$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f72c868e-09c6-45bf-b69f-5299536cb0fc.roa File: f72c868e-09c6-45bf-b69f-5299536cb0fc.roa (raw, json) Hash identifier: o0Zi95PAYJeS7Z62JFrvIuUR7BkOdXARIXCV4pm8IHU= Subject key identifier: FD:69:60:D8:B9:EC:8D:F8:3E:0C:4A:03:28:36:F0:F4:23:0B:8A:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07AD73F2AB95762B2846F7E5D304EEF24321D474 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f72c868e-09c6-45bf-b69f-5299536cb0fc.roa Signing time: Mon 21 Jul 2025 15:51:24 +0000 ROA not before: Mon 21 Jul 2025 15:51:24 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff3:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:ad:73:f2:ab:95:76:2b:28:46:f7:e5:d3:04:ee:f2:43:21:d4:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 15:51:24 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=83c97cd3d4faee6eb1119223bd20684f6e05a26d95e7cc8ecd475250f9dc1b32, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:22:c1:16:ba:c8:0a:fb:b7:47:f6:35:93:62: a5:5e:7d:29:89:dc:05:a7:a0:13:d1:fd:8f:a9:f9: 33:67:cf:97:cc:19:31:2a:b8:9b:7c:de:94:2e:16: 83:ff:fe:bb:26:62:54:7d:20:a8:b2:bf:62:6c:95: b5:fe:65:b3:a0:0f:9e:58:ce:3f:1a:45:09:8c:df: 7c:d3:f1:00:07:5f:63:99:aa:74:fb:ac:78:b1:5e: 43:01:2e:f8:38:ae:43:01:95:ed:7b:3e:04:66:4b: 27:4b:d8:ac:35:fb:48:97:e6:1e:2b:77:e0:57:e7: ed:b3:fd:f4:55:5b:e3:34:7e:d3:f2:a3:06:7d:b1: fa:e1:0a:f7:b4:4d:db:5b:76:00:d9:27:ab:84:de: c3:45:43:1a:81:ab:c0:c5:1a:d7:be:c4:1f:a8:28: c1:b3:40:a7:d0:bc:7d:4f:70:71:4b:a9:3f:4d:2e: bc:2b:b6:0c:e0:eb:a6:a3:b2:7c:ca:c5:3e:96:ca: 57:23:eb:5f:c1:78:66:b3:ef:11:af:7c:50:fc:d9: e0:fb:f4:b9:6a:6f:0c:d8:41:51:e9:26:91:16:04: 12:e6:ce:e0:5d:ba:07:f4:8e:6a:c9:73:56:17:b8: b7:3a:e8:29:29:95:fd:12:16:a0:e1:4e:8a:56:ee: 20:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:69:60:D8:B9:EC:8D:F8:3E:0C:4A:03:28:36:F0:F4:23:0B:8A:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f72c868e-09c6-45bf-b69f-5299536cb0fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:2000::/40 Signature Algorithm: sha256WithRSAEncryption 3d:22:75:de:ad:aa:9a:c3:1d:9d:da:9f:fb:16:cf:b6:40:a1: e3:6b:dd:41:40:fb:4b:ca:24:84:8b:3a:55:5a:b8:67:8a:25: b3:a8:82:34:37:eb:a4:f4:ff:51:ff:fa:be:39:0b:11:7b:c6: 4e:9a:bf:36:8b:05:db:a5:15:cd:b0:47:88:07:70:6a:9d:2b: 14:83:a5:d6:88:0a:c3:b8:53:29:25:4d:63:a7:84:04:40:73: 96:6d:e0:00:60:91:a8:d2:40:cb:11:28:2c:4a:a3:f3:e5:5b: a3:ad:65:a1:1d:63:c0:66:56:82:c3:06:76:85:3c:1e:ed:8c: 50:bd:97:4b:d6:8b:ab:b8:ce:48:72:67:a9:a1:a9:15:b3:c4: 21:99:7c:17:5e:d9:0c:2a:e8:2c:24:48:5e:bb:b4:28:92:37: d1:db:e3:6e:25:4a:d2:68:22:ed:40:e2:45:2d:c0:d4:b7:94: 2c:df:2e:1c:df:14:e0:ca:74:95:56:aa:e5:56:fd:08:01:92: 35:49:49:8a:e8:47:07:1f:7b:4b:2e:af:ff:e1:59:8e:bf:49: 64:cf:4c:23:29:b6:4c:be:d5:55:69:b4:e3:25:d1:99:ef:52: f6:fd:90:e3:56:bf:e4:36:2c:3f:82:91:44:e0:ab:bc:48:f4: db:22:0a:ab -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUB61z8quVdisoRvfl0wTu8kMh1HQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTU1MTI0WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2M5N2NkM2Q0ZmFlZTZlYjExMTkyMjNiZDIwNjg0ZjZl MDVhMjZkOTVlN2NjOGVjZDQ3NTI1MGY5ZGMxYjMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMIsEWusgK+7dH9jWTYqVefSmJ3AWnoBPR/Y+p+TNnz5fM GTEquJt83pQuFoP//rsmYlR9IKiyv2JslbX+ZbOgD55Yzj8aRQmM33zT8QAHX2OZ qnT7rHixXkMBLvg4rkMBle17PgRmSydL2Kw1+0iX5h4rd+BX5+2z/fRVW+M0ftPy owZ9sfrhCve0TdtbdgDZJ6uE3sNFQxqBq8DFGte+xB+oKMGzQKfQvH1PcHFLqT9N Lrwrtgzg66ajsnzKxT6Wylcj61/BeGaz7xGvfFD82eD79LlqbwzYQVHpJpEWBBLm zuBdugf0jmrJc1YXuLc66Ckplf0SFqDhTopW7iBlAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/Wlg2Lnsjfg+DEoDKDbw9CMLis4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y3MmM4NjhlLTA5YzYtNDViZi1iNjlmLTUyOTk1MzZjYjBmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/zIDANBgkqhkiG9w0BAQsFAAOCAQEAPSJ13q2qmsMdndqf+xbPtkCh 42vdQUD7S8okhIs6VVq4Z4ols6iCNDfrpPT/Uf/6vjkLEXvGTpq/NosF26UVzbBH iAdwap0rFIOl1ogKw7hTKSVNY6eEBEBzlm3gAGCRqNJAyxEoLEqj8+Vbo61loR1j wGZWgsMGdoU8Hu2MUL2XS9aLq7jOSHJnqaGpFbPEIZl8F17ZDCroLCRIXru0KJI3 0dvjbiVK0mgi7UDiRS3A1LeULN8uHN8U4Mp0lVaq5Vb9CAGSNUlJiuhHBx97Sy6v /+FZjr9JZM9MIym2TL7VVWm04yXRme9S9v2Q41a/5DYsP4KRROCrvEj02yIKqw== -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:34 2025 by rpki-client