$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef5d99a-0d5f-48d9-920a-328503fb664c.roa File: 0ef5d99a-0d5f-48d9-920a-328503fb664c.roa (raw, json) Hash identifier: r9uRq5mNAVqfwBBaAaNqxqUDViXXGdy5hkASLxHSPxA= Subject key identifier: 40:E5:C6:42:B4:77:1B:72:57:69:25:BD:EC:D3:5C:21:1A:E5:93:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27496B77B4FB88E3E0C8DB2C6304DB94D89A8893 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef5d99a-0d5f-48d9-920a-328503fb664c.roa Signing time: Mon 07 Jul 2025 16:40:55 +0000 ROA not before: Mon 07 Jul 2025 16:40:55 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:4100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:49:6b:77:b4:fb:88:e3:e0:c8:db:2c:63:04:db:94:d8:9a:88:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:40:55 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=1a92320763b48c475d13b9284045592cffd06de3879e33a91ac1831539730d8f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e9:ff:f3:6e:13:c1:38:ab:61:c3:dd:47:5c: 50:ff:b7:cf:ab:02:c6:fc:ba:a9:61:29:e1:ca:1b: 02:04:fc:dd:2e:b8:75:27:6a:17:67:0b:08:b1:43: ee:f0:fd:a3:b5:4b:a4:a7:56:54:88:e4:ea:cb:25: 82:97:83:f4:32:55:ef:d2:eb:c8:ef:a9:5e:de:2d: cd:b0:b1:1a:31:7e:bc:7f:8a:dc:89:df:20:9f:04: 85:f4:08:b4:9f:45:7c:87:59:ad:43:d2:8b:90:f9: 72:8c:d0:80:fa:0f:99:0f:30:fe:c9:e6:cb:f2:04: 58:60:3b:75:f6:74:ce:57:a9:11:45:b8:8e:68:ac: b7:26:7f:2d:04:d7:fe:2b:1c:b2:91:b4:5c:0b:4f: 9a:e3:a9:d2:27:f0:dc:13:05:5b:1f:1f:70:4b:ff: 44:6b:73:b7:8e:04:99:6a:7f:74:ba:2a:de:76:72: 39:6a:db:2b:a1:58:f3:dc:ad:07:37:ec:29:09:9c: e0:7d:6f:32:bc:f8:f9:a2:28:fe:61:6b:4f:c0:80: 98:ab:3e:59:2f:a8:5a:6d:51:1e:d5:88:40:72:04: 3f:99:9d:a1:b5:c9:57:4a:1e:4f:c2:57:28:6e:16: 83:4c:52:86:81:a8:03:91:40:ce:8b:d9:0c:f5:2f: 22:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E5:C6:42:B4:77:1B:72:57:69:25:BD:EC:D3:5C:21:1A:E5:93:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ef5d99a-0d5f-48d9-920a-328503fb664c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:4100::/48 Signature Algorithm: sha256WithRSAEncryption ce:be:fb:7b:4c:90:b7:35:0c:9d:4e:54:e3:3e:e6:50:00:90: 6a:f0:67:4a:e0:ac:70:14:27:0a:ca:8b:c7:9a:45:34:ae:c7: 61:49:33:cd:ec:79:36:c6:be:65:56:8c:69:9f:0f:d9:0c:a0: dd:79:29:b3:57:40:50:53:c1:1f:d5:2c:c9:c0:70:9d:fa:8c: 94:02:07:08:ad:ff:d6:1f:fe:73:60:75:88:01:74:f9:0d:f1: a8:f1:2e:c4:e1:89:10:26:79:c3:cf:c5:62:05:84:7c:46:17: e2:8d:82:76:2f:51:e9:8f:03:0d:14:70:14:b5:21:77:ef:16: 71:25:28:c9:a1:fb:05:8a:81:52:96:35:41:77:08:b1:2b:e1: fb:1f:c1:7d:88:c6:c6:b0:24:73:4d:3a:aa:60:fd:1f:42:a9: ec:d5:50:6d:45:58:cc:42:33:7f:39:8d:8f:4b:d8:b1:a8:a6: 73:03:da:04:d3:fc:59:59:f9:d2:d0:24:a9:ea:98:c5:b5:dd: 5e:32:9c:0f:a0:a1:2b:fe:3a:e4:88:c5:ea:ed:67:6d:6c:d1: b7:0e:75:e5:3c:4c:5d:ea:05:bc:13:7b:67:82:2f:2d:fb:89: b2:09:f0:68:67:bc:af:01:fe:8c:52:0d:96:19:c4:c2:36:97: 1b:9f:0d:85 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJ0lrd7T7iOPgyNssYwTblNiaiJMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTY0MDU1WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTkyMzIwNzYzYjQ4YzQ3NWQxM2I5Mjg0MDQ1NTkyY2Zm ZDA2ZGUzODc5ZTMzYTkxYWMxODMxNTM5NzMwZDhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf6f/zbhPBOKthw91HXFD/t8+rAsb8uqlhKeHKGwIE/N0u uHUnahdnCwixQ+7w/aO1S6SnVlSI5OrLJYKXg/QyVe/S68jvqV7eLc2wsRoxfrx/ ityJ3yCfBIX0CLSfRXyHWa1D0ouQ+XKM0ID6D5kPMP7J5svyBFhgO3X2dM5XqRFF uI5orLcmfy0E1/4rHLKRtFwLT5rjqdIn8NwTBVsfH3BL/0Rrc7eOBJlqf3S6Kt52 cjlq2yuhWPPcrQc37CkJnOB9bzK8+PmiKP5ha0/AgJirPlkvqFptUR7ViEByBD+Z naG1yVdKHk/CVyhuFoNMUoaBqAORQM6L2Qz1LyKbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQOXGQrR3G3JXaSW97NNcIRrlk50wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlZjVkOTlhLTBkNWYtNDhkOS05MjBhLTMyODUwM2ZiNjY0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//QQAwDQYJKoZIhvcNAQELBQADggEBAM6++3tMkLc1DJ1OVOM+5lAA kGrwZ0rgrHAUJwrKi8eaRTSux2FJM83seTbGvmVWjGmfD9kMoN15KbNXQFBTwR/V LMnAcJ36jJQCBwit/9Yf/nNgdYgBdPkN8ajxLsThiRAmecPPxWIFhHxGF+KNgnYv UemPAw0UcBS1IXfvFnElKMmh+wWKgVKWNUF3CLEr4fsfwX2IxsawJHNNOqpg/R9C qezVUG1FWMxCM385jY9L2LGopnMD2gTT/FlZ+dLQJKnqmMW13V4ynA+goSv+OuSI xertZ21s0bcOdeU8TF3qBbwTe2eCLy37ibIJ8GhnvK8B/oxSDZYZxMI2lxufDYU= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:01 2025 by rpki-client