$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62842a99-8d9d-42aa-97f7-b9f2281d3077.roa File: 62842a99-8d9d-42aa-97f7-b9f2281d3077.roa (raw, json) Hash identifier: rhspCeRTg4v8L+/qTsu84/9cYNgtsg1U/V9l5WuGWq0= Subject key identifier: A5:1E:4B:27:02:14:D4:97:08:AC:8B:4A:8E:32:67:E4:5C:FC:A2:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6AF193A6A583390602C6AA97E8FC8D69DC98BF7C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62842a99-8d9d-42aa-97f7-b9f2281d3077.roa Signing time: Tue 08 Jul 2025 17:11:32 +0000 ROA not before: Tue 08 Jul 2025 17:11:32 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2f:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f1:93:a6:a5:83:39:06:02:c6:aa:97:e8:fc:8d:69:dc:98:bf:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 17:11:32 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=5945588a9e3cfff518d5ca99a89d3f02f8371b8bebfd3b06bb62e159ddad37c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:95:c8:4c:c1:64:19:86:50:ab:9f:18:ee:5a: 13:7b:72:52:3f:ae:e7:ed:55:9c:64:ad:1f:8f:83: 86:14:7b:dd:a1:68:46:09:15:b0:1c:1d:0c:ad:b0: df:b5:a7:d9:b0:9d:d4:95:47:c6:d0:f4:dd:50:c7: 64:a6:93:43:e4:b9:f8:3d:2b:86:07:eb:32:69:0e: 16:b1:c4:8d:79:a8:5e:cf:f0:a1:a9:9f:54:83:b8: 5e:90:d0:f3:4b:1e:bb:00:58:43:51:a5:f8:37:3b: 01:79:f6:52:bb:eb:e5:1e:4a:d7:89:53:ca:39:d9: 84:e3:71:fd:65:d0:f5:c7:75:0a:57:1c:6d:24:f2: 9e:97:5a:15:be:5f:7f:94:c8:6b:3d:dd:2c:ad:e8: 6c:8c:3a:8f:92:ef:a9:31:fd:84:45:f0:54:52:56: 08:7d:8a:b6:98:9f:7e:3b:d3:f7:62:59:d1:67:27: 91:a0:4d:de:37:d0:3a:2a:03:3e:cd:d7:a5:4b:b8: 5f:2b:c4:00:43:13:5c:1f:e9:8d:df:22:8a:c5:26: a6:0e:e0:c7:0e:5a:3b:c8:ec:ad:40:92:b2:da:99: 5c:21:45:ee:6d:d0:1f:22:f6:e1:72:c4:68:86:c5: e8:66:c6:78:8a:55:11:0b:81:3f:d5:0d:2c:22:43: a7:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:1E:4B:27:02:14:D4:97:08:AC:8B:4A:8E:32:67:E4:5C:FC:A2:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62842a99-8d9d-42aa-97f7-b9f2281d3077.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2f:4000::/36 Signature Algorithm: sha256WithRSAEncryption bb:15:49:7b:54:4a:7e:b7:aa:08:8a:67:74:bf:dd:72:73:3a: 27:5c:1f:ef:59:04:0d:d7:14:d9:1b:0d:7b:a0:08:e3:ab:be: a4:75:36:d0:25:30:25:a1:4b:f8:37:a3:e4:6c:84:2d:89:e0: de:62:c3:73:73:c8:37:e2:1a:2c:68:86:9a:d6:f5:1d:8d:92: e9:c8:03:8c:f1:41:81:03:14:45:ba:29:56:df:ee:02:85:05: 8c:d7:cd:8a:cb:78:2a:10:ce:c4:27:ea:1e:19:5d:2f:31:c4: 93:65:ce:c1:05:c1:8a:56:ee:27:b2:15:2d:d9:0f:7a:b4:cf: 16:c0:0e:e4:a1:45:8b:6b:74:2e:96:e5:b8:85:b9:ae:b5:08: 63:54:71:a2:87:23:a9:fd:3b:20:2f:f9:1c:f4:33:7f:a3:c2: 3b:b7:38:a7:9a:43:55:af:8f:24:9a:c8:0c:bf:9f:23:ea:fb: ca:70:f2:af:fc:49:18:03:02:4c:02:ff:df:8b:53:99:bf:78: 56:73:9c:8f:50:bf:8b:de:af:6f:b2:e4:91:80:22:f5:52:9d: ae:71:4e:2f:ec:b0:32:16:ad:76:6a:60:bf:05:b9:27:bc:dc: f0:f2:01:1a:a9:40:9f:a3:b6:9b:dd:36:5d:dd:90:e9:73:5a: f0:c3:d0:72 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUavGTpqWDOQYCxqqX6PyNadyYv3wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTcxMTMyWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTQ1NTg4YTllM2NmZmY1MThkNWNhOTlhODlkM2YwMmY4 MzcxYjhiZWJmZDNiMDZiYjYyZTE1OWRkYWQzN2MyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCylchMwWQZhlCrnxjuWhN7clI/ruftVZxkrR+Pg4YUe92h aEYJFbAcHQytsN+1p9mwndSVR8bQ9N1Qx2Smk0Pkufg9K4YH6zJpDhaxxI15qF7P 8KGpn1SDuF6Q0PNLHrsAWENRpfg3OwF59lK76+UeSteJU8o52YTjcf1l0PXHdQpX HG0k8p6XWhW+X3+UyGs93Syt6GyMOo+S76kx/YRF8FRSVgh9iraYn3470/diWdFn J5GgTd430DoqAz7N16VLuF8rxABDE1wf6Y3fIorFJqYO4McOWjvI7K1AkrLamVwh Re5t0B8i9uFyxGiGxehmxniKVRELgT/VDSwiQ6fxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUpR5LJwIU1JcIrItKjjJn5Fz8onUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyODQyYTk5LThkOWQtNDJhYS05N2Y3LWI5ZjIyODFkMzA3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8vQDANBgkqhkiG9w0BAQsFAAOCAQEAuxVJe1RKfreqCIpndL/dcnM6 J1wf71kEDdcU2RsNe6AI46u+pHU20CUwJaFL+Dej5GyELYng3mLDc3PIN+IaLGiG mtb1HY2S6cgDjPFBgQMURbopVt/uAoUFjNfNist4KhDOxCfqHhldLzHEk2XOwQXB ilbuJ7IVLdkPerTPFsAO5KFFi2t0LpbluIW5rrUIY1Rxoocjqf07IC/5HPQzf6PC O7c4p5pDVa+PJJrIDL+fI+r7ynDyr/xJGAMCTAL/34tTmb94VnOcj1C/i96vb7Lk kYAi9VKdrnFOL+ywMhatdmpgvwW5J7zc8PIBGqlAn6O2m902Xd2Q6XNa8MPQcg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:18 2025 by rpki-client