$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa File: 6281a3cd-fc20-4f89-a2d4-8e1827292796.roa (raw, json) Hash identifier: wxq6lGO8lK2CrhxfY21goNcOScEFBjPrIXyA4Gs5JSI= Subject key identifier: 94:3F:16:47:91:AC:29:22:28:C3:4A:D3:C7:3A:2E:AB:9C:03:7E:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CD4596509A04C58E0FE91EF6726F622A047EAE7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa Signing time: Fri 16 May 2025 16:50:29 +0000 ROA not before: Fri 16 May 2025 16:50:29 +0000 ROA not after: Fri 20 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:6060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:d4:59:65:09:a0:4c:58:e0:fe:91:ef:67:26:f6:22:a0:47:ea:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 16:50:29 2025 GMT Not After : Jun 20 23:59:59 2025 GMT Subject: serialNumber=81d10b499d385b3a3be4a991060703aec4ba55fad3bb52b13771353403604a97, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3d:37:5b:69:8e:ed:b5:2c:8a:a8:c9:9e:6d: f1:95:80:a2:b7:65:4a:65:88:72:c9:75:00:25:2d: a9:72:dc:aa:06:1b:d9:01:4b:96:a1:3a:79:97:a5: 9c:ed:d1:aa:04:90:64:01:12:0c:40:39:25:98:25: a9:af:bb:67:c9:fe:0f:ad:a1:69:67:6d:a2:d9:8f: 36:c6:cd:10:6a:13:27:da:93:c4:8a:f9:4b:0e:f7: 9e:f4:88:8d:8d:ef:80:6e:f5:ed:9e:4e:31:a4:fd: 80:ac:b6:74:45:c0:1e:56:ba:4f:34:5f:2e:0f:d1: 99:54:a5:fe:07:2d:34:9f:e4:dd:8b:09:4c:2b:aa: 12:d4:60:72:71:73:fa:17:a0:b1:aa:64:08:b5:ca: e8:bd:0c:28:6e:db:75:ab:78:e1:1f:5d:50:fa:89: 79:d8:73:dc:32:24:fd:7f:c8:18:e3:16:58:06:1b: c3:eb:14:53:2b:15:af:bc:45:e5:e8:82:c4:14:4d: 7f:95:34:a2:54:ca:b1:07:74:3a:59:76:e9:73:e2: 95:d0:78:b0:46:d8:23:e9:70:10:a7:f5:85:87:83: 20:61:3c:ab:bd:c2:2d:1b:f1:75:31:61:ed:f9:e5: 32:6d:0e:e0:51:78:39:83:ae:7a:bf:42:59:ea:98: 92:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3F:16:47:91:AC:29:22:28:C3:4A:D3:C7:3A:2E:AB:9C:03:7E:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:6060::/48 Signature Algorithm: sha256WithRSAEncryption 40:15:28:48:43:36:c8:13:72:00:ff:49:c1:2b:91:c4:39:83: b8:b3:93:83:de:b6:88:07:cf:ed:5c:82:fb:b9:0d:7e:2f:b6: ee:58:6b:40:79:28:70:17:54:8c:da:17:6c:4d:59:1f:36:51: ee:43:54:2a:91:df:71:ff:30:fb:89:0b:21:a3:2b:72:e2:fe: 09:78:a4:92:d0:18:c4:fd:3c:85:7a:0e:22:25:b4:f5:71:56: 45:e9:7e:22:c6:5f:9f:6e:52:bf:4e:c6:bd:21:84:fa:d1:c4: ed:b0:ba:a0:20:8d:95:1f:22:0d:00:5e:b2:2a:c9:72:92:63: a3:47:3e:c7:0a:c4:81:ae:0d:59:de:a8:f9:3f:0e:2a:83:95: e2:78:37:88:15:b3:47:b0:cd:b5:44:79:0c:63:f1:57:20:90: d3:4c:be:d5:cd:ec:70:42:2a:1c:75:b2:28:cf:d6:60:f6:fa: c4:30:f7:c8:0f:e2:03:6c:3d:02:4a:5e:45:bc:87:2f:7f:e5: fd:8a:5b:a9:b5:5d:b0:51:d4:23:bf:d7:5c:9b:e8:70:a4:42: 3c:58:d9:ed:89:26:84:0b:0f:ff:7d:7f:7a:5a:91:1e:a7:af: c0:3a:ec:98:74:e0:d9:96:f8:9d:d1:e6:70:94:d5:1b:ee:bb: 21:66:ea:87 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbNRZZQmgTFjg/pHvZyb2IqBH6ucwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE2MTY1MDI5WhcNMjUwNjIwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MWQxMGI0OTlkMzg1YjNhM2JlNGE5OTEwNjA3MDNhZWM0 YmE1NWZhZDNiYjUyYjEzNzcxMzUzNDAzNjA0YTk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrPTdbaY7ttSyKqMmebfGVgKK3ZUpliHLJdQAlLaly3KoG G9kBS5ahOnmXpZzt0aoEkGQBEgxAOSWYJamvu2fJ/g+toWlnbaLZjzbGzRBqEyfa k8SK+UsO9570iI2N74Bu9e2eTjGk/YCstnRFwB5Wuk80Xy4P0ZlUpf4HLTSf5N2L CUwrqhLUYHJxc/oXoLGqZAi1yui9DChu23WreOEfXVD6iXnYc9wyJP1/yBjjFlgG G8PrFFMrFa+8ReXogsQUTX+VNKJUyrEHdDpZdulz4pXQeLBG2CPpcBCn9YWHgyBh PKu9wi0b8XUxYe355TJtDuBReDmDrnq/QlnqmJL3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlD8WR5GsKSIow0rTxzouq5wDfuwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyODFhM2NkLWZjMjAtNGY4OS1hMmQ0LThlMTgyNzI5Mjc5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//YGAwDQYJKoZIhvcNAQELBQADggEBAEAVKEhDNsgTcgD/ScErkcQ5 g7izk4PetogHz+1cgvu5DX4vtu5Ya0B5KHAXVIzaF2xNWR82Ue5DVCqR33H/MPuJ CyGjK3Li/gl4pJLQGMT9PIV6DiIltPVxVkXpfiLGX59uUr9Oxr0hhPrRxO2wuqAg jZUfIg0AXrIqyXKSY6NHPscKxIGuDVneqPk/DiqDleJ4N4gVs0ewzbVEeQxj8Vcg kNNMvtXN7HBCKhx1sijP1mD2+sQw98gP4gNsPQJKXkW8hy9/5f2KW6m1XbBR1CO/ 11yb6HCkQjxY2e2JJoQLD/99f3pakR6nr8A67Jh04NmW+J3R5nCU1RvuuyFm6oc= -----END CERTIFICATE-----Generated at Sun Jun 1 05:23:47 2025 by rpki-client