$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c229c308-822f-45de-8ac2-20ec90d0aa43.roa File: c229c308-822f-45de-8ac2-20ec90d0aa43.roa (raw, json) Hash identifier: iSQaJ/W8u4IOnZSYsomMOzMTy6LB4WUfhIBpbAI2Bi8= Subject key identifier: EE:BE:02:3B:62:7E:12:19:94:4D:29:DB:3F:C7:39:E0:B0:3C:18:2D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 642D5B02DE63F820F4FB9DFDCC587FC40AC47413 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c229c308-822f-45de-8ac2-20ec90d0aa43.roa Signing time: Sat 28 Jun 2025 00:40:17 +0000 ROA not before: Sat 28 Jun 2025 00:40:17 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fee:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:2d:5b:02:de:63:f8:20:f4:fb:9d:fd:cc:58:7f:c4:0a:c4:74:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:40:17 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=a0340666fe307b82fcad73a886b48aee08af853983e81ee8812e515be81ed23c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:85:2e:e7:f7:5f:b7:27:d2:75:86:aa:4a:55: 31:ee:08:55:5c:0b:26:34:2e:d3:48:a7:32:70:2a: c9:e0:0f:ea:5a:1a:56:0c:3d:54:71:13:7e:52:fc: 90:7f:5a:ec:0e:d3:18:4f:0a:1a:b2:b1:60:bd:9b: 9b:aa:e0:54:d7:86:e8:fb:ae:e7:5a:44:f0:c5:80: 13:1c:54:03:3f:b0:30:f9:4e:bd:8d:66:f3:4a:6a: 0c:78:a3:61:54:41:22:71:18:fb:15:2f:c7:c3:94: 24:7a:39:54:ab:df:8f:cb:73:6c:36:b7:b2:87:0e: 0b:c6:2a:8e:9e:df:61:ba:94:98:f5:6e:58:e1:1a: 03:a5:54:42:17:7a:4b:fd:96:5a:21:c4:ec:56:c4: b9:cc:4b:ef:99:df:ad:cd:70:dd:db:f8:d0:ab:c6: 45:8b:d3:78:73:46:e3:a8:3f:28:96:18:db:25:21: 34:61:67:28:26:d1:e3:e2:c5:dd:9f:01:17:25:d9: ec:d5:a1:1b:80:b7:55:24:01:31:c8:ba:25:65:16: d0:ce:f3:59:ec:d2:39:51:70:ec:bc:76:81:00:aa: 1a:80:7e:a0:3c:7f:d3:23:a4:a0:42:ad:7d:20:04: 75:ac:0d:fa:19:d4:d4:cf:2b:3d:20:7a:62:20:80: 95:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:BE:02:3B:62:7E:12:19:94:4D:29:DB:3F:C7:39:E0:B0:3C:18:2D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c229c308-822f-45de-8ac2-20ec90d0aa43.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fee:2000::/40 Signature Algorithm: sha256WithRSAEncryption 48:9e:a6:98:1c:da:86:21:58:a8:e3:f2:a7:17:b5:7a:bb:a8: 41:50:fb:9c:1c:26:0e:fc:23:4a:0f:d4:7e:d5:8e:a4:33:f3: b9:c4:5b:62:97:16:18:cf:48:e9:6f:fa:8d:6d:8c:72:10:63: cc:43:99:52:22:e7:86:ee:ed:39:b7:49:97:d8:95:4b:41:2e: 76:e3:c1:cb:05:3d:e8:13:14:78:cc:d0:e6:45:87:80:0d:97: b5:2c:05:67:73:79:8c:92:89:d0:5a:f9:c3:fe:67:ed:84:43: 47:13:10:04:57:09:19:d4:0a:13:1b:a1:91:ec:7a:07:70:57: 6e:a8:32:93:48:52:ff:6b:cc:2d:ca:96:a4:04:65:9d:fa:96: c6:b8:c7:59:37:39:44:b4:da:47:2c:2d:70:d2:0a:8e:5b:8c: 67:b0:b8:2a:68:cf:a6:e1:1c:f2:a2:d8:04:63:87:8d:df:9b: 7c:10:74:0c:9a:d5:b2:7b:73:5a:2b:10:e5:62:5f:17:59:d8: db:6e:4b:2d:94:26:7e:d9:38:f5:77:c6:f2:97:51:5b:4e:74: 45:8d:d8:60:4d:32:bc:10:58:0a:bb:0c:66:54:aa:43:f1:c1: 1d:84:60:07:bb:8e:5f:79:33:94:00:8a:44:28:3e:f8:36:f4: 71:8a:f3:c2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZC1bAt5j+CD0+539zFh/xArEdBMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDA0MDE3WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDM0MDY2NmZlMzA3YjgyZmNhZDczYTg4NmI0OGFlZTA4 YWY4NTM5ODNlODFlZTg4MTJlNTE1YmU4MWVkMjNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPhS7n91+3J9J1hqpKVTHuCFVcCyY0LtNIpzJwKsngD+pa GlYMPVRxE35S/JB/WuwO0xhPChqysWC9m5uq4FTXhuj7rudaRPDFgBMcVAM/sDD5 Tr2NZvNKagx4o2FUQSJxGPsVL8fDlCR6OVSr34/Lc2w2t7KHDgvGKo6e32G6lJj1 bljhGgOlVEIXekv9llohxOxWxLnMS++Z363NcN3b+NCrxkWL03hzRuOoPyiWGNsl ITRhZygm0ePixd2fARcl2ezVoRuAt1UkATHIuiVlFtDO81ns0jlRcOy8doEAqhqA fqA8f9MjpKBCrX0gBHWsDfoZ1NTPKz0gemIggJVBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU7r4CO2J+EhmUTSnbP8c54LA8GC0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMjljMzA4LTgyMmYtNDVkZS04YWMyLTIwZWM5MGQwYWE0My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/uIDANBgkqhkiG9w0BAQsFAAOCAQEASJ6mmBzahiFYqOPypxe1eruo QVD7nBwmDvwjSg/UftWOpDPzucRbYpcWGM9I6W/6jW2MchBjzEOZUiLnhu7tObdJ l9iVS0EuduPBywU96BMUeMzQ5kWHgA2XtSwFZ3N5jJKJ0Fr5w/5n7YRDRxMQBFcJ GdQKExuhkex6B3BXbqgyk0hS/2vMLcqWpARlnfqWxrjHWTc5RLTaRywtcNIKjluM Z7C4KmjPpuEc8qLYBGOHjd+bfBB0DJrVsntzWisQ5WJfF1nY225LLZQmftk49XfG 8pdRW050RY3YYE0yvBBYCrsMZlSqQ/HBHYRgB7uOX3kzlACKRCg++Db0cYrzwg== -----END CERTIFICATE-----Generated at Wed Jul 2 11:46:15 2025 by rpki-client