$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6a7568b-c400-41ec-baa3-e382b85e8785.roa File: f6a7568b-c400-41ec-baa3-e382b85e8785.roa (raw, json) Hash identifier: dLqhWJPn0ACn1wjo+hndYuQYpae1AYRDSPHGD1FwI1w= Subject key identifier: AE:C7:DF:EF:34:00:92:F6:10:2F:12:59:0F:04:B0:AB:0B:CB:22:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60DFCD9BCD848DB799B7B1362D42B00EBBAB5A19 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6a7568b-c400-41ec-baa3-e382b85e8785.roa Signing time: Tue 03 Jun 2025 20:22:26 +0000 ROA not before: Tue 03 Jun 2025 20:22:26 +0000 ROA not after: Tue 08 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 09 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:df:cd:9b:cd:84:8d:b7:99:b7:b1:36:2d:42:b0:0e:bb:ab:5a:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 3 20:22:26 2025 GMT Not After : Jul 8 23:59:59 2025 GMT Subject: serialNumber=4c8add1c9323759dc3f263b9bf898856b76b8d9cde3a11ef3bc15a684f9ba450, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1d:83:9d:d2:90:b8:28:12:97:f0:9d:23:a7: 16:21:51:0d:c3:16:27:9b:18:48:21:d6:18:40:ca: b0:28:cd:0c:0c:c3:b5:63:23:bd:b4:dc:1a:17:d4: 03:66:e5:e8:06:0e:6c:05:e9:01:40:01:32:ea:ef: 6e:cd:3f:f8:cf:57:28:f1:d8:fa:65:4f:90:51:19: 1e:f7:b5:a3:0c:d9:ac:b6:9a:42:01:11:fd:b0:51: c1:3d:18:24:02:a9:6c:6d:ee:93:aa:1d:e4:55:8d: 12:83:82:bd:35:02:57:ac:47:51:fa:d9:58:4e:1e: f3:7e:75:39:f6:d8:f3:9a:3b:4f:34:df:de:c3:92: 05:1e:eb:7e:4e:b7:21:c0:b5:a7:59:fc:a0:cc:8d: 72:2b:ca:03:16:5e:e4:7c:b5:be:36:fd:b7:08:fd: 08:a0:05:24:cc:92:0f:f5:7c:46:ed:6f:00:88:00: 18:f5:92:3d:68:63:c6:50:9c:f2:9e:41:57:70:66: 7b:32:3f:14:7e:b0:45:b6:a2:be:f1:73:01:58:f9: c6:1f:e0:55:19:cd:36:3e:09:67:7d:80:7e:2a:14: c0:2d:e6:85:65:65:e3:90:9c:55:69:fe:b8:6d:68: 74:5f:0f:9a:85:ca:50:5f:b3:02:1e:17:ef:b0:4d: cf:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:C7:DF:EF:34:00:92:F6:10:2F:12:59:0F:04:B0:AB:0B:CB:22:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6a7568b-c400-41ec-baa3-e382b85e8785.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:e000::/40 Signature Algorithm: sha256WithRSAEncryption 80:a5:89:0f:33:35:c0:e2:3a:96:d1:60:f0:48:70:d1:d9:f5: d7:78:19:07:5f:f9:24:c8:e9:c6:73:46:fe:28:18:d3:0e:36: 2e:b6:d0:c6:15:ee:c7:8c:87:5f:62:1f:ce:3a:be:bf:f8:05: a4:95:19:aa:42:33:24:9b:2a:94:29:c2:5c:d9:d3:e4:88:44: ad:83:cf:a1:2f:f1:ed:97:cb:cc:7c:07:2b:17:ad:1f:99:f1: fa:c1:70:c0:aa:8a:3e:34:06:60:e5:1e:ad:7a:59:ad:6b:5e: 2c:f5:3d:8b:8d:18:f9:16:01:2d:2e:cc:17:42:48:70:24:4c: d5:92:f5:64:47:14:ec:2b:cd:3e:2a:a3:4b:b1:c8:06:32:7b: 2c:ef:d3:4b:90:37:48:ed:f5:cc:04:35:50:d1:bd:18:c2:d2: 9a:92:09:dc:ae:0c:66:fe:74:df:a2:a4:b5:6f:aa:63:18:9d: 0b:6c:13:00:e7:65:93:0d:04:16:fe:2c:25:4c:da:f1:57:fc: 39:cf:d7:1a:41:64:36:99:d0:10:65:84:d2:99:87:85:ec:84: 76:be:40:43:8b:fc:cd:76:eb:71:58:e1:8a:c5:44:97:ed:13: 33:6a:28:e6:9e:28:fe:79:8a:38:0e:e0:57:7e:79:0a:45:e7: bd:ad:56:ae -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYN/Nm82EjbeZt7E2LUKwDrurWhkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjAzMjAyMjI2WhcNMjUwNzA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YzhhZGQxYzkzMjM3NTlkYzNmMjYzYjliZjg5ODg1NmI3 NmI4ZDljZGUzYTExZWYzYmMxNWE2ODRmOWJhNDUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7HYOd0pC4KBKX8J0jpxYhUQ3DFiebGEgh1hhAyrAozQwM w7VjI7203BoX1ANm5egGDmwF6QFAATLq727NP/jPVyjx2PplT5BRGR73taMM2ay2 mkIBEf2wUcE9GCQCqWxt7pOqHeRVjRKDgr01AlesR1H62VhOHvN+dTn22POaO080 397DkgUe635OtyHAtadZ/KDMjXIrygMWXuR8tb42/bcI/QigBSTMkg/1fEbtbwCI ABj1kj1oY8ZQnPKeQVdwZnsyPxR+sEW2or7xcwFY+cYf4FUZzTY+CWd9gH4qFMAt 5oVlZeOQnFVp/rhtaHRfD5qFylBfswIeF++wTc83AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrsff7zQAkvYQLxJZDwSwqwvLImUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y2YTc1NjhiLWM0MDAtNDFlYy1iYWEzLWUzODJiODVlODc4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+54DANBgkqhkiG9w0BAQsFAAOCAQEAgKWJDzM1wOI6ltFg8Ehw0dn1 13gZB1/5JMjpxnNG/igY0w42LrbQxhXux4yHX2Ifzjq+v/gFpJUZqkIzJJsqlCnC XNnT5IhErYPPoS/x7ZfLzHwHKxetH5nx+sFwwKqKPjQGYOUerXpZrWteLPU9i40Y +RYBLS7MF0JIcCRM1ZL1ZEcU7CvNPiqjS7HIBjJ7LO/TS5A3SO31zAQ1UNG9GMLS mpIJ3K4MZv5036KktW+qYxidC2wTAOdlkw0EFv4sJUza8Vf8Oc/XGkFkNpnQEGWE 0pmHheyEdr5AQ4v8zXbrcVjhisVEl+0TM2oo5p4o/nmKOA7gV355CkXnva1Wrg== -----END CERTIFICATE-----Generated at Sun Jun 8 16:34:35 2025 by rpki-client