$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20c9451-0fd8-49b3-b2be-ad611f307fea.roa File: c20c9451-0fd8-49b3-b2be-ad611f307fea.roa (raw, json) Hash identifier: 0KGCF0MVrvWSBH6XPov/06y3TtpkxbTO3d7e2kosd/M= Subject key identifier: 8B:48:35:64:DD:18:40:D2:02:85:6A:18:0C:06:28:89:E0:A8:EA:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11A052048FABFD870C4B57B56209FBBCECB3B30B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20c9451-0fd8-49b3-b2be-ad611f307fea.roa Signing time: Mon 07 Jul 2025 17:51:10 +0000 ROA not before: Mon 07 Jul 2025 17:51:10 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:a0:52:04:8f:ab:fd:87:0c:4b:57:b5:62:09:fb:bc:ec:b3:b3:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 17:51:10 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=d18e9175bd218b60bc6dca62990562c42502a70569d44cc14c170eca06732736, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:79:2e:a1:38:c5:1a:58:9c:54:c4:2b:f4:66: 01:fe:35:21:09:76:e9:ec:8a:bf:88:a2:bf:6e:ec: 5a:19:81:f0:00:c7:e0:67:04:4b:8b:83:67:f2:4b: 59:84:6b:e4:d7:2c:54:07:2e:d2:03:5f:84:62:d4: c2:ee:0e:1a:a5:d5:14:3b:f6:10:ee:30:25:ff:08: a3:33:80:10:72:ba:06:b1:1b:d0:10:14:a9:0c:60: ce:c9:a9:4b:37:fd:fe:fc:16:83:b6:12:8c:ee:b2: 1c:9c:b8:36:8b:56:99:c8:46:62:21:45:9b:26:c0: 65:1f:61:b9:96:b7:fa:47:53:a5:33:04:80:22:ff: 63:97:f5:62:d0:87:71:84:f1:db:93:1b:e0:81:7d: 01:2b:7e:e4:5b:cd:ad:71:4f:a5:39:5a:7d:16:9c: 40:77:9e:03:ec:d2:94:13:b3:d9:8c:40:9e:ae:69: 74:87:f7:aa:cb:1b:6a:6d:ca:fb:63:b7:01:08:ae: 7c:15:57:ea:4e:86:2a:9c:96:12:12:be:24:f0:61: ee:43:d8:5b:0f:38:67:42:d9:8a:78:97:1b:1d:38: 39:18:9a:0b:4e:f2:c6:fb:25:0d:42:9f:84:13:7e: 97:64:de:53:5d:f4:31:e3:c3:2d:30:fe:f2:50:ce: 90:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:48:35:64:DD:18:40:D2:02:85:6A:18:0C:06:28:89:E0:A8:EA:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c20c9451-0fd8-49b3-b2be-ad611f307fea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:6000::/40 Signature Algorithm: sha256WithRSAEncryption ac:08:89:41:ae:df:04:82:59:94:55:07:4c:b0:93:75:bb:c9: d1:12:dc:37:b7:0d:54:f4:82:26:85:ce:e3:01:ce:14:61:55: d2:6e:e1:54:63:9e:70:bb:ac:51:a3:35:9d:86:3c:fa:fd:d2: ee:ee:a4:ff:19:1b:27:84:8d:09:6d:88:0c:98:a8:84:e8:89: d3:52:e0:68:e5:84:68:07:45:4a:dc:be:87:30:b4:0f:ea:a4: c1:d2:a0:2b:f9:8e:4a:5f:9d:92:aa:8d:0c:65:d9:e3:d2:a6: 1a:e1:da:8d:60:88:e6:7c:dd:fa:98:e9:2a:39:13:e4:8c:09: fd:84:e6:12:88:3a:69:d6:cf:44:dd:73:53:c6:bd:83:8d:37: 47:87:ba:c3:20:03:02:b2:cc:fd:a1:f1:64:39:bf:06:85:11: f8:7c:1e:98:5e:68:5d:64:44:00:39:a7:11:47:bd:69:23:af: 8f:9b:b0:a9:ca:d3:c7:b6:a7:0f:8c:40:25:b8:89:b6:9a:5d: cb:f2:ba:ac:32:a8:2c:b3:2c:50:4d:af:5f:99:6a:d0:8d:aa: 4b:9d:89:96:4c:08:53:f4:59:b1:d5:85:3d:e3:41:de:bb:78: 42:42:e0:9d:51:d4:14:5e:00:8f:80:d6:cb:ab:e8:56:d4:c4: f4:7e:2b:60 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEaBSBI+r/YcMS1e1Ygn7vOyzswswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTc1MTEwWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMThlOTE3NWJkMjE4YjYwYmM2ZGNhNjI5OTA1NjJjNDI1 MDJhNzA1NjlkNDRjYzE0YzE3MGVjYTA2NzMyNzM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDeS6hOMUaWJxUxCv0ZgH+NSEJdunsir+Ior9u7FoZgfAA x+BnBEuLg2fyS1mEa+TXLFQHLtIDX4Ri1MLuDhql1RQ79hDuMCX/CKMzgBByugax G9AQFKkMYM7JqUs3/f78FoO2EozushycuDaLVpnIRmIhRZsmwGUfYbmWt/pHU6Uz BIAi/2OX9WLQh3GE8duTG+CBfQErfuRbza1xT6U5Wn0WnEB3ngPs0pQTs9mMQJ6u aXSH96rLG2ptyvtjtwEIrnwVV+pOhiqclhISviTwYe5D2FsPOGdC2Yp4lxsdODkY mgtO8sb7JQ1Cn4QTfpdk3lNd9DHjwy0w/vJQzpBVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUi0g1ZN0YQNIChWoYDAYoieCo6ncwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMGM5NDUxLTBmZDgtNDliMy1iMmJlLWFkNjExZjMwN2ZlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9hYDANBgkqhkiG9w0BAQsFAAOCAQEArAiJQa7fBIJZlFUHTLCTdbvJ 0RLcN7cNVPSCJoXO4wHOFGFV0m7hVGOecLusUaM1nYY8+v3S7u6k/xkbJ4SNCW2I DJiohOiJ01LgaOWEaAdFSty+hzC0D+qkwdKgK/mOSl+dkqqNDGXZ49KmGuHajWCI 5nzd+pjpKjkT5IwJ/YTmEog6adbPRN1zU8a9g403R4e6wyADArLM/aHxZDm/BoUR +HwemF5oXWREADmnEUe9aSOvj5uwqcrTx7anD4xAJbiJtppdy/K6rDKoLLMsUE2v X5lq0I2qS52JlkwIU/RZsdWFPeNB3rt4QkLgnVHUFF4Aj4DWy6voVtTE9H4rYA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:56 2025 by rpki-client