$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3070339a-26b7-42fb-aa24-853f76e9020a.roa File: 3070339a-26b7-42fb-aa24-853f76e9020a.roa (raw, json) Hash identifier: X0bO93Ak77ZRlFsdmcMn7DHRm2MbzdJPmZTRqIjN90A= Subject key identifier: 68:F7:FF:4A:BA:1A:C2:2A:6A:C6:D9:B3:3C:27:8B:D6:DA:23:87:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73385BA3A432F9A3F664BAFF2E0CE26FB1609FB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3070339a-26b7-42fb-aa24-853f76e9020a.roa Signing time: Fri 30 May 2025 00:21:34 +0000 ROA not before: Fri 30 May 2025 00:21:34 +0000 ROA not after: Fri 04 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:38:5b:a3:a4:32:f9:a3:f6:64:ba:ff:2e:0c:e2:6f:b1:60:9f:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 30 00:21:34 2025 GMT Not After : Jul 4 23:59:59 2025 GMT Subject: serialNumber=f462b9dc25eaa30b313a3f3533e1686dc5735dae639403528378ebb7ce40ac06, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0a:03:54:ea:8e:f3:04:31:f7:7c:37:63:be: 54:89:90:89:56:6a:1d:91:47:e3:69:54:01:f1:3d: ce:45:70:83:80:e7:1f:f1:4e:c0:ad:30:08:d7:56: a9:b5:21:8c:2c:be:8f:46:0f:2f:66:08:c0:1b:5c: 19:34:1d:18:c2:65:34:d7:8f:97:ae:f7:8b:b4:72: ea:9d:8d:ce:81:4b:b1:5b:41:1c:c1:b7:d7:b2:05: ef:48:c9:ed:cb:43:f9:5a:ff:cb:f9:2d:48:06:3d: 92:c8:73:b8:a8:1b:06:a4:84:d8:e9:19:7f:ce:8c: f4:f6:d6:aa:6f:11:76:27:c2:18:3b:51:65:9f:9d: 45:98:2c:f9:b9:2a:9f:23:7e:a5:3d:7b:ce:85:55: 68:d0:bb:89:93:f2:f4:ce:59:90:ef:5c:36:ad:f5: c7:d2:8b:77:98:78:a1:c7:4d:01:69:a8:02:a1:2e: 4e:1a:fb:45:cd:8a:cd:48:40:9d:fd:df:03:e1:5a: 46:7a:33:ab:af:74:3b:43:9f:53:a2:bd:40:10:18: e1:58:06:59:ea:3c:34:80:d7:34:92:9b:6b:1c:f5: 1d:ff:10:07:ea:52:8f:45:5e:8e:ca:a2:54:cc:04: e9:fc:3e:cc:fb:f8:76:82:ca:10:a9:51:fc:97:92: eb:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F7:FF:4A:BA:1A:C2:2A:6A:C6:D9:B3:3C:27:8B:D6:DA:23:87:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3070339a-26b7-42fb-aa24-853f76e9020a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32::/32 Signature Algorithm: sha256WithRSAEncryption 61:52:66:f4:7e:ea:bf:95:ff:98:1a:0b:d5:8f:1d:8a:35:4f: 88:2c:1b:fd:7b:cb:51:64:88:c1:c4:92:2f:7e:61:64:b9:ff: 1c:4c:6a:67:be:3f:72:54:f2:26:d2:79:d8:6b:5a:01:75:ab: d8:57:18:14:44:4e:2a:8e:7f:ab:4d:00:5d:8e:86:88:98:da: 83:e8:68:23:16:f1:92:59:20:27:59:8b:cb:44:da:2f:57:6f: d6:7f:02:5c:55:6f:c0:e6:d4:0f:7c:34:e7:4d:10:12:cf:72: a3:b9:4c:bf:10:65:0a:d6:ca:7b:6a:e6:18:54:df:25:e6:4e: 72:ae:0d:fe:d7:d5:c4:57:25:47:8a:18:2b:1d:96:2f:3d:76: 0e:10:39:e2:6f:d4:0d:4b:2a:3a:ef:56:8e:43:e7:12:45:19: ed:d5:a8:89:a0:0d:c5:55:5f:fb:4e:c2:d0:69:c8:69:57:87: d1:05:26:78:f8:a2:dc:7c:03:f9:6c:f0:a7:4d:d7:fd:07:ae: 6f:84:e5:48:cd:9f:c0:8d:fb:74:e3:c4:7f:7b:5a:06:d4:04: ce:bd:2a:72:4e:81:bc:65:6d:23:78:de:b4:0f:74:3c:ea:86: 24:fd:f6:ed:50:21:46:87:6b:bc:26:c3:9c:d0:c8:58:14:2b: ce:0e:28:90 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUczhbo6Qy+aP2ZLr/Lgzib7Fgn7MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTMwMDAyMTM0WhcNMjUwNzA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDYyYjlkYzI1ZWFhMzBiMzEzYTNmMzUzM2UxNjg2ZGM1 NzM1ZGFlNjM5NDAzNTI4Mzc4ZWJiN2NlNDBhYzA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfCgNU6o7zBDH3fDdjvlSJkIlWah2RR+NpVAHxPc5FcIOA 5x/xTsCtMAjXVqm1IYwsvo9GDy9mCMAbXBk0HRjCZTTXj5eu94u0cuqdjc6BS7Fb QRzBt9eyBe9Iye3LQ/la/8v5LUgGPZLIc7ioGwakhNjpGX/OjPT21qpvEXYnwhg7 UWWfnUWYLPm5Kp8jfqU9e86FVWjQu4mT8vTOWZDvXDat9cfSi3eYeKHHTQFpqAKh Lk4a+0XNis1IQJ393wPhWkZ6M6uvdDtDn1OivUAQGOFYBlnqPDSA1zSSm2sc9R3/ EAfqUo9FXo7KolTMBOn8Psz7+HaCyhCpUfyXkuv1AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUaPf/SroawipqxtmzPCeL1tojhwIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwNzAzMzlhLTI2YjctNDJmYi1hYTI0LTg1M2Y3NmU5MDIwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB8yMA0GCSqGSIb3DQEBCwUAA4IBAQBhUmb0fuq/lf+YGgvVjx2KNU+I LBv9e8tRZIjBxJIvfmFkuf8cTGpnvj9yVPIm0nnYa1oBdavYVxgURE4qjn+rTQBd joaImNqD6GgjFvGSWSAnWYvLRNovV2/WfwJcVW/A5tQPfDTnTRASz3KjuUy/EGUK 1sp7auYYVN8l5k5yrg3+19XEVyVHihgrHZYvPXYOEDnib9QNSyo671aOQ+cSRRnt 1aiJoA3FVV/7TsLQachpV4fRBSZ4+KLcfAP5bPCnTdf9B65vhOVIzZ/Ajft048R/ e1oG1ATOvSpyToG8ZW0jeN60D3Q86oYk/fbtUCFGh2u8JsOc0MhYFCvODiiQ -----END CERTIFICATE-----Generated at Sun Jun 1 04:24:13 2025 by rpki-client