$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425847b7-6488-4d15-890c-5984f5125201.roa File: 425847b7-6488-4d15-890c-5984f5125201.roa (raw, json) Hash identifier: 1WgAzwFKRxv0Xio3hRW+G8voVbfBHZU/Ng49Y3EfOIw= Subject key identifier: 04:02:10:C6:7D:05:C5:91:DD:0D:86:97:28:3C:B4:C1:EC:F0:44:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 275F3035D2C9B637160F1DFE67EAFF818E443A1B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425847b7-6488-4d15-890c-5984f5125201.roa Signing time: Tue 03 Jun 2025 20:24:29 +0000 ROA not before: Tue 03 Jun 2025 20:24:29 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:41c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:5f:30:35:d2:c9:b6:37:16:0f:1d:fe:67:ea:ff:81:8e:44:3a:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 20:24:29 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=bbf1d38df723495adf709cc5ee08abccd3c1eb188bb0ea337e2285271488ba85, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:14:de:05:55:a4:f9:c0:26:8b:d5:a1:fb: 00:5d:24:9b:84:d3:61:22:08:b6:ec:b7:96:40:cf: 80:41:96:9c:f2:86:e4:3c:ce:06:a2:48:b4:c2:8b: f1:a2:ab:50:fe:d2:2b:43:51:29:6b:d9:5e:13:eb: a8:af:af:c2:55:f5:c2:d4:3e:dc:76:72:10:a1:12: c2:73:eb:c7:19:99:d1:a2:2a:a6:88:61:1a:46:72: 3d:1f:73:6a:28:61:47:32:8a:c1:8c:60:62:52:39: 68:dc:b4:1f:4d:7f:73:69:a9:bb:12:8c:4c:15:8b: 4a:f9:4b:e5:4e:6d:71:7d:be:92:6e:97:29:df:94: 7e:14:ec:5d:dd:82:0c:05:31:a1:8c:0f:89:7d:16: 08:6c:3e:3b:e8:b9:4f:7c:06:a9:27:9d:b5:43:f2: 43:a1:c9:b1:f4:e8:ac:2e:53:6f:ec:d8:3f:08:40: c6:94:72:80:77:3d:22:db:2a:22:16:be:b9:06:20: 05:0e:34:b9:1b:22:5f:da:ea:e1:e6:3b:4e:39:f2: 34:74:49:a0:84:36:0e:02:bf:60:1f:4c:05:a9:9f: 72:8c:bf:d4:a0:1d:b5:7e:b1:01:18:62:79:d7:6c: cd:b1:8f:fb:59:b0:0b:5b:da:64:28:a2:c3:57:24: 41:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:02:10:C6:7D:05:C5:91:DD:0D:86:97:28:3C:B4:C1:EC:F0:44:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425847b7-6488-4d15-890c-5984f5125201.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:41c0::/48 Signature Algorithm: sha256WithRSAEncryption 9c:8b:82:ac:ea:3c:24:a6:dd:40:bc:97:37:9c:31:aa:fa:79: 58:85:3b:05:ab:f8:51:57:ef:c0:f1:fd:99:b0:f2:ad:55:23: e0:82:ed:7a:dc:9f:df:30:fd:c8:de:9f:f1:69:fd:91:dd:cf: 1d:03:34:b5:c2:d3:ca:b9:8c:98:f9:d9:f8:29:bd:30:23:1c: 00:b7:1c:7c:51:41:ea:b1:b6:82:e0:c2:f6:f4:6b:e0:10:41: 1c:98:09:50:73:f2:75:3e:73:0c:b2:14:d9:50:18:c1:0f:0f: 29:2e:61:a9:61:f4:cd:ce:5a:59:6b:82:39:df:09:fd:2d:5a: f7:b5:64:15:fb:3b:d7:5c:f6:93:da:cf:9b:18:e4:22:64:b4: 10:7d:63:b1:f1:a3:f5:f5:5d:1a:6f:c8:2c:63:83:ef:94:33: cc:cd:3e:38:ce:32:6c:85:d8:49:7d:e5:5e:b9:14:9f:2c:35: 67:d0:88:0a:b8:70:71:ab:3a:ae:91:bb:e5:66:0f:2e:5f:fb: f5:c6:25:18:e1:84:77:28:77:4a:08:6c:6a:44:34:43:cf:62: 41:50:71:05:a4:24:02:5f:f0:74:96:9b:82:d8:87:39:77:ae: 11:72:a0:8c:60:47:55:ac:42:bd:46:6c:d0:d5:f0:0f:dd:24: 36:65:38:5f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ18wNdLJtjcWDx3+Z+r/gY5EOhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMjAyNDI5WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmYxZDM4ZGY3MjM0OTVhZGY3MDljYzVlZTA4YWJjY2Qz YzFlYjE4OGJiMGVhMzM3ZTIyODUyNzE0ODhiYTg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8FBTeBVWk+cAmi9Wh+wBdJJuE02EiCLbst5ZAz4BBlpzy huQ8zgaiSLTCi/Giq1D+0itDUSlr2V4T66ivr8JV9cLUPtx2chChEsJz68cZmdGi KqaIYRpGcj0fc2ooYUcyisGMYGJSOWjctB9Nf3NpqbsSjEwVi0r5S+VObXF9vpJu lynflH4U7F3dggwFMaGMD4l9FghsPjvouU98BqknnbVD8kOhybH06KwuU2/s2D8I QMaUcoB3PSLbKiIWvrkGIAUONLkbIl/a6uHmO0458jR0SaCENg4Cv2AfTAWpn3KM v9SgHbV+sQEYYnnXbM2xj/tZsAtb2mQoosNXJEGVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBAIQxn0FxZHdDYaXKDy0wezwRBMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTg0N2I3LTY0ODgtNGQxNS04OTBjLTU5ODRmNTEyNTIwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQcAwDQYJKoZIhvcNAQELBQADggEBAJyLgqzqPCSm3UC8lzecMar6 eViFOwWr+FFX78Dx/Zmw8q1VI+CC7Xrcn98w/cjen/Fp/ZHdzx0DNLXC08q5jJj5 2fgpvTAjHAC3HHxRQeqxtoLgwvb0a+AQQRyYCVBz8nU+cwyyFNlQGMEPDykuYalh 9M3OWllrgjnfCf0tWve1ZBX7O9dc9pPaz5sY5CJktBB9Y7Hxo/X1XRpvyCxjg++U M8zNPjjOMmyF2El95V65FJ8sNWfQiAq4cHGrOq6Ru+VmDy5f+/XGJRjhhHcod0oI bGpENEPPYkFQcQWkJAJf8HSWm4LYhzl3rhFyoIxgR1WsQr1GbNDV8A/dJDZlOF8= -----END CERTIFICATE-----Generated at Mon Jun 9 00:58:55 2025 by rpki-client