$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa File: 3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa (raw, json) Hash identifier: Bz9rNufgxay6NA1S1HU0gQQCj22X0vnoBC8+o+3oQu4= Subject key identifier: 87:B8:AC:7F:FC:73:C2:31:B5:71:A4:9B:6E:11:AC:EC:A2:19:AC:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CCDB798E75370655B694321D2B143A57521BFD1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa Signing time: Mon 07 Jul 2025 18:00:25 +0000 ROA not before: Mon 07 Jul 2025 18:00:25 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:cd:b7:98:e7:53:70:65:5b:69:43:21:d2:b1:43:a5:75:21:bf:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 18:00:25 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=10ecb3d4c8aaedb5451e8d3bdcc6f779c71c4e2550ef56d6720bc705eea209ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:01:11:82:29:45:cb:36:d6:2f:97:3c:b2:dd: 7a:94:3d:3a:0b:27:54:e6:38:42:0a:67:a8:fc:f9: 8b:05:92:d7:2c:49:54:d5:9c:23:af:c7:0d:b6:0a: 3c:ad:bd:93:85:94:c0:cc:85:1d:1b:7b:8b:22:be: 01:7f:22:93:5a:42:b1:b4:ea:de:79:4a:aa:ca:e1: 7a:e6:a0:d6:14:b2:71:7f:f4:d5:8b:71:74:72:35: 80:30:eb:ee:74:f6:2f:da:52:34:8e:5b:d1:b2:2f: 2f:dd:51:8e:0e:9d:e7:41:cc:32:ae:8f:68:64:42: 02:62:6e:20:74:ec:ac:31:58:19:78:14:aa:37:d0: b9:1c:cc:9c:97:f9:dd:16:ec:0c:b9:16:5d:52:39: 10:92:ee:8b:e9:1b:5f:d0:b7:3e:a4:51:87:1c:8a: 38:1c:ed:1a:1e:79:b1:3b:47:a0:6c:c8:74:cf:91: 4a:7a:61:57:3e:85:bb:13:7d:d0:ee:dd:81:bf:c5: 76:c0:90:c0:b4:22:3c:08:c0:b7:0a:8e:0f:11:2e: 33:b8:2d:0f:a8:6a:a4:1c:44:24:d8:c5:a9:cc:90: 08:f7:c2:bc:5c:27:94:6d:ad:a2:3b:3e:b8:ff:4e: 70:71:54:0f:0a:e6:8b:78:d4:85:b6:2b:e2:1b:17: f5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:B8:AC:7F:FC:73:C2:31:B5:71:A4:9B:6E:11:AC:EC:A2:19:AC:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3356d24b-fc8c-4c45-9f79-7168e2b6ee25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4050::/48 Signature Algorithm: sha256WithRSAEncryption 79:31:6d:c4:79:2c:dc:e4:9f:8b:e6:82:cd:db:33:3b:5e:ad: 8b:1e:c9:37:8e:1b:18:3e:96:6f:50:07:77:f9:43:e3:85:94: 3a:8b:be:12:ff:95:71:72:53:bd:43:9a:93:20:d0:ee:9b:0d: 11:47:a4:da:24:d8:ab:2f:63:f0:3d:44:6c:0b:7f:02:83:d0: 8b:74:68:a5:ec:49:c0:52:6e:ca:52:39:ef:eb:4c:5f:45:03: fe:33:d9:ec:00:fe:a1:ef:df:4d:71:65:b6:37:b2:18:cc:c4: 9b:08:51:ad:e3:df:e3:dd:f7:26:2f:a8:37:70:1b:3f:50:3e: 00:a8:48:88:9b:7a:e6:23:06:35:a8:45:f4:83:42:27:8d:5c: 62:c9:8f:b6:22:3a:71:70:75:f9:bd:4b:1b:b7:2b:e5:78:2c: b6:98:93:3a:64:61:a6:12:fd:84:84:96:f0:32:c8:e8:d6:9e: bc:cf:79:4f:9c:90:1a:5c:28:db:86:a6:25:83:76:dc:35:f0: 6d:be:f7:3b:73:9c:46:ed:a7:37:dc:15:cf:a7:4a:d2:b9:20: 59:9c:12:c4:3a:18:2e:7c:64:51:4e:44:aa:ac:b9:2f:6b:f4: 4e:39:ee:7b:bc:c9:02:08:fc:f5:3c:be:e9:53:d0:f9:e4:2b: df:6b:25:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXM23mOdTcGVbaUMh0rFDpXUhv9EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTgwMDI1WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMGVjYjNkNGM4YWFlZGI1NDUxZThkM2JkY2M2Zjc3OWM3 MWM0ZTI1NTBlZjU2ZDY3MjBiYzcwNWVlYTIwOWNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNARGCKUXLNtYvlzyy3XqUPToLJ1TmOEIKZ6j8+YsFktcs SVTVnCOvxw22CjytvZOFlMDMhR0be4sivgF/IpNaQrG06t55SqrK4XrmoNYUsnF/ 9NWLcXRyNYAw6+509i/aUjSOW9GyLy/dUY4OnedBzDKuj2hkQgJibiB07KwxWBl4 FKo30LkczJyX+d0W7Ay5Fl1SORCS7ovpG1/Qtz6kUYccijgc7RoeebE7R6BsyHTP kUp6YVc+hbsTfdDu3YG/xXbAkMC0IjwIwLcKjg8RLjO4LQ+oaqQcRCTYxanMkAj3 wrxcJ5RtraI7Prj/TnBxVA8K5ot41IW2K+IbF/XpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUh7isf/xzwjG1caSbbhGs7KIZrHswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzNTZkMjRiLWZjOGMtNGM0NS05Zjc5LTcxNjhlMmI2ZWUyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQFAwDQYJKoZIhvcNAQELBQADggEBAHkxbcR5LNzkn4vmgs3bMzte rYseyTeOGxg+lm9QB3f5Q+OFlDqLvhL/lXFyU71DmpMg0O6bDRFHpNok2KsvY/A9 RGwLfwKD0It0aKXsScBSbspSOe/rTF9FA/4z2ewA/qHv301xZbY3shjMxJsIUa3j 3+Pd9yYvqDdwGz9QPgCoSIibeuYjBjWoRfSDQieNXGLJj7YiOnFwdfm9Sxu3K+V4 LLaYkzpkYaYS/YSElvAyyOjWnrzPeU+ckBpcKNuGpiWDdtw18G2+9ztznEbtpzfc Fc+nStK5IFmcEsQ6GC58ZFFORKqsuS9r9E457nu8yQII/PU8vulT0PnkK99rJfI= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:18 2025 by rpki-client