$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e6a02e-627a-43f7-826e-9ed87668d73d.roa File: 21e6a02e-627a-43f7-826e-9ed87668d73d.roa (raw, json) Hash identifier: pfzAh+31qK9+9Y0xPwUsvRMMP0Ti7UkG0fdYaklfsiE= Subject key identifier: 9C:91:1D:7A:B3:F8:58:03:AD:D9:CF:21:4A:8B:0F:72:3F:92:B3:C1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 121A0C6532E993B24BCD5CD9F33B25EA78D68651 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e6a02e-627a-43f7-826e-9ed87668d73d.roa Signing time: Mon 16 Jun 2025 19:22:36 +0000 ROA not before: Mon 16 Jun 2025 19:22:36 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1a:0c:65:32:e9:93:b2:4b:cd:5c:d9:f3:3b:25:ea:78:d6:86:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 16 19:22:36 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=be08d15bf0773d17df5dd6663c1708956cd1ee34bdc670ad4c2fe78f6ce27a46, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c1:cd:22:a9:98:9c:05:29:a9:a9:03:4f:01: 92:3a:27:97:8f:1d:61:fc:36:58:a8:86:61:4d:fa: 9e:22:b1:6e:45:b1:d0:e2:2f:12:38:21:78:e9:89: 4d:e8:1c:9e:56:2c:be:14:b2:9f:c8:fe:3b:73:2a: db:4e:c2:ff:80:3c:9d:fa:ca:6e:45:22:fd:e9:a5: 56:78:0f:14:92:00:41:82:71:54:29:4b:f5:b6:ff: e1:3c:70:eb:41:25:51:ed:c9:35:0b:57:5e:b3:81: 33:47:0a:49:88:fe:cd:6f:cf:1e:b7:ff:03:36:d7: 1b:51:88:b9:e5:10:e8:56:b7:8e:cd:41:8e:30:73: a4:87:82:7e:f6:82:73:3a:b0:ff:71:74:db:59:9c: 7b:ea:e1:95:31:ff:8f:eb:14:08:1d:ba:38:71:11: 20:ad:b4:e4:d0:84:13:6b:7e:18:0a:cd:e4:66:2e: b4:79:e7:9b:bb:6f:5a:64:9d:f6:d0:22:ca:d2:bb: cf:e3:27:c3:f7:fb:33:85:c0:c8:5c:ff:aa:7e:fa: a3:49:8e:a6:81:1d:78:de:b4:dc:2e:f0:e5:11:15: 0a:82:d9:75:0f:b5:4a:a4:de:af:18:4c:92:b5:9d: 0b:ac:74:9b:7a:47:3f:36:90:25:58:ae:56:60:51: 6c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:91:1D:7A:B3:F8:58:03:AD:D9:CF:21:4A:8B:0F:72:3F:92:B3:C1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e6a02e-627a-43f7-826e-9ed87668d73d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3::/32 Signature Algorithm: sha256WithRSAEncryption d7:3d:d6:6b:2e:c1:9a:f1:88:56:c1:9d:cb:15:dc:7f:e6:1a: 50:66:9d:2b:2e:48:5c:2a:9e:f9:37:04:dd:22:ac:75:bc:2f: 5f:5e:f3:8b:14:23:2c:82:ba:70:04:2b:7e:82:0e:16:d8:99: e8:92:d5:4f:da:2a:fe:f0:a3:f0:59:43:80:c5:71:6d:d3:a7: e7:39:91:0f:7f:75:af:3b:22:bf:26:0e:fb:af:a9:56:89:5d: 7f:d5:22:66:a6:82:a1:69:ba:f1:21:be:02:6f:6c:43:b4:4c: e4:85:95:8c:6e:c0:25:a1:1c:5c:e0:f4:89:64:49:ea:41:34: c4:23:c7:f5:df:4f:6f:5c:38:0d:36:ba:b7:8e:1a:59:c1:2e: 55:01:26:89:dd:ae:a8:da:01:82:b8:84:c1:bb:11:f6:28:14: 72:68:fe:cd:03:9c:a4:4d:70:68:4e:38:b0:e7:e2:59:b9:57: 03:12:e3:46:ae:4f:08:68:a6:9b:83:d1:71:a9:ae:aa:4a:ac: 1b:95:4a:bc:84:06:88:9e:d8:4b:83:4e:e2:20:a9:70:77:d5: bd:5d:9c:ae:62:51:cb:c3:34:85:8d:71:e1:b2:4c:c1:34:c0: df:61:a1:68:f2:f9:7c:a8:d7:f7:39:bf:ed:a4:e4:de:5c:22: e9:ab:c7:08 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUEhoMZTLpk7JLzVzZ8zsl6njWhlEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE2MTkyMjM2WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTA4ZDE1YmYwNzczZDE3ZGY1ZGQ2NjYzYzE3MDg5NTZj ZDFlZTM0YmRjNjcwYWQ0YzJmZTc4ZjZjZTI3YTQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXwc0iqZicBSmpqQNPAZI6J5ePHWH8NliohmFN+p4isW5F sdDiLxI4IXjpiU3oHJ5WLL4Usp/I/jtzKttOwv+APJ36ym5FIv3ppVZ4DxSSAEGC cVQpS/W2/+E8cOtBJVHtyTULV16zgTNHCkmI/s1vzx63/wM21xtRiLnlEOhWt47N QY4wc6SHgn72gnM6sP9xdNtZnHvq4ZUx/4/rFAgdujhxESCttOTQhBNrfhgKzeRm LrR555u7b1pknfbQIsrSu8/jJ8P3+zOFwMhc/6p++qNJjqaBHXjetNwu8OURFQqC 2XUPtUqk3q8YTJK1nQusdJt6Rz82kCVYrlZgUWzFAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUnJEderP4WAOt2c8hSosPcj+Ss8EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxZTZhMDJlLTYyN2EtNDNmNy04MjZlLTllZDg3NjY4ZDczZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB/zMA0GCSqGSIb3DQEBCwUAA4IBAQDXPdZrLsGa8YhWwZ3LFdx/5hpQ Zp0rLkhcKp75NwTdIqx1vC9fXvOLFCMsgrpwBCt+gg4W2JnoktVP2ir+8KPwWUOA xXFt06fnOZEPf3WvOyK/Jg77r6lWiV1/1SJmpoKhabrxIb4Cb2xDtEzkhZWMbsAl oRxc4PSJZEnqQTTEI8f1309vXDgNNrq3jhpZwS5VASaJ3a6o2gGCuITBuxH2KBRy aP7NA5ykTXBoTjiw5+JZuVcDEuNGrk8IaKabg9Fxqa6qSqwblUq8hAaInthLg07i IKlwd9W9XZyuYlHLwzSFjXHhskzBNMDfYaFo8vl8qNf3Ob/tpOTeXCLpq8cI -----END CERTIFICATE-----Generated at Tue Jul 1 00:45:58 2025 by rpki-client