$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88e587d9-8e06-45b7-b934-26b4ec796dde.roa File: 88e587d9-8e06-45b7-b934-26b4ec796dde.roa (raw, json) Hash identifier: fpVkoqRRyWlGuphH3VpiwKQisH8o/DG2dpZgVJ4a3kk= Subject key identifier: 4F:1A:B0:62:59:19:B8:AA:F8:85:12:5B:23:CA:4D:76:81:1F:57:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DB0DE685F2489B294EBE24EC76F43A332111B08 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88e587d9-8e06-45b7-b934-26b4ec796dde.roa Signing time: Mon 07 Jul 2025 16:21:19 +0000 ROA not before: Mon 07 Jul 2025 16:21:19 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:b0:de:68:5f:24:89:b2:94:eb:e2:4e:c7:6f:43:a3:32:11:1b:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 16:21:19 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=7860aabf8e41f1190adbc4a9f12eaaa3fb12de0918df34cc60941e1c213025e7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:89:29:4b:4d:03:84:20:e2:f7:a2:8e:00: 05:c8:e8:fd:a2:13:6b:4b:a6:f2:f4:e5:93:df:fa: 61:10:56:cd:f0:2b:9b:3d:ee:78:9f:ea:19:8c:0d: 9c:96:17:09:85:5a:c6:cc:ac:66:76:15:07:0c:fa: f2:3b:f0:ab:79:86:79:97:2f:a0:9d:6b:28:b3:45: 01:e1:78:2f:3f:03:f8:8f:93:24:9f:7d:40:50:7f: 49:65:0a:f7:dc:53:7f:4a:5c:a7:6c:6a:59:de:a6: b0:2f:c2:f5:27:f7:d4:1b:8b:5e:42:6e:50:9c:01: b6:eb:d3:38:c4:6f:05:21:27:9d:a9:6c:d8:6f:f4: 00:37:31:fc:10:aa:3f:0b:be:3f:54:fc:bf:5d:45: 1e:19:69:ad:4e:74:7c:b5:45:e8:88:26:a5:df:2f: 22:0f:a6:0b:a2:32:37:3c:f3:dd:a3:a4:08:a7:1c: 40:f2:5b:96:e3:67:74:74:70:67:88:a7:6f:80:16: 80:42:dc:29:da:d3:fa:ba:45:03:58:da:ce:08:06: c8:73:aa:cd:7e:80:df:e8:eb:b0:49:45:86:2e:ec: 8c:b7:90:97:d0:2a:6c:1d:68:32:5d:22:de:3f:63: ec:fd:09:d5:bd:30:d3:67:89:37:cd:9d:b5:5c:80: 17:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1A:B0:62:59:19:B8:AA:F8:85:12:5B:23:CA:4D:76:81:1F:57:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88e587d9-8e06-45b7-b934-26b4ec796dde.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:5040::/48 Signature Algorithm: sha256WithRSAEncryption 3a:a4:3d:c7:1c:3e:3c:7d:dc:67:34:65:6d:99:17:5d:29:fa: cd:fd:94:a4:90:52:b4:64:4b:4d:d6:b9:6c:d2:d6:66:55:dc: a0:4a:e6:2e:11:5b:b0:0f:56:4d:aa:76:8b:cf:33:de:56:e7: 13:84:ad:d8:73:5e:7c:76:09:eb:36:d8:84:92:7c:e6:ee:8c: 6d:e7:2e:f4:5d:6d:4a:05:4b:3b:c3:c6:12:aa:d7:ea:ae:17: bd:13:4a:ed:9d:ec:c4:c2:fa:40:f7:08:58:aa:ad:52:c7:f2: 20:be:7f:81:18:a2:5c:58:6d:74:5e:42:79:69:96:11:16:f1: 7d:c8:75:da:fa:03:95:73:c9:ed:3d:90:b6:cc:03:2e:e4:08: 44:ab:37:f4:d8:80:f5:04:1a:0e:b1:e2:d6:7a:08:5c:65:d7: 51:41:4b:38:26:78:d3:8a:30:6e:fb:50:de:8c:00:06:e3:2b: 93:8c:13:6e:70:92:c6:e0:a4:cf:0e:0a:7e:a7:6a:ef:88:46: a9:c3:73:90:4f:01:bd:4a:dd:b6:5e:ed:51:90:03:51:7e:c4: 65:26:6a:32:60:52:75:f3:fb:5e:45:a9:98:8f:05:74:6a:26: 38:d8:e1:e0:e7:7c:0e:37:75:3f:c6:f8:f9:c8:d6:21:89:60: f3:38:c6:dd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTbDeaF8kibKU6+JOx29DozIRGwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTYyMTE5WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODYwYWFiZjhlNDFmMTE5MGFkYmM0YTlmMTJlYWFhM2Zi MTJkZTA5MThkZjM0Y2M2MDk0MWUxYzIxMzAyNWU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCrYkpS00DhCDi96KOAAXI6P2iE2tLpvL05ZPf+mEQVs3w K5s97nif6hmMDZyWFwmFWsbMrGZ2FQcM+vI78Kt5hnmXL6CdayizRQHheC8/A/iP kySffUBQf0llCvfcU39KXKdsalneprAvwvUn99Qbi15CblCcAbbr0zjEbwUhJ52p bNhv9AA3MfwQqj8Lvj9U/L9dRR4Zaa1OdHy1ReiIJqXfLyIPpguiMjc8892jpAin HEDyW5bjZ3R0cGeIp2+AFoBC3Cna0/q6RQNY2s4IBshzqs1+gN/o67BJRYYu7Iy3 kJfQKmwdaDJdIt4/Y+z9CdW9MNNniTfNnbVcgBdDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTxqwYlkZuKr4hRJbI8pNdoEfV1swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4ZTU4N2Q5LThlMDYtNDViNy1iOTM0LTI2YjRlYzc5NmRkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yUEAwDQYJKoZIhvcNAQELBQADggEBADqkPcccPjx93Gc0ZW2ZF10p +s39lKSQUrRkS03WuWzS1mZV3KBK5i4RW7APVk2qdovPM95W5xOErdhzXnx2Ces2 2ISSfObujG3nLvRdbUoFSzvDxhKq1+quF70TSu2d7MTC+kD3CFiqrVLH8iC+f4EY olxYbXReQnlplhEW8X3Iddr6A5Vzye09kLbMAy7kCESrN/TYgPUEGg6x4tZ6CFxl 11FBSzgmeNOKMG77UN6MAAbjK5OME25wksbgpM8OCn6nau+IRqnDc5BPAb1K3bZe 7VGQA1F+xGUmajJgUnXz+15FqZiPBXRqJjjY4eDnfA43dT/G+PnI1iGJYPM4xt0= -----END CERTIFICATE-----Generated at Tue Jul 22 04:52:42 2025 by rpki-client