$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/946e4b4c-a91a-42ac-b2df-efffb32fe9fb.roa File: 946e4b4c-a91a-42ac-b2df-efffb32fe9fb.roa (raw, json) Hash identifier: krqxra8yYEv6xRO8i1a/d1o9njZQN5EEBKVhmpxN8VA= Subject key identifier: BD:0C:59:5B:E8:96:28:81:AF:F9:6A:28:2C:4D:83:C7:29:27:42:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42645E160FA1FEAED9801AF31035FC7DCEB0BF6A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/946e4b4c-a91a-42ac-b2df-efffb32fe9fb.roa Signing time: Mon 07 Jul 2025 18:11:45 +0000 ROA not before: Mon 07 Jul 2025 18:11:45 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:a400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:64:5e:16:0f:a1:fe:ae:d9:80:1a:f3:10:35:fc:7d:ce:b0:bf:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 18:11:45 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=824500e29553bec38c1feb283d6611e9a58b16888646f4c3addcfb31bf3a0f56, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ae:cd:ef:96:15:7d:8e:4e:1e:b7:d3:6c:ba: 9e:5a:04:f5:46:65:9f:54:f8:22:44:8a:26:e5:54: 1c:c1:b9:cf:ed:1b:5a:32:09:23:f7:9a:2f:8c:66: 25:2c:cc:dc:c9:81:28:fe:b4:f1:7d:1c:c6:12:c4: 8c:d1:43:41:9a:10:67:98:67:5e:ad:a4:5e:22:c6: f5:06:f3:bd:65:3a:db:b5:78:63:8a:d7:66:1f:ac: b4:f5:17:f2:df:e0:06:af:3e:38:e3:fa:4f:de:87: 34:00:7e:51:2b:61:29:cd:ee:ff:61:e3:cd:a6:4a: 54:34:dd:0d:06:eb:fb:97:a3:d0:04:c6:91:57:74: 92:38:d5:0c:9c:ce:99:13:b5:1c:74:7a:93:ff:a7: a9:af:fd:0b:f7:f4:23:ab:f6:48:7b:18:c9:c7:20: 09:b8:03:b7:01:7e:b2:09:2b:da:0f:2d:93:3a:34: 41:e0:29:73:f4:b9:ff:54:ca:b3:52:d6:44:d0:57: f2:ed:1a:ff:d4:69:fe:7f:66:bf:b0:7c:4a:c1:92: b1:fe:d0:5a:d5:2e:7b:3c:5a:86:dc:49:54:1a:1c: 0f:69:ea:20:8d:3d:b9:8a:b5:8f:e2:10:f0:db:55: 42:93:74:b3:ef:1c:02:14:8f:fc:74:c8:f1:29:bb: 9b:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0C:59:5B:E8:96:28:81:AF:F9:6A:28:2C:4D:83:C7:29:27:42:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/946e4b4c-a91a-42ac-b2df-efffb32fe9fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:a400::/40 Signature Algorithm: sha256WithRSAEncryption 61:92:9e:41:db:97:58:53:ba:b8:a8:3e:ca:03:25:67:6c:97: 73:ae:c5:00:5a:57:ea:3a:2a:6a:c3:07:15:af:8e:59:02:b1: 2d:72:fc:a4:3d:b7:0a:08:bd:c1:f8:66:e3:1b:f8:41:66:ea: de:52:f6:2b:4a:c5:9f:88:89:bd:e0:02:09:32:da:b2:da:7c: 4a:78:5a:81:e8:e5:72:dc:f8:86:a5:e8:5f:21:9e:cc:36:ae: 71:8d:d9:e9:5f:d6:58:aa:09:d4:ae:b5:d5:4d:be:84:28:93: a6:5b:6b:b4:fb:92:ba:fb:e8:68:f2:ce:23:ab:e4:04:37:d7: 81:cf:b1:de:6d:18:81:03:5a:6b:ca:7d:0b:98:d9:f0:7b:3d: 43:4b:18:7d:9d:bc:73:f9:62:fd:1c:8c:ad:b6:2e:db:8d:7e: 6b:91:a8:88:ce:fd:a3:ca:11:4d:43:92:e1:f0:da:96:64:52: eb:ce:6a:00:12:44:62:85:cf:c2:d9:f7:58:c4:9c:00:4b:3c: 94:e8:1a:90:b7:f3:5d:b4:19:a3:15:08:64:2e:68:6d:e2:8b: ff:ae:73:31:bd:70:46:d2:30:b0:45:69:bf:98:03:74:14:39: 9b:b3:13:f2:6f:47:56:2a:52:83:58:47:c8:a1:48:17:42:61: f4:9d:3a:97 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQmReFg+h/q7ZgBrzEDX8fc6wv2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTgxMTQ1WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MjQ1MDBlMjk1NTNiZWMzOGMxZmViMjgzZDY2MTFlOWE1 OGIxNjg4ODY0NmY0YzNhZGRjZmIzMWJmM2EwZjU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjrs3vlhV9jk4et9Nsup5aBPVGZZ9U+CJEiiblVBzBuc/t G1oyCSP3mi+MZiUszNzJgSj+tPF9HMYSxIzRQ0GaEGeYZ16tpF4ixvUG871lOtu1 eGOK12YfrLT1F/Lf4AavPjjj+k/ehzQAflErYSnN7v9h482mSlQ03Q0G6/uXo9AE xpFXdJI41QyczpkTtRx0epP/p6mv/Qv39COr9kh7GMnHIAm4A7cBfrIJK9oPLZM6 NEHgKXP0uf9UyrNS1kTQV/LtGv/Uaf5/Zr+wfErBkrH+0FrVLns8WobcSVQaHA9p 6iCNPbmKtY/iEPDbVUKTdLPvHAIUj/x0yPEpu5s9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvQxZW+iWKIGv+WooLE2DxyknQhwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0NmU0YjRjLWE5MWEtNDJhYy1iMmRmLWVmZmZiMzJmZTlmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/ypDANBgkqhkiG9w0BAQsFAAOCAQEAYZKeQduXWFO6uKg+ygMlZ2yX c67FAFpX6joqasMHFa+OWQKxLXL8pD23Cgi9wfhm4xv4QWbq3lL2K0rFn4iJveAC CTLastp8Snhagejlctz4hqXoXyGezDaucY3Z6V/WWKoJ1K611U2+hCiTpltrtPuS uvvoaPLOI6vkBDfXgc+x3m0YgQNaa8p9C5jZ8Hs9Q0sYfZ28c/li/RyMrbYu241+ a5GoiM79o8oRTUOS4fDalmRS685qABJEYoXPwtn3WMScAEs8lOgakLfzXbQZoxUI ZC5obeKL/65zMb1wRtIwsEVpv5gDdBQ5m7MT8m9HVipSg1hHyKFIF0Jh9J06lw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:06:12 2025 by rpki-client