$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa File: 5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa (raw, json) Hash identifier: PhTs20E1thuDZzawnjaU+4+yD9u/EXNdHw0UuPiUDbE= Subject key identifier: BA:C5:63:39:BA:7F:F4:46:A8:80:3C:4D:89:B5:89:D0:5D:8C:F9:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A65039A62072C3502216C36462FC6516D826669 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa Signing time: Mon 14 Jul 2025 15:11:07 +0000 ROA not before: Mon 14 Jul 2025 15:11:07 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:84af::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:65:03:9a:62:07:2c:35:02:21:6c:36:46:2f:c6:51:6d:82:66:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:11:07 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=3f73f7a3f012cd3f1baba60dc59c83437d3fb8560f1b8e1710c39e7eb697bd07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b6:45:74:53:1d:70:a3:1d:3c:da:e5:11:57: 78:55:91:14:23:d6:8b:b0:6c:ea:a0:0f:f3:ae:cb: b1:86:7d:fc:f0:21:52:2a:47:9a:e6:18:63:cc:7f: 7d:6a:6d:e6:d5:56:9f:0a:94:e4:88:fd:0b:de:a6: 52:72:a2:01:bb:46:61:86:75:5d:c4:74:f0:9d:79: 5d:91:65:ab:22:d4:44:19:b7:f1:ca:cd:f3:7e:27: 86:9a:b4:ed:1c:f0:78:14:b2:ca:06:e9:f4:d6:2b: 83:33:49:ec:49:7f:54:6b:68:bf:f2:2c:e6:8e:ea: 42:b0:d1:d5:30:8f:9f:bd:d2:35:46:c0:60:21:28: c7:e9:b1:20:10:b1:f4:40:61:71:c0:42:cf:1e:8e: 93:8f:97:4a:4e:a0:e6:c1:c2:2a:c8:0e:15:55:42: 0d:51:a4:66:a4:23:67:f0:4c:45:4d:ce:16:b6:7c: 3c:c7:d0:f1:a8:f9:09:c4:0f:5b:a5:a4:c6:84:39: 17:62:25:ab:4d:8c:b2:eb:98:1a:e5:d3:c3:2b:32: 7e:26:96:ab:ef:6c:e5:d1:24:7f:b2:05:8f:24:ff: 6a:35:54:7e:13:f1:c0:53:bd:de:34:1f:5c:a6:87: 92:6a:98:d0:f5:65:64:11:aa:a2:36:03:b3:b0:e9: f9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:C5:63:39:BA:7F:F4:46:A8:80:3C:4D:89:B5:89:D0:5D:8C:F9:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d72dbbe-2b88-48a1-81f5-b55082aa8945.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:84af::/48 Signature Algorithm: sha256WithRSAEncryption 14:ae:15:75:68:39:85:03:8e:28:55:d7:e0:a9:f8:be:cd:ba: 53:b2:3d:7c:0e:41:35:b5:0c:b5:ae:39:01:f8:eb:8f:c8:b4: 64:00:98:b5:f7:03:b6:9a:c2:b0:79:50:98:fd:16:c6:55:e7: 33:d6:b0:2b:3a:64:3a:c2:ce:2c:7d:cd:cb:50:dc:c7:9f:27: bc:f5:f9:93:35:1e:f1:95:09:7d:bb:6e:f2:ea:ab:c7:07:48: 9e:ec:93:40:3d:2c:1a:02:53:5a:2b:71:ad:86:ac:e9:e8:2a: b6:2e:76:03:34:8d:29:1b:ac:9f:b1:7e:14:ec:0c:4d:9f:8d: 11:20:b9:b7:8f:1f:56:08:da:08:a1:eb:ba:67:d1:5d:a8:ff: 2b:e6:4c:c6:89:b8:9c:f1:31:b6:5c:03:ff:84:01:c0:aa:63: 9c:f2:36:b0:a0:4c:96:e8:57:58:c5:62:c6:4d:4b:2c:4d:96: 50:1e:cd:8b:49:4d:0b:73:14:5e:9d:4c:bc:79:ae:24:38:23: f5:f1:be:a5:1a:af:4e:04:b1:e7:b2:1b:54:22:f2:3f:f1:c6: e8:06:d4:57:67:2f:3c:83:e4:da:68:51:55:13:33:1f:b3:12: 77:7b:e5:00:b9:37:9d:19:6e:be:5c:52:19:c7:14:87:57:cb: 88:14:47:4f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSmUDmmIHLDUCIWw2Ri/GUW2CZmkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUxMTA3WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjczZjdhM2YwMTJjZDNmMWJhYmE2MGRjNTljODM0Mzdk M2ZiODU2MGYxYjhlMTcxMGMzOWU3ZWI2OTdiZDA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCntkV0Ux1wox082uURV3hVkRQj1ouwbOqgD/Ouy7GGffzw IVIqR5rmGGPMf31qbebVVp8KlOSI/QveplJyogG7RmGGdV3EdPCdeV2RZasi1EQZ t/HKzfN+J4aatO0c8HgUssoG6fTWK4MzSexJf1RraL/yLOaO6kKw0dUwj5+90jVG wGAhKMfpsSAQsfRAYXHAQs8ejpOPl0pOoObBwirIDhVVQg1RpGakI2fwTEVNzha2 fDzH0PGo+QnED1ulpMaEORdiJatNjLLrmBrl08MrMn4mlqvvbOXRJH+yBY8k/2o1 VH4T8cBTvd40H1ymh5JqmND1ZWQRqqI2A7Ow6fmDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUusVjObp/9EaogDxNibWJ0F2M+QowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkNzJkYmJlLTJiODgtNDhhMS04MWY1LWI1NTA4MmFhODk0NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hK8wDQYJKoZIhvcNAQELBQADggEBABSuFXVoOYUDjihV1+Cp+L7N ulOyPXwOQTW1DLWuOQH464/ItGQAmLX3A7aawrB5UJj9FsZV5zPWsCs6ZDrCzix9 zctQ3MefJ7z1+ZM1HvGVCX27bvLqq8cHSJ7sk0A9LBoCU1orca2GrOnoKrYudgM0 jSkbrJ+xfhTsDE2fjREgubePH1YI2gih67pn0V2o/yvmTMaJuJzxMbZcA/+EAcCq Y5zyNrCgTJboV1jFYsZNSyxNllAezYtJTQtzFF6dTLx5riQ4I/XxvqUar04Eseey G1Qi8j/xxugG1FdnLzyD5NpoUVUTMx+zEnd75QC5N50Zbr5cUhnHFIdXy4gUR08= -----END CERTIFICATE-----Generated at Mon Jul 21 23:40:29 2025 by rpki-client