$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9923beb-3d03-4069-98fc-8142a5224d27.roa File: f9923beb-3d03-4069-98fc-8142a5224d27.roa (raw, json) Hash identifier: VubRZhxwCbuj/fqEa2Y3XJHCLsTPYrgN7G6Fd3QMpzc= Subject key identifier: 4F:94:25:85:75:5D:F3:9C:3A:BA:08:E3:8A:40:75:1B:15:3A:7A:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FD4C91F4D8754E83F89E542496C89D44D3000F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9923beb-3d03-4069-98fc-8142a5224d27.roa Signing time: Mon 21 Jul 2025 16:01:08 +0000 ROA not before: Mon 21 Jul 2025 16:01:08 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f30::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:d4:c9:1f:4d:87:54:e8:3f:89:e5:42:49:6c:89:d4:4d:30:00:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 16:01:08 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=2b8711f07b0203c8a36a9ca6967b042f85a325ba549ad8296c8fae4cece8d3c6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d6:d4:e8:03:21:c3:b9:07:99:1e:16:6c:24: ff:84:4d:f3:1d:d1:2e:8f:ee:91:ec:11:e1:7b:35: 14:16:c5:47:89:2e:2a:7f:b3:28:84:7f:04:fd:57: b0:5a:c2:e0:54:fc:25:4a:a3:88:89:ab:b1:e9:a9: 16:f5:9e:81:57:3e:e6:42:c5:8a:a9:0f:ca:72:fb: 67:76:a0:2d:a3:eb:c1:18:f1:e3:8a:17:61:83:d7: fe:8e:26:4b:93:e0:a6:27:e5:83:57:4e:f4:00:b2: 1d:66:fa:66:60:bd:a8:da:0f:15:ca:d6:8f:92:9c: 3d:85:d9:33:b4:15:61:d5:52:50:75:e0:85:9d:6c: 36:cf:59:ac:29:6a:ee:9b:48:f0:48:16:dc:4e:eb: 47:45:13:05:b4:e6:07:06:b0:49:c9:b2:f6:96:a7: ef:f6:bf:f6:d2:67:e5:d3:73:6a:89:16:c4:3b:9f: 7e:86:56:65:bf:5e:3e:ad:c2:4e:e2:be:e2:22:0a: 39:3d:0d:d1:78:77:22:09:94:0b:14:c0:f9:77:1c: c0:83:86:a1:ce:e9:0e:6b:26:32:a1:38:6d:b9:1b: 2f:c6:ae:64:9a:7c:a8:e4:90:24:cd:4a:24:27:ee: 03:ba:79:f8:09:ca:e3:b1:25:47:5d:3b:37:b0:f4: 88:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:94:25:85:75:5D:F3:9C:3A:BA:08:E3:8A:40:75:1B:15:3A:7A:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9923beb-3d03-4069-98fc-8142a5224d27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f30::/32 Signature Algorithm: sha256WithRSAEncryption 01:9f:4e:5a:1b:81:8d:a8:7d:5b:3b:bf:81:ef:9f:2d:e4:c3: 78:07:5f:d5:a5:f9:38:a8:1e:ee:85:9a:28:62:31:f9:fe:da: db:0e:2c:09:ff:a9:b2:72:95:1d:85:86:24:2c:f3:fc:bf:45: f1:a9:98:b0:b0:40:96:e8:42:36:7e:e8:b2:cc:3d:d6:d6:01: 54:d9:f4:64:70:49:58:c0:1d:2a:c7:4c:c0:73:12:32:5d:1e: 85:85:25:57:3e:44:1f:ea:ef:01:4c:d7:9c:98:86:69:4f:4c: d9:32:ec:0c:44:77:63:79:2a:47:8d:40:e8:b9:e5:93:20:0b: 6b:a4:a5:f7:48:ff:bc:e3:2c:07:68:19:a6:10:f2:5f:bb:5c: 9d:a3:f2:67:75:d9:a8:3f:9d:a4:2f:6e:c8:a3:ba:44:f4:5d: b0:22:10:e2:32:87:2e:24:51:2b:8b:49:71:c1:2a:e3:2e:e9: 1d:f4:50:3f:d3:78:82:46:45:04:96:b2:44:57:d5:8c:3a:58: e5:64:6e:85:cb:24:20:61:45:ff:34:fb:78:5c:09:6b:cf:0c: 34:0e:26:25:03:12:f3:7f:23:1c:b2:37:8a:43:c9:bd:66:0e: 33:4d:82:13:5d:1a:f4:70:a8:0e:ff:56:a5:57:dc:6a:e7:97: c7:b8:92:10 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUH9TJH02HVOg/ieVCSWyJ1E0wAPYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTYwMTA4WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjg3MTFmMDdiMDIwM2M4YTM2YTljYTY5NjdiMDQyZjg1 YTMyNWJhNTQ5YWQ4Mjk2YzhmYWU0Y2VjZThkM2M2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs1tToAyHDuQeZHhZsJP+ETfMd0S6P7pHsEeF7NRQWxUeJ Lip/syiEfwT9V7BawuBU/CVKo4iJq7HpqRb1noFXPuZCxYqpD8py+2d2oC2j68EY 8eOKF2GD1/6OJkuT4KYn5YNXTvQAsh1m+mZgvajaDxXK1o+SnD2F2TO0FWHVUlB1 4IWdbDbPWawpau6bSPBIFtxO60dFEwW05gcGsEnJsvaWp+/2v/bSZ+XTc2qJFsQ7 n36GVmW/Xj6twk7ivuIiCjk9DdF4dyIJlAsUwPl3HMCDhqHO6Q5rJjKhOG25Gy/G rmSafKjkkCTNSiQn7gO6efgJyuOxJUddOzew9Ii5AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUT5QlhXVd85w6ugjjikB1GxU6ejkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5OTIzYmViLTNkMDMtNDA2OS05OGZjLTgxNDJhNTIyNGQyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB8wMA0GCSqGSIb3DQEBCwUAA4IBAQABn05aG4GNqH1bO7+B758t5MN4 B1/Vpfk4qB7uhZooYjH5/trbDiwJ/6mycpUdhYYkLPP8v0XxqZiwsECW6EI2fuiy zD3W1gFU2fRkcElYwB0qx0zAcxIyXR6FhSVXPkQf6u8BTNecmIZpT0zZMuwMRHdj eSpHjUDoueWTIAtrpKX3SP+84ywHaBmmEPJfu1ydo/JnddmoP52kL27Io7pE9F2w IhDiMocuJFEri0lxwSrjLukd9FA/03iCRkUElrJEV9WMOljlZG6FyyQgYUX/NPt4 XAlrzww0DiYlAxLzfyMcsjeKQ8m9Zg4zTYITXRr0cKgO/1alV9xq55fHuJIQ -----END CERTIFICATE-----Generated at Mon Jul 21 18:07:15 2025 by rpki-client