$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d2861a4-2160-4d5f-aa18-8a9321122721.roa File: 3d2861a4-2160-4d5f-aa18-8a9321122721.roa (raw, json) Hash identifier: WQfosXCj9uq7aeiT18y/YT7SQjhjtfjdTeggzuEHr4k= Subject key identifier: 9E:A2:27:BA:CD:9C:BC:90:89:C5:CE:7E:F6:99:87:4D:96:96:37:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 193DBDB4040DC58184A8B02C8E5FDA4E4FFB7B6F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d2861a4-2160-4d5f-aa18-8a9321122721.roa Signing time: Tue 22 Jul 2025 00:21:38 +0000 ROA not before: Tue 22 Jul 2025 00:21:38 +0000 ROA not after: Tue 26 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:3d:bd:b4:04:0d:c5:81:84:a8:b0:2c:8e:5f:da:4e:4f:fb:7b:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 22 00:21:38 2025 GMT Not After : Aug 26 23:59:59 2025 GMT Subject: serialNumber=87fc150341c525c38597e2ad398209f4cd0464a23678a62c98a20c86a5b3c45f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:7a:da:1a:9e:f7:93:d0:14:e5:73:0d:69:5f: 20:22:a0:7c:cf:48:d9:6d:08:25:71:1e:bc:21:58: 02:bd:aa:6d:82:87:87:e6:cc:88:59:4a:7f:e2:28: 45:a9:97:1b:ea:e3:63:11:4c:97:8a:ed:40:a1:ac: 92:c6:41:3b:dd:b8:c2:50:41:16:9f:a8:0b:07:b8: 19:a2:19:97:c7:6d:f7:0f:39:88:99:cf:11:b5:57: 6a:3b:f2:0f:b6:03:f5:7f:ae:5a:5d:49:55:69:04: c2:a9:01:5b:11:2c:64:36:00:92:92:a6:92:94:46: 6f:30:db:3d:e3:03:86:9d:e2:b4:14:e6:8c:0a:18: b7:08:81:1a:72:0e:18:d7:60:34:96:dc:45:ff:86: d2:67:25:3f:e3:fd:79:a1:ee:49:bb:01:29:a2:47: 6c:64:2c:6a:25:9b:03:6d:91:16:41:13:05:76:e3: 8a:61:a4:8e:fa:cd:f7:8e:4c:50:4d:5c:13:73:8f: a2:bd:c7:e4:a3:46:34:97:a4:37:28:6d:eb:cc:82: 3d:18:b6:ab:8e:1f:cd:1c:d2:d0:16:d1:6f:57:ba: 4d:f9:42:48:9a:a9:3f:4b:c3:3b:0e:e6:16:42:ea: 61:8d:99:4f:ae:cb:4c:cb:db:37:cb:2a:9a:f7:6d: 1c:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:A2:27:BA:CD:9C:BC:90:89:C5:CE:7E:F6:99:87:4D:96:96:37:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d2861a4-2160-4d5f-aa18-8a9321122721.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:a400::/40 Signature Algorithm: sha256WithRSAEncryption 09:80:ed:30:70:ae:1c:8f:ba:05:a3:4b:5a:d7:dd:8d:66:e3: f5:d2:a8:13:6c:1d:d8:f1:60:e7:87:49:16:b0:ee:36:0a:73: ce:bd:bb:4e:21:91:ce:87:ef:4c:31:72:d4:c2:9b:e5:c2:3f: e9:47:20:36:dc:b5:b2:5f:ae:f4:d2:30:0d:81:6c:97:32:aa: b3:d6:d8:fb:9b:96:00:40:70:04:66:50:52:4d:1b:32:ee:21: 75:56:3a:cc:7e:ee:06:66:77:a0:cf:6d:ab:3e:b1:1d:37:12: 3d:0e:97:57:40:29:62:11:76:0d:cc:e1:02:d6:1d:db:12:8b: 12:7f:d5:5e:f5:cd:73:1d:bb:4b:04:0e:0b:37:fa:b0:91:f5: 79:c2:68:0d:c3:b0:13:cc:c1:2b:44:50:da:c2:c2:91:d2:7f: 53:24:e5:83:32:55:29:ac:4a:7d:76:a5:ce:a6:40:3f:67:e0: 40:5a:52:44:cb:da:6c:cc:c6:6a:6d:8a:f4:cf:30:03:d8:11: 05:90:40:78:88:0e:4e:98:f6:93:f8:a7:8e:c4:40:e7:27:96: ff:31:97:3f:3f:b9:b5:79:26:f8:bb:96:37:66:37:2b:84:b6: ca:60:7b:6d:ce:a0:f7:3b:6c:d4:97:2a:cf:44:be:0f:9e:b0: a0:b3:63:25 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGT29tAQNxYGEqLAsjl/aTk/7e28wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIyMDAyMTM4WhcNMjUwODI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2ZjMTUwMzQxYzUyNWMzODU5N2UyYWQzOTgyMDlmNGNk MDQ2NGEyMzY3OGE2MmM5OGEyMGM4NmE1YjNjNDVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGetoanveT0BTlcw1pXyAioHzPSNltCCVxHrwhWAK9qm2C h4fmzIhZSn/iKEWplxvq42MRTJeK7UChrJLGQTvduMJQQRafqAsHuBmiGZfHbfcP OYiZzxG1V2o78g+2A/V/rlpdSVVpBMKpAVsRLGQ2AJKSppKURm8w2z3jA4ad4rQU 5owKGLcIgRpyDhjXYDSW3EX/htJnJT/j/Xmh7km7ASmiR2xkLGolmwNtkRZBEwV2 44phpI76zfeOTFBNXBNzj6K9x+SjRjSXpDcobevMgj0YtquOH80c0tAW0W9Xuk35 QkiaqT9LwzsO5hZC6mGNmU+uy0zL2zfLKpr3bRxfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnqInus2cvJCJxc5+9pmHTZaWN/YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkMjg2MWE0LTIxNjAtNGQ1Zi1hYTE4LThhOTMyMTEyMjcyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4pDANBgkqhkiG9w0BAQsFAAOCAQEACYDtMHCuHI+6BaNLWtfdjWbj 9dKoE2wd2PFg54dJFrDuNgpzzr27TiGRzofvTDFy1MKb5cI/6UcgNty1sl+u9NIw DYFslzKqs9bY+5uWAEBwBGZQUk0bMu4hdVY6zH7uBmZ3oM9tqz6xHTcSPQ6XV0Ap YhF2DczhAtYd2xKLEn/VXvXNcx27SwQOCzf6sJH1ecJoDcOwE8zBK0RQ2sLCkdJ/ UyTlgzJVKaxKfXalzqZAP2fgQFpSRMvabMzGam2K9M8wA9gRBZBAeIgOTpj2k/in jsRA5yeW/zGXPz+5tXkm+LuWN2Y3K4S2ymB7bc6g9zts1Jcqz0S+D56woLNjJQ== -----END CERTIFICATE-----Generated at Tue Jul 22 05:12:53 2025 by rpki-client