$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35db25f9-c570-4660-adb0-06bc15c44481.roa File: 35db25f9-c570-4660-adb0-06bc15c44481.roa (raw, json) Hash identifier: XBV0/qJd2TK+avxr6wluru2mlF+7LUjUwuPY8TfEzvM= Subject key identifier: 2D:B3:2D:BD:72:97:11:49:0D:C4:09:F4:C5:71:A2:B9:67:4C:07:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3226C00DAC8CD8E7551A27248E3DC0242876A471 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35db25f9-c570-4660-adb0-06bc15c44481.roa Signing time: Tue 08 Jul 2025 16:00:14 +0000 ROA not before: Tue 08 Jul 2025 16:00:14 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:7400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:26:c0:0d:ac:8c:d8:e7:55:1a:27:24:8e:3d:c0:24:28:76:a4:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:00:14 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=298c9581bc58f95295407a2bd901e48fe3381a183d4f4aa1176dd1e68a984254, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:1f:b7:55:e3:76:c1:23:ce:9b:10:26:7e:f0: a9:2b:68:26:e7:45:36:d9:e5:8c:91:aa:0d:03:e0: 4d:0b:73:e8:8c:f4:4c:0c:76:2a:74:d7:8c:02:3c: ef:bb:f0:dd:ce:4f:61:12:c4:9a:cf:4c:8e:3f:07: 34:1a:00:0d:cc:65:bd:af:fd:ca:4c:1b:5e:fe:d1: db:d0:22:ed:ba:96:7e:53:e6:50:93:fd:29:b4:26: 43:e9:58:5d:9e:d6:e3:f4:d7:38:74:cc:58:33:84: bd:2f:6a:02:35:a8:64:19:f4:7a:b2:c1:6d:4f:84: 78:c5:08:95:bc:b0:b9:ef:69:8f:10:77:a7:1e:a6: d0:fe:23:e2:aa:24:84:2c:80:32:8f:3c:95:84:05: 1d:c3:c0:53:73:f0:ef:41:5a:53:6c:6b:ec:89:f0: 34:98:c8:91:f4:5d:56:ee:c7:82:3b:03:bf:53:3a: 68:84:44:51:2f:18:8d:5d:0a:92:2b:f1:62:11:61: a7:60:08:ef:2f:f6:89:2a:cf:e4:c2:7c:43:bf:0c: 25:5f:7f:9f:01:69:d2:99:5e:df:cd:66:c4:a6:4c: c8:d7:57:aa:20:7c:71:99:8b:2d:74:75:b5:88:da: 1b:6b:40:a8:bb:f8:d8:64:85:55:49:26:e6:99:3d: ec:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:B3:2D:BD:72:97:11:49:0D:C4:09:F4:C5:71:A2:B9:67:4C:07:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35db25f9-c570-4660-adb0-06bc15c44481.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:7400::/40 Signature Algorithm: sha256WithRSAEncryption 57:20:63:01:af:6a:aa:3a:ec:0f:e8:ba:90:98:1f:2b:d8:33: a1:6c:1b:c9:88:0c:aa:f4:77:49:42:b6:7f:75:7f:00:8f:92: bf:87:30:6c:00:e1:20:f3:64:52:5e:e1:cf:e3:91:fa:9d:98: 10:88:a5:b5:b9:4e:21:51:59:55:b5:a6:86:62:12:51:7a:43: ae:b4:ea:06:12:a6:d4:96:c0:dc:b0:c0:c4:d3:39:a9:2b:61: 2f:1d:96:b7:25:c3:07:ac:b5:5a:f7:77:7f:01:19:f8:39:be: a2:58:0c:1c:71:d1:c4:b7:ac:f6:f6:ca:f5:31:c5:fb:9f:e6: 74:5b:77:3d:d8:41:05:14:8b:73:51:f6:26:28:fb:a3:dd:7b: ef:1b:41:41:ec:2b:97:c0:3d:bf:80:ef:e8:be:d0:10:e4:db: c6:e8:9f:02:1e:aa:d0:0f:3b:9e:9d:90:ed:78:50:b3:32:b1: f7:7d:5f:44:93:da:6a:68:b5:f0:f6:ac:a7:58:56:36:46:d3: 6f:89:2b:9b:aa:02:4b:5f:80:fa:b0:f2:57:dc:79:3a:bb:11: a6:21:44:de:48:4f:19:af:33:4c:1a:79:5d:9e:f5:7d:41:3f: f8:24:25:3f:0e:49:7d:d7:4b:71:cb:df:d1:f2:ea:aa:3e:e6: 9a:c7:d2:72 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMibADayM2OdVGickjj3AJCh2pHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTYwMDE0WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOThjOTU4MWJjNThmOTUyOTU0MDdhMmJkOTAxZTQ4ZmUz MzgxYTE4M2Q0ZjRhYTExNzZkZDFlNjhhOTg0MjU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOH7dV43bBI86bECZ+8KkraCbnRTbZ5YyRqg0D4E0Lc+iM 9EwMdip014wCPO+78N3OT2ESxJrPTI4/BzQaAA3MZb2v/cpMG17+0dvQIu26ln5T 5lCT/Sm0JkPpWF2e1uP01zh0zFgzhL0vagI1qGQZ9HqywW1PhHjFCJW8sLnvaY8Q d6ceptD+I+KqJIQsgDKPPJWEBR3DwFNz8O9BWlNsa+yJ8DSYyJH0XVbux4I7A79T OmiERFEvGI1dCpIr8WIRYadgCO8v9okqz+TCfEO/DCVff58BadKZXt/NZsSmTMjX V6ogfHGZiy10dbWI2htrQKi7+NhkhVVJJuaZPezrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULbMtvXKXEUkNxAn0xXGiuWdMB9IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ZGIyNWY5LWM1NzAtNDY2MC1hZGIwLTA2YmMxNWM0NDQ4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//dDANBgkqhkiG9w0BAQsFAAOCAQEAVyBjAa9qqjrsD+i6kJgfK9gz oWwbyYgMqvR3SUK2f3V/AI+Sv4cwbADhIPNkUl7hz+OR+p2YEIiltblOIVFZVbWm hmISUXpDrrTqBhKm1JbA3LDAxNM5qSthLx2WtyXDB6y1Wvd3fwEZ+Dm+olgMHHHR xLes9vbK9THF+5/mdFt3PdhBBRSLc1H2Jij7o9177xtBQewrl8A9v4Dv6L7QEOTb xuifAh6q0A87np2Q7XhQszKx931fRJPaami18Pasp1hWNkbTb4krm6oCS1+A+rDy V9x5OrsRpiFE3khPGa8zTBp5XZ71fUE/+CQlPw5JfddLccvf0fLqqj7mmsfScg== -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:39 2025 by rpki-client