$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa File: a7f567f4-babd-45d0-82c9-1e940fee8aff.roa (raw, json) Hash identifier: 7SyP1Z+QFvQ7kcM244onk9dDY2db4pldrvbPvB72vCg= Subject key identifier: 22:4C:F9:B7:86:74:BF:1F:0C:E3:B0:A1:22:81:6A:63:69:11:2C:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B0F334093E1FF11EA8273BDDB394AF9F5FE1C82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa Signing time: Tue 03 Jun 2025 20:22:36 +0000 ROA not before: Tue 03 Jun 2025 20:22:36 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:0f:33:40:93:e1:ff:11:ea:82:73:bd:db:39:4a:f9:f5:fe:1c:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 20:22:36 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=f999d8b4f5b3d9ba4d8f8298b8f31f74cdc9102295305ec4ca5f9b9fe6b5ca49, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:29:ae:1e:9b:2b:dd:be:02:92:9e:6a:01:68: 91:79:62:c3:87:34:79:4c:95:07:c9:16:2b:60:12: dc:4b:3c:e7:61:d6:54:25:7b:99:10:c5:80:3d:8c: 71:79:92:9f:93:f8:4f:1a:0c:77:4e:bb:22:f4:47: 6d:df:42:2b:82:9f:5f:37:47:7c:1c:e4:de:c7:74: 5d:ef:94:ae:40:b7:b2:3b:68:19:22:e9:9f:32:56: af:27:37:fa:7a:37:81:98:75:75:1e:be:b4:a5:e2: 6e:e1:60:53:ee:59:2f:20:6f:27:11:3a:b8:f3:0c: a2:f3:1e:74:a7:fc:b3:86:3d:04:4c:5d:3f:08:62: 61:30:2d:0e:c5:6a:7d:d2:81:73:7c:67:2d:15:55: a2:83:b9:88:ea:fb:84:ba:e4:ac:7b:cc:f9:25:07: 42:29:e2:f7:f5:5d:7b:b0:45:0d:84:32:a9:5c:2c: 43:73:3a:6e:19:63:6d:e1:f3:35:95:64:2f:ca:22: 28:ca:eb:64:ea:3a:74:b4:e1:34:e8:96:01:3b:7d: 94:ae:7d:ac:91:a5:4e:5c:7a:43:74:5c:b4:93:ed: 8a:e5:c6:c8:30:98:c5:a5:c7:c9:14:64:86:77:c0: 2f:2f:78:84:a5:e6:f9:ae:db:6c:e8:02:92:21:df: c2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:4C:F9:B7:86:74:BF:1F:0C:E3:B0:A1:22:81:6A:63:69:11:2C:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:3400::/40 Signature Algorithm: sha256WithRSAEncryption ad:08:84:c1:3e:86:be:b5:10:f3:6b:9c:c5:fe:0a:69:00:9a: a0:33:ee:79:2c:d5:60:40:e0:44:8a:7e:5d:30:f5:c4:e1:3d: d1:fc:d4:8f:cc:5c:d8:62:0b:41:db:8f:85:a0:67:bd:98:37: 6f:12:6b:d4:88:5e:7b:95:13:1e:e8:19:f7:38:aa:e8:fe:ce: cd:9b:d9:4d:07:cc:d5:38:b4:bc:8b:f3:c1:36:fb:ca:8a:4b: 82:c0:a5:67:39:47:84:56:f5:c0:3c:19:6a:53:83:02:76:c2: ac:81:e4:ed:42:54:e6:56:88:42:61:fd:92:6b:e1:5c:50:dd: 59:83:7d:68:e5:25:a2:fd:3d:8d:9e:63:17:44:2c:c4:1c:e4: 1f:54:25:52:64:5d:b4:8d:fa:61:35:b0:3c:a3:c0:01:ed:52: 40:59:54:de:10:68:80:5d:02:ea:1f:91:98:c8:a9:2d:ed:f2: 14:a7:00:70:61:cd:75:f8:62:7a:b2:82:5c:dd:8c:89:3a:82: 8f:35:a3:c4:f8:6c:10:24:40:35:5f:4a:37:e4:f8:ce:45:f1: a0:f8:09:37:b2:24:82:23:43:33:32:49:71:5b:b5:25:06:9f: aa:7a:21:f9:ec:e5:88:c6:0d:33:f2:92:51:7a:a3:5a:f3:1b: 43:6b:f4:84 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaw8zQJPh/xHqgnO92zlK+fX+HIIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMjAyMjM2WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTk5ZDhiNGY1YjNkOWJhNGQ4ZjgyOThiOGYzMWY3NGNk YzkxMDIyOTUzMDVlYzRjYTVmOWI5ZmU2YjVjYTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHKa4emyvdvgKSnmoBaJF5YsOHNHlMlQfJFitgEtxLPOdh 1lQle5kQxYA9jHF5kp+T+E8aDHdOuyL0R23fQiuCn183R3wc5N7HdF3vlK5At7I7 aBki6Z8yVq8nN/p6N4GYdXUevrSl4m7hYFPuWS8gbycROrjzDKLzHnSn/LOGPQRM XT8IYmEwLQ7Fan3SgXN8Zy0VVaKDuYjq+4S65Kx7zPklB0Ip4vf1XXuwRQ2EMqlc LENzOm4ZY23h8zWVZC/KIijK62TqOnS04TTolgE7fZSufayRpU5cekN0XLST7Yrl xsgwmMWlx8kUZIZ3wC8veISl5vmu22zoApIh38L/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIkz5t4Z0vx8M47ChIoFqY2kRLPEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZjU2N2Y0LWJhYmQtNDVkMC04MmM5LTFlOTQwZmVlOGFmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0NDANBgkqhkiG9w0BAQsFAAOCAQEArQiEwT6GvrUQ82ucxf4KaQCa oDPueSzVYEDgRIp+XTD1xOE90fzUj8xc2GILQduPhaBnvZg3bxJr1Ihee5UTHugZ 9ziq6P7OzZvZTQfM1Ti0vIvzwTb7yopLgsClZzlHhFb1wDwZalODAnbCrIHk7UJU 5laIQmH9kmvhXFDdWYN9aOUlov09jZ5jF0QsxBzkH1QlUmRdtI36YTWwPKPAAe1S QFlU3hBogF0C6h+RmMipLe3yFKcAcGHNdfhierKCXN2MiTqCjzWjxPhsECRANV9K N+T4zkXxoPgJN7IkgiNDMzJJcVu1JQafqnoh+ezliMYNM/KSUXqjWvMbQ2v0hA== -----END CERTIFICATE-----Generated at Sun Jun 8 18:34:17 2025 by rpki-client