$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cef76c94-9cd9-4bc2-af61-a27618977a7d.roa File: cef76c94-9cd9-4bc2-af61-a27618977a7d.roa (raw, json) Hash identifier: LJhaydAMQWez942DM9irZLTqqKhn83anMZRas4df/9E= Subject key identifier: 0B:2F:8F:81:7E:22:10:1E:A7:5F:C2:4C:B6:61:9D:3C:8A:D2:C1:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B0C6385AFB587B020EBADF58F6D42A64C7DF60E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cef76c94-9cd9-4bc2-af61-a27618977a7d.roa Signing time: Thu 26 Jun 2025 19:07:37 +0000 ROA not before: Thu 26 Jun 2025 19:07:37 +0000 ROA not after: Thu 31 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3:5040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:0c:63:85:af:b5:87:b0:20:eb:ad:f5:8f:6d:42:a6:4c:7d:f6:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 26 19:07:37 2025 GMT Not After : Jul 31 23:59:59 2025 GMT Subject: serialNumber=30d0e032f923a3e8a96a68bbaa5285cd70947dbf608f127362a27796cbf4790b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e1:90:ab:6e:b4:96:c1:de:08:92:f3:4f:c9: 44:44:68:7d:55:2b:09:44:0f:98:89:d8:99:2c:70: 3e:0d:e6:4e:af:12:e9:8e:0e:73:4b:e1:e9:61:2b: 90:72:6a:08:0f:3a:5f:ed:3c:66:d6:c8:62:ad:0c: 5d:7e:3d:8d:a1:a6:68:34:c7:36:04:73:d9:11:d2: 00:5f:78:7b:5b:f3:ca:63:75:0e:8b:70:a9:46:dc: c6:80:96:30:f6:e8:20:54:66:40:f0:bb:2e:a5:b3: 67:b7:67:83:c6:09:07:a3:6a:23:24:3a:77:8e:b6: 52:c4:19:20:2e:4c:b3:b1:f3:f4:85:11:0d:c5:90: 60:c2:4a:f0:8d:7f:af:65:f4:d6:84:c3:84:7b:55: e3:b0:7b:f8:b4:c7:79:d7:35:1a:62:c8:ff:9f:90: 8e:d6:33:b7:dc:79:02:26:c5:6d:a2:07:fa:f5:0f: 21:83:6e:0a:4c:2c:5b:aa:5b:e2:63:42:c2:78:27: d9:bd:0a:b0:09:19:0b:28:05:5e:85:89:11:b1:82: c3:7e:98:e6:8b:54:82:74:f9:de:89:8e:9d:e7:99: 06:f0:18:96:01:03:0d:d5:cb:2f:d9:19:d8:e0:b2: 82:80:af:48:77:25:36:79:09:73:26:39:fb:36:27: 98:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:2F:8F:81:7E:22:10:1E:A7:5F:C2:4C:B6:61:9D:3C:8A:D2:C1:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cef76c94-9cd9-4bc2-af61-a27618977a7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:5040::/46 Signature Algorithm: sha256WithRSAEncryption 3b:0a:f9:70:44:3d:02:a0:b7:90:02:8e:43:0e:62:3d:ad:3e: 64:27:f5:39:55:f6:eb:82:4c:88:f3:32:52:ca:3f:ca:72:63: 01:75:0c:8b:01:8e:08:2a:47:fa:9c:03:cb:ef:63:14:67:d4: 73:60:38:11:8c:20:13:3d:3f:90:5b:35:14:70:bb:d2:ad:f2: 5e:dd:8e:74:bf:57:24:12:a0:96:3b:ee:d6:e7:0d:37:46:4d: 52:f2:3a:a8:08:3e:d2:0e:84:fd:83:2b:e8:66:52:dd:9a:9b: 4e:d5:29:98:8d:db:83:6c:67:94:32:c7:12:44:9f:eb:a9:35: d4:65:99:59:30:58:8b:a1:55:a3:f6:57:5c:3e:b0:25:f2:9b: b6:fb:57:27:58:59:5f:65:bd:74:2f:d0:70:60:ba:33:b8:4f: 2b:50:67:73:5b:19:f6:ab:bb:32:a8:70:a1:6f:d7:f4:48:b9: ac:f6:11:7d:f5:ed:9c:97:8c:75:e0:fa:ef:e9:0d:81:91:f7: fb:73:fe:b4:38:f5:e7:87:5b:a9:c3:ad:ab:85:86:e1:3d:1f: f0:a2:13:3a:ee:c2:4e:f6:de:39:13:30:60:29:51:31:43:90: c8:cc:f4:fb:86:ea:c0:a2:59:f9:7a:87:cf:db:24:8a:e2:a7: e5:ac:c2:37 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUawxjha+1h7Ag6631j21Cpkx99g4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI2MTkwNzM3WhcNMjUwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGQwZTAzMmY5MjNhM2U4YTk2YTY4YmJhYTUyODVjZDcw OTQ3ZGJmNjA4ZjEyNzM2MmEyNzc5NmNiZjQ3OTBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC34ZCrbrSWwd4IkvNPyUREaH1VKwlED5iJ2JkscD4N5k6v EumODnNL4elhK5ByaggPOl/tPGbWyGKtDF1+PY2hpmg0xzYEc9kR0gBfeHtb88pj dQ6LcKlG3MaAljD26CBUZkDwuy6ls2e3Z4PGCQejaiMkOneOtlLEGSAuTLOx8/SF EQ3FkGDCSvCNf69l9NaEw4R7VeOwe/i0x3nXNRpiyP+fkI7WM7fceQImxW2iB/r1 DyGDbgpMLFuqW+JjQsJ4J9m9CrAJGQsoBV6FiRGxgsN+mOaLVIJ0+d6Jjp3nmQbw GJYBAw3Vyy/ZGdjgsoKAr0h3JTZ5CXMmOfs2J5g/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCy+PgX4iEB6nX8JMtmGdPIrSwTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlZjc2Yzk0LTljZDktNGJjMi1hZjYxLWEyNzYxODk3N2E3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/zUEAwDQYJKoZIhvcNAQELBQADggEBADsK+XBEPQKgt5ACjkMOYj2t PmQn9TlV9uuCTIjzMlLKP8pyYwF1DIsBjggqR/qcA8vvYxRn1HNgOBGMIBM9P5Bb NRRwu9Kt8l7djnS/VyQSoJY77tbnDTdGTVLyOqgIPtIOhP2DK+hmUt2am07VKZiN 24NsZ5QyxxJEn+upNdRlmVkwWIuhVaP2V1w+sCXym7b7VydYWV9lvXQv0HBgujO4 TytQZ3NbGfaruzKocKFv1/RIuaz2EX317ZyXjHXg+u/pDYGR9/tz/rQ49eeHW6nD rauFhuE9H/CiEzruwk723jkTMGApUTFDkMjM9PuG6sCiWfl6h8/bJIrip+Wswjc= -----END CERTIFICATE-----Generated at Sun Jun 29 08:03:57 2025 by rpki-client