$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29920184-aec3-4a16-ab95-1de3bb8a0901.roa File: 29920184-aec3-4a16-ab95-1de3bb8a0901.roa (raw, json) Hash identifier: lZjZjMVQKgT8WLA4N0zZ39ZPkcvLnkJh/mBGJDw0Qys= Subject key identifier: E7:18:C6:D6:C7:5B:B5:34:CA:9B:D7:53:DC:2C:E1:09:D0:E4:DA:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D57CA4398E4889CCA364F329677942485177EC6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29920184-aec3-4a16-ab95-1de3bb8a0901.roa Signing time: Tue 08 Jul 2025 16:30:33 +0000 ROA not before: Tue 08 Jul 2025 16:30:33 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:57:ca:43:98:e4:88:9c:ca:36:4f:32:96:77:94:24:85:17:7e:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:30:33 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=4f60048c962a1fbd5bcea40fdcab3900e6100e46bce956419ebf7a2990b69ca9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:a0:dc:3b:e1:42:51:b0:80:88:a7:30:cd:c2: 33:7e:c8:53:da:72:16:73:7f:ad:fc:75:49:63:20: 1c:0b:3d:46:5d:b4:cd:1c:40:a4:14:0e:a7:dd:f6: b2:2f:04:e4:f0:94:18:10:bf:77:52:05:6a:bf:36: 01:28:43:a5:d5:5f:d7:0b:d9:fb:41:8a:7c:bd:6f: a4:5f:ad:81:6f:f9:60:ba:18:94:1f:37:67:27:c4: bf:92:17:c0:65:55:d7:83:61:35:85:c8:ed:a5:f7: 62:5c:f6:41:b6:50:44:66:94:c2:40:9a:17:3f:f7: 68:7c:a5:1e:f3:4a:25:bf:1d:04:88:60:c1:62:a2: 88:8f:a6:70:6f:5d:7a:b3:e9:0c:00:bb:e8:10:bb: a0:06:67:bb:7d:71:4f:0f:63:03:f9:d2:f0:58:c1: 50:a0:2e:73:60:cb:4e:26:82:12:7f:bf:c5:d6:6e: f5:f5:1f:81:42:db:39:3f:4b:1c:f7:f1:bf:d2:0e: 11:c4:d3:14:bf:50:c8:e5:f3:a0:f0:8d:3e:17:e4: 20:45:19:85:09:fe:01:38:ec:4b:83:50:a0:cd:26: 16:ff:4c:c6:56:cf:76:d6:48:26:2e:59:96:56:98: f0:9b:f6:0c:38:dd:c4:6d:66:e9:b0:51:f8:e0:4a: 0e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:18:C6:D6:C7:5B:B5:34:CA:9B:D7:53:DC:2C:E1:09:D0:E4:DA:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/29920184-aec3-4a16-ab95-1de3bb8a0901.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:8000::/39 Signature Algorithm: sha256WithRSAEncryption 40:30:c8:96:a8:cb:f4:99:fb:c5:b0:fa:87:66:02:39:ee:41: f3:4b:41:b5:55:17:ce:c0:d9:28:85:fb:79:86:80:e7:f4:00: 19:05:22:ea:c4:96:43:43:db:7e:3a:e0:4d:e4:33:9a:7f:7b: 85:f4:44:22:88:db:a0:13:99:f8:b2:18:d3:79:ee:ad:8a:e3: e7:92:06:59:9e:87:84:1c:12:4a:03:90:20:ba:11:a0:18:12: 10:64:02:d2:38:54:e2:3f:02:3b:ba:f5:4b:26:60:12:04:62: 0e:d5:2e:49:b8:89:35:bb:29:47:a8:b1:c3:b2:38:c9:03:c7: f8:d1:97:d3:46:3d:f1:89:50:24:14:05:55:a1:a2:90:ae:8f: 7e:be:3c:85:6d:71:cd:70:30:32:09:fc:f6:dc:aa:b2:89:09: 7b:58:60:65:57:7d:8d:df:63:a5:02:e8:79:18:e7:7f:3f:b9: af:0d:06:1d:bf:23:84:57:86:22:bb:3a:f4:52:aa:d4:59:0c: c3:6b:d6:5d:00:9a:11:eb:02:30:25:3f:c5:54:b4:c8:14:93: 9e:4c:7b:1b:74:95:bb:30:99:67:5a:ec:96:34:2f:aa:bc:62: 33:ea:f9:13:03:6c:34:a7:3f:29:ca:4f:63:d2:fd:d6:5b:5e: 99:2c:b8:5a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbVfKQ5jkiJzKNk8ylneUJIUXfsYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTYzMDMzWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjYwMDQ4Yzk2MmExZmJkNWJjZWE0MGZkY2FiMzkwMGU2 MTAwZTQ2YmNlOTU2NDE5ZWJmN2EyOTkwYjY5Y2E5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCioNw74UJRsICIpzDNwjN+yFPachZzf638dUljIBwLPUZd tM0cQKQUDqfd9rIvBOTwlBgQv3dSBWq/NgEoQ6XVX9cL2ftBiny9b6RfrYFv+WC6 GJQfN2cnxL+SF8BlVdeDYTWFyO2l92Jc9kG2UERmlMJAmhc/92h8pR7zSiW/HQSI YMFiooiPpnBvXXqz6QwAu+gQu6AGZ7t9cU8PYwP50vBYwVCgLnNgy04mghJ/v8XW bvX1H4FC2zk/Sxz38b/SDhHE0xS/UMjl86DwjT4X5CBFGYUJ/gE47EuDUKDNJhb/ TMZWz3bWSCYuWZZWmPCb9gw43cRtZumwUfjgSg7rAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5xjG1sdbtTTKm9dT3CzhCdDk2kkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5OTIwMTg0LWFlYzMtNGExNi1hYjk1LTFkZTNiYjhhMDkwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/xgDANBgkqhkiG9w0BAQsFAAOCAQEAQDDIlqjL9Jn7xbD6h2YCOe5B 80tBtVUXzsDZKIX7eYaA5/QAGQUi6sSWQ0PbfjrgTeQzmn97hfREIojboBOZ+LIY 03nurYrj55IGWZ6HhBwSSgOQILoRoBgSEGQC0jhU4j8CO7r1SyZgEgRiDtUuSbiJ NbspR6ixw7I4yQPH+NGX00Y98YlQJBQFVaGikK6Pfr48hW1xzXAwMgn89tyqsokJ e1hgZVd9jd9jpQLoeRjnfz+5rw0GHb8jhFeGIrs69FKq1FkMw2vWXQCaEesCMCU/ xVS0yBSTnkx7G3SVuzCZZ1rsljQvqrxiM+r5EwNsNKc/KcpPY9L91ltemSy4Wg== -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:29 2025 by rpki-client