$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16c9067b-6854-4c04-a03a-53bf3df702a4.roa File: 16c9067b-6854-4c04-a03a-53bf3df702a4.roa (raw, json) Hash identifier: d1kE0W2Nj2gy8/cTZtZpsGkjiKQCCvvDRQr6/Yo//Jk= Subject key identifier: 52:04:78:4B:FE:D3:0F:24:DA:1D:4A:53:1B:5A:83:9A:45:A5:60:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7697358C44B696088D755EB966B7072727FE30C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16c9067b-6854-4c04-a03a-53bf3df702a4.roa Signing time: Mon 19 May 2025 15:32:07 +0000 ROA not before: Mon 19 May 2025 15:32:07 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff7:8080::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:97:35:8c:44:b6:96:08:8d:75:5e:b9:66:b7:07:27:27:fe:30:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 15:32:07 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=c524206bdb3abb1264987426677c23554f7f64532dd0f21f486a0760a7ec79af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:72:6a:47:de:29:b0:2b:e1:28:84:54:e9:3e: 86:58:30:91:22:94:e4:55:05:6c:36:d2:a8:4e:5e: 50:72:be:94:0b:78:6c:29:0a:7d:60:92:12:26:0c: 3d:3e:bb:4f:28:b3:6f:5e:85:fb:bb:1f:7d:2e:f7: f6:29:98:08:7a:e1:a7:41:b3:18:60:25:67:e0:3c: 64:3f:ce:35:1c:ee:e3:c9:3a:13:20:20:88:b2:f4: bd:54:66:92:11:7e:55:cb:4e:8b:f5:c2:73:6d:0c: a0:2c:99:26:fb:cd:89:0d:25:6e:ba:b6:d1:c3:39: e3:f2:82:f1:5c:fc:04:7f:7c:1d:82:e3:32:16:ec: 69:fc:9c:ec:22:94:b1:f9:db:c2:45:54:46:2b:06: 1e:d1:c5:07:0c:5b:b5:9d:a9:a5:06:dd:39:18:d0: d5:03:6d:42:d0:1d:a0:93:c0:02:70:46:17:a9:c8: 41:54:9e:33:33:55:b8:ff:d8:a6:8e:4c:43:0e:45: a5:75:ac:01:27:e3:37:4f:ab:22:c0:77:a1:dc:ff: 32:02:70:83:77:34:02:1f:17:bb:08:db:89:62:dc: 3f:a2:6f:60:e6:5f:cc:09:a5:1c:59:62:68:e3:ed: 96:90:50:be:50:8c:b8:ff:54:a3:e6:1f:de:8f:70: 37:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:04:78:4B:FE:D3:0F:24:DA:1D:4A:53:1B:5A:83:9A:45:A5:60:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16c9067b-6854-4c04-a03a-53bf3df702a4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:8080::/46 Signature Algorithm: sha256WithRSAEncryption 97:8b:d2:70:21:e8:97:73:b1:0f:24:a6:f5:8f:12:1a:23:5c: 67:86:05:b1:bb:f4:dc:4d:8e:bb:38:de:8d:fe:1e:58:41:9a: 52:29:67:47:9e:df:86:8f:ad:04:6c:9d:2e:1b:b5:bb:a9:5e: a7:ad:d6:26:3b:1a:23:bc:8a:b1:ed:5d:1a:e6:64:0e:95:5f: ae:99:aa:7e:9f:06:d9:4e:13:46:32:c9:cf:46:65:d3:74:6a: 8c:a3:82:e1:24:85:ed:c3:02:2a:84:a4:48:cf:c7:6c:ac:13: 54:19:a6:a3:cf:f3:04:f7:a1:2c:be:ab:62:f9:6f:d5:ab:ca: d8:b8:42:c6:66:76:c2:79:a2:a2:b9:d7:38:87:c2:b3:c1:49: 0f:d1:d2:89:73:1a:42:97:4d:bb:ae:15:6b:bc:59:92:fa:70: 2c:85:46:cd:4c:69:a5:11:1c:d6:cc:fa:f4:84:f4:5d:8a:12: 74:dc:81:d7:fa:91:a1:9e:c9:93:e3:75:0d:00:e2:ed:2a:bf: 82:94:75:02:62:0f:f2:08:7f:5e:b0:10:b7:d5:b7:7b:59:3e: 8d:92:8a:70:aa:f7:d5:35:6a:59:8e:f5:c2:7d:fd:a4:9f:2a: 8b:f8:59:f5:3a:c2:8d:4e:07:2a:49:52:49:2a:95:98:07:db: 20:4b:ae:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdpc1jES2lgiNdV65ZrcHJyf+MMYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTUzMjA3WhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTI0MjA2YmRiM2FiYjEyNjQ5ODc0MjY2NzdjMjM1NTRm N2Y2NDUzMmRkMGYyMWY0ODZhMDc2MGE3ZWM3OWFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqcmpH3imwK+EohFTpPoZYMJEilORVBWw20qhOXlByvpQL eGwpCn1gkhImDD0+u08os29ehfu7H30u9/YpmAh64adBsxhgJWfgPGQ/zjUc7uPJ OhMgIIiy9L1UZpIRflXLTov1wnNtDKAsmSb7zYkNJW66ttHDOePygvFc/AR/fB2C 4zIW7Gn8nOwilLH528JFVEYrBh7RxQcMW7WdqaUG3TkY0NUDbULQHaCTwAJwRhep yEFUnjMzVbj/2KaOTEMORaV1rAEn4zdPqyLAd6Hc/zICcIN3NAIfF7sI24li3D+i b2DmX8wJpRxZYmjj7ZaQUL5QjLj/VKPmH96PcDcXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUgR4S/7TDyTaHUpTG1qDmkWlYGMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2YzkwNjdiLTY4NTQtNGMwNC1hMDNhLTUzYmYzZGY3MDJhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/3gIAwDQYJKoZIhvcNAQELBQADggEBAJeL0nAh6JdzsQ8kpvWPEhoj XGeGBbG79NxNjrs43o3+HlhBmlIpZ0ee34aPrQRsnS4btbupXqet1iY7GiO8irHt XRrmZA6VX66Zqn6fBtlOE0Yyyc9GZdN0aoyjguEkhe3DAiqEpEjPx2ysE1QZpqPP 8wT3oSy+q2L5b9Wryti4QsZmdsJ5oqK51ziHwrPBSQ/R0olzGkKXTbuuFWu8WZL6 cCyFRs1MaaURHNbM+vSE9F2KEnTcgdf6kaGeyZPjdQ0A4u0qv4KUdQJiD/IIf16w ELfVt3tZPo2SinCq99U1almO9cJ9/aSfKov4WfU6wo1OBypJUkkqlZgH2yBLrkk= -----END CERTIFICATE-----Generated at Sun Jun 8 23:13:37 2025 by rpki-client