$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d64b8d65-3449-415f-b371-492909995065.roa File: d64b8d65-3449-415f-b371-492909995065.roa (raw, json) Hash identifier: 7+gmUZnf1+dcLEIMf38WciYlelG6JXBS7uSw2syDA4E= Subject key identifier: 09:53:F9:F1:90:74:D1:DB:AE:02:13:CC:5B:BD:C0:EA:20:E0:3F:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 152DB92CAEF97083B2612E8E43A42D5D1A2A3979 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d64b8d65-3449-415f-b371-492909995065.roa Signing time: Tue 08 Jul 2025 15:41:53 +0000 ROA not before: Tue 08 Jul 2025 15:41:53 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:c0c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 24 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:2d:b9:2c:ae:f9:70:83:b2:61:2e:8e:43:a4:2d:5d:1a:2a:39:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:41:53 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=20104bd6cad414a5ef693bb8099ac22e187f8e58965589b305be54f1b8f3766f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bf:1c:7b:6c:c0:74:4c:42:e1:08:8c:0d:61: 96:dc:49:28:88:35:c4:0a:ca:61:2c:e3:d3:38:06: ee:05:97:b8:dc:bd:12:b2:4e:d6:74:70:76:0c:2e: 35:b0:bf:36:90:10:a1:99:73:5f:d8:13:a5:44:96: 8c:5d:e7:79:48:d4:9b:ee:12:e8:64:9f:60:27:d1: 08:bd:a9:70:3f:e1:bf:cd:11:c1:2a:96:fe:df:37: 09:05:fc:47:95:8e:73:c6:94:a8:d1:c6:87:82:36: de:ac:12:97:47:ba:9d:29:73:4b:96:53:4d:ef:55: 75:00:0c:0d:22:42:a3:a1:95:a2:cc:00:d1:1a:d1: 07:ac:4f:f6:85:3b:f8:ac:9f:ad:6c:cb:9e:b4:da: bc:6c:25:99:16:11:eb:e9:3b:88:7c:c4:39:91:dc: fc:96:c8:6c:0c:93:42:33:e2:1a:63:8c:27:e8:bf: 68:4d:f6:ad:2e:bb:b9:71:f6:2f:63:21:b0:82:56: 22:4c:7c:54:d8:9d:a5:b8:b6:3f:ba:7d:a1:0e:9c: 97:f2:83:04:af:a9:3e:b4:fc:dd:37:87:9a:54:55: 6c:7e:63:51:cd:73:d3:fd:93:67:ae:e0:03:a1:46: 61:75:24:03:b5:c6:4b:fb:d0:90:46:c7:91:7c:7e: 1b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:53:F9:F1:90:74:D1:DB:AE:02:13:CC:5B:BD:C0:EA:20:E0:3F:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d64b8d65-3449-415f-b371-492909995065.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:c0c0::/46 Signature Algorithm: sha256WithRSAEncryption b9:c6:cd:f8:c2:69:7b:c8:47:3d:ab:30:05:43:2b:ac:d9:15: a8:47:d0:33:4c:0c:b8:42:76:4b:a3:3b:6b:52:ea:45:2b:90: e1:9f:c3:c0:3c:1f:df:d1:42:e2:3b:47:ae:2e:17:17:62:d6: ff:80:22:ba:0a:fa:c4:75:66:98:60:cc:02:24:19:3f:cd:dc: 71:26:25:ee:2d:17:98:81:50:a7:13:9f:62:d9:8b:ec:9c:46: c6:8f:57:c7:97:29:6f:5e:30:b6:df:37:72:fd:23:8f:33:36: 4a:2c:ed:9a:eb:73:b3:96:72:a8:d6:38:19:31:0b:df:55:ed: 7f:af:0a:1f:39:24:1f:d4:3b:c3:ad:72:09:d8:fb:57:44:b3: b1:a0:e9:06:52:55:b1:50:26:e8:9f:9b:42:b0:ef:e5:f1:d4: 4d:99:08:8b:70:9c:6c:61:46:90:01:c9:de:f8:19:2d:73:b3: ea:f9:44:9e:f6:4f:01:7b:c9:c9:cf:63:fb:a7:8f:4e:d9:c9: 60:18:a3:af:04:8b:77:01:e9:fa:6a:59:7f:f1:0a:61:f9:57: b1:8d:d0:f6:02:0b:ef:d9:28:5f:b6:98:9f:34:52:dc:ab:fd: 31:9d:66:53:c3:cb:fc:33:f7:01:10:17:e2:64:ba:4e:c1:39: e3:39:e4:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFS25LK75cIOyYS6OQ6QtXRoqOXkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTU0MTUzWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDEwNGJkNmNhZDQxNGE1ZWY2OTNiYjgwOTlhYzIyZTE4 N2Y4ZTU4OTY1NTg5YjMwNWJlNTRmMWI4ZjM3NjZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClvxx7bMB0TELhCIwNYZbcSSiINcQKymEs49M4Bu4Fl7jc vRKyTtZ0cHYMLjWwvzaQEKGZc1/YE6VEloxd53lI1JvuEuhkn2An0Qi9qXA/4b/N EcEqlv7fNwkF/EeVjnPGlKjRxoeCNt6sEpdHup0pc0uWU03vVXUADA0iQqOhlaLM ANEa0QesT/aFO/isn61sy5602rxsJZkWEevpO4h8xDmR3PyWyGwMk0Iz4hpjjCfo v2hN9q0uu7lx9i9jIbCCViJMfFTYnaW4tj+6faEOnJfygwSvqT60/N03h5pUVWx+ Y1HNc9P9k2eu4AOhRmF1JAO1xkv70JBGx5F8fhvTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCVP58ZB00duuAhPMW73A6iDgP9kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2NGI4ZDY1LTM0NDktNDE1Zi1iMzcxLTQ5MjkwOTk5NTA2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pwMAwDQYJKoZIhvcNAQELBQADggEBALnGzfjCaXvIRz2rMAVDK6zZ FahH0DNMDLhCdkujO2tS6kUrkOGfw8A8H9/RQuI7R64uFxdi1v+AIroK+sR1Zphg zAIkGT/N3HEmJe4tF5iBUKcTn2LZi+ycRsaPV8eXKW9eMLbfN3L9I48zNkos7Zrr c7OWcqjWOBkxC99V7X+vCh85JB/UO8OtcgnY+1dEs7Gg6QZSVbFQJuifm0Kw7+Xx 1E2ZCItwnGxhRpAByd74GS1zs+r5RJ72TwF7ycnPY/unj07ZyWAYo68Ei3cB6fpq WX/xCmH5V7GN0PYCC+/ZKF+2mJ80Utyr/TGdZlPDy/wz9wEQF+Jkuk7BOeM55Fs= -----END CERTIFICATE-----Generated at Wed Jul 23 02:23:46 2025 by rpki-client