$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa File: a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa (raw, json) Hash identifier: 1sE18W+9kMmb6l0p+H2oP+bvlg4XzgeS3kv+dVdXpT4= Subject key identifier: 6E:98:54:A2:6D:DA:B1:16:EC:1F:9C:E8:A4:61:22:2D:F8:F5:66:0F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15A91BCA6A77FDD54B33173900BC1CAE993ED6B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa Signing time: Mon 07 Jul 2025 18:01:58 +0000 ROA not before: Mon 07 Jul 2025 18:01:58 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a9:1b:ca:6a:77:fd:d5:4b:33:17:39:00:bc:1c:ae:99:3e:d6:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 18:01:58 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=f9e9b6418c9e20c391fa15c4f1a043ad47f61cc8a3adfb4593cfb70af3b31dfd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:03:d1:67:5c:7d:e7:15:cf:55:1b:88:65:0d: 53:20:51:f0:f7:8a:5f:34:5f:8d:ae:b1:b6:7c:16: fd:7c:24:ed:93:0c:93:9f:51:66:4c:c0:df:57:f3: fa:4a:14:0a:af:e9:57:d3:2e:01:fd:8f:99:45:a4: e4:a7:60:dd:41:7d:37:01:ce:7f:a8:c6:a4:98:d7: 41:39:70:4a:7f:b7:7e:e5:77:6d:25:e5:7c:c8:0c: 8b:98:0b:2e:fd:b0:96:31:aa:c3:94:08:ab:43:a3: f0:13:d1:9e:7f:08:31:7e:da:6c:66:a4:c0:93:7e: 77:bb:aa:78:80:f9:10:7a:9b:95:ef:dd:bf:04:f7: ab:ad:0a:9d:33:29:ad:ab:d9:de:6b:c1:89:e8:31: 34:ef:f5:7d:7f:4c:ce:96:6a:85:c9:05:c1:8f:43: 73:3f:0d:72:d7:cf:27:04:30:6f:a2:73:5e:f4:61: d4:bf:c9:e3:b4:2c:ce:a1:f7:c5:18:2f:f5:85:be: c9:75:a5:11:42:ee:18:c5:8e:5a:e9:ae:b7:a3:e1: 7e:bc:61:9e:c7:07:89:b4:d6:7b:df:8e:8d:c3:ed: 6a:2d:f1:79:2b:c6:f9:f4:b2:75:50:e4:4d:84:cd: 27:fd:31:b7:cf:9d:9d:69:f6:12:57:06:16:7b:91: ef:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:98:54:A2:6D:DA:B1:16:EC:1F:9C:E8:A4:61:22:2D:F8:F5:66:0F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 63:1a:60:75:17:ff:4f:04:ab:ee:1a:cf:bd:f8:2d:89:57:52: 9b:9e:67:0b:c1:b4:15:be:8c:d7:39:0d:da:32:8c:f9:43:8a: ba:90:bc:b6:fa:12:f0:96:c8:46:dc:b7:ce:4e:54:3d:c6:9b: f7:d8:cd:12:b8:cb:94:ac:07:55:eb:a3:c3:c7:d3:05:f5:f5: 2a:6e:af:1f:68:47:47:8a:dd:b0:f0:dc:0f:ca:f1:d1:e6:20: bb:92:b2:d4:d5:99:bc:60:1d:c7:d2:b0:6f:8a:6e:aa:af:81: 04:e6:57:1a:95:34:e2:35:08:c0:6f:77:83:02:d0:a9:91:66: 54:d0:bf:ae:69:23:26:b5:31:2f:e7:b0:1d:70:a1:28:72:87: 7e:1e:e6:ac:fc:ee:23:43:91:11:11:d0:cf:10:21:d9:87:3e: ac:47:52:ed:17:8c:c9:05:02:a1:44:e9:2b:b9:9e:7b:96:0c: fd:c6:90:d7:a8:08:d9:7a:64:f1:80:a2:4d:70:c6:7f:de:f6: d5:8b:3a:3b:a4:8a:04:46:7d:20:41:68:4f:ac:b2:8c:b8:65: 8e:02:39:80:da:a6:d6:77:05:61:cf:47:66:83:9a:f0:ca:37: cb:66:aa:98:dd:6f:4d:c2:1a:13:8d:3d:30:fa:2c:cf:8c:4d: 1c:52:1b:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFakbymp3/dVLMxc5ALwcrpk+1rYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTgwMTU4WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOWU5YjY0MThjOWUyMGMzOTFmYTE1YzRmMWEwNDNhZDQ3 ZjYxY2M4YTNhZGZiNDU5M2NmYjcwYWYzYjMxZGZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHA9FnXH3nFc9VG4hlDVMgUfD3il80X42usbZ8Fv18JO2T DJOfUWZMwN9X8/pKFAqv6VfTLgH9j5lFpOSnYN1BfTcBzn+oxqSY10E5cEp/t37l d20l5XzIDIuYCy79sJYxqsOUCKtDo/AT0Z5/CDF+2mxmpMCTfne7qniA+RB6m5Xv 3b8E96utCp0zKa2r2d5rwYnoMTTv9X1/TM6WaoXJBcGPQ3M/DXLXzycEMG+ic170 YdS/yeO0LM6h98UYL/WFvsl1pRFC7hjFjlrprrej4X68YZ7HB4m01nvfjo3D7Wot 8Xkrxvn0snVQ5E2EzSf9MbfPnZ1p9hJXBhZ7ke/JAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbphUom3asRbsH5zopGEiLfj1Zg8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5OTkzNmZmLTIzOTctNGM0Yy1hOGQ2LTk1ZWNmNWFkOTI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hQMAwDQYJKoZIhvcNAQELBQADggEBAGMaYHUX/08Eq+4az734LYlX UpueZwvBtBW+jNc5DdoyjPlDirqQvLb6EvCWyEbct85OVD3Gm/fYzRK4y5SsB1Xr o8PH0wX19Spurx9oR0eK3bDw3A/K8dHmILuSstTVmbxgHcfSsG+KbqqvgQTmVxqV NOI1CMBvd4MC0KmRZlTQv65pIya1MS/nsB1woShyh34e5qz87iNDkRER0M8QIdmH PqxHUu0XjMkFAqFE6Su5nnuWDP3GkNeoCNl6ZPGAok1wxn/e9tWLOjukigRGfSBB aE+ssoy4ZY4COYDaptZ3BWHPR2aDmvDKN8tmqpjdb03CGhONPTD6LM+MTRxSGz8= -----END CERTIFICATE-----Generated at Mon Jul 21 18:18:49 2025 by rpki-client