$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa File: c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa (raw, json) Hash identifier: zdOS/7G5AilpulUfwcIp7HrKIbNmRDcV90eJ3oYhUVE= Subject key identifier: AA:6E:B2:76:9B:B4:2F:76:18:0F:EE:03:6C:2C:51:29:35:2C:4C:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 460939C5529AE1ED8CDB88C7FFBADD419A760147 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa Signing time: Wed 11 Jun 2025 00:31:57 +0000 ROA not before: Wed 11 Jun 2025 00:31:57 +0000 ROA not after: Wed 16 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:09:39:c5:52:9a:e1:ed:8c:db:88:c7:ff:ba:dd:41:9a:76:01:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 11 00:31:57 2025 GMT Not After : Jul 16 23:59:59 2025 GMT Subject: serialNumber=b512c0e9c5b96b6c172662c588182f04db45b85a4b9aaab2bdee5044c904db94, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:9c:f4:b0:ae:9c:c8:32:05:56:16:12:1b:26: bd:60:b4:30:02:59:0b:5e:e3:87:8b:b1:1d:5d:47: 35:e2:56:fd:33:0a:7b:8a:e5:80:cc:86:27:9c:13: f0:bd:87:50:c7:26:07:17:24:0c:53:69:b8:7b:04: 24:d8:08:5d:e3:70:4d:46:20:f3:82:e3:1e:d9:09: 98:58:18:e1:40:23:57:e0:f9:1d:32:b1:ee:65:40: 2c:ae:5c:b6:98:77:e2:62:72:4b:7a:e3:18:6e:ec: ac:a8:46:24:a1:6e:a5:7d:c4:29:6f:a3:7b:57:18: 8b:54:c6:d7:45:77:f4:c8:5b:30:5e:1c:4c:d3:30: 16:20:26:2d:e7:d2:a3:71:14:e3:7b:9d:f5:e1:a5: 7a:22:f7:d9:56:51:45:a0:9e:c1:3d:0e:13:22:b3: a5:d0:42:f6:85:e6:24:0a:d5:d3:e1:93:7b:fa:8c: e9:41:cb:91:91:8c:60:ba:09:e7:7a:69:6d:a1:a7: 8c:60:fe:ad:0c:de:f0:41:6c:74:2f:60:db:27:ef: f9:55:2b:78:22:ec:f9:1c:6c:62:31:9f:cb:c7:a0: bf:8c:fa:fb:90:87:b3:90:d7:c6:ee:70:1a:ee:ac: 38:e1:2b:ae:0e:f2:3b:15:8a:24:e9:b1:0b:3f:6e: c3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:6E:B2:76:9B:B4:2F:76:18:0F:EE:03:6C:2C:51:29:35:2C:4C:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c96d5347-7bf9-4984-b298-4dee0ceb88ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8060::/48 Signature Algorithm: sha256WithRSAEncryption 63:cd:27:53:27:75:fc:31:37:fc:5b:a7:bc:78:b9:3c:8c:64: 1c:fa:3b:b1:6c:33:7b:b0:93:a7:68:d5:3c:48:70:a4:3b:86: 0a:db:c1:6d:97:f9:45:59:1f:8d:39:45:7c:b9:3b:90:11:2b: 2f:6e:93:30:8d:2a:53:bf:87:af:7d:3a:13:f4:28:04:22:d6: 35:18:45:ee:51:95:c8:f7:93:7c:e5:a6:a2:d6:91:55:fc:d9: 29:6d:5b:c2:81:b6:f8:8d:03:ce:a8:34:87:7b:a3:ad:54:28: bc:9e:85:03:be:b3:08:be:57:76:9e:73:6b:1e:0f:8c:e7:60: e4:48:78:33:cb:1c:31:b1:fe:32:e5:50:df:5e:6e:29:d3:e7: 62:ce:e8:21:e8:e9:fe:a8:a8:c0:01:45:1b:85:86:d9:b9:6b: d0:85:db:86:5d:29:f5:88:96:bc:3a:c1:6c:27:92:fe:05:c3: 4e:40:dc:9f:3a:f6:ef:16:68:2e:22:fa:39:7b:9c:23:a8:ba: f5:31:9a:3c:75:24:31:af:9d:49:48:64:5a:e8:22:c5:ca:bf: a6:00:f4:b8:87:1c:83:a1:f9:6d:d9:08:72:4e:15:9c:04:62: 5c:69:f3:b6:a1:5a:39:cc:bf:1c:60:b0:ca:a2:b2:95:7a:81: 50:cc:fa:05 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURgk5xVKa4e2M24jH/7rdQZp2AUcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjExMDAzMTU3WhcNMjUwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNTEyYzBlOWM1Yjk2YjZjMTcyNjYyYzU4ODE4MmYwNGRi NDViODVhNGI5YWFhYjJiZGVlNTA0NGM5MDRkYjk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOnPSwrpzIMgVWFhIbJr1gtDACWQte44eLsR1dRzXiVv0z CnuK5YDMhiecE/C9h1DHJgcXJAxTabh7BCTYCF3jcE1GIPOC4x7ZCZhYGOFAI1fg +R0yse5lQCyuXLaYd+Jickt64xhu7KyoRiShbqV9xClvo3tXGItUxtdFd/TIWzBe HEzTMBYgJi3n0qNxFON7nfXhpXoi99lWUUWgnsE9DhMis6XQQvaF5iQK1dPhk3v6 jOlBy5GRjGC6Ced6aW2hp4xg/q0M3vBBbHQvYNsn7/lVK3gi7PkcbGIxn8vHoL+M +vuQh7OQ18bucBrurDjhK64O8jsViiTpsQs/bsO5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUqm6ydpu0L3YYD+4DbCxRKTUsTA0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NmQ1MzQ3LTdiZjktNDk4NC1iMjk4LTRkZWUwY2ViODhlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gGAwDQYJKoZIhvcNAQELBQADggEBAGPNJ1MndfwxN/xbp7x4uTyM ZBz6O7FsM3uwk6do1TxIcKQ7hgrbwW2X+UVZH405RXy5O5ARKy9ukzCNKlO/h699 OhP0KAQi1jUYRe5Rlcj3k3zlpqLWkVX82SltW8KBtviNA86oNId7o61UKLyehQO+ swi+V3aec2seD4znYORIeDPLHDGx/jLlUN9ebinT52LO6CHo6f6oqMABRRuFhtm5 a9CF24ZdKfWIlrw6wWwnkv4Fw05A3J869u8WaC4i+jl7nCOouvUxmjx1JDGvnUlI ZFroIsXKv6YA9LiHHIOh+W3ZCHJOFZwEYlxp87ahWjnMvxxgsMqispV6gVDM+gU= -----END CERTIFICATE-----Generated at Tue Jul 1 10:05:48 2025 by rpki-client