$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa File: c222f035-1c02-4052-94b2-4fc3e0405321.roa (raw, json) Hash identifier: jb0Tee3XkCoAUlLzSKqbP9bQz83sF2tkScLYLw2mHaY= Subject key identifier: 83:BD:DF:BD:3C:5C:D6:25:8C:79:A2:1C:53:6D:58:5F:43:14:47:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BB48BF3DC1F820DC3E869A8E71B5B7CE8826B96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa Signing time: Tue 20 May 2025 00:30:27 +0000 ROA not before: Tue 20 May 2025 00:30:27 +0000 ROA not after: Tue 24 Jun 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f20:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 10 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b4:8b:f3:dc:1f:82:0d:c3:e8:69:a8:e7:1b:5b:7c:e8:82:6b:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:30:27 2025 GMT Not After : Jun 24 23:59:59 2025 GMT Subject: serialNumber=dc3689510865312ca9001e03baf2f1fa21f4bbf3442b23da725a5aec88b005ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:ea:dd:79:02:d6:23:a0:1d:53:f7:13:0c:e9: e3:9d:db:02:17:db:f6:86:cc:d6:95:0a:d3:e8:4d: d3:01:b7:6a:0f:50:1b:4e:95:7f:bb:58:7c:63:f8: a4:e8:cf:f4:91:57:13:58:4a:f6:e8:97:3f:bc:96: 82:f0:13:14:0f:98:6b:c9:c9:5d:9f:27:0c:0b:d1: 35:d6:94:86:47:e9:6e:e2:bc:45:1a:c9:a3:72:82: 88:7c:ee:24:63:f6:6d:72:62:ad:cf:c8:ae:55:d7: e6:a2:88:42:70:dd:dc:55:8b:db:a7:2e:06:5f:de: cf:de:e6:ef:f0:90:7b:a8:1b:90:bb:7d:2d:82:46: 97:2b:3a:3c:52:5d:ee:20:f5:32:9c:7d:34:63:be: 30:51:3e:ae:83:35:ac:b9:10:8e:09:86:37:21:04: fe:6b:7c:1b:d8:b0:26:59:39:62:15:d2:a0:1a:37: e2:48:0e:b1:aa:00:78:27:22:6b:4b:30:9b:08:32: 9b:e5:fc:1b:df:4c:e4:eb:dc:0f:66:cc:d3:3d:9d: b6:ca:37:0d:d6:eb:50:5a:18:ca:c5:63:5d:96:61: 5d:ed:9d:17:39:40:ff:ac:34:d9:83:f3:75:85:d0: d3:e9:68:80:da:52:36:f2:de:3f:e5:fc:dd:9a:26: 77:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BD:DF:BD:3C:5C:D6:25:8C:79:A2:1C:53:6D:58:5F:43:14:47:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f20:8000::/36 Signature Algorithm: sha256WithRSAEncryption cd:8e:8c:ee:05:43:77:a8:f2:29:a7:a7:72:21:80:01:14:e0: 51:ce:af:c6:11:0b:bb:b5:b2:f0:c7:e6:46:2a:1d:4e:4d:a7: 4e:ec:36:a8:a7:fd:59:d1:bf:8d:b3:21:a2:33:06:43:e3:a6: 97:b0:c4:78:43:e8:82:00:c6:18:dd:1a:4d:d5:61:9e:5b:a1: 9e:60:df:03:13:45:8e:e8:ef:26:21:ac:5d:81:49:7a:6b:b0: 7b:9d:a7:6e:ae:e5:76:23:d1:de:a7:22:93:06:c7:04:cd:bd: 58:e0:0b:b2:ff:e7:f6:b1:12:b1:c1:71:62:de:5d:25:f6:fa: 17:a2:5c:ac:b9:1a:34:fa:e2:89:43:fb:bd:64:ca:10:f0:ae: 53:07:91:4c:16:26:a2:fc:b7:84:38:e7:e9:0a:db:a6:d3:33: 98:70:49:9d:96:a8:31:83:7a:76:66:f4:1c:4f:76:89:cb:2a: c2:ea:c4:80:fc:1f:af:45:a5:20:39:fd:8a:a8:28:d9:78:8a: 06:22:8d:54:01:7f:2c:0e:08:a8:2b:5a:ce:50:56:0e:11:4c: fe:2f:26:4f:c2:9e:33:b8:b4:a1:21:c7:0c:75:7e:12:48:8e: bf:08:53:f3:a6:17:bb:b7:ab:fe:93:d9:a9:97:85:28:09:5a: 58:70:65:14 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUO7SL89wfgg3D6Gmo5xtbfOiCa5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNTIwMDAzMDI3WhcNMjUwNjI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzM2ODk1MTA4NjUzMTJjYTkwMDFlMDNiYWYyZjFmYTIx ZjRiYmYzNDQyYjIzZGE3MjVhNWFlYzg4YjAwNWNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCK6t15AtYjoB1T9xMM6eOd2wIX2/aGzNaVCtPoTdMBt2oP UBtOlX+7WHxj+KToz/SRVxNYSvbolz+8loLwExQPmGvJyV2fJwwL0TXWlIZH6W7i vEUayaNygoh87iRj9m1yYq3PyK5V1+aiiEJw3dxVi9unLgZf3s/e5u/wkHuoG5C7 fS2CRpcrOjxSXe4g9TKcfTRjvjBRPq6DNay5EI4JhjchBP5rfBvYsCZZOWIV0qAa N+JIDrGqAHgnImtLMJsIMpvl/BvfTOTr3A9mzNM9nbbKNw3W61BaGMrFY12WYV3t nRc5QP+sNNmD83WF0NPpaIDaUjby3j/l/N2aJneTAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUg73fvTxc1iWMeaIcU21YX0MUR+wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMjJmMDM1LTFjMDItNDA1Mi05NGIyLTRmYzNlMDQwNTMyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8ggDANBgkqhkiG9w0BAQsFAAOCAQEAzY6M7gVDd6jyKaenciGAARTg Uc6vxhELu7Wy8MfmRiodTk2nTuw2qKf9WdG/jbMhojMGQ+Oml7DEeEPoggDGGN0a TdVhnluhnmDfAxNFjujvJiGsXYFJemuwe52nbq7ldiPR3qcikwbHBM29WOALsv/n 9rESscFxYt5dJfb6F6JcrLkaNPriiUP7vWTKEPCuUweRTBYmovy3hDjn6QrbptMz mHBJnZaoMYN6dmb0HE92icsqwurEgPwfr0WlIDn9iqgo2XiKBiKNVAF/LA4IqCta zlBWDhFM/i8mT8KeM7i0oSHHDHV+EkiOvwhT86YXu7er/pPZqZeFKAlaWHBlFA== -----END CERTIFICATE-----Generated at Sun Jun 8 23:08:58 2025 by rpki-client