$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6527a6a7-121d-43dc-8efc-219b189b20fb.roa File: 6527a6a7-121d-43dc-8efc-219b189b20fb.roa (raw, json) Hash identifier: J8AdwQm+T6CdlZIYVYmp1mTD2DYAtz7IYPGVPrEmhEw= Subject key identifier: DF:0B:F8:63:F6:1D:B7:24:A0:16:2B:49:F3:69:4D:B1:9A:3D:0A:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76C85E5D9424B57D345CB8185307D082672D62F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6527a6a7-121d-43dc-8efc-219b189b20fb.roa Signing time: Mon 19 May 2025 18:40:23 +0000 ROA not before: Mon 19 May 2025 18:40:23 +0000 ROA not after: Mon 23 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f10:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 07 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c8:5e:5d:94:24:b5:7d:34:5c:b8:18:53:07:d0:82:67:2d:62:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 18:40:23 2025 GMT Not After : Jun 23 23:59:59 2025 GMT Subject: serialNumber=08dbf4798d5c2ddcd86196e1e26ab154b9d7f27ce1fa9ee49c82818d66ecbb5b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:50:3c:f6:f2:21:08:36:7d:da:cc:9b:c6:39: aa:ea:97:5d:7b:f5:d9:01:85:94:5e:0f:13:eb:2c: 18:56:26:3b:d2:d3:20:61:9c:e5:2e:a7:be:73:4a: 9b:55:3c:23:c3:59:18:3a:21:f0:20:07:4d:cf:64: 21:23:2e:aa:50:1d:5b:34:1d:59:c7:98:74:3b:55: 1f:c4:c7:d6:82:2a:a5:34:ac:7d:9d:da:92:37:0a: fe:09:8d:76:34:80:37:46:b1:8a:1e:8e:9d:b5:83: 0d:91:e9:13:2f:1b:e9:b9:6d:1c:88:4f:bb:58:de: 1f:7a:32:d6:b0:97:24:8e:e6:f4:b1:59:a8:06:1c: 07:63:07:21:a2:34:f5:40:35:37:51:a4:7a:78:aa: 3e:78:37:6b:34:e9:3a:30:c6:26:17:f8:27:bb:a8: 3d:c0:f1:e3:f6:fd:3a:73:08:34:ee:d0:fd:3b:03: 88:74:bb:e9:8c:65:d9:a8:9f:ae:fb:36:3e:fd:4c: 5e:5d:7b:19:a8:9c:55:e2:dc:52:52:91:76:e1:38: f0:78:1d:50:17:e3:7d:cd:91:07:cd:5e:bf:a2:03: 07:e8:4b:ba:ac:48:78:38:b4:23:ba:d4:c6:84:9d: 87:e8:a3:0d:35:cc:a5:94:99:db:6e:d8:d8:e1:c4: b1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:0B:F8:63:F6:1D:B7:24:A0:16:2B:49:F3:69:4D:B1:9A:3D:0A:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6527a6a7-121d-43dc-8efc-219b189b20fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:4000::/36 Signature Algorithm: sha256WithRSAEncryption 3c:cd:4b:6c:53:d4:4e:6e:a7:6a:ec:7b:0b:40:67:ab:fb:37: 09:3b:6e:7c:eb:63:37:29:4d:ff:03:a6:fd:2b:7d:bb:66:7f: ef:85:0c:65:0f:fd:51:0e:cd:c2:60:c6:d3:52:29:8e:d2:4d: d5:ae:59:c9:9f:4a:f0:f9:27:71:d5:aa:46:69:0c:ae:45:8e: 13:3b:2c:ba:b1:ea:60:a2:e8:67:9a:7f:92:d1:c3:38:67:79: 68:84:14:b9:62:3f:99:f0:f0:e3:26:e4:1f:a5:56:8b:2b:72: db:22:af:b5:59:b3:61:53:08:ea:e8:4f:7d:42:2f:8e:65:48: 73:5e:31:60:ac:a8:cf:ed:f2:8b:3f:0c:60:f8:dd:35:1f:af: 9e:b8:e3:9b:e3:f0:27:14:c3:c0:35:66:48:e3:e7:a1:ea:d0: 06:4b:ec:83:59:bd:83:a1:c8:d7:02:0c:5c:3d:2a:4b:61:79: 4b:43:34:e9:13:94:70:eb:4d:86:14:34:1b:a5:9c:06:59:60: 15:33:f2:7e:f1:c8:59:9e:91:ce:05:46:b1:74:dd:4c:02:ec: e6:e8:07:f3:17:3f:4e:9e:ce:25:ba:75:a6:82:c2:3c:23:50: de:37:f3:d7:a4:91:64:76:95:3b:fa:a5:1d:4f:17:91:7c:13: e8:c7:a5:d5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUdsheXZQktX00XLgYUwfQgmctYvcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTE5MTg0MDIzWhcNMjUwNjIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGRiZjQ3OThkNWMyZGRjZDg2MTk2ZTFlMjZhYjE1NGI5 ZDdmMjdjZTFmYTllZTQ5YzgyODE4ZDY2ZWNiYjViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIUDz28iEINn3azJvGOarql1179dkBhZReDxPrLBhWJjvS 0yBhnOUup75zSptVPCPDWRg6IfAgB03PZCEjLqpQHVs0HVnHmHQ7VR/Ex9aCKqU0 rH2d2pI3Cv4JjXY0gDdGsYoejp21gw2R6RMvG+m5bRyIT7tY3h96MtawlySO5vSx WagGHAdjByGiNPVANTdRpHp4qj54N2s06TowxiYX+Ce7qD3A8eP2/TpzCDTu0P07 A4h0u+mMZdmon677Nj79TF5dexmonFXi3FJSkXbhOPB4HVAX433NkQfNXr+iAwfo S7qsSHg4tCO61MaEnYfoow01zKWUmdtu2NjhxLFZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3wv4Y/YdtySgFitJ82lNsZo9CmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1MjdhNmE3LTEyMWQtNDNkYy04ZWZjLTIxOWIxODliMjBmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8QQDANBgkqhkiG9w0BAQsFAAOCAQEAPM1LbFPUTm6naux7C0Bnq/s3 CTtufOtjNylN/wOm/St9u2Z/74UMZQ/9UQ7NwmDG01IpjtJN1a5ZyZ9K8PkncdWq RmkMrkWOEzssurHqYKLoZ5p/ktHDOGd5aIQUuWI/mfDw4ybkH6VWiyty2yKvtVmz YVMI6uhPfUIvjmVIc14xYKyoz+3yiz8MYPjdNR+vnrjjm+PwJxTDwDVmSOPnoerQ Bkvsg1m9g6HI1wIMXD0qS2F5S0M06ROUcOtNhhQ0G6WcBllgFTPyfvHIWZ6RzgVG sXTdTALs5ugH8xc/Tp7OJbp1poLCPCNQ3jfz16SRZHaVO/qlHU8XkXwT6Mel1Q== -----END CERTIFICATE-----Generated at Fri Jun 6 05:30:48 2025 by rpki-client