$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa File: ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa (raw, json) Hash identifier: cHSvh/ADjOpmDpsH2IiT2VY1yXhaaUhpAGpngTBxVZc= Subject key identifier: 47:60:92:E9:05:A3:D2:E1:51:82:FE:49:99:B2:AD:A7:4D:E2:2A:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7518BE27EFC5E373329E619E707CC736447FB292 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa Signing time: Sat 28 Jun 2025 00:40:35 +0000 ROA not before: Sat 28 Jun 2025 00:40:35 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:18:be:27:ef:c5:e3:73:32:9e:61:9e:70:7c:c7:36:44:7f:b2:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:40:35 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=076dce94e50a9b1cbfb58e96b3ef2e255164142ac744807b3cd5aa56840fc1c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:32:67:86:3b:4e:8b:cd:85:c7:f5:41:33:aa: e8:be:08:5f:ac:03:c7:0b:3f:43:b1:d9:95:f0:2c: 95:bc:48:8c:fd:86:9c:a5:02:16:ed:68:cc:8b:3a: 58:05:eb:99:30:85:16:11:43:e1:2e:62:cb:72:dd: 48:fe:b8:48:67:73:41:a1:02:5c:f6:d1:ef:1a:65: 40:4e:64:8d:81:32:ac:91:d2:21:8f:b8:1c:4a:87: 36:66:9d:ea:7b:2b:03:9d:f1:97:f8:64:5c:a3:69: 78:bc:43:64:5e:a7:7c:dd:b9:72:35:99:9f:6b:31: 05:83:62:15:42:34:32:ce:31:5f:9b:e8:10:ff:a0: 7b:9f:b8:cf:ea:69:06:93:c6:8f:6c:5c:98:bc:80: 07:90:5e:8d:4e:3b:eb:90:e6:8c:3a:af:7a:11:37: 5b:ea:6c:68:40:ce:90:34:e4:25:3a:a8:62:7b:5f: bb:e1:b5:04:5a:f7:55:e5:ef:df:35:4a:26:1c:bd: 7b:5c:51:6a:9f:5d:f6:f4:ec:6a:7c:92:d1:24:a1: 9d:55:e7:75:43:d3:4d:5f:47:9d:57:89:15:e5:46: d7:dd:45:67:8e:37:ca:7a:55:f3:fe:7d:67:9f:85: 33:38:c8:1a:11:0e:3f:73:d2:50:c1:81:ef:a1:0f: 09:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:60:92:E9:05:A3:D2:E1:51:82:FE:49:99:B2:AD:A7:4D:E2:2A:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:7400::/40 Signature Algorithm: sha256WithRSAEncryption b4:16:4a:d4:6a:9f:5a:8e:67:71:bd:bd:19:a2:07:14:d4:2c: 6d:22:0b:b1:9f:ec:82:2f:8d:a3:8c:ec:15:cd:3a:f3:51:7f: 08:dd:ee:32:96:9f:9e:59:90:d0:a6:0a:98:5c:92:4f:5f:36: 40:9a:ee:55:c9:c1:c5:ed:d6:cb:78:bb:9c:97:e6:e6:23:09: e1:e4:18:4b:af:54:3c:3e:5c:0d:93:98:b6:c5:a6:e2:6c:21: 32:65:fd:45:95:0a:ed:02:15:13:8f:b2:56:34:36:41:d6:4f: 6e:30:b2:7d:46:19:d7:44:1e:73:3f:fc:14:45:78:f0:8f:8c: ec:ec:66:f9:8d:53:84:92:db:d6:70:8d:33:fd:a6:e0:40:95: 74:0f:04:87:5d:df:e1:f0:f8:18:59:bd:6e:83:18:ad:78:23: 9d:60:1d:f4:e7:5b:75:4f:21:25:61:49:58:e2:9f:a2:27:d7: bb:f5:79:3f:86:63:45:0b:5f:c1:07:c8:47:14:a6:4d:f6:3e: 96:05:04:01:a8:c5:38:77:76:2b:a5:07:cb:b0:88:3a:0b:03: 20:e4:6e:1b:dc:b8:97:98:cd:96:6d:59:13:97:4b:e2:ad:34: 85:b3:db:cf:0c:a4:3a:d7:be:4a:ac:00:8e:02:a0:5e:a7:f3: d7:0d:2a:44 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdRi+J+/F43MynmGecHzHNkR/spIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDA0MDM1WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzZkY2U5NGU1MGE5YjFjYmZiNThlOTZiM2VmMmUyNTUx NjQxNDJhYzc0NDgwN2IzY2Q1YWE1Njg0MGZjMWMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAMmeGO06LzYXH9UEzqui+CF+sA8cLP0Ox2ZXwLJW8SIz9 hpylAhbtaMyLOlgF65kwhRYRQ+EuYsty3Uj+uEhnc0GhAlz20e8aZUBOZI2BMqyR 0iGPuBxKhzZmnep7KwOd8Zf4ZFyjaXi8Q2Rep3zduXI1mZ9rMQWDYhVCNDLOMV+b 6BD/oHufuM/qaQaTxo9sXJi8gAeQXo1OO+uQ5ow6r3oRN1vqbGhAzpA05CU6qGJ7 X7vhtQRa91Xl7981SiYcvXtcUWqfXfb07Gp8ktEkoZ1V53VD001fR51XiRXlRtfd RWeON8p6VfP+fWefhTM4yBoRDj9z0lDBge+hDwmvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUR2CS6QWj0uFRgv5JmbKtp03iKiQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkZDdmNTMxLTU4YWMtNDRmZi1hY2FlLThjNGU0MGJmYjE5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0dDANBgkqhkiG9w0BAQsFAAOCAQEAtBZK1GqfWo5ncb29GaIHFNQs bSILsZ/sgi+No4zsFc0681F/CN3uMpafnlmQ0KYKmFyST182QJruVcnBxe3Wy3i7 nJfm5iMJ4eQYS69UPD5cDZOYtsWm4mwhMmX9RZUK7QIVE4+yVjQ2QdZPbjCyfUYZ 10Qecz/8FEV48I+M7Oxm+Y1ThJLb1nCNM/2m4ECVdA8Eh13f4fD4GFm9boMYrXgj nWAd9OdbdU8hJWFJWOKfoifXu/V5P4ZjRQtfwQfIRxSmTfY+lgUEAajFOHd2K6UH y7CIOgsDIORuG9y4l5jNlm1ZE5dL4q00hbPbzwykOte+SqwAjgKgXqfz1w0qRA== -----END CERTIFICATE-----Generated at Tue Jul 1 22:51:23 2025 by rpki-client