$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5dc411d9-6915-49ea-8d8e-e0fbdb7782a2.roa File: 5dc411d9-6915-49ea-8d8e-e0fbdb7782a2.roa (raw, json) Hash identifier: vNLtO6wDm3F3U7vV0qcYwXFxRIgcyr/GxfpwQkiq+1Y= Subject key identifier: 45:F2:CC:25:02:24:06:9B:E8:AD:94:08:03:BA:75:5E:88:3D:5A:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C079C96BFD15B594F1B0CB97289F02A6E87A426 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5dc411d9-6915-49ea-8d8e-e0fbdb7782a2.roa Signing time: Tue 08 Jul 2025 16:30:31 +0000 ROA not before: Tue 08 Jul 2025 16:30:31 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:07:9c:96:bf:d1:5b:59:4f:1b:0c:b9:72:89:f0:2a:6e:87:a4:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:30:31 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=832e22eaf9a048b40efe039a45b0deb6b7b809a399950f858ab4f38f854d3dfa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:87:1f:b5:08:7a:e4:d5:f7:8e:f9:3f:da:c0: 9b:c3:98:5f:9d:b5:fa:8d:6d:c7:05:2a:1b:eb:22: ec:b9:cb:01:c8:74:2d:b1:28:37:06:2a:fe:49:fd: 70:08:1f:06:21:2b:19:9f:b4:71:fa:e8:ce:9a:e7: 61:ad:9b:be:17:7d:ed:fc:c4:88:cb:53:fb:1c:c9: 8c:b2:b4:96:24:62:02:e3:c8:c8:c7:7d:c7:9d:ce: 38:a5:6e:53:ae:c5:bc:da:e6:3d:c8:23:b7:b9:e4: fb:21:ac:7f:6b:3e:96:22:c7:fa:73:17:c5:29:5c: 6b:12:66:f9:7e:2e:75:4e:9a:3b:f3:e4:32:70:e2: d1:3b:c2:21:e9:63:e5:30:82:d1:a2:5a:30:65:5d: f7:a7:4d:ba:1e:71:78:e9:da:99:e9:d4:43:9e:a8: fd:27:01:bd:a6:29:c4:be:83:d3:dd:56:f2:4b:53: 5c:82:fa:68:c2:eb:63:95:b7:61:39:c9:18:5b:b6: 91:6d:fe:b9:88:cc:0f:31:d3:9f:b5:0b:92:84:b4: a5:d2:d1:a0:94:2e:c5:cc:30:38:d5:70:c3:7a:0b: 78:5f:14:08:08:13:16:ad:a6:7d:6f:5a:59:2f:9d: 2d:e3:43:3e:ae:d0:fc:6d:94:c5:88:59:85:03:ff: 90:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F2:CC:25:02:24:06:9B:E8:AD:94:08:03:BA:75:5E:88:3D:5A:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5dc411d9-6915-49ea-8d8e-e0fbdb7782a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:8000::/40 Signature Algorithm: sha256WithRSAEncryption 4d:9a:49:a5:c9:01:1f:b3:b5:f7:bb:11:9a:e0:5f:ae:b5:7e: e9:d3:ba:e8:7f:52:d4:e4:fb:fc:5c:79:d8:a8:d9:ab:9f:be: 15:8c:6f:8b:dc:36:56:cb:56:f1:cf:b0:6c:4d:d4:04:e7:43: 0a:ac:57:0b:18:e4:9b:17:cf:18:ce:5e:8d:71:d8:db:88:35: 37:d1:1f:2f:42:f0:ed:7c:e8:56:8c:c2:85:0c:11:0e:41:38: aa:d1:60:89:fa:0c:31:43:2e:88:73:2c:ec:47:af:ef:a0:35: da:fb:dd:15:96:ec:ae:e3:3c:9f:b9:16:2c:ae:91:13:5e:a8: cd:6e:0c:46:73:3e:96:0b:0d:9e:b4:41:05:c0:4f:c2:fe:52: 37:14:b7:c8:c7:d8:12:0a:f2:5b:02:99:28:ea:00:6d:87:b3: f5:dd:86:59:3b:ad:23:de:c6:40:58:44:4f:58:05:a4:61:8f: 58:f4:dd:9e:16:ec:4b:02:7a:7c:66:80:d1:48:05:f3:de:49: ee:c8:e4:b6:5b:95:ff:63:c0:2b:af:1c:92:20:8e:28:f3:dc: 12:f7:13:24:ea:e8:c2:c0:68:4a:66:88:2e:17:2a:96:60:53: 09:11:a7:c7:ae:d1:db:11:e1:30:ed:f8:6f:db:f1:dc:61:c6: 62:4f:ed:a3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXAeclr/RW1lPGwy5conwKm6HpCYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTYzMDMxWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzJlMjJlYWY5YTA0OGI0MGVmZTAzOWE0NWIwZGViNmI3 YjgwOWEzOTk5NTBmODU4YWI0ZjM4Zjg1NGQzZGZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLhx+1CHrk1feO+T/awJvDmF+dtfqNbccFKhvrIuy5ywHI dC2xKDcGKv5J/XAIHwYhKxmftHH66M6a52Gtm74Xfe38xIjLU/scyYyytJYkYgLj yMjHfcedzjilblOuxbza5j3II7e55PshrH9rPpYix/pzF8UpXGsSZvl+LnVOmjvz 5DJw4tE7wiHpY+UwgtGiWjBlXfenTboecXjp2pnp1EOeqP0nAb2mKcS+g9PdVvJL U1yC+mjC62OVt2E5yRhbtpFt/rmIzA8x05+1C5KEtKXS0aCULsXMMDjVcMN6C3hf FAgIExatpn1vWlkvnS3jQz6u0PxtlMWIWYUD/5CVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURfLMJQIkBpvorZQIA7p1Xog9WuIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkYzQxMWQ5LTY5MTUtNDllYS04ZDhlLWUwZmJkYjc3ODJhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xgDANBgkqhkiG9w0BAQsFAAOCAQEATZpJpckBH7O197sRmuBfrrV+ 6dO66H9S1OT7/Fx52KjZq5++FYxvi9w2VstW8c+wbE3UBOdDCqxXCxjkmxfPGM5e jXHY24g1N9EfL0Lw7XzoVozChQwRDkE4qtFgifoMMUMuiHMs7Eev76A12vvdFZbs ruM8n7kWLK6RE16ozW4MRnM+lgsNnrRBBcBPwv5SNxS3yMfYEgryWwKZKOoAbYez 9d2GWTutI97GQFhET1gFpGGPWPTdnhbsSwJ6fGaA0UgF895J7sjktluV/2PAK68c kiCOKPPcEvcTJOrowsBoSmaILhcqlmBTCRGnx67R2xHhMO34b9vx3GHGYk/tow== -----END CERTIFICATE-----Generated at Tue Jul 22 04:56:56 2025 by rpki-client