$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7526745b-a80d-41a5-acf1-d54e33c2859e.roa File: 7526745b-a80d-41a5-acf1-d54e33c2859e.roa (raw, json) Hash identifier: JdyuYc+KIAiJnneBE8yaFeXatjmq1p8O7jwI11hA/Rk= Subject key identifier: 91:86:D2:D1:87:25:AD:B8:AB:DD:5C:6D:82:EF:7B:A3:D9:3C:8C:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30DF64791C13BFBBE94630F2B724A335A96FBF8A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7526745b-a80d-41a5-acf1-d54e33c2859e.roa Signing time: Tue 08 Jul 2025 16:21:26 +0000 ROA not before: Tue 08 Jul 2025 16:21:26 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:df:64:79:1c:13:bf:bb:e9:46:30:f2:b7:24:a3:35:a9:6f:bf:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:21:26 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=d27a0dad70304ba4180984ab2f75ac12ef253ef666fa306ad0b0e2eb1647b5bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e8:7e:f6:17:7b:58:58:76:46:a7:3d:03:2a: 3d:0a:fe:e2:18:e9:ef:13:19:4e:35:f0:90:9e:e4: ed:0a:28:60:3d:50:66:cb:11:ba:cd:d0:b5:21:67: a2:eb:44:30:02:41:74:7a:ae:90:2e:0e:fb:1a:27: 6b:c5:f2:ec:e3:e0:90:97:9e:c5:2f:42:0a:68:1f: 3f:98:9b:c7:8d:39:a9:5e:1b:ea:54:a4:eb:38:0d: ae:2a:22:62:8b:b7:b8:86:7b:04:69:e7:f0:3f:ca: 06:e0:7e:c3:0a:51:5d:36:82:0c:ea:df:68:00:bc: c0:f6:02:b3:16:7e:50:ad:19:d5:98:1f:a3:0f:4f: bf:87:02:f1:30:be:b2:19:3f:fb:8d:cb:37:2c:04: 03:83:66:5b:91:8b:78:ce:36:d4:c6:42:50:f2:24: 52:03:f1:d4:a8:09:1b:12:ef:0e:1a:bb:3c:0d:bb: dc:fe:9d:18:22:64:94:60:e1:ef:53:12:05:89:3a: 47:38:50:fb:32:b2:e6:d0:fe:6d:44:ed:9f:be:03: 1a:0c:37:e2:05:ec:23:41:62:17:a8:0a:30:57:d8: eb:1b:3f:20:04:4f:88:64:4b:ba:c3:99:04:55:65: 1c:00:5a:49:6e:ff:b9:55:b2:38:4c:51:f5:8c:61: aa:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:86:D2:D1:87:25:AD:B8:AB:DD:5C:6D:82:EF:7B:A3:D9:3C:8C:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7526745b-a80d-41a5-acf1-d54e33c2859e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:4000::/40 Signature Algorithm: sha256WithRSAEncryption c2:d1:29:6a:ea:d5:eb:f4:55:89:6b:0a:8d:ef:33:58:f4:4e: ca:8d:db:87:db:80:d8:22:e9:59:55:28:08:bd:0b:2b:bb:d2: 54:d9:78:f7:b2:89:39:49:e1:a1:1f:02:4a:b2:d4:de:e6:a5: be:29:8a:5b:ed:a6:6d:45:39:4a:58:16:b9:17:06:42:92:fe: 53:3a:8b:12:af:48:53:5a:2b:45:73:56:63:8b:bc:22:7b:93: 4a:2a:e3:ac:01:be:a6:91:c3:6f:26:07:bf:cd:94:a1:e9:37: 1f:a2:51:5e:9f:54:22:68:fb:b1:50:be:9e:8b:fe:8a:ec:63: 26:b2:2f:86:ca:ec:a2:00:f3:aa:e0:ca:40:e8:a7:48:5b:1d: 0c:39:ed:ac:a9:3c:d4:69:8f:57:da:49:34:63:ab:b9:62:65: 20:10:61:8b:06:0c:47:80:2e:a4:61:85:c9:06:a8:83:d3:ce: 71:8e:95:21:4c:e0:b1:9c:5c:f5:33:42:f9:17:bf:ae:e6:ce: 75:a3:a0:ee:28:c0:d5:d7:ac:54:92:db:97:d7:27:23:3a:95: 20:67:ac:7e:fd:b1:16:3b:ed:95:8a:79:c4:2d:bc:8d:76:ba: 3a:60:0f:de:32:67:7f:74:b3:ec:25:9d:b4:aa:31:2e:c9:dc: b3:76:5e:a0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMN9keRwTv7vpRjDytySjNalvv4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTYyMTI2WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjdhMGRhZDcwMzA0YmE0MTgwOTg0YWIyZjc1YWMxMmVm MjUzZWY2NjZmYTMwNmFkMGIwZTJlYjE2NDdiNWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW6H72F3tYWHZGpz0DKj0K/uIY6e8TGU418JCe5O0KKGA9 UGbLEbrN0LUhZ6LrRDACQXR6rpAuDvsaJ2vF8uzj4JCXnsUvQgpoHz+Ym8eNOale G+pUpOs4Da4qImKLt7iGewRp5/A/ygbgfsMKUV02ggzq32gAvMD2ArMWflCtGdWY H6MPT7+HAvEwvrIZP/uNyzcsBAODZluRi3jONtTGQlDyJFID8dSoCRsS7w4auzwN u9z+nRgiZJRg4e9TEgWJOkc4UPsysubQ/m1E7Z++AxoMN+IF7CNBYheoCjBX2Osb PyAET4hkS7rDmQRVZRwAWklu/7lVsjhMUfWMYarHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUkYbS0Yclrbir3Vxtgu97o9k8jLwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1MjY3NDViLWE4MGQtNDFhNS1hY2YxLWQ1NGUzM2MyODU5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9pQDANBgkqhkiG9w0BAQsFAAOCAQEAwtEpaurV6/RViWsKje8zWPRO yo3bh9uA2CLpWVUoCL0LK7vSVNl497KJOUnhoR8CSrLU3ualvimKW+2mbUU5SlgW uRcGQpL+UzqLEq9IU1orRXNWY4u8InuTSirjrAG+ppHDbyYHv82Uoek3H6JRXp9U Imj7sVC+nov+iuxjJrIvhsrsogDzquDKQOinSFsdDDntrKk81GmPV9pJNGOruWJl IBBhiwYMR4AupGGFyQaog9POcY6VIUzgsZxc9TNC+Re/rubOdaOg7ijA1desVJLb l9cnIzqVIGesfv2xFjvtlYp5xC28jXa6OmAP3jJnf3Sz7CWdtKoxLsncs3ZeoA== -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:56 2025 by rpki-client