$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34dc4c52-43f8-48b7-973b-e597eb697f23.roa File: 34dc4c52-43f8-48b7-973b-e597eb697f23.roa (raw, json) Hash identifier: N4+v4JUBOsu3w0bC1PK0uWhiGujoPsQvnNwdqFnOvHM= Subject key identifier: 87:A0:D6:53:43:77:12:11:B3:0D:10:D5:64:7D:65:C5:44:89:C4:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09BEDDF031A5B27C5BA143620B92EADABED25E48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34dc4c52-43f8-48b7-973b-e597eb697f23.roa Signing time: Mon 07 Jul 2025 16:20:33 +0000 ROA not before: Mon 07 Jul 2025 16:20:33 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:be:dd:f0:31:a5:b2:7c:5b:a1:43:62:0b:92:ea:da:be:d2:5e:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:20:33 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=b47f3f34a4ea5f29dea8c80c6278ae1b24383534ed48abe7d7644b25cc972d34, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5a:92:77:26:6a:c2:23:7e:38:36:d6:9c:d6: 31:cc:1e:9b:74:e2:4e:8f:4a:95:36:72:0c:f9:ea: 9d:8c:5f:51:c6:95:ff:78:d6:26:56:98:ce:cb:9f: 5b:b5:42:27:52:11:ce:52:23:1e:3c:89:95:d8:86: 69:8b:ad:21:04:5c:50:93:78:68:ad:d5:63:a9:64: b0:76:18:69:a7:da:88:83:3b:33:6b:b8:5b:4d:a8: 3f:be:5e:b2:c0:1c:11:4f:e6:01:5f:67:25:95:c9: 53:54:23:eb:35:e8:15:30:0d:a9:a5:71:43:1f:85: 3f:c8:0a:3e:38:91:11:d4:23:19:78:64:ae:aa:25: 1f:70:6d:e2:71:4a:5f:ef:ac:56:8a:67:16:6d:a2: 02:af:59:f7:a2:58:ec:ba:82:c9:cc:d6:be:5b:1c: e9:ed:e2:31:be:3f:80:df:8a:79:36:08:53:22:7c: 12:09:bf:6f:00:7d:85:ab:ad:54:b1:65:c5:1d:6f: 85:11:b5:f0:ad:22:b7:56:01:fa:e6:3a:0c:a2:9e: 81:b1:13:6b:77:af:14:9c:95:7b:ad:48:e8:2e:9a: 93:1c:b1:b1:c6:53:6f:45:d7:fd:f9:5f:b9:4d:28: 88:df:64:20:28:17:95:5f:1a:0c:bc:b1:cc:00:73: 37:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:A0:D6:53:43:77:12:11:B3:0D:10:D5:64:7D:65:C5:44:89:C4:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/34dc4c52-43f8-48b7-973b-e597eb697f23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:8080::/48 Signature Algorithm: sha256WithRSAEncryption 0b:1e:0b:53:cb:79:0f:e5:c7:4c:13:0c:5d:9b:e6:1e:f5:0c: 94:59:c5:29:df:36:04:cd:ea:03:f8:d5:3e:e9:bc:91:ef:d7: 66:ce:2c:f4:0a:e3:7e:7c:04:44:f6:e5:ad:51:68:48:c5:02: 87:dd:10:04:68:1f:76:87:32:84:62:f7:74:a0:c1:89:cb:5d: b7:92:18:48:b0:45:49:47:d5:a6:3d:67:d9:b7:f3:54:54:e6: 6f:ad:45:67:7b:08:42:33:c1:d8:39:31:31:96:98:67:49:a9: 49:a1:00:94:9d:63:aa:5d:9c:1f:c2:c8:7e:60:ae:66:07:42: 2e:16:67:fe:97:28:81:f7:18:4a:ed:b6:a7:cc:49:ef:ef:a4: d7:ca:94:60:22:8d:2a:7b:6f:c4:eb:37:c0:65:53:1f:af:57: e8:00:1f:5e:e4:71:ce:b1:99:17:fa:10:6d:2a:e0:6a:a5:db: f3:8c:e3:56:86:1f:f0:03:e2:39:66:6d:ea:a8:38:2b:95:3d: 5b:bb:da:43:cb:76:0f:4a:92:e9:7b:9e:6f:81:4c:e0:99:26: 87:60:7e:fa:4d:ed:a4:9e:0d:66:37:51:42:75:63:09:b0:fa: f9:79:b8:99:a0:04:88:09:35:87:ff:8f:e3:64:8a:57:5d:69: 61:e4:c1:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCb7d8DGlsnxboUNiC5Lq2r7SXkgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYyMDMzWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDdmM2YzNGE0ZWE1ZjI5ZGVhOGM4MGM2Mjc4YWUxYjI0 MzgzNTM0ZWQ0OGFiZTdkNzY0NGIyNWNjOTcyZDM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0WpJ3JmrCI344Ntac1jHMHpt04k6PSpU2cgz56p2MX1HG lf941iZWmM7Ln1u1QidSEc5SIx48iZXYhmmLrSEEXFCTeGit1WOpZLB2GGmn2oiD OzNruFtNqD++XrLAHBFP5gFfZyWVyVNUI+s16BUwDamlcUMfhT/ICj44kRHUIxl4 ZK6qJR9wbeJxSl/vrFaKZxZtogKvWfeiWOy6gsnM1r5bHOnt4jG+P4Dfink2CFMi fBIJv28AfYWrrVSxZcUdb4URtfCtIrdWAfrmOgyinoGxE2t3rxSclXutSOgumpMc sbHGU29F1/35X7lNKIjfZCAoF5VfGgy8scwAczebAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUh6DWU0N3EhGzDRDVZH1lxUSJxOQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM0ZGM0YzUyLTQzZjgtNDhiNy05NzNiLWU1OTdlYjY5N2YyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84gIAwDQYJKoZIhvcNAQELBQADggEBAAseC1PLeQ/lx0wTDF2b5h71 DJRZxSnfNgTN6gP41T7pvJHv12bOLPQK4358BET25a1RaEjFAofdEARoH3aHMoRi 93SgwYnLXbeSGEiwRUlH1aY9Z9m381RU5m+tRWd7CEIzwdg5MTGWmGdJqUmhAJSd Y6pdnB/CyH5grmYHQi4WZ/6XKIH3GErttqfMSe/vpNfKlGAijSp7b8TrN8BlUx+v V+gAH17kcc6xmRf6EG0q4Gql2/OM41aGH/AD4jlmbeqoOCuVPVu72kPLdg9Kkul7 nm+BTOCZJodgfvpN7aSeDWY3UUJ1Ywmw+vl5uJmgBIgJNYf/j+NkilddaWHkwZI= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:17 2025 by rpki-client