$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb8e683a-d0ae-41fc-addd-7e4c3b74c9cc.roa File: fb8e683a-d0ae-41fc-addd-7e4c3b74c9cc.roa (raw, json) Hash identifier: tPQbLiP7sFhvyk5pxcce8IDlWEULdfSZ34I3FKyRcws= Subject key identifier: AF:F7:19:CF:68:36:70:90:01:3E:95:81:8A:2C:87:44:98:C3:D4:5A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40CF34362CD77D532F4B9481B78519D13C45886A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb8e683a-d0ae-41fc-addd-7e4c3b74c9cc.roa Signing time: Fri 13 Jun 2025 15:21:31 +0000 ROA not before: Fri 13 Jun 2025 15:21:31 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff7:2040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:cf:34:36:2c:d7:7d:53:2f:4b:94:81:b7:85:19:d1:3c:45:88:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:21:31 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=836406f84e79c84f462a4e70e73fbf6bf3aeb31bf20e158ff9ef9bd1418004ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a4:00:04:1e:61:6e:8e:d3:b3:a3:61:90:df: 1a:93:04:ca:b1:91:8f:90:af:95:a8:4f:30:a3:5d: 36:ed:2a:12:2c:68:5e:2e:96:b6:c9:25:d1:c6:1c: 3e:49:36:59:b3:41:c3:7f:cf:39:6e:64:bd:6c:80: da:aa:6b:99:cb:21:6b:5f:ff:00:ba:6c:3a:d7:77: e1:28:2e:32:11:f2:91:d4:e1:14:6f:5f:67:58:db: c3:a8:69:7c:6c:8f:d5:ac:87:88:48:7b:0f:7e:42: 92:51:d8:9e:e6:0b:d5:be:6d:7b:99:f2:d4:74:2f: 42:97:ba:33:29:f2:81:e3:f3:ab:97:6d:6a:ef:77: 04:91:06:ac:58:de:01:43:bb:eb:8b:d2:ac:e4:ed: 7b:a7:1b:c5:7b:b2:ce:77:ba:b6:c5:01:96:82:b6: c9:14:e5:0c:44:52:83:e1:4f:53:7e:a4:23:b9:52: 68:cc:c7:90:90:40:9c:f1:ac:35:6a:59:29:0d:fc: bc:de:35:a2:b9:23:91:d3:cd:36:21:54:2a:19:a4: cd:7f:c2:d6:a7:d4:60:d7:91:46:bc:b0:8f:02:5a: 09:3a:3a:1b:32:61:92:aa:22:10:da:dc:db:23:f4: b3:06:1e:bf:14:17:81:b7:73:06:a5:68:4a:ce:b3: 91:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F7:19:CF:68:36:70:90:01:3E:95:81:8A:2C:87:44:98:C3:D4:5A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb8e683a-d0ae-41fc-addd-7e4c3b74c9cc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:2040::/46 Signature Algorithm: sha256WithRSAEncryption 34:ff:2d:52:f7:a3:40:4f:5e:71:99:14:d2:18:ca:40:d9:5e: 1b:91:a2:d8:cd:87:8e:53:38:f2:e3:24:51:c4:8a:80:a7:e0: d8:70:b9:1a:ba:83:a9:10:50:20:d6:ea:cb:95:5b:4f:ae:b9: 86:5b:a5:cd:4f:7d:c5:39:c1:fa:e8:68:08:dc:7a:b9:b2:94: 5e:6d:3f:5f:76:51:6a:63:9a:93:8a:d0:12:41:97:89:19:07: 2d:b2:5c:ab:7f:ec:94:ba:a7:33:2e:23:59:45:e8:cf:b0:56: fe:f3:da:49:9f:a0:b9:78:0d:d8:b6:e0:46:12:2d:f9:d2:bb: f2:97:d6:77:c2:3b:0d:94:32:5f:91:31:c0:99:d3:af:87:29: e9:a5:c0:55:ed:14:54:4e:4b:a9:5d:0c:99:61:ab:cb:29:4f: d7:1c:80:c6:27:fa:e0:76:6c:c6:20:05:78:c9:f1:e5:8b:c7: ae:82:f6:32:92:af:72:8e:df:33:61:2a:4c:72:0f:88:8f:8d: b6:f6:3d:c0:f3:ed:21:e0:b1:d8:69:7d:da:4d:c4:7b:ac:6b: ca:7b:08:4a:4e:ca:b9:41:aa:0c:7e:09:6f:2e:9e:5a:9e:2f: 64:35:84:06:48:04:e0:a4:41:57:83:90:07:99:85:02:0f:9c: 93:fd:36:98 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQM80NizXfVMvS5SBt4UZ0TxFiGowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUyMTMxWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzY0MDZmODRlNzljODRmNDYyYTRlNzBlNzNmYmY2YmYz YWViMzFiZjIwZTE1OGZmOWVmOWJkMTQxODAwNGJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxpAAEHmFujtOzo2GQ3xqTBMqxkY+Qr5WoTzCjXTbtKhIs aF4ulrbJJdHGHD5JNlmzQcN/zzluZL1sgNqqa5nLIWtf/wC6bDrXd+EoLjIR8pHU 4RRvX2dY28OoaXxsj9Wsh4hIew9+QpJR2J7mC9W+bXuZ8tR0L0KXujMp8oHj86uX bWrvdwSRBqxY3gFDu+uL0qzk7XunG8V7ss53urbFAZaCtskU5QxEUoPhT1N+pCO5 UmjMx5CQQJzxrDVqWSkN/LzeNaK5I5HTzTYhVCoZpM1/wtan1GDXkUa8sI8CWgk6 OhsyYZKqIhDa3Nsj9LMGHr8UF4G3cwalaErOs5FzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr/cZz2g2cJABPpWBiiyHRJjD1FowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiOGU2ODNhLWQwYWUtNDFmYy1hZGRkLTdlNGMzYjc0YzljYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3IEAwDQYJKoZIhvcNAQELBQADggEBADT/LVL3o0BPXnGZFNIYykDZ XhuRotjNh45TOPLjJFHEioCn4NhwuRq6g6kQUCDW6suVW0+uuYZbpc1PfcU5wfro aAjcermylF5tP192UWpjmpOK0BJBl4kZBy2yXKt/7JS6pzMuI1lF6M+wVv7z2kmf oLl4Ddi24EYSLfnSu/KX1nfCOw2UMl+RMcCZ06+HKemlwFXtFFROS6ldDJlhq8sp T9ccgMYn+uB2bMYgBXjJ8eWLx66C9jKSr3KO3zNhKkxyD4iPjbb2PcDz7SHgsdhp fdpNxHusa8p7CEpOyrlBqgx+CW8unlqeL2Q1hAZIBOCkQVeDkAeZhQIPnJP9Npg= -----END CERTIFICATE-----Generated at Sun Jun 29 16:17:19 2025 by rpki-client