$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9a12a27-7ddf-482b-ba7b-0899146109a1.roa File: f9a12a27-7ddf-482b-ba7b-0899146109a1.roa (raw, json) Hash identifier: WZZ2m54RtdAmGu+Fi53RzFDb+hziTVvpkNU2RcJdvf8= Subject key identifier: CE:F0:BB:DF:15:E1:5E:4B:F3:60:DE:2B:5B:77:0D:7A:28:0C:29:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6964E1FF64E68E2F6AE6519E28D52C6B860127 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9a12a27-7ddf-482b-ba7b-0899146109a1.roa Signing time: Tue 10 Jun 2025 16:51:36 +0000 ROA not before: Tue 10 Jun 2025 16:51:36 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff2:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:64:e1:ff:64:e6:8e:2f:6a:e6:51:9e:28:d5:2c:6b:86:01:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 16:51:36 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=ec75ac486ccc054d3467d98d2552ade2e97485e0b08d805cdacd5798cf622d8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:6c:52:6b:a7:58:bd:f5:54:25:a2:04:46:a4: 11:88:b2:bd:ef:ff:50:9b:ae:fb:48:5a:9a:b5:92: dc:50:0f:dc:1a:33:c4:45:2e:eb:fb:f4:eb:9a:9a: 1b:7b:98:d5:54:6d:82:5a:06:63:50:b7:ef:c2:25: 2e:84:fe:14:f4:39:60:1b:3b:c6:92:a7:89:39:0e: cb:62:ec:af:dd:dc:13:3c:d3:e1:e3:4a:a2:d8:e6: a9:f6:d6:fb:91:45:89:0e:d0:37:d1:1b:85:c1:d3: 41:66:2c:75:f8:dc:2e:d9:a8:71:91:fe:2b:c6:0a: 26:0a:f8:42:6c:13:7f:f8:f6:eb:30:6b:5c:15:9d: e2:f0:18:fe:96:d4:14:69:b2:54:d0:dd:d0:2b:3c: 12:01:ce:91:c8:7e:cb:e9:b4:d1:38:4e:19:7c:27: 72:9c:e5:a1:f0:71:ff:a1:d6:f6:78:8f:9d:69:03: 77:c8:61:ae:8e:8f:7d:d7:c7:da:c2:57:b9:6d:4d: 62:f1:39:43:d9:52:5a:77:76:8e:4f:ab:10:8d:be: 10:34:16:b8:39:c0:40:9f:bd:10:d9:c2:c4:ed:ab: f7:ac:63:51:73:4e:30:10:a5:da:20:e7:99:62:4f: 49:ec:2b:9e:e0:05:0c:60:c8:9f:1f:7e:d2:15:7f: f1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:F0:BB:DF:15:E1:5E:4B:F3:60:DE:2B:5B:77:0D:7A:28:0C:29:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9a12a27-7ddf-482b-ba7b-0899146109a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:80a0::/48 Signature Algorithm: sha256WithRSAEncryption b5:37:59:7c:ae:a8:98:3c:28:94:a5:d8:3c:b7:f1:76:9a:b5: 4b:2d:ed:6b:df:0f:9d:fc:65:34:37:31:ee:b7:40:3a:aa:3f: f1:c1:c6:18:26:31:63:b2:34:fc:51:6c:10:47:2e:43:c3:2d: dc:0e:a3:26:61:55:e9:39:7b:77:60:4f:5f:92:f5:1b:67:b6: 1c:03:a9:93:53:de:f5:49:69:f7:73:a7:1c:1f:9a:5e:83:16: e8:31:a3:8f:af:ce:b5:0c:3b:0b:8c:1a:03:b6:58:f0:ea:22: fa:a9:d7:30:80:f6:9c:4b:7a:5d:76:4f:a8:5b:3c:31:cc:83: 77:13:29:63:48:bc:32:c3:39:37:a8:0d:03:99:b0:fd:80:9a: d6:0b:66:8c:77:51:3a:7e:34:8b:3a:d9:3e:b5:72:61:27:43: d5:93:4e:ff:65:97:78:79:f1:bd:c6:95:58:0e:26:00:37:04: a8:78:5f:9b:ae:4e:20:44:1b:9f:49:7a:6c:1d:3c:d8:ea:67: 1c:ed:bd:ed:84:5e:f5:74:8f:5d:50:11:e7:bf:e2:fa:14:5d: cc:71:b8:65:bd:ae:cd:0f:39:15:69:60:59:81:40:c7:e1:4c: 09:9a:e2:ca:00:f5:af:38:61:eb:89:02:03:51:81:05:0c:f2: 54:58:ca:ba -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITaWTh/2Tmji9q5lGeKNUsa4YBJzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MTAxNjUxMzZaFw0yNTA3MTUyMzU5NTla MHoxSTBHBgNVBAUTQGVjNzVhYzQ4NmNjYzA1NGQzNDY3ZDk4ZDI1NTJhZGUyZTk3 NDg1ZTBiMDhkODA1Y2RhY2Q1Nzk4Y2Y2MjJkOGMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAPdsUmunWL31VCWiBEakEYiyve//UJuu+0hamrWS3FAP3Boz xEUu6/v065qaG3uY1VRtgloGY1C378IlLoT+FPQ5YBs7xpKniTkOy2Lsr93cEzzT 4eNKotjmqfbW+5FFiQ7QN9EbhcHTQWYsdfjcLtmocZH+K8YKJgr4QmwTf/j26zBr XBWd4vAY/pbUFGmyVNDd0Cs8EgHOkch+y+m00ThOGXwncpzlofBx/6HW9niPnWkD d8hhro6PfdfH2sJXuW1NYvE5Q9lSWnd2jk+rEI2+EDQWuDnAQJ+9ENnCxO2r96xj UXNOMBCl2iDnmWJPSewrnuAFDGDInx9+0hV/8e0CAwEAAaOCArQwggKwMB0GA1Ud DgQWBBTO8LvfFeFeS/Ng3itbdw16KAwpdjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZjlhMTJhMjctN2RkZi00ODJiLWJhN2ItMDg5OTE0NjEwOWExLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYAH/KAoDANBgkqhkiG9w0BAQsFAAOCAQEAtTdZfK6omDwolKXYPLfxdpq1 Sy3ta98PnfxlNDcx7rdAOqo/8cHGGCYxY7I0/FFsEEcuQ8Mt3A6jJmFV6Tl7d2BP X5L1G2e2HAOpk1Pe9Ulp93OnHB+aXoMW6DGjj6/OtQw7C4waA7ZY8Ooi+qnXMID2 nEt6XXZPqFs8McyDdxMpY0i8MsM5N6gNA5mw/YCa1gtmjHdROn40izrZPrVyYSdD 1ZNO/2WXeHnxvcaVWA4mADcEqHhfm65OIEQbn0l6bB082OpnHO297YRe9XSPXVAR 57/i+hRdzHG4Zb2uzQ85FWlgWYFAx+FMCZriygD1rzhh64kCA1GBBQzyVFjKug== -----END CERTIFICATE-----Generated at Tue Jul 1 20:01:24 2025 by rpki-client