$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa File: 1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa (raw, json) Hash identifier: G6k2VlPbWxiSmUaq0Rc75bgqBNX3yr8vsYDo7s97Izs= Subject key identifier: 1E:29:7F:B5:B1:19:24:0D:FF:2F:2D:E1:8A:C7:48:21:62:57:2A:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E7C15B8DF3901854933DF7C15EDEE1822562091 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa Signing time: Tue 08 Jul 2025 17:00:22 +0000 ROA not before: Tue 08 Jul 2025 17:00:22 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1f::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:7c:15:b8:df:39:01:85:49:33:df:7c:15:ed:ee:18:22:56:20:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 17:00:22 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=1458f4631a10a5e0cbc919925c6d7350dc576e99c5cb936acf8e3dfdea9c93fa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:12:e5:25:20:47:7e:f2:7b:82:54:a6:e2:91: a5:ae:93:dd:df:17:3c:b1:8c:0d:cc:2d:5c:73:c2: 3e:26:ab:92:45:ee:ba:f9:57:20:95:36:b0:b5:d7: 04:a3:ae:db:11:64:81:8e:da:00:54:26:f5:29:9f: cc:95:ca:d0:f1:28:17:ba:af:23:bd:1a:88:ae:7b: d3:90:b5:fb:98:41:66:da:60:d2:e7:73:5a:17:c2: fe:9d:7e:d9:c4:76:58:ee:04:0c:25:65:97:c2:f4: 76:09:50:72:9f:68:c2:a8:61:90:a5:a6:ad:c9:88: 94:45:c1:a8:ec:f7:23:ce:2c:ad:1f:6b:20:63:f3: 43:39:d9:30:a5:0d:6e:04:d9:33:dd:6f:52:24:e3: d6:6e:a9:a6:5c:85:65:f8:11:51:5e:e0:b1:9d:c8: 6e:bd:77:f6:80:3a:df:1a:b7:a5:0c:8e:1d:a6:1c: 4a:fb:c5:06:a1:08:6a:ec:d9:7c:95:a5:9a:a2:2f: 54:78:8c:b1:b7:0b:e9:fa:27:2d:22:1c:d0:51:62: 57:ec:b6:30:8c:33:a7:d5:a2:9b:46:e8:0c:59:e0: 6c:cc:23:87:c4:a7:3b:71:9d:27:0f:fd:30:eb:ec: 35:0e:5c:21:af:39:e2:bb:8d:9a:15:c8:fb:05:42: 1d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:29:7F:B5:B1:19:24:0D:FF:2F:2D:E1:8A:C7:48:21:62:57:2A:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1e08da60-3018-411f-82ea-ec3caa1d2cc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f::/37 Signature Algorithm: sha256WithRSAEncryption 4c:12:28:f0:4e:94:16:9f:6e:d1:4a:82:6d:c4:da:b4:0a:74: 3c:6c:34:55:4c:f0:d0:8d:e6:cf:95:0b:10:8b:95:52:aa:5f: 04:f2:f3:b5:4a:ca:aa:5a:56:92:e1:b1:63:2a:86:30:12:32: 62:98:60:f1:65:cd:39:f1:56:ab:b6:11:c4:5a:49:63:77:21: ea:cc:d4:de:03:40:8d:cd:5c:7c:86:1c:06:cd:12:02:21:03: 75:93:38:af:4b:3f:e9:54:5c:4a:b8:80:0f:34:04:df:a4:c4: 92:99:d5:d3:7c:d5:af:e2:48:1c:ca:bb:a4:e1:45:97:64:cc: 16:ff:b2:67:c9:4d:2c:b2:8c:47:74:a1:63:1b:8b:22:73:7a: 44:d9:42:05:f2:e3:9f:db:04:66:92:4c:3b:8e:e1:47:20:6a: 5f:0f:62:55:08:86:56:73:a6:2f:4a:c9:b3:89:71:34:c4:ae: 41:ea:24:1b:01:87:de:47:32:53:1d:f5:99:c3:ea:f0:ff:3c: 14:e2:dd:40:8f:4d:da:d8:a5:d3:f4:23:0c:d3:5e:de:2a:0a: de:63:87:1a:62:0c:01:e1:04:76:3c:b5:72:f6:7d:c8:0e:1a: 68:b7:01:d4:6e:29:37:06:36:c0:53:f1:3f:6b:d5:a0:62:ce: f4:d0:91:65 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXnwVuN85AYVJM998Fe3uGCJWIJEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTcwMDIyWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDU4ZjQ2MzFhMTBhNWUwY2JjOTE5OTI1YzZkNzM1MGRj NTc2ZTk5YzVjYjkzNmFjZjhlM2RmZGVhOWM5M2ZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBEuUlIEd+8nuCVKbikaWuk93fFzyxjA3MLVxzwj4mq5JF 7rr5VyCVNrC11wSjrtsRZIGO2gBUJvUpn8yVytDxKBe6ryO9Goiue9OQtfuYQWba YNLnc1oXwv6dftnEdljuBAwlZZfC9HYJUHKfaMKoYZClpq3JiJRFwajs9yPOLK0f ayBj80M52TClDW4E2TPdb1Ik49ZuqaZchWX4EVFe4LGdyG69d/aAOt8at6UMjh2m HEr7xQahCGrs2XyVpZqiL1R4jLG3C+n6Jy0iHNBRYlfstjCMM6fVoptG6AxZ4GzM I4fEpztxnScP/TDr7DUOXCGvOeK7jZoVyPsFQh2RAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHil/tbEZJA3/Ly3hisdIIWJXKvAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlMDhkYTYwLTMwMTgtNDExZi04MmVhLWVjM2NhYTFkMmNjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8fADANBgkqhkiG9w0BAQsFAAOCAQEATBIo8E6UFp9u0UqCbcTatAp0 PGw0VUzw0I3mz5ULEIuVUqpfBPLztUrKqlpWkuGxYyqGMBIyYphg8WXNOfFWq7YR xFpJY3ch6szU3gNAjc1cfIYcBs0SAiEDdZM4r0s/6VRcSriADzQE36TEkpnV03zV r+JIHMq7pOFFl2TMFv+yZ8lNLLKMR3ShYxuLInN6RNlCBfLjn9sEZpJMO47hRyBq Xw9iVQiGVnOmL0rJs4lxNMSuQeokGwGH3kcyUx31mcPq8P88FOLdQI9N2til0/Qj DNNe3ioK3mOHGmIMAeEEdjy1cvZ9yA4aaLcB1G4pNwY2wFPxP2vVoGLO9NCRZQ== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:50 2025 by rpki-client