$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/586d6dac-fcf7-4c1d-9ea8-43c6a3e9de02.roa File: 586d6dac-fcf7-4c1d-9ea8-43c6a3e9de02.roa (raw, json) Hash identifier: JxItMwF5GPRc9FpXTNR93YvdItmMDrf+dCIO9EK/Yys= Subject key identifier: 0A:E0:FF:B1:66:20:0F:D9:8C:10:B4:16:EC:05:20:5E:88:97:A3:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FB3058D344DAF29F91B3333C671C5437FF4EFC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/586d6dac-fcf7-4c1d-9ea8-43c6a3e9de02.roa Signing time: Mon 21 Jul 2025 15:32:00 +0000 ROA not before: Mon 21 Jul 2025 15:32:00 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b3:05:8d:34:4d:af:29:f9:1b:33:33:c6:71:c5:43:7f:f4:ef:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 15:32:00 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=e1a04e6138f338fba2ca70428101f126969d25d3f1c446470ad836a2969d029e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f0:e3:12:41:f3:94:a4:06:75:24:59:da:ba: 93:cd:d1:59:01:dd:9e:65:58:e8:aa:e6:18:35:81: 0e:7e:75:d8:8b:b3:d3:5a:9a:1e:5a:e7:f4:6b:02: 9b:87:11:a1:f7:db:12:2a:57:5e:0e:56:2d:f7:67: af:38:89:6e:24:84:0a:fc:79:77:17:6a:d6:f3:7d: 19:6c:09:fa:06:4c:93:1f:e1:e8:20:8d:48:6e:7a: d9:ff:1f:a2:42:b7:06:ca:95:cf:31:e6:42:5f:b6: b7:cb:d0:92:e8:29:c8:a1:de:61:b3:e1:a8:d4:21: 8d:4d:42:17:19:47:01:90:07:fc:44:e5:c3:fe:59: d2:52:76:e0:9e:56:16:ce:76:d8:29:58:1a:bb:27: 5b:04:bf:c6:e1:94:60:b7:ea:bb:a1:42:88:fa:39: 36:65:b1:6c:0e:7a:6f:26:f3:d3:98:c1:ff:c6:27: 5b:eb:5d:cf:83:ca:3f:46:cf:8a:4e:a2:50:5d:aa: 10:9c:8b:45:02:e3:7f:6c:04:4b:36:a2:09:16:a3: 14:e0:4a:d9:11:5a:f0:58:8f:f9:8c:a8:1e:d6:ff: 01:53:6b:f7:6c:af:cc:37:4e:68:c8:f6:aa:eb:01: 61:66:32:83:1c:38:c1:28:e8:00:a3:83:94:31:dc: 75:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:E0:FF:B1:66:20:0F:D9:8C:10:B4:16:EC:05:20:5E:88:97:A3:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/586d6dac-fcf7-4c1d-9ea8-43c6a3e9de02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:8000::/39 Signature Algorithm: sha256WithRSAEncryption a6:1f:d3:34:55:92:01:f2:45:ac:e2:d5:23:29:aa:dc:82:03: 19:e6:ee:4b:11:78:30:6d:b4:9e:fb:20:08:50:42:11:91:da: 5f:e1:33:6b:2e:58:a8:f2:61:40:86:36:d8:ca:83:71:f6:7c: 46:aa:d1:43:f6:d7:37:0f:4d:ae:e8:6d:bc:33:94:ac:65:e3: 82:1b:e4:4b:16:85:1d:c6:ba:f7:b9:40:fc:df:3c:cc:59:26: b0:dc:dc:0c:2e:86:78:c1:cd:35:2b:de:40:27:9d:c9:c7:16: fc:f8:3c:32:8d:5c:29:4c:fd:21:c9:ad:3b:7c:d2:e5:30:f7: 13:fc:54:8a:a5:ee:e5:ed:fb:72:40:81:ae:17:44:b7:69:2c: 3d:bb:d9:28:a4:bc:36:dc:6d:55:31:06:e6:ce:22:5e:06:31: cf:b6:28:b2:5f:67:74:f8:48:15:c4:2a:a4:82:ae:ac:e7:4b: 27:33:66:7d:62:f6:ff:bf:a0:f9:e2:33:92:ff:f3:db:66:c4: 7f:a9:89:4c:ea:30:06:1a:4a:aa:63:de:0a:82:30:ea:94:de: c7:9d:61:2d:4e:98:e3:69:73:d3:34:78:50:5b:fe:83:43:80: d5:29:0c:dc:81:b0:92:47:57:5b:a5:9e:21:10:89:cb:d3:7e: 25:c3:94:96 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP7MFjTRNryn5GzMzxnHFQ3/078QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTUzMjAwWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWEwNGU2MTM4ZjMzOGZiYTJjYTcwNDI4MTAxZjEyNjk2 OWQyNWQzZjFjNDQ2NDcwYWQ4MzZhMjk2OWQwMjllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP8OMSQfOUpAZ1JFnaupPN0VkB3Z5lWOiq5hg1gQ5+ddiL s9Namh5a5/RrApuHEaH32xIqV14OVi33Z684iW4khAr8eXcXatbzfRlsCfoGTJMf 4eggjUhuetn/H6JCtwbKlc8x5kJftrfL0JLoKcih3mGz4ajUIY1NQhcZRwGQB/xE 5cP+WdJSduCeVhbOdtgpWBq7J1sEv8bhlGC36ruhQoj6OTZlsWwOem8m89OYwf/G J1vrXc+Dyj9Gz4pOolBdqhCci0UC439sBEs2ogkWoxTgStkRWvBYj/mMqB7W/wFT a/dsr8w3TmjI9qrrAWFmMoMcOMEo6ACjg5Qx3HVvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUCuD/sWYgD9mMELQW7AUgXoiXo2cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4NmQ2ZGFjLWZjZjctNGMxZC05ZWE4LTQzYzZhM2U5ZGUwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB9hgDANBgkqhkiG9w0BAQsFAAOCAQEAph/TNFWSAfJFrOLVIymq3IID GebuSxF4MG20nvsgCFBCEZHaX+Ezay5YqPJhQIY22MqDcfZ8RqrRQ/bXNw9Nruht vDOUrGXjghvkSxaFHca697lA/N88zFkmsNzcDC6GeMHNNSveQCedyccW/Pg8Mo1c KUz9IcmtO3zS5TD3E/xUiqXu5e37ckCBrhdEt2ksPbvZKKS8NtxtVTEG5s4iXgYx z7Yosl9ndPhIFcQqpIKurOdLJzNmfWL2/7+g+eIzkv/z22bEf6mJTOowBhpKqmPe CoIw6pTex51hLU6Y42lz0zR4UFv+g0OA1SkM3IGwkkdXW6WeIRCJy9N+JcOUlg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:08 2025 by rpki-client