$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd2490be-36b4-4ace-9cba-a26053204659.roa File: dd2490be-36b4-4ace-9cba-a26053204659.roa (raw, json) Hash identifier: xhb3ehNE5JBwWOTOn46/mMsIVXhnvZajG17vJiDBjlU= Subject key identifier: AE:DE:C5:3C:A6:F9:14:67:CC:54:EB:5E:CB:72:D3:58:9D:4D:98:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6FE668279BFFF2A460ECE86CAEF65CDE00476455 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd2490be-36b4-4ace-9cba-a26053204659.roa Signing time: Fri 18 Jul 2025 00:11:03 +0000 ROA not before: Fri 18 Jul 2025 00:11:03 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f68:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:e6:68:27:9b:ff:f2:a4:60:ec:e8:6c:ae:f6:5c:de:00:47:64:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:11:03 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=302407ed1ab5ce670207bfaa8d15497924ab6265c91ea6baa1cff5c2bc880478, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1a:8a:bf:a9:7f:56:d2:60:a3:1b:55:e8:d1: ad:e3:c3:82:71:e0:f6:08:79:4c:d9:9a:c6:2e:eb: c9:20:29:0a:92:f5:56:66:79:85:0a:33:d2:dc:fc: c6:e9:d8:ab:57:d9:e6:43:18:e2:35:82:09:4f:5d: 27:83:e4:5a:04:40:bf:78:4a:d9:57:84:8a:9b:d2: 73:fd:04:39:cf:0b:8f:99:9b:b3:19:25:8d:a5:c1: ce:20:ff:c4:34:61:08:a5:ba:e7:40:d0:1c:fe:b3: 48:fb:b8:fc:80:57:7c:62:d6:8e:e9:ef:61:91:aa: ef:94:77:ea:6b:4a:01:28:6a:97:0a:38:34:d4:79: c9:74:aa:0f:3f:69:94:85:72:8e:07:c1:f7:35:77: 56:7a:3a:05:42:3a:ab:3b:fc:3f:6e:bd:ff:da:7d: dc:dc:12:79:fd:1e:4d:0d:0f:a4:3b:95:1b:5b:c8: e1:96:45:87:55:32:0d:bc:9f:fa:b4:df:40:75:0e: dd:7b:d5:55:ab:b9:d2:20:38:1c:90:3a:63:ec:20: ec:78:05:20:e0:12:fc:df:a3:5a:38:71:7c:45:7a: 5b:66:b7:50:05:d0:b6:7b:ab:f8:16:2e:ce:ed:d0: ec:3d:3a:99:f5:1c:81:49:7e:f2:68:60:c1:f6:92: 72:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:DE:C5:3C:A6:F9:14:67:CC:54:EB:5E:CB:72:D3:58:9D:4D:98:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dd2490be-36b4-4ace-9cba-a26053204659.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:5000::/40 Signature Algorithm: sha256WithRSAEncryption 3c:e8:5b:62:a2:8e:7a:6c:34:63:99:db:ac:22:b7:c2:b2:2d: 26:f9:3e:7a:42:68:19:3a:17:f6:d7:ae:d6:3a:97:c4:7f:ab: a0:d0:c7:e8:de:8b:09:b1:42:73:ce:16:5e:11:16:73:bc:38: ae:7f:7c:d7:31:fa:6a:27:c7:fb:81:dc:76:47:25:4e:e4:52: d5:a4:df:86:2a:20:ba:14:3c:ad:94:5f:f0:fe:ca:79:9d:2f: a1:bc:43:09:a9:c2:95:f5:a4:18:11:67:d8:63:2b:5e:d5:24: 31:53:87:f6:3c:ab:21:5a:1f:da:74:d4:cc:00:1e:23:2e:c7: fd:b7:7d:1b:df:d1:43:46:b4:d3:b5:be:65:36:e4:93:d6:73: 61:3a:41:ff:93:48:13:f5:76:14:4a:63:14:0b:66:6c:23:c3: ae:55:a1:e1:f4:ae:fe:88:ec:8d:7e:35:6c:1a:5c:ad:4a:bb: 1c:5a:21:c3:2c:56:44:a0:fa:d8:62:f8:54:5d:4c:5e:2f:db: d9:4d:25:3c:dc:b9:87:6f:db:c9:8f:e8:21:65:6c:77:8a:df: 60:8f:3d:b5:51:1e:8d:ab:ec:75:af:9f:3b:83:bc:96:2e:5a: 7b:01:a1:66:ba:85:b6:cb:da:50:56:73:61:60:4b:1f:96:88: ec:44:47:fa -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUb+ZoJ5v/8qRg7OhsrvZc3gBHZFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAxMTAzWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDI0MDdlZDFhYjVjZTY3MDIwN2JmYWE4ZDE1NDk3OTI0 YWI2MjY1YzkxZWE2YmFhMWNmZjVjMmJjODgwNDc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZGoq/qX9W0mCjG1Xo0a3jw4Jx4PYIeUzZmsYu68kgKQqS 9VZmeYUKM9Lc/Mbp2KtX2eZDGOI1gglPXSeD5FoEQL94StlXhIqb0nP9BDnPC4+Z m7MZJY2lwc4g/8Q0YQiluudA0Bz+s0j7uPyAV3xi1o7p72GRqu+Ud+prSgEoapcK ODTUecl0qg8/aZSFco4Hwfc1d1Z6OgVCOqs7/D9uvf/afdzcEnn9Hk0ND6Q7lRtb yOGWRYdVMg28n/q030B1Dt171VWrudIgOByQOmPsIOx4BSDgEvzfo1o4cXxFeltm t1AF0LZ7q/gWLs7t0Ow9Opn1HIFJfvJoYMH2knIBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrt7FPKb5FGfMVOtey3LTWJ1NmOcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkMjQ5MGJlLTM2YjQtNGFjZS05Y2JhLWEyNjA1MzIwNDY1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9oUDANBgkqhkiG9w0BAQsFAAOCAQEAPOhbYqKOemw0Y5nbrCK3wrIt Jvk+ekJoGToX9teu1jqXxH+roNDH6N6LCbFCc84WXhEWc7w4rn981zH6aifH+4Hc dkclTuRS1aTfhioguhQ8rZRf8P7KeZ0vobxDCanClfWkGBFn2GMrXtUkMVOH9jyr IVof2nTUzAAeIy7H/bd9G9/RQ0a007W+ZTbkk9ZzYTpB/5NIE/V2FEpjFAtmbCPD rlWh4fSu/ojsjX41bBpcrUq7HFohwyxWRKD62GL4VF1MXi/b2U0lPNy5h2/byY/o IWVsd4rfYI89tVEejavsda+fO4O8li5aewGhZrqFtsvaUFZzYWBLH5aI7ERH+g== -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:35 2025 by rpki-client