$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/2592ade6-505a-4e24-928b-9a1e71b309ae.roa File: 2592ade6-505a-4e24-928b-9a1e71b309ae.roa (raw, json) Hash identifier: eS1Gncj0diPqihdtGKtROQwPDExgqDJYpel72oZl7h0= Subject key identifier: 2A:26:E4:1F:C6:29:39:59:D3:A9:A6:E2:13:31:DD:D7:89:D3:D2:BF Certificate issuer: /CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Certificate serial: 49EF1660A3F4414F55FBBD824540C087C7419992 Authority key identifier: 6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/2592ade6-505a-4e24-928b-9a1e71b309ae.roa Signing time: Mon 16 Jun 2025 19:10:31 +0000 ROA not before: Mon 16 Jun 2025 19:10:31 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2605:c940::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/7276b2fa-548d-4970-8314-8d73945c34d8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/746e0111-fafb-430f-b778-d204cfcd99a8.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 01 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:ef:16:60:a3:f4:41:4f:55:fb:bd:82:45:40:c0:87:c7:41:99:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267 Validity Not Before: Jun 16 19:10:31 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=bdd4a97cd383df3326404d2180d0f6626e46e671f4b2e580bc12aafaa3ce4131, CN=15f1683a-c0c2-4266-9a96-ecf9eba3239c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:34:01:e5:b8:4f:b6:e4:d0:79:51:12:44:f3: e9:04:11:71:9c:4b:b3:23:f7:c9:75:1d:8e:32:e6: e0:f0:d8:17:82:b4:95:b6:54:33:24:d4:0a:82:da: d9:04:5b:f8:42:ec:ee:6c:09:2d:1a:1c:88:ea:b4: 6d:55:63:a7:da:cf:06:8d:a8:8a:d2:23:6a:28:56: a4:4a:e1:e3:31:98:a6:f0:22:88:0d:c2:2f:ed:0a: 0f:21:9f:a8:99:35:82:9e:32:af:bc:25:4f:0e:6a: 1a:0b:7c:bc:01:ef:90:e0:1a:88:36:4b:31:69:2a: 63:ef:72:4d:8d:36:85:0b:e0:68:c2:b7:71:75:43: 37:ef:18:72:56:99:b9:63:6c:5e:20:90:e0:3d:d2: bf:9b:ec:94:0f:07:76:c6:e6:a0:ed:aa:9f:0f:b9: e9:3e:b8:6e:82:37:d1:c3:51:c7:f7:9b:a2:fc:84: d3:dc:53:bd:b8:da:0a:90:a3:84:7d:3b:58:09:50: 39:47:9d:d1:4d:77:21:ef:bf:f2:1a:85:b1:e5:b8: d6:cf:1a:fc:6d:0e:b0:2e:d7:d8:a2:ad:03:73:e1: 4a:79:a7:50:0a:a2:05:26:52:fd:79:3c:67:55:3b: 7a:a5:ac:96:71:9c:e5:2a:30:3d:7d:fb:8a:e1:60: c2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:26:E4:1F:C6:29:39:59:D3:A9:A6:E2:13:31:DD:D7:89:D3:D2:BF X509v3 Authority Key Identifier: keyid:6D:CA:65:D0:71:4D:7E:F2:56:90:BC:09:13:D3:54:DB:AC:89:2A:5E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/746e0111-fafb-430f-b778-d204cfcd99a8/7276b2fa-548d-4970-8314-8d73945c34d8/6f9b985b0fe5def09b994f8cf60bad8c9029c00657750b2267.