$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5988892c-5d54-4e98-a5b0-3a2691a42a24.roa File: 5988892c-5d54-4e98-a5b0-3a2691a42a24.roa (raw, json) Hash identifier: dVHfmMWKwkjJ7cqK5oCTGyp9jrJyfzcj/VtSSM2iLkQ= Subject key identifier: 63:EF:B6:6B:3E:F6:A4:2D:47:EB:D1:2F:21:F0:F9:C1:1B:A6:83:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36CB5DCD646A7C467009E537559FC0482770C41A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5988892c-5d54-4e98-a5b0-3a2691a42a24.roa Signing time: Mon 07 Jul 2025 18:00:27 +0000 ROA not before: Mon 07 Jul 2025 18:00:27 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:74c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:cb:5d:cd:64:6a:7c:46:70:09:e5:37:55:9f:c0:48:27:70:c4:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 18:00:27 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=ec95b05ac9bfbee385ef19b270a640eff70b7baca16affdc8fde71f6ae61a1cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f3:15:4f:f3:d5:d3:32:35:08:50:5f:98:16: 6c:a8:de:8a:4f:c8:45:f0:61:b2:cb:d6:39:5c:30: 59:d7:af:8c:77:80:79:13:82:10:fe:eb:30:fa:ca: 35:78:d5:d1:e9:c6:b2:32:2e:cf:18:a6:54:d0:44: cc:8c:7c:12:ae:49:a9:f2:c9:e3:ab:f1:39:4f:8e: 2f:53:79:be:4a:68:f5:16:34:11:c5:da:fd:90:88: a9:e2:0f:fb:e1:41:c9:2f:39:b5:4f:95:70:50:3a: fd:00:97:b7:07:db:4c:9c:5a:69:98:5c:59:39:56: d5:b5:49:30:ab:04:8e:b9:27:aa:92:f9:01:aa:9a: d9:8d:6f:ab:27:e8:0f:e8:ec:b1:dc:cd:87:f5:61: 24:34:87:09:b5:11:65:f3:c9:b6:43:53:83:18:25: 05:f1:35:37:5a:ae:b2:09:f0:41:d9:7f:f3:6d:27: 1a:12:99:0c:24:b6:eb:2b:ee:fb:0b:27:0f:12:25: 21:25:61:1f:1c:e4:12:f3:82:d5:bb:00:91:ac:b1: 7b:b8:96:e0:29:bd:12:3e:80:cb:24:fc:5e:d7:ab: db:48:55:a0:14:84:a2:5c:44:cb:a6:ce:cd:87:d5: 47:76:d6:b9:ef:66:46:4b:13:04:a6:5f:29:c3:37: 61:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:EF:B6:6B:3E:F6:A4:2D:47:EB:D1:2F:21:F0:F9:C1:1B:A6:83:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5988892c-5d54-4e98-a5b0-3a2691a42a24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:74c0::/48 Signature Algorithm: sha256WithRSAEncryption 15:1e:8c:36:16:b8:f2:ee:e2:38:e5:0b:b4:17:e6:ce:9c:d7: 26:30:08:c0:bd:06:ba:6d:91:7b:16:30:78:4f:4b:f8:d8:b9: ff:f5:0a:86:0f:f5:62:17:52:bc:bd:29:3b:05:9d:34:9b:7e: a0:31:4f:3a:53:b1:24:5e:47:d1:fa:f7:30:a3:01:64:94:e9: a1:38:bb:23:4a:f1:53:87:29:33:c0:22:7b:25:7d:62:c4:70: 72:b1:b8:41:c5:67:3c:cc:77:87:92:0b:6d:e0:6d:84:23:e3: e7:48:a1:ba:22:a7:4e:15:73:b5:42:8a:2f:a7:cb:ab:ad:cc: 28:8d:a5:f9:f4:4d:a2:6a:b2:37:03:41:60:c2:7e:07:72:ed: 54:04:72:e9:60:e7:a9:6e:a1:79:7b:5c:aa:c4:1c:92:7d:02: a4:f2:10:65:15:cf:44:91:f6:fc:a5:99:f1:1e:c6:f3:b0:f2: e7:39:86:3b:6f:07:b3:98:c7:2d:ee:2e:89:44:f7:6a:a0:17: 66:ef:46:60:2b:70:61:73:19:d7:da:66:d0:71:8d:77:f7:24: 05:f9:f4:95:3c:e2:85:b5:cd:dc:42:f6:8d:d2:62:c3:29:e2: b0:65:5a:14:e8:83:52:7d:82:0f:dc:56:8f:25:0c:ba:9a:fc: e0:67:62:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNstdzWRqfEZwCeU3VZ/ASCdwxBowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTgwMDI3WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzk1YjA1YWM5YmZiZWUzODVlZjE5YjI3MGE2NDBlZmY3 MGI3YmFjYTE2YWZmZGM4ZmRlNzFmNmFlNjFhMWNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr8xVP89XTMjUIUF+YFmyo3opPyEXwYbLL1jlcMFnXr4x3 gHkTghD+6zD6yjV41dHpxrIyLs8YplTQRMyMfBKuSanyyeOr8TlPji9Teb5KaPUW NBHF2v2QiKniD/vhQckvObVPlXBQOv0Al7cH20ycWmmYXFk5VtW1STCrBI65J6qS +QGqmtmNb6sn6A/o7LHczYf1YSQ0hwm1EWXzybZDU4MYJQXxNTdarrIJ8EHZf/Nt JxoSmQwktusr7vsLJw8SJSElYR8c5BLzgtW7AJGssXu4luApvRI+gMsk/F7Xq9tI VaAUhKJcRMumzs2H1Ud21rnvZkZLEwSmXynDN2HLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY++2az72pC1H69EvIfD5wRumg4QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5ODg4OTJjLTVkNTQtNGU5OC1hNWIwLTNhMjY5MWE0MmEyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AdMAwDQYJKoZIhvcNAQELBQADggEBABUejDYWuPLu4jjlC7QX5s6c 1yYwCMC9BrptkXsWMHhPS/jYuf/1CoYP9WIXUry9KTsFnTSbfqAxTzpTsSReR9H6 9zCjAWSU6aE4uyNK8VOHKTPAInslfWLEcHKxuEHFZzzMd4eSC23gbYQj4+dIoboi p04Vc7VCii+ny6utzCiNpfn0TaJqsjcDQWDCfgdy7VQEculg56luoXl7XKrEHJJ9 AqTyEGUVz0SR9vylmfEexvOw8uc5hjtvB7OYxy3uLolE92qgF2bvRmArcGFzGdfa ZtBxjXf3JAX59JU84oW1zdxC9o3SYsMp4rBlWhTog1J9gg/cVo8lDLqa/OBnYj8= -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:38 2025 by rpki-client