$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/912d1f55-82ab-4641-9fec-98b39d1c0667.roa File: 912d1f55-82ab-4641-9fec-98b39d1c0667.roa (raw, json) Hash identifier: 5YUf9q2OmOFRIAmPYSTEicdWENuKC/HymEPHfnVQDpE= Subject key identifier: FF:22:64:43:34:67:50:71:E4:C8:88:38:EF:F7:65:BD:72:B5:F0:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12DDA9EDCE7B1FE58B58FC52D37720B0536E8E01 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/912d1f55-82ab-4641-9fec-98b39d1c0667.roa Signing time: Sat 12 Jul 2025 00:20:18 +0000 ROA not before: Sat 12 Jul 2025 00:20:18 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fef:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:dd:a9:ed:ce:7b:1f:e5:8b:58:fc:52:d3:77:20:b0:53:6e:8e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:20:18 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=58d2214cd26cfdb76762c1eea0060a7a802e99bbf29d5d9d48aef3cb203645d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b7:17:8b:01:c9:33:24:c2:f6:4f:10:19:00: 0c:54:3e:bc:e8:d0:8f:e6:2c:6b:d4:4b:4b:f2:5b: 52:0e:75:09:2e:40:23:99:d6:63:c0:81:c8:96:3b: c7:0e:8c:ee:ae:c1:33:c8:1d:5a:c0:fe:b9:ec:4e: 8e:6f:2a:13:5d:0c:81:c5:58:91:81:b6:18:0c:e2: 36:92:5b:2d:4a:b6:0f:23:bc:00:ca:53:9b:c0:70: eb:3d:96:9e:da:01:1f:d4:32:e0:35:ff:c1:90:3c: b3:03:27:c6:a6:40:c2:0f:85:e5:0c:20:66:15:87: 43:8e:44:46:bd:8f:5a:3e:19:c4:9a:e1:4f:79:c4: eb:5d:cc:18:d1:d6:44:df:41:f0:ee:93:58:d2:ec: 3d:82:ff:02:b6:85:5b:16:bd:9c:36:bc:d1:9c:63: d2:70:19:3a:9a:4b:4d:3d:50:cd:69:6b:b9:5a:3d: 99:df:4c:51:67:02:2a:ae:19:76:77:f0:cf:66:07: 45:6d:21:a4:aa:8e:b2:4f:3e:f1:49:cb:6d:3e:f3: ed:65:4f:d8:e7:d1:37:d3:9b:17:e2:9f:53:0b:08: 3c:c5:33:18:fe:14:a0:23:22:92:a0:e5:b3:31:58: 1b:f7:68:0a:8d:7d:b3:d9:ce:16:21:0f:2f:dc:a2: e1:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:22:64:43:34:67:50:71:E4:C8:88:38:EF:F7:65:BD:72:B5:F0:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/912d1f55-82ab-4641-9fec-98b39d1c0667.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:e000::/40 Signature Algorithm: sha256WithRSAEncryption 36:a9:c8:fe:1b:a7:5a:50:c2:2a:33:f6:0d:e8:da:3e:54:79: 0d:e5:09:42:5e:61:2e:71:7b:17:a6:5e:66:25:da:0a:83:b9: aa:46:04:71:38:88:b1:64:2e:fe:52:b3:d8:b7:d1:38:90:cc: d3:aa:cd:3c:9a:2c:af:94:e6:30:04:6b:ca:ab:d7:6e:75:9b: b5:a8:fa:2d:f2:f3:b5:5b:f6:6d:4c:d9:fc:79:d3:6d:eb:63: 1d:21:eb:01:85:76:df:df:1c:5f:df:0e:bc:75:42:c3:e0:7b: 26:6a:a6:f6:e8:3a:45:4e:e6:ff:08:09:3c:9a:9f:7f:e7:e3: 68:a2:d4:9a:9d:09:3e:1f:c2:d4:13:a5:22:3c:b5:b9:73:64: 81:f1:58:97:cb:cc:39:c2:cc:c2:ca:28:fe:a0:cc:5d:0f:b7: 5b:a8:d0:8b:43:74:4d:6a:a5:a5:8c:e2:e1:23:79:92:f7:dd: b3:dd:0b:6e:be:02:94:ef:b7:ff:cc:ab:60:e3:82:4d:5c:15: c2:35:5e:4d:f0:a1:53:e6:32:ed:d1:62:01:92:8a:c3:4c:59: 99:f8:02:0e:31:a9:cd:9d:7a:1b:25:b5:0d:88:27:a4:cf:b1: 38:c0:84:73:5c:86:b4:e3:d7:72:92:17:ae:2d:eb:a5:5d:49: 43:5f:f4:c6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEt2p7c57H+WLWPxS03cgsFNujgEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAyMDE4WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGQyMjE0Y2QyNmNmZGI3Njc2MmMxZWVhMDA2MGE3YTgw MmU5OWJiZjI5ZDVkOWQ0OGFlZjNjYjIwMzY0NWQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/txeLAckzJML2TxAZAAxUPrzo0I/mLGvUS0vyW1IOdQku QCOZ1mPAgciWO8cOjO6uwTPIHVrA/rnsTo5vKhNdDIHFWJGBthgM4jaSWy1Ktg8j vADKU5vAcOs9lp7aAR/UMuA1/8GQPLMDJ8amQMIPheUMIGYVh0OOREa9j1o+GcSa 4U95xOtdzBjR1kTfQfDuk1jS7D2C/wK2hVsWvZw2vNGcY9JwGTqaS009UM1pa7la PZnfTFFnAiquGXZ38M9mB0VtIaSqjrJPPvFJy20+8+1lT9jn0TfTmxfin1MLCDzF Mxj+FKAjIpKg5bMxWBv3aAqNfbPZzhYhDy/couGLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/yJkQzRnUHHkyIg47/dlvXK18GkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxMmQxZjU1LTgyYWItNDY0MS05ZmVjLTk4YjM5ZDFjMDY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/v4DANBgkqhkiG9w0BAQsFAAOCAQEANqnI/hunWlDCKjP2DejaPlR5 DeUJQl5hLnF7F6ZeZiXaCoO5qkYEcTiIsWQu/lKz2LfROJDM06rNPJosr5TmMARr yqvXbnWbtaj6LfLztVv2bUzZ/HnTbetjHSHrAYV2398cX98OvHVCw+B7Jmqm9ug6 RU7m/wgJPJqff+fjaKLUmp0JPh/C1BOlIjy1uXNkgfFYl8vMOcLMwsoo/qDMXQ+3 W6jQi0N0TWqlpYzi4SN5kvfds90Lbr4ClO+3/8yrYOOCTVwVwjVeTfChU+Yy7dFi AZKKw0xZmfgCDjGpzZ16GyW1DYgnpM+xOMCEc1yGtOPXcpIXri3rpV1JQ1/0xg== -----END CERTIFICATE-----Generated at Tue Jul 22 04:52:43 2025 by rpki-client