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/2592ade6-505a-4e24-928b-9a1e71b309ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b3f6b688-cff4-402f-97d5-02f6f1886b7e/5d7wm5lPjPYLrYyQKcAGV3ULImc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:c940::/32 Signature Algorithm: sha256WithRSAEncryption aa:55:01:3f:18:57:35:9f:c9:14:34:72:18:74:0e:32:d7:28: ed:25:23:91:92:40:1f:b8:1a:55:bd:d4:83:66:04:ca:b0:d0: ad:50:68:d0:4c:c4:0c:ea:36:ec:53:8d:4c:05:fb:a7:25:1a: 26:70:44:11:19:14:4b:45:b6:dc:32:05:3c:d5:2a:dd:ed:05: 9e:70:be:16:31:0a:97:ab:62:c8:68:61:6a:9a:f6:31:18:a0: 45:87:06:9c:85:2e:91:c5:c6:a6:e0:3b:d6:fb:8e:ed:cb:4a: df:0b:71:03:4c:80:42:38:74:02:b8:2b:4e:e2:f7:38:75:8b: 83:59:cc:ba:fb:a4:3a:7d:62:a9:9a:28:2e:47:29:2b:40:d4: 23:6c:93:b1:be:ca:02:b5:d7:55:17:30:73:19:a1:c1:07:3a: b2:c1:d6:3d:58:bd:68:e4:e5:da:b4:6e:07:25:22:eb:6f:2f: 06:41:7a:d4:91:fe:6e:45:eb:b3:00:9d:bf:7d:c0:50:50:94: 18:2b:f5:d2:55:1a:3c:94:b2:d1:0f:98:7b:66:d7:9f:45:3a: 2b:58:95:00:be:3e:9c:a1:9d:e7:fc:d4:ef:a1:30:ce:b0:0d: 8e:63:b7:1e:9c:61:da:0e:89:0b:f9:ec:8c:26:52:a7:c2:59: 08:27:49:fe -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUSe8WYKP0QU9V+72CRUDAh8dBmZIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmY5Yjk4NWIwZmU1ZGVmMDliOTk0ZjhjZjYwYmFkOGM5 MDI5YzAwNjU3NzUwYjIyNjcwHhcNMjUwNjE2MTkxMDMxWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGQ0YTk3Y2QzODNkZjMzMjY0MDRkMjE4MGQwZjY2MjZl NDZlNjcxZjRiMmU1ODBiYzEyYWFmYWEzY2U0MTMxMS0wKwYDVQQDEyQxNWYxNjgz YS1jMGMyLTQyNjYtOWE5Ni1lY2Y5ZWJhMzIzOWMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0NAHluE+25NB5URJE8+kEEXGcS7Mj98l1HY4y5uDw2BeC tJW2VDMk1AqC2tkEW/hC7O5sCS0aHIjqtG1VY6fazwaNqIrSI2ooVqRK4eMxmKbw IogNwi/tCg8hn6iZNYKeMq+8JU8OahoLfLwB75DgGog2SzFpKmPvck2NNoUL4GjC t3F1QzfvGHJWmbljbF4gkOA90r+b7JQPB3bG5qDtqp8Puek+uG6CN9HDUcf3m6L8 hNPcU7242gqQo4R9O1gJUDlHndFNdyHvv/IahbHluNbPGvxtDrAu19iirQNz4Up5 p1AKogUmUv15PGdVO3qlrJZxnOUqMD19+4rhYMKhAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUKibkH8YpOVnTqabiEzHd14nT0r8wHwYDVR0jBBgwFoAUbcpl0HFNfvJW kLwJE9NU26yJKl4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz Lzc0NmUwMTExLWZhZmItNDMwZi1iNzc4LWQyMDRjZmNkOTlhOC83Mjc2YjJmYS01 NDhkLTQ5NzAtODMxNC04ZDczOTQ1YzM0ZDgvNmY5Yjk4NWIwZmU1ZGVmMDliOTk0 ZjhjZjYwYmFkOGM5MDI5YzAwNjU3NzUwYjIyNjcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjNmNmI2ODgtY2ZmNC00MDJmLTk3ZDUtMDJm NmYxODg2YjdlLzI1OTJhZGU2LTUwNWEtNGUyNC05MjhiLTlhMWU3MWIzMDlhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2IzZjZiNjg4LWNmZjQtNDAyZi05N2Q1 LTAyZjZmMTg4NmI3ZS81ZDd3bTVsUGpQWUxyWXlRS2NBR1YzVUxJbWMuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBclAMA0GCSqGSIb3DQEBCwUAA4IBAQCqVQE/GFc1n8kUNHIYdA4y1yjt JSORkkAfuBpVvdSDZgTKsNCtUGjQTMQM6jbsU41MBfunJRomcEQRGRRLRbbcMgU8 1Srd7QWecL4WMQqXq2LIaGFqmvYxGKBFhwachS6Rxcam4DvW+47ty0rfC3EDTIBC OHQCuCtO4vc4dYuDWcy6+6Q6fWKpmiguRykrQNQjbJOxvsoCtddVFzBzGaHBBzqy wdY9WL1o5OXatG4HJSLrby8GQXrUkf5uReuzAJ2/fcBQUJQYK/XSVRo8lLLRD5h7 ZtefRTorWJUAvj6coZ3n/NTvoTDOsA2OY7cenGHaDokL+eyMJlKnwlkIJ0n+ -----END CERTIFICATE-----Generated at Mon Jun 30 12:22:22 2025 by rpki-client