$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf237dc6-5609-4c66-b845-64bc07b0d376.roa File: cf237dc6-5609-4c66-b845-64bc07b0d376.roa (raw, json) Hash identifier: rs1wG9C8j8WysvVzvl/n4J8Abmd8eJMsLgObRFwj+jI= Subject key identifier: 8F:63:91:35:D8:6F:D0:51:C1:61:67:08:FA:E6:D1:B0:51:87:0E:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CC212C94324E30BFCDFF2478684A1F6D9BAB14B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf237dc6-5609-4c66-b845-64bc07b0d376.roa Signing time: Tue 08 Jul 2025 16:11:54 +0000 ROA not before: Tue 08 Jul 2025 16:11:54 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:34c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:c2:12:c9:43:24:e3:0b:fc:df:f2:47:86:84:a1:f6:d9:ba:b1:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:11:54 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=33186bb0beb28b48874c6053af94a4fa9bcf7cfcd354c41385765f73a96bba47, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:33:14:a8:0d:b7:54:d9:8f:2d:6f:24:f0:e1: e6:a8:b5:f1:92:7e:e5:64:f2:a7:c7:c9:d1:c8:67: f5:58:92:0f:90:d1:cc:55:5f:ee:12:e0:ed:6a:69: 71:ec:f5:01:53:e5:c0:e7:46:77:de:4a:94:9b:71: 33:a2:91:67:ba:94:8a:95:b0:b8:66:cb:7e:d3:9b: 52:2b:b3:c1:d6:bb:8d:6b:5f:18:ab:42:9b:03:90: c2:2a:ad:7e:ce:17:ed:48:3d:15:c3:7f:22:27:4d: 9a:80:cd:7a:b8:58:13:19:d0:98:39:f5:f9:b7:50: b5:32:68:1a:f8:61:3f:d2:9e:f1:fc:44:f2:38:a7: d4:b2:43:cf:98:e6:5a:aa:3b:27:33:03:30:e8:13: e1:21:36:b0:6c:38:aa:3d:76:61:14:e5:fe:44:a4: 03:c2:5d:f2:9e:20:41:a2:cc:00:6a:86:48:ae:66: 23:b2:8c:d8:9d:23:35:ef:c1:83:08:e5:a8:99:84: d0:7c:52:a3:20:2b:68:e0:d6:48:fa:e6:f9:ef:a0: 63:a8:9a:27:a9:54:1d:17:48:65:6e:75:b9:d5:cb: 31:45:9a:f9:b9:b3:0e:0a:a8:6c:94:68:13:67:0c: 4f:95:2d:4f:73:a9:1e:1e:9c:53:1d:2f:5b:84:5f: ff:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:63:91:35:D8:6F:D0:51:C1:61:67:08:FA:E6:D1:B0:51:87:0E:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf237dc6-5609-4c66-b845-64bc07b0d376.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:34c0::/46 Signature Algorithm: sha256WithRSAEncryption 85:7c:3f:7a:bc:81:2a:c1:e8:91:7e:e8:cc:d3:fd:29:f2:f5: 47:10:82:d3:1c:84:2a:e4:b1:d9:00:44:d0:9c:45:60:a3:66: 3d:76:94:55:83:9b:c2:57:f1:8f:a5:e3:ec:84:b7:26:81:1b: 79:a8:75:30:da:13:fd:19:eb:c2:4a:d6:3c:97:74:4f:b7:e8: b9:f3:d0:53:3d:e9:7c:8f:2c:36:8b:02:f3:01:da:59:30:28: c6:e6:db:11:bd:2c:49:ac:07:69:d7:e4:0d:40:fc:e3:94:f0: be:d6:d8:a9:79:a9:4b:c2:9c:77:77:15:97:5e:10:92:19:e8: 17:60:6d:4d:a3:47:60:34:26:e0:4d:62:07:0b:15:81:97:0f: 19:22:20:a3:9d:00:5c:69:e7:8c:dc:51:d6:8c:6d:4a:26:a3: 9c:57:95:aa:f7:a0:28:de:24:db:c9:48:02:ca:a9:6e:a4:d6: 47:4f:e1:be:c2:6a:34:eb:fc:d4:33:32:3d:a6:c6:7b:a4:2b: 3c:3d:46:8f:54:2e:01:91:b1:e2:69:0a:52:d2:73:8c:02:a3: 55:bb:7f:9c:22:9e:ab:09:ca:2d:1d:93:49:a1:b1:4b:95:c5: 55:09:48:08:f7:c9:b0:b7:89:05:03:62:23:20:a7:fd:34:8f: 58:7f:1f:34 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDMISyUMk4wv83/JHhoSh9tm6sUswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTYxMTU0WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzE4NmJiMGJlYjI4YjQ4ODc0YzYwNTNhZjk0YTRmYTli Y2Y3Y2ZjZDM1NGM0MTM4NTc2NWY3M2E5NmJiYTQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYMxSoDbdU2Y8tbyTw4eaotfGSfuVk8qfHydHIZ/VYkg+Q 0cxVX+4S4O1qaXHs9QFT5cDnRnfeSpSbcTOikWe6lIqVsLhmy37Tm1Irs8HWu41r XxirQpsDkMIqrX7OF+1IPRXDfyInTZqAzXq4WBMZ0Jg59fm3ULUyaBr4YT/SnvH8 RPI4p9SyQ8+Y5lqqOyczAzDoE+EhNrBsOKo9dmEU5f5EpAPCXfKeIEGizABqhkiu ZiOyjNidIzXvwYMI5aiZhNB8UqMgK2jg1kj65vnvoGOomiepVB0XSGVudbnVyzFF mvm5sw4KqGyUaBNnDE+VLU9zqR4enFMdL1uEX/93AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUj2ORNdhv0FHBYWcI+ubRsFGHDh0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmMjM3ZGM2LTU2MDktNGM2Ni1iODQ1LTY0YmMwN2IwZDM3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7NMAwDQYJKoZIhvcNAQELBQADggEBAIV8P3q8gSrB6JF+6MzT/Sny 9UcQgtMchCrksdkARNCcRWCjZj12lFWDm8JX8Y+l4+yEtyaBG3modTDaE/0Z68JK 1jyXdE+36Lnz0FM96XyPLDaLAvMB2lkwKMbm2xG9LEmsB2nX5A1A/OOU8L7W2Kl5 qUvCnHd3FZdeEJIZ6BdgbU2jR2A0JuBNYgcLFYGXDxkiIKOdAFxp54zcUdaMbUom o5xXlar3oCjeJNvJSALKqW6k1kdP4b7CajTr/NQzMj2mxnukKzw9Ro9ULgGRseJp ClLSc4wCo1W7f5winqsJyi0dk0mhsUuVxVUJSAj3ybC3iQUDYiMgp/00j1h/HzQ= -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:42 2025 by rpki-client