$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa File: b8dd8af6-08d5-49b1-8425-477edba3254f.roa (raw, json) Hash identifier: SrFb4KKIJLrzGipW/+AOfv/N40uns5YA6RwxHH4JqCU= Subject key identifier: 31:81:6A:B0:A0:9C:93:55:83:5F:34:5E:39:DB:51:99:9A:E5:52:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 659EB24E493C168BB859DE7ACD6FFA56FCCB9A12 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa Signing time: Mon 23 Jun 2025 15:21:13 +0000 ROA not before: Mon 23 Jun 2025 15:21:13 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4005::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:9e:b2:4e:49:3c:16:8b:b8:59:de:7a:cd:6f:fa:56:fc:cb:9a:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:21:13 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=29ce607696caef1f0d1ef46084e14999b6039758fbc0675b55ab59a782c6af87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d8:c6:7d:05:7a:91:dd:c9:57:7a:f0:03:86: 84:9b:ad:5c:93:75:52:17:5a:9a:76:a3:20:c5:1a: 1b:23:c3:9a:52:69:d2:7b:2d:2b:5d:06:a7:48:a4: d3:68:78:05:3d:f4:1f:c3:b6:9c:34:13:f7:42:4f: f5:b6:e8:e2:42:11:a4:87:a1:ec:ab:27:5b:60:30: be:97:ba:34:d2:ed:12:bc:b7:70:6f:18:e7:05:c1: ac:e9:67:c6:c3:c3:b6:69:dd:d1:82:71:96:24:be: 0a:30:b5:cd:59:b2:97:4a:86:25:e2:b2:4a:29:42: 1e:0b:bf:5d:f1:ed:c7:7e:42:53:33:f7:4d:fa:f2: 58:5e:d3:b3:ef:e0:17:5d:1a:c4:9f:35:75:cc:ba: bd:dc:e9:f6:2e:c0:92:eb:43:ad:5e:65:ee:51:6f: 74:eb:1f:60:0f:7d:d8:c8:c6:9f:38:e2:b0:70:13: 74:82:1d:f2:07:8b:e7:6a:41:5b:6c:e0:6b:31:d1: ac:58:2f:1c:fd:50:49:9e:0b:08:7b:7e:e2:98:b3: fa:da:be:3e:d8:e3:7b:8c:92:83:45:14:0c:9c:42: 5b:b2:19:c6:32:f5:e8:29:f9:75:00:d1:3f:f6:40: d6:c4:6f:c7:3a:4f:54:e0:21:e4:32:11:1b:cf:6f: b3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:81:6A:B0:A0:9C:93:55:83:5F:34:5E:39:DB:51:99:9A:E5:52:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8dd8af6-08d5-49b1-8425-477edba3254f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4005::/48 Signature Algorithm: sha256WithRSAEncryption 93:80:06:8d:21:fc:dd:07:e4:96:cd:d6:56:a9:2d:53:74:9c: 5b:2c:65:fe:f5:8a:c7:e2:71:bb:a1:7d:9a:88:18:34:f0:ff: f1:74:8d:8e:e4:0a:24:53:81:36:48:0c:e9:4e:ac:25:eb:f6: 85:e4:25:09:d0:00:97:06:30:5e:2e:73:dd:77:f8:ae:48:8a: 40:16:91:2d:7a:76:17:5c:a8:f5:1e:c1:4b:76:25:b0:e4:24: 84:48:e7:19:98:1f:f3:f7:6a:af:9d:cf:c4:19:55:31:26:fc: 0e:0d:1e:37:79:64:72:ac:97:3c:04:32:98:52:d0:ed:6f:2a: a0:9f:c5:ec:6c:d7:32:44:a7:6e:7e:41:f0:6d:09:d4:33:97: 35:7e:80:a4:01:c4:8e:b1:4d:43:3a:cd:27:7d:55:95:af:2e: ba:1d:dd:57:55:ba:b8:de:14:10:ed:30:fe:62:43:8d:0f:89: 1d:cd:31:3d:cd:82:51:51:08:a5:d4:e4:dc:1e:c9:34:4d:f9: 2c:ef:f9:8a:ea:fd:fc:33:08:6f:60:f4:5e:f9:6d:28:71:62: 1e:2e:95:36:19:ff:7f:87:4c:9e:bf:5a:d3:3d:13:4d:fe:31: b6:ad:ec:6b:94:d7:5a:9e:15:80:7b:79:7a:d1:7d:81:e4:bc: f6:f6:87:52 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZZ6yTkk8Fou4Wd56zW/6VvzLmhIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUyMTEzWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWNlNjA3Njk2Y2FlZjFmMGQxZWY0NjA4NGUxNDk5OWI2 MDM5NzU4ZmJjMDY3NWI1NWFiNTlhNzgyYzZhZjg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO2MZ9BXqR3clXevADhoSbrVyTdVIXWpp2oyDFGhsjw5pS adJ7LStdBqdIpNNoeAU99B/Dtpw0E/dCT/W26OJCEaSHoeyrJ1tgML6XujTS7RK8 t3BvGOcFwazpZ8bDw7Zp3dGCcZYkvgowtc1ZspdKhiXiskopQh4Lv13x7cd+QlMz 90368lhe07Pv4BddGsSfNXXMur3c6fYuwJLrQ61eZe5Rb3TrH2APfdjIxp844rBw E3SCHfIHi+dqQVts4Gsx0axYLxz9UEmeCwh7fuKYs/ravj7Y43uMkoNFFAycQluy GcYy9egp+XUA0T/2QNbEb8c6T1TgIeQyERvPb7NnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMYFqsKCck1WDXzReOdtRmZrlUmQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4ZGQ4YWY2LTA4ZDUtNDliMS04NDI1LTQ3N2VkYmEzMjU0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHQAUwDQYJKoZIhvcNAQELBQADggEBAJOABo0h/N0H5JbN1lapLVN0 nFssZf71isficbuhfZqIGDTw//F0jY7kCiRTgTZIDOlOrCXr9oXkJQnQAJcGMF4u c913+K5IikAWkS16dhdcqPUewUt2JbDkJIRI5xmYH/P3aq+dz8QZVTEm/A4NHjd5 ZHKslzwEMphS0O1vKqCfxexs1zJEp25+QfBtCdQzlzV+gKQBxI6xTUM6zSd9VZWv Lrod3VdVurjeFBDtMP5iQ40PiR3NMT3NglFRCKXU5NweyTRN+Szv+Yrq/fwzCG9g 9F75bShxYh4ulTYZ/3+HTJ6/WtM9E03+Mbat7GuU11qeFYB7eXrRfYHkvPb2h1I= -----END CERTIFICATE-----Generated at Tue Jul 1 21:21:43 2025 by rpki-client