$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eea3d420-1a2b-4459-ab7f-1d261611837d.roa File: eea3d420-1a2b-4459-ab7f-1d261611837d.roa (raw, json) Hash identifier: p2ZXGvLRjbROajnYBBcuI5JlR8C1xNxGSOSWgZDlar8= Subject key identifier: 86:BF:CC:49:BC:CE:9B:70:03:DF:B9:39:10:08:EE:A1:5C:C3:5D:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FBD9430E9BE1A366AB7FCFF4BBB86A7A7EDAF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eea3d420-1a2b-4459-ab7f-1d261611837d.roa Signing time: Tue 03 Jun 2025 20:22:35 +0000 ROA not before: Tue 03 Jun 2025 20:22:35 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:bd:94:30:e9:be:1a:36:6a:b7:fc:ff:4b:bb:86:a7:a7:ed:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 20:22:35 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=82f9bc937c6f192c6a21ab2c80cb6283f42401d0999e0c11a4ca5295d010e9e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:7f:38:f0:bf:08:4b:15:3b:91:54:34:b8:7c: 1c:65:64:ff:9f:91:96:11:c5:43:2e:d7:a7:37:f9: 3c:9a:4a:ba:ea:e0:10:5f:2e:d1:9b:5b:e9:46:cf: 90:f4:66:ed:c1:02:dd:20:52:99:ff:17:e0:c0:17: 58:74:20:27:d8:c2:56:a5:05:e0:56:10:08:8b:9c: 3b:41:e7:a5:2b:5f:78:a8:75:64:76:00:72:4a:d0: 68:54:73:de:67:50:48:5e:ea:4a:5f:48:16:95:92: 4e:10:ab:b2:a9:b7:b3:2e:d6:d6:62:f8:71:46:26: 0e:c2:56:ea:76:d4:63:a2:f7:fd:a5:4b:b6:a0:6f: 09:70:bd:c8:6f:df:ce:98:86:52:4d:8d:4c:73:90: 41:e7:34:85:34:21:fa:76:52:03:ac:36:e0:11:dd: 3e:00:85:b5:22:65:af:0a:c8:3a:c4:68:0e:e9:dd: 48:87:0a:6a:3c:e2:b8:4b:7f:e7:3a:ed:91:f3:e1: 5e:e5:dc:13:21:2b:c9:27:7a:4e:aa:78:6e:8b:74: 8c:28:58:cc:86:9c:6d:4a:6e:fc:ba:c0:e7:db:1b: 79:2e:9c:98:06:54:34:46:e9:b5:3a:83:7f:c1:10: 0d:65:ab:df:6d:26:3d:53:ff:f4:80:cc:8c:c7:78: 60:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:BF:CC:49:BC:CE:9B:70:03:DF:B9:39:10:08:EE:A1:5C:C3:5D:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eea3d420-1a2b-4459-ab7f-1d261611837d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:2000::/40 Signature Algorithm: sha256WithRSAEncryption 8c:74:be:d5:42:bb:3b:e0:aa:d9:40:b3:ac:03:d9:5b:c7:5f: 86:a4:a7:d7:11:03:95:17:c0:0d:46:a4:19:13:49:9f:d4:30: 96:90:27:c9:97:f8:e8:ba:e9:63:64:43:40:6c:32:62:94:d8: 78:a6:ed:e4:47:d0:6a:42:de:2d:bd:cc:95:80:15:f9:17:d2: 27:79:51:8a:f9:1d:03:2c:38:4c:a1:3e:3f:96:5b:f0:f0:13: 4a:94:80:2b:7f:f7:da:3a:20:f9:77:56:db:02:5e:3c:6d:5f: 0c:bc:7c:2b:2a:a6:a2:7b:c8:96:03:22:53:70:16:8e:98:e4: 83:fa:e4:60:06:8c:4d:91:99:45:0f:5f:0b:ef:51:ab:eb:64: e9:73:0d:cb:08:4d:eb:2b:98:42:3b:83:d2:99:9b:cc:1a:7e: d5:70:f6:42:f2:5a:8f:5c:80:e0:16:61:15:0e:d6:95:61:41: 2b:7a:c0:9b:f4:57:56:09:aa:4e:78:76:fd:47:96:81:89:71: 6d:dd:3c:1a:51:a8:db:31:d5:f8:f1:f6:64:13:a2:69:ac:cf: bf:fe:3e:ab:28:f6:c8:59:df:bd:40:30:1a:f8:48:92:8d:e3: e8:3d:06:48:d7:b5:2a:16:17:84:95:c8:65:44:5d:09:ea:9b: cf:1b:87:0a -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITD72UMOm+GjZqt/z/S7uGp6ftrzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA2MDMyMDIyMzVaFw0yNTA3MDgyMzU5NTla MHoxSTBHBgNVBAUTQDgyZjliYzkzN2M2ZjE5MmM2YTIxYWIyYzgwY2I2MjgzZjQy NDAxZDA5OTllMGMxMWE0Y2E1Mjk1ZDAxMGU5ZTkxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAL5/OPC/CEsVO5FUNLh8HGVk/5+RlhHFQy7Xpzf5PJpKuurg EF8u0Ztb6UbPkPRm7cEC3SBSmf8X4MAXWHQgJ9jCVqUF4FYQCIucO0HnpStfeKh1 ZHYAckrQaFRz3mdQSF7qSl9IFpWSThCrsqm3sy7W1mL4cUYmDsJW6nbUY6L3/aVL tqBvCXC9yG/fzpiGUk2NTHOQQec0hTQh+nZSA6w24BHdPgCFtSJlrwrIOsRoDund SIcKajziuEt/5zrtkfPhXuXcEyErySd6Tqp4bot0jChYzIacbUpu/LrA59sbeS6c mAZUNEbptTqDf8EQDWWr320mPVP/9IDMjMd4YKUCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBSGv8xJvM6bcAPfuTkQCO6hXMNd7zAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZWVhM2Q0MjAtMWEyYi00NDU5LWFiN2YtMWQyNjE2MTE4MzdkLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACYAH/QgMA0GCSqGSIb3DQEBCwUAA4IBAQCMdL7VQrs74KrZQLOsA9lbx1+G pKfXEQOVF8ANRqQZE0mf1DCWkCfJl/jouuljZENAbDJilNh4pu3kR9BqQt4tvcyV gBX5F9IneVGK+R0DLDhMoT4/llvw8BNKlIArf/faOiD5d1bbAl48bV8MvHwrKqai e8iWAyJTcBaOmOSD+uRgBoxNkZlFD18L71Gr62Tpcw3LCE3rK5hCO4PSmZvMGn7V cPZC8lqPXIDgFmEVDtaVYUEresCb9FdWCapOeHb9R5aBiXFt3TwaUajbMdX48fZk E6JprM+//j6rKPbIWd+9QDAa+EiSjePoPQZI17UqFheElchlRF0J6pvPG4cK -----END CERTIFICATE-----Generated at Sun Jun 8 16:34:52 2025 by rpki-client