$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa File: 6e9ea69d-4b33-4a85-894c-5620e610e709.roa (raw, json) Hash identifier: G/ljJvl/WkLsuzGqaW3vgP2LdLHqc/XNNMqJnZumwAI= Subject key identifier: E8:BC:B9:DA:CE:CE:C9:52:ED:C9:A6:95:F3:00:F1:FF:2C:B1:91:0F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 625BBC95F0B05E938CE40C3512444D7D7D143D96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa Signing time: Sat 24 May 2025 00:11:41 +0000 ROA not before: Sat 24 May 2025 00:11:41 +0000 ROA not after: Sat 28 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:85e8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:5b:bc:95:f0:b0:5e:93:8c:e4:0c:35:12:44:4d:7d:7d:14:3d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 24 00:11:41 2025 GMT Not After : Jun 28 23:59:59 2025 GMT Subject: serialNumber=c18548c3ed02bc2bcd5405bdc16a342137de264aaac33ef7b7241b214ecc42fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0b:1c:d6:fa:b4:75:f9:f3:ab:52:57:df:ac: 9c:7a:01:4f:f7:26:c7:e2:24:b8:80:2e:7c:8e:31: ad:28:45:93:13:2d:1d:8a:db:74:fc:8a:c1:05:84: c4:46:62:ce:2a:44:ec:3a:9f:b8:2d:8b:b6:e4:9b: 94:df:55:80:0e:fd:db:89:49:8f:70:8e:f5:ce:6d: 47:99:01:ab:b2:b8:91:be:ca:31:30:d0:d2:8e:4e: ab:0a:e1:97:d8:85:50:70:15:2c:4c:a4:48:57:55: fc:e3:58:3c:42:50:b3:7b:6c:18:3b:73:e9:f7:66: 3a:ec:e4:46:6e:a4:d3:43:d3:c5:97:e4:d8:67:a7: 09:ed:aa:24:de:8e:06:db:dc:ed:31:14:ab:98:6c: 3e:b6:4e:9e:cc:46:c3:a1:37:49:25:a9:03:5c:00: 30:ae:89:1a:4a:8c:27:a8:99:2e:d6:8d:59:17:ca: 34:d5:70:c4:93:f7:bf:27:1c:00:4f:81:e3:9c:a7: 6e:64:48:29:fb:d9:94:25:35:2d:d9:90:cc:96:bd: 10:b4:1b:2e:69:d9:98:a4:b6:a7:45:50:e3:8c:93: 9b:38:ae:de:bf:8c:56:ac:2b:04:d7:b7:a0:58:d4: fc:c8:e4:fa:b4:d4:3b:17:f3:2b:98:f4:09:8c:7b: 34:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:BC:B9:DA:CE:CE:C9:52:ED:C9:A6:95:F3:00:F1:FF:2C:B1:91:0F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:85e8::/48 Signature Algorithm: sha256WithRSAEncryption 2c:87:cd:d5:08:6a:ed:36:1b:e0:3d:6d:a2:2f:0c:0c:92:0f: e8:f9:ea:c4:50:92:d6:08:e8:ec:7a:e5:6a:25:6c:a5:5c:08: 0c:d5:7a:79:95:4e:b3:6a:e2:6b:e7:09:8a:cf:a8:2a:83:42: 4f:0e:09:13:53:55:9a:41:3e:a9:05:09:d4:27:de:f4:5b:0d: 58:00:2d:e6:82:35:1a:74:13:c3:76:14:22:c5:e9:97:c5:19: f9:0a:5f:b6:de:8c:54:1c:7f:fd:4c:37:3f:72:27:aa:1e:f2: 3b:9c:23:f5:74:a0:19:97:7e:dc:ec:60:23:bc:b3:b2:d7:e9: 70:54:24:58:35:bd:f9:a4:1c:43:c3:54:bb:7a:51:8a:b0:c4: 03:93:48:85:da:f3:b8:b3:70:6d:8d:e2:0f:17:f0:4b:f7:4f: 12:ea:f8:64:7c:7e:95:98:78:96:92:a6:be:b8:f2:a7:2e:8e: 35:8b:e3:bb:a8:7c:5a:18:80:74:e6:a6:9a:73:2c:7c:60:47: f9:51:a1:8a:59:20:e3:c8:e9:44:2c:5a:92:ea:96:c6:85:2d: 7d:77:c3:ec:0f:d2:1a:94:69:da:d4:e5:71:76:dd:4e:ce:70: f7:eb:98:b5:4e:e4:27:40:23:3b:5d:e7:eb:3b:59:94:e3:5a: 33:66:25:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYlu8lfCwXpOM5Aw1EkRNfX0UPZYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTI0MDAxMTQxWhcNMjUwNjI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTg1NDhjM2VkMDJiYzJiY2Q1NDA1YmRjMTZhMzQyMTM3 ZGUyNjRhYWFjMzNlZjdiNzI0MWIyMTRlY2M0MmZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+CxzW+rR1+fOrUlffrJx6AU/3JsfiJLiALnyOMa0oRZMT LR2K23T8isEFhMRGYs4qROw6n7gti7bkm5TfVYAO/duJSY9wjvXObUeZAauyuJG+ yjEw0NKOTqsK4ZfYhVBwFSxMpEhXVfzjWDxCULN7bBg7c+n3Zjrs5EZupNND08WX 5NhnpwntqiTejgbb3O0xFKuYbD62Tp7MRsOhN0klqQNcADCuiRpKjCeomS7WjVkX yjTVcMST978nHABPgeOcp25kSCn72ZQlNS3ZkMyWvRC0Gy5p2ZiktqdFUOOMk5s4 rt6/jFasKwTXt6BY1PzI5Pq01DsX8yuY9AmMezRfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6Ly52s7OyVLtyaaV8wDx/yyxkQ8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlOWVhNjlkLTRiMzMtNGE4NS04OTRjLTU2MjBlNjEwZTcwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hegwDQYJKoZIhvcNAQELBQADggEBACyHzdUIau02G+A9baIvDAyS D+j56sRQktYI6Ox65WolbKVcCAzVenmVTrNq4mvnCYrPqCqDQk8OCRNTVZpBPqkF CdQn3vRbDVgALeaCNRp0E8N2FCLF6ZfFGfkKX7bejFQcf/1MNz9yJ6oe8jucI/V0 oBmXftzsYCO8s7LX6XBUJFg1vfmkHEPDVLt6UYqwxAOTSIXa87izcG2N4g8X8Ev3 TxLq+GR8fpWYeJaSpr648qcujjWL47uofFoYgHTmpppzLHxgR/lRoYpZIOPI6UQs WpLqlsaFLX13w+wP0hqUadrU5XF23U7OcPfrmLVO5CdAIztd5+s7WZTjWjNmJXY= -----END CERTIFICATE-----Generated at Sun Jun 1 05:12:31 2025 by rpki-client