$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa784511-9eda-424b-996e-5ad4556ee606.roa File: fa784511-9eda-424b-996e-5ad4556ee606.roa (raw, json) Hash identifier: k+lAdUheZD5DhCKJDTUa31cE5YklfOcvUycRTATt974= Subject key identifier: 0B:83:AD:96:F5:A1:22:16:54:E5:FA:F2:74:96:0C:93:ED:37:F9:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6AF58C5DB05C7CACB6BF82B70CAC8D55FF32636A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa784511-9eda-424b-996e-5ad4556ee606.roa Signing time: Tue 08 Jul 2025 16:50:27 +0000 ROA not before: Tue 08 Jul 2025 16:50:27 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e:4800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:f5:8c:5d:b0:5c:7c:ac:b6:bf:82:b7:0c:ac:8d:55:ff:32:63:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:50:27 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=91238f7a188090a64a0ae35dc0abc08489a1209d52c0107d448015e4a22e968e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:81:f2:eb:0a:bf:db:1e:bf:fe:5b:3b:50:97: f8:c9:cc:3f:b7:35:03:91:61:4f:b4:53:6e:7b:87: 1e:5e:7e:95:49:9d:e7:0a:18:54:16:5d:c2:ae:1d: bf:8a:7c:64:ed:d3:26:e3:91:ca:d7:86:2c:56:de: 91:e3:75:5e:fd:1b:73:9b:f2:a0:e9:24:29:41:3f: e5:21:79:b5:02:31:e1:4b:ec:9a:00:6d:06:e3:53: 08:4e:47:51:01:e8:1a:74:3d:f4:94:5a:d2:d4:68: 84:0b:ef:29:85:1e:3d:b5:9a:c6:bf:89:f2:77:a2: 34:fd:aa:63:8d:af:2d:78:98:e5:a8:a1:b5:62:7c: 4e:8f:55:8a:80:79:b3:a0:b1:78:01:84:49:db:9e: 67:e7:8b:f6:d6:bd:78:fe:40:7a:f4:0e:aa:f3:e8: 30:c0:06:ce:b3:03:cb:33:ab:75:d7:8a:76:4e:f1: 2b:85:a6:b0:2e:6c:93:e7:5f:2e:2a:5f:c2:e8:39: d2:9e:1c:03:d4:e6:1d:de:8d:5a:b2:9f:1c:bb:6b: 46:d3:71:6c:ed:8e:6e:41:70:e8:dc:07:ec:b5:97: 92:87:5f:55:a0:03:c0:59:eb:6e:bd:62:ad:a2:1e: eb:72:36:ca:4b:41:d5:a2:d4:57:e1:3f:66:4a:16: 23:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:83:AD:96:F5:A1:22:16:54:E5:FA:F2:74:96:0C:93:ED:37:F9:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fa784511-9eda-424b-996e-5ad4556ee606.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e:4800::/37 Signature Algorithm: sha256WithRSAEncryption c0:18:59:2c:4a:7f:c9:f1:a3:7e:ae:bb:ed:16:65:6f:d2:31: e0:79:22:a3:a9:d6:75:72:66:3f:c2:de:24:9e:07:fb:9b:6c: 1d:8c:13:db:ee:ac:5c:4e:da:af:31:c1:bc:74:d9:b1:0a:73: d3:0d:ee:13:a8:c0:ca:48:08:d8:de:72:5f:a1:35:e1:87:16: 4b:71:d5:23:0c:d1:d8:fd:77:b2:ae:97:f1:77:f9:64:d7:d6: 24:1a:30:22:fa:ce:90:ea:35:99:64:8a:04:02:bc:14:0e:f4: 5e:93:2d:94:fc:af:71:0a:c7:6a:c3:57:29:95:14:91:a5:53: 0b:fe:0a:8c:1c:85:03:2e:e1:33:2e:42:63:05:5f:7e:6a:92: 63:ce:0b:0f:49:00:a7:ee:c0:64:a0:9f:2e:0f:bf:d0:13:04: 33:b5:bb:3f:c6:5a:26:63:51:3b:5f:b7:8b:7f:e0:54:30:80: fa:f7:5c:81:0d:8c:fa:28:fb:2c:e3:07:51:e5:ce:c0:d8:7c: cb:a5:c6:cb:7b:e5:05:f7:86:b3:76:41:fd:e2:e6:aa:df:9b: 04:08:fc:21:69:9e:f4:cb:ad:82:73:9e:55:76:37:4f:44:83: 66:2c:22:e0:7e:11:9f:ee:12:07:45:01:bb:33:0f:7f:e5:95: 71:d2:be:73 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUavWMXbBcfKy2v4K3DKyNVf8yY2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTY1MDI3WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTIzOGY3YTE4ODA5MGE2NGEwYWUzNWRjMGFiYzA4NDg5 YTEyMDlkNTJjMDEwN2Q0NDgwMTVlNGEyMmU5NjhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDgfLrCr/bHr/+WztQl/jJzD+3NQORYU+0U257hx5efpVJ necKGFQWXcKuHb+KfGTt0ybjkcrXhixW3pHjdV79G3Ob8qDpJClBP+UhebUCMeFL 7JoAbQbjUwhOR1EB6Bp0PfSUWtLUaIQL7ymFHj21msa/ifJ3ojT9qmONry14mOWo obVifE6PVYqAebOgsXgBhEnbnmfni/bWvXj+QHr0Dqrz6DDABs6zA8szq3XXinZO 8SuFprAubJPnXy4qX8LoOdKeHAPU5h3ejVqynxy7a0bTcWztjm5BcOjcB+y1l5KH X1WgA8BZ6269Yq2iHutyNspLQdWi1FfhP2ZKFiOVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUC4OtlvWhIhZU5frydJYMk+03+UMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZhNzg0NTExLTllZGEtNDI0Yi05OTZlLTVhZDQ1NTZlZTYwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8eSDANBgkqhkiG9w0BAQsFAAOCAQEAwBhZLEp/yfGjfq677RZlb9Ix 4Hkio6nWdXJmP8LeJJ4H+5tsHYwT2+6sXE7arzHBvHTZsQpz0w3uE6jAykgI2N5y X6E14YcWS3HVIwzR2P13sq6X8Xf5ZNfWJBowIvrOkOo1mWSKBAK8FA70XpMtlPyv cQrHasNXKZUUkaVTC/4KjByFAy7hMy5CYwVffmqSY84LD0kAp+7AZKCfLg+/0BME M7W7P8ZaJmNRO1+3i3/gVDCA+vdcgQ2M+ij7LOMHUeXOwNh8y6XGy3vlBfeGs3ZB /eLmqt+bBAj8IWme9MutgnOeVXY3T0SDZiwi4H4Rn+4SB0UBuzMPf+WVcdK+cw== -----END CERTIFICATE-----Generated at Mon Jul 21 13:12:08 2025 by rpki-client