$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa File: 7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa (raw, json) Hash identifier: uuPn21XRZH/v2d+VqNFJGWdjpvlwPy1Oq++J+kK+BXk= Subject key identifier: 30:03:7E:62:DA:AA:40:51:AC:0A:49:8D:57:E7:F8:00:45:36:4C:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25CEBC5517856D8E52303B04F6A4AA38D2CABEE0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa Signing time: Fri 18 Jul 2025 00:21:55 +0000 ROA not before: Fri 18 Jul 2025 00:21:55 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ce:bc:55:17:85:6d:8e:52:30:3b:04:f6:a4:aa:38:d2:ca:be:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:21:55 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=2a4a80a1e087e0be2af7c2eb8bd140c89bb57058006c7f2c770529e2697d0397, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e4:3a:41:a9:e9:e6:05:17:52:f6:a0:ed:2f: cc:fa:73:66:d8:10:ce:4d:c9:a7:80:3b:7b:30:ce: 3e:55:19:b4:6c:c0:d8:04:3e:29:c6:e0:06:21:aa: 1b:be:7d:6c:b8:9d:67:5d:41:90:9f:cd:c1:3b:e6: c9:9c:f6:37:fe:6a:cb:e1:9b:49:96:9f:51:05:c0: fa:53:ac:8a:25:43:cc:78:79:fe:a8:92:e1:39:15: a7:ae:7a:1f:3a:18:c0:a8:16:68:2d:18:e2:b3:df: 42:88:f1:ec:00:d2:81:f3:bf:ad:8e:5b:c2:dc:b3: 4e:92:cb:f7:cf:58:64:d3:ff:80:35:91:e7:e6:01: aa:5b:3e:92:25:10:a1:cd:73:5e:bc:0e:ca:5d:38: 77:ab:1a:07:da:b6:b6:59:02:0b:9e:32:74:9e:d1: e8:08:11:11:da:79:1d:10:c1:82:ec:ec:5a:d0:68: 53:47:14:09:48:02:a4:71:a3:4a:56:fe:30:05:9a: 54:24:ea:f4:b6:63:5c:3a:93:e3:ad:ab:32:19:17: 4f:94:94:e6:53:11:1c:44:28:46:9d:d6:e4:94:e4: c4:dd:41:6f:99:21:b2:7a:b9:c8:36:c2:ef:e8:a8: 90:4b:3a:57:33:71:8b:12:ff:c9:cd:f6:f2:18:25: 74:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:03:7E:62:DA:AA:40:51:AC:0A:49:8D:57:E7:F8:00:45:36:4C:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7488d36c-11a1-4b7f-ad9e-71af6b1fa8ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:c000::/40 Signature Algorithm: sha256WithRSAEncryption 29:c7:d5:5e:bb:3e:d0:ec:17:cb:ee:4e:0e:c3:59:ba:79:fe: cb:53:e6:68:31:b6:5f:9d:6a:19:c8:fe:37:ef:0d:ba:73:83: 41:0d:41:3f:46:5a:d6:a4:bc:63:75:4a:e2:49:ea:62:68:96: 0a:4b:d9:c6:b1:18:66:14:6f:60:f4:ae:e8:5d:7d:f3:08:b4: b7:d7:ac:50:72:78:fb:aa:bd:44:a2:d8:0b:b3:61:68:0c:38: c1:af:92:a2:8a:07:1f:1a:91:97:af:d5:28:31:67:4c:6a:71: d7:2b:a6:2d:00:91:df:36:60:6f:c9:ad:19:36:01:f7:bf:72: 4d:73:2d:ef:3b:fa:a6:6e:71:21:f8:a8:0d:e2:be:e7:54:8a: 4f:c2:22:59:1c:e2:fd:66:b6:82:7a:72:88:37:c2:b4:95:1b: 87:5a:0f:08:89:47:51:62:9f:f6:9c:e3:bf:de:22:21:cc:01: c0:ed:27:a8:da:e8:bd:9d:c6:bd:83:66:85:2b:dd:16:75:c0: 51:d4:34:cf:70:b8:39:fa:23:5d:56:9f:92:c6:7f:ee:52:99: 6f:71:45:67:3a:e4:73:66:7a:da:43:d8:32:a4:a9:57:d7:eb: 95:86:c9:ea:2a:83:f1:35:7b:0f:1f:66:b4:20:a1:45:12:6e: 44:37:f2:cc -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJc68VReFbY5SMDsE9qSqONLKvuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAyMTU1WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTRhODBhMWUwODdlMGJlMmFmN2MyZWI4YmQxNDBjODli YjU3MDU4MDA2YzdmMmM3NzA1MjllMjY5N2QwMzk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu5DpBqenmBRdS9qDtL8z6c2bYEM5NyaeAO3swzj5VGbRs wNgEPinG4AYhqhu+fWy4nWddQZCfzcE75smc9jf+asvhm0mWn1EFwPpTrIolQ8x4 ef6okuE5Faeueh86GMCoFmgtGOKz30KI8ewA0oHzv62OW8Lcs06Sy/fPWGTT/4A1 kefmAapbPpIlEKHNc168DspdOHerGgfatrZZAgueMnSe0egIERHaeR0QwYLs7FrQ aFNHFAlIAqRxo0pW/jAFmlQk6vS2Y1w6k+OtqzIZF0+UlOZTERxEKEad1uSU5MTd QW+ZIbJ6ucg2wu/oqJBLOlczcYsS/8nN9vIYJXQ/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMAN+YtqqQFGsCkmNV+f4AEU2TIswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0ODhkMzZjLTExYTEtNGI3Zi1hZDllLTcxYWY2YjFmYThiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/xwDANBgkqhkiG9w0BAQsFAAOCAQEAKcfVXrs+0OwXy+5ODsNZunn+ y1PmaDG2X51qGcj+N+8NunODQQ1BP0Za1qS8Y3VK4knqYmiWCkvZxrEYZhRvYPSu 6F198wi0t9esUHJ4+6q9RKLYC7NhaAw4wa+SoooHHxqRl6/VKDFnTGpx1yumLQCR 3zZgb8mtGTYB979yTXMt7zv6pm5xIfioDeK+51SKT8IiWRzi/Wa2gnpyiDfCtJUb h1oPCIlHUWKf9pzjv94iIcwBwO0nqNrovZ3GvYNmhSvdFnXAUdQ0z3C4OfojXVaf ksZ/7lKZb3FFZzrkc2Z62kPYMqSpV9frlYbJ6iqD8TV7Dx9mtCChRRJuRDfyzA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:19 2025 by rpki-client