$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa File: c636934a-c7cc-4c0f-acb1-a74b2500994d.roa (raw, json) Hash identifier: p9lXcS+hYJx8vlrNA0dW966C1ZjoIa1Mh61vvKSp17E= Subject key identifier: 8C:E8:C1:57:13:F2:42:26:7E:7C:14:E0:E6:C0:A7:05:74:5B:98:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6510EA46935B64814C57F9ADED3C3A266B65C4CD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa Signing time: Mon 07 Jul 2025 17:01:07 +0000 ROA not before: Mon 07 Jul 2025 17:01:07 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:10:ea:46:93:5b:64:81:4c:57:f9:ad:ed:3c:3a:26:6b:65:c4:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 17:01:07 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=e3b8e7bdcdd9e8c0db0319f9ed3337a014cd697dda9c6d5f0b8fa5a5d71772bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f1:87:1f:8d:cf:4e:2a:f0:dc:51:1b:c5:ba: 1b:76:40:78:c4:a5:ee:79:f7:ea:b9:4a:c8:a2:09: 90:69:0b:a2:d2:a4:40:7a:98:b2:39:a4:57:46:94: 09:db:18:ba:86:ab:a3:31:3d:4b:83:a6:21:e9:84: 89:15:b1:36:fd:97:48:62:c8:0c:23:1a:ec:ea:40: f9:4b:2b:12:6e:0a:5f:3f:46:dd:aa:0a:49:34:8a: 15:f3:b0:54:04:4e:31:9c:3e:2d:bb:b3:15:ea:02: a4:47:cd:b2:e6:89:cc:99:f9:dd:3b:45:f9:69:ca: ea:45:98:b1:7c:04:a6:b6:97:8d:90:61:d4:5b:e0: 6b:ad:31:49:cb:a6:31:32:bd:f6:b3:a6:d9:f3:fe: ee:14:81:3b:e3:a0:07:96:df:71:51:be:31:8e:37: 4f:31:32:d8:a1:c9:4e:8b:ff:30:20:b2:20:75:5b: 21:0d:f3:bf:c3:5a:a4:f3:b3:33:76:ef:84:5f:dc: 1e:dd:5a:56:71:a2:d4:68:29:50:46:21:9c:69:e0: ff:d6:2c:2f:14:c5:15:f4:88:09:29:c6:4c:aa:fe: 7a:45:51:e7:52:09:04:2d:fd:3d:5b:9f:07:35:53: cd:3c:c8:6b:3f:1d:d6:0b:5a:56:8c:d9:b3:12:2b: 6d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E8:C1:57:13:F2:42:26:7E:7C:14:E0:E6:C0:A7:05:74:5B:98:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c636934a-c7cc-4c0f-acb1-a74b2500994d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:3480::/48 Signature Algorithm: sha256WithRSAEncryption ba:58:a5:73:77:2d:26:4b:c0:83:58:4d:be:ee:ff:31:04:1b: f8:1c:75:8a:97:82:98:47:58:7f:75:ca:05:8b:f3:b8:b2:2d: 16:e7:d1:7d:19:18:ef:50:a4:1b:0c:b6:a2:ec:36:d5:11:82: e0:3c:53:27:53:70:c3:26:51:e9:0c:2d:84:64:ef:6a:69:ac: 68:f9:ab:0d:67:8f:28:e4:82:4f:ea:0d:98:9d:d0:fa:e5:48: 03:07:13:89:64:0e:21:bc:cc:82:0c:20:48:c9:d5:00:60:63: 00:1d:8a:5c:6e:67:a1:a7:ea:7c:c8:77:ef:33:53:42:a3:ec: cc:13:75:74:3f:99:df:2f:30:41:f2:7e:71:b0:c5:45:08:97: 1d:09:90:d4:f6:db:45:cd:e7:dd:a9:68:86:f4:9f:30:07:f9: 4a:ae:ef:68:72:b7:07:1c:3d:3e:34:a9:f1:3c:12:5a:89:9c: 22:2a:ef:4d:cd:a5:3e:85:8a:48:43:3f:d9:d5:a9:05:82:86: b0:70:55:f6:92:c3:e6:7d:5d:63:d3:d1:fa:34:32:b6:bf:20: eb:09:d1:2e:ac:58:55:72:a8:d3:d7:6f:4f:f8:97:1a:db:06: 6f:54:a4:64:53:58:03:02:e3:51:ee:1a:b0:14:c9:dc:ff:b8: 15:ad:86:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZRDqRpNbZIFMV/mt7Tw6JmtlxM0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTcwMTA3WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2I4ZTdiZGNkZDllOGMwZGIwMzE5ZjllZDMzMzdhMDE0 Y2Q2OTdkZGE5YzZkNWYwYjhmYTVhNWQ3MTc3MmJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC88Ycfjc9OKvDcURvFuht2QHjEpe559+q5SsiiCZBpC6LS pEB6mLI5pFdGlAnbGLqGq6MxPUuDpiHphIkVsTb9l0hiyAwjGuzqQPlLKxJuCl8/ Rt2qCkk0ihXzsFQETjGcPi27sxXqAqRHzbLmicyZ+d07RflpyupFmLF8BKa2l42Q YdRb4GutMUnLpjEyvfazptnz/u4UgTvjoAeW33FRvjGON08xMtihyU6L/zAgsiB1 WyEN87/DWqTzszN274Rf3B7dWlZxotRoKVBGIZxp4P/WLC8UxRX0iAkpxkyq/npF UedSCQQt/T1bnwc1U808yGs/HdYLWlaM2bMSK20BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjOjBVxPyQiZ+fBTg5sCnBXRbmN8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M2MzY5MzRhLWM3Y2MtNGMwZi1hY2IxLWE3NGIyNTAwOTk0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84NIAwDQYJKoZIhvcNAQELBQADggEBALpYpXN3LSZLwINYTb7u/zEE G/gcdYqXgphHWH91ygWL87iyLRbn0X0ZGO9QpBsMtqLsNtURguA8UydTcMMmUekM LYRk72pprGj5qw1njyjkgk/qDZid0PrlSAMHE4lkDiG8zIIMIEjJ1QBgYwAdilxu Z6Gn6nzId+8zU0Kj7MwTdXQ/md8vMEHyfnGwxUUIlx0JkNT220XN592paIb0nzAH +Uqu72hytwccPT40qfE8ElqJnCIq703NpT6FikhDP9nVqQWChrBwVfaSw+Z9XWPT 0fo0Mra/IOsJ0S6sWFVyqNPXb0/4lxrbBm9UpGRTWAMC41HuGrAUydz/uBWths4= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:31 2025 by rpki-client