$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c225948-4cbc-4292-a9e7-f8ad88042cfe.roa File: 4c225948-4cbc-4292-a9e7-f8ad88042cfe.roa (raw, json) Hash identifier: TI7pCdm5qMzgQRJTTlnKgQ+k5FbXMzXg2K4v6z5ufLU= Subject key identifier: A6:E7:B5:A2:29:27:FE:D1:E4:7E:D5:FE:ED:6B:86:EB:83:99:9B:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F78F137239E79A2C88ED5F7850D1A23113BB79E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c225948-4cbc-4292-a9e7-f8ad88042cfe.roa Signing time: Tue 08 Jul 2025 15:21:21 +0000 ROA not before: Tue 08 Jul 2025 15:21:21 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:7440::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:78:f1:37:23:9e:79:a2:c8:8e:d5:f7:85:0d:1a:23:11:3b:b7:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:21:21 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=32c5b249a308d69b427757fb754148d266d9c1b932b9f0e92f8c8ea59c1f210e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a3:c9:05:7c:66:62:a9:c9:12:56:38:0c:a4: e7:61:02:66:9a:dc:b5:19:7a:49:af:36:77:5b:85: fe:4f:8a:28:6b:f1:d6:0a:de:1d:06:7d:4a:e2:0c: cb:ed:a2:e5:a7:eb:47:0e:dd:da:cd:2a:7b:0e:b4: 61:53:36:72:ac:7a:01:f1:78:5f:a7:94:12:47:80: 42:44:2c:93:18:3a:9c:8e:50:88:44:d3:97:9d:45: a8:2d:fb:f6:fc:55:dc:e8:31:ba:e6:9f:61:95:22: fd:bb:26:85:24:21:23:62:9b:50:65:a6:02:39:71: 1e:24:cd:9e:ae:8a:91:52:d5:63:34:c0:64:ba:84: a6:bc:45:e4:99:23:43:3f:44:35:88:6c:83:29:61: da:b4:f1:b8:5d:96:07:02:41:0a:50:bf:1b:7c:cf: aa:bb:21:c9:d5:65:40:58:bb:89:8c:c7:54:f7:bf: 1c:4e:ed:a0:33:72:09:c9:ac:e3:fb:37:9b:39:f9: 75:bf:7c:d1:b0:53:1b:0e:20:6a:96:75:b8:a1:4d: 0c:49:80:f8:8b:de:e6:92:d2:c2:19:e5:98:eb:80: 56:4e:e4:da:f4:9a:f5:56:76:b5:ee:6d:63:28:03: c9:e9:ef:82:74:47:08:4f:88:4f:f4:3e:fe:84:1f: 86:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E7:B5:A2:29:27:FE:D1:E4:7E:D5:FE:ED:6B:86:EB:83:99:9B:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c225948-4cbc-4292-a9e7-f8ad88042cfe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:7440::/46 Signature Algorithm: sha256WithRSAEncryption 5c:3e:30:fa:c9:a6:df:c1:ad:3a:2a:25:ef:9c:20:33:98:3d: ed:0c:3a:90:db:7d:de:58:b8:5b:a5:ba:03:fc:51:f1:48:3f: 38:85:f1:52:85:f1:12:7b:31:a5:ac:70:3e:30:b8:6b:16:aa: 75:3b:5b:85:85:c8:8c:e2:7e:a2:0d:16:ae:74:bc:6c:b1:82: 12:22:01:0f:b4:79:4a:1f:b8:c2:6f:6d:0c:ed:c5:7a:36:41: 32:01:22:61:bd:a3:99:5a:00:ec:cb:ff:7c:c6:42:09:19:3c: 88:0e:6e:a4:08:ec:18:1c:ad:f0:91:cc:6a:c8:42:7f:08:92: 20:6b:cd:9f:01:bf:0b:f0:7e:ed:ee:f2:e7:cc:eb:da:9a:51: 9a:83:8b:48:5c:bd:2c:86:db:59:f9:ab:94:59:79:4a:a1:85: 47:28:93:8f:be:54:94:34:f5:84:11:92:94:bf:83:a3:6a:a9: 7b:a3:35:90:f9:e0:88:49:66:0a:43:31:e9:11:74:f6:82:9f: 06:7f:bb:46:a3:ac:ec:c6:27:e7:42:25:84:17:da:39:c9:90: a4:66:52:4c:08:d2:8d:71:30:db:9a:b3:13:b0:20:97:04:7d: 90:e1:71:be:30:52:93:5a:8e:5b:be:37:12:3c:ef:fe:09:2a: a1:c4:4d:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUH3jxNyOeeaLIjtX3hQ0aIxE7t54wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUyMTIxWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmM1YjI0OWEzMDhkNjliNDI3NzU3ZmI3NTQxNDhkMjY2 ZDljMWI5MzJiOWYwZTkyZjhjOGVhNTljMWYyMTBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVo8kFfGZiqckSVjgMpOdhAmaa3LUZekmvNndbhf5Piihr 8dYK3h0GfUriDMvtouWn60cO3drNKnsOtGFTNnKsegHxeF+nlBJHgEJELJMYOpyO UIhE05edRagt+/b8VdzoMbrmn2GVIv27JoUkISNim1BlpgI5cR4kzZ6uipFS1WM0 wGS6hKa8ReSZI0M/RDWIbIMpYdq08bhdlgcCQQpQvxt8z6q7IcnVZUBYu4mMx1T3 vxxO7aAzcgnJrOP7N5s5+XW/fNGwUxsOIGqWdbihTQxJgPiL3uaS0sIZ5ZjrgFZO 5Nr0mvVWdrXubWMoA8np74J0RwhPiE/0Pv6EH4aDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpue1oikn/tHkftX+7WuG64OZmw4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjMjI1OTQ4LTRjYmMtNDI5Mi1hOWU3LWY4YWQ4ODA0MmNmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pdEAwDQYJKoZIhvcNAQELBQADggEBAFw+MPrJpt/BrToqJe+cIDOY Pe0MOpDbfd5YuFulugP8UfFIPziF8VKF8RJ7MaWscD4wuGsWqnU7W4WFyIzifqIN Fq50vGyxghIiAQ+0eUofuMJvbQztxXo2QTIBImG9o5laAOzL/3zGQgkZPIgObqQI 7BgcrfCRzGrIQn8IkiBrzZ8Bvwvwfu3u8ufM69qaUZqDi0hcvSyG21n5q5RZeUqh hUcok4++VJQ09YQRkpS/g6NqqXujNZD54IhJZgpDMekRdPaCnwZ/u0ajrOzGJ+dC JYQX2jnJkKRmUkwI0o1xMNuasxOwIJcEfZDhcb4wUpNajlu+NxI87/4JKqHETU0= -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:27 2025 by rpki-client