMDlkMzcxZWM5ZDJiNzRkMTA2N2UxNzFj OTRiZWE1NGMyMDJhNjExMTQ1ODBkODI3ODJlMTQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuaxdVtiEQYYPS4AiQgCDSKfjAciZtgfHG02SIDUcpng4a MilnfgSHIQRrFBh3/P0nXEejnQ1e/Ilgd6Y40OeqT47NiUhgIberKRjMnoNIQjCT QmA6ztUb/cHJQGEEnlOuw3/68lxPlVEBtFQYUqnZ41cVgMHLa1GfMZ4F4aPV/fVm rA9JbKf9qOsuHOKeIdn/7OxrrnD1gzPLjFc0lNe9ZW6iav6DaVin59XpLx9nqNNT qfIW7TcRV0RXJ5KemVlEj+VVvpPjWCyDCj9WT9P0Amgj8HVIdjhGds7E1D6DeeNR OdlnAEPNWKHLk+6L/Cx6UEKFzThEQ0Icp9Ab9hjrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDhJX6IjrfReUKLAey2Ggl+puTAAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwN2MyMzk1LWI2NjEtNDk5Ny05Yzg3LWIyMGE5ZTYxNTQ3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xUDANBgkqhkiG9w0BAQsFAAOCAQEAld2tChoP4wA/WO6e/PLPX0+x qafnTXuwJCOvguoWabDHxcLAClQOxU8pfayecNqG/V7DLN8wp1DBABZ9F7yZ0hPo spa3/FT6+XWAxdkZ04Ryp/97SQw9nktA6RJKQ5SfPhcZulEPZqsVf3S75PDsobxa yfkTIO+/ml9GqvsLV0+5kAbL7XscR3XKHz7pYYakIKNd+v6PZaUAJngtsg+rB7ZM 151YtaHoq0sTa1rBhzbEu+zwTzMdwTzv62P81t6O3G+SoUohAYhzDloy+6C3MM8m hwZJFCdiOHkYHkbgDy5VF7Gkf1c7JAcCdmOOJWlB8ywHyKM/JgD0t+kq1UGNvA== -----END CERTIFICATE-----Generated at Thu Jul 3 02:28:02 2025 by rpki-client