$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/623e0c25-ebcc-443d-aa05-3aa115d44e24.roa File: 623e0c25-ebcc-443d-aa05-3aa115d44e24.roa (raw, json) Hash identifier: fMNJ5Bd34EEORSjRjBZtywxE9Zf/Bc6vylcs7tfjvQA= Subject key identifier: 66:E9:99:7D:66:8F:75:D9:63:51:5C:02:8A:55:A5:6F:32:CC:B3:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 773A31F35F267EF8170F1546CF4EAD1924AACDDD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/623e0c25-ebcc-443d-aa05-3aa115d44e24.roa Signing time: Mon 07 Jul 2025 16:21:24 +0000 ROA not before: Mon 07 Jul 2025 16:21:24 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3a:31:f3:5f:26:7e:f8:17:0f:15:46:cf:4e:ad:19:24:aa:cd:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:21:24 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=1929b5dc412e3aecffa45888c1f8a4de2b41083cffd06303275170c6b7b4d770, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:cc:be:78:ed:21:ef:4a:08:94:73:42:96:56: c2:19:30:61:49:6d:55:e3:47:8b:1c:d1:f3:2b:2b: 9a:5e:f8:f3:8e:00:b4:7b:f2:92:a5:10:49:3e:dd: b6:65:9e:49:cd:e6:5e:26:e5:e6:e4:b3:49:9d:8d: 9e:25:e4:e8:f8:69:2c:f8:c1:25:a8:8b:86:60:2a: 00:7b:b7:07:45:36:73:98:57:e3:49:21:8a:48:12: 0d:d6:c2:03:3b:c3:9d:03:00:b1:04:8c:7d:5c:d3: 95:8c:5c:3c:4f:72:4b:53:59:9e:2f:9e:9d:80:1f: 6f:9d:c8:ee:ab:1a:a1:5e:d6:cf:74:cd:70:45:a0: 61:67:a7:3f:4e:81:4a:fa:e4:2a:38:4a:27:6c:79: a6:2e:0d:f0:66:63:19:0d:96:89:95:2d:bd:6f:f5: 5d:b7:32:66:c9:4d:5c:bf:ca:f2:ea:88:dd:9f:8a: b8:f3:97:d7:b2:4e:2a:9e:ad:ae:54:70:02:f8:5e: 80:20:2e:96:66:f1:98:e5:63:40:d7:b7:6a:8c:8f: 50:71:63:72:8a:c4:a8:69:50:e3:d7:38:f1:6f:de: 44:69:b7:2e:32:62:38:8f:73:57:38:fd:33:26:77: 41:85:d7:78:e4:40:a8:f4:51:10:46:d7:09:db:18: 0b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E9:99:7D:66:8F:75:D9:63:51:5C:02:8A:55:A5:6F:32:CC:B3:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/623e0c25-ebcc-443d-aa05-3aa115d44e24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8050::/48 Signature Algorithm: sha256WithRSAEncryption 7e:71:44:da:42:8f:72:94:62:ad:2a:72:26:0e:aa:23:cc:ff: f7:44:b1:de:e4:18:a1:d7:f2:46:fa:e1:88:b6:10:90:5f:7a: 15:58:7a:7f:ca:c2:5c:e6:4f:9e:87:7b:45:e8:11:2e:8b:e6: 1f:f6:f2:2b:87:da:8e:c3:71:97:eb:b1:4f:30:93:bf:d0:fc: 84:bd:9c:d4:0f:78:0e:14:ef:8b:e0:d7:89:1c:c2:1f:6a:70: 31:e1:08:ea:7f:4e:c2:3a:79:47:dd:b0:d8:bc:21:17:25:10: c3:58:3b:f2:5c:1d:f8:1c:b1:7f:e8:31:47:d2:92:12:7b:fb: 0c:90:71:63:97:3c:8a:f9:f7:17:d0:25:ec:26:68:58:e8:d2: c0:50:aa:71:fb:40:a5:e5:5b:51:51:46:a0:14:bc:4a:0c:51: 04:5e:98:fc:92:b3:f6:d7:42:7d:13:f3:c5:63:f3:dc:72:b3: 90:46:32:1b:58:d2:19:33:6b:50:c7:36:0f:f9:e2:79:c1:25: af:24:30:90:ed:55:11:b2:0c:0d:24:82:6e:ee:99:7e:42:5d: 43:98:1d:df:c1:40:d7:e1:d1:33:3f:0c:39:9e:86:93:b6:80: 1a:88:ce:ef:b8:03:8c:16:c6:2b:c2:2d:a8:1a:d8:d3:87:75: 33:34:27:99 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdzox818mfvgXDxVGz06tGSSqzd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYyMTI0WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTI5YjVkYzQxMmUzYWVjZmZhNDU4ODhjMWY4YTRkZTJi NDEwODNjZmZkMDYzMDMyNzUxNzBjNmI3YjRkNzcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqzL547SHvSgiUc0KWVsIZMGFJbVXjR4sc0fMrK5pe+POO ALR78pKlEEk+3bZlnknN5l4m5ebks0mdjZ4l5Oj4aSz4wSWoi4ZgKgB7twdFNnOY V+NJIYpIEg3WwgM7w50DALEEjH1c05WMXDxPcktTWZ4vnp2AH2+dyO6rGqFe1s90 zXBFoGFnpz9OgUr65Co4SidseaYuDfBmYxkNlomVLb1v9V23MmbJTVy/yvLqiN2f irjzl9eyTiqera5UcAL4XoAgLpZm8ZjlY0DXt2qMj1BxY3KKxKhpUOPXOPFv3kRp ty4yYjiPc1c4/TMmd0GF13jkQKj0URBG1wnbGAvjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZumZfWaPddljUVwCilWlbzLMs7gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyM2UwYzI1LWViY2MtNDQzZC1hYTA1LTNhYTExNWQ0NGUyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gFAwDQYJKoZIhvcNAQELBQADggEBAH5xRNpCj3KUYq0qciYOqiPM //dEsd7kGKHX8kb64Yi2EJBfehVYen/KwlzmT56He0XoES6L5h/28iuH2o7DcZfr sU8wk7/Q/IS9nNQPeA4U74vg14kcwh9qcDHhCOp/TsI6eUfdsNi8IRclEMNYO/Jc HfgcsX/oMUfSkhJ7+wyQcWOXPIr59xfQJewmaFjo0sBQqnH7QKXlW1FRRqAUvEoM UQRemPySs/bXQn0T88Vj89xys5BGMhtY0hkza1DHNg/54nnBJa8kMJDtVRGyDA0k gm7umX5CXUOYHd/BQNfh0TM/DDmehpO2gBqIzu+4A4wWxivCLaga2NOHdTM0J5k= -----END CERTIFICATE-----Generated at Mon Jul 21 18:14:22 2025 by rpki-client