$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa File: 974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa (raw, json) Hash identifier: L1CoBxHls7ZzrgIip2bb+XcxZxlQh3/M5mnn6I8VLIg= Subject key identifier: 98:9E:19:5D:2D:0F:E7:6C:24:F7:2B:9D:55:F3:C4:16:32:BF:38:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 623657721B41FA3272A42CC61C739F76B36ED153 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa Signing time: Tue 12 Aug 2025 00:20:17 +0000 ROA not before: Tue 12 Aug 2025 00:20:17 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f21::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:36:57:72:1b:41:fa:32:72:a4:2c:c6:1c:73:9f:76:b3:6e:d1:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:20:17 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=77596c07ecb6336eb39bdc2fa6374441538b73d77a17eb9aecdeb071e258bb1b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b0:6a:e1:b0:e7:4e:43:1d:df:d3:d9:02:30: 78:27:08:a2:66:27:55:c6:19:1e:4b:f4:d8:a7:c5: a6:41:25:c7:54:05:01:b5:ad:4b:8c:f5:f2:9a:e4: 66:e5:a9:db:4f:7d:62:c2:4a:fa:4c:ec:36:34:1c: 85:cf:36:cb:f4:a9:3f:36:22:48:5a:49:f1:48:a8: 04:24:cc:f8:26:0d:e1:44:cc:0a:07:ee:68:97:73: cc:66:95:c3:e0:07:c6:a5:b3:b4:5c:9b:dc:6e:2f: 24:35:98:8a:e6:1e:1c:e9:cd:9a:54:ea:13:b9:55: be:ba:03:34:6f:51:e7:f8:48:2b:a2:7f:5e:f5:d5: e3:fb:62:21:3b:16:14:8d:9f:af:d2:0b:90:7e:b4: 88:8f:58:5d:f2:8d:c5:bd:bb:0f:39:16:6a:92:f3: e1:8d:a8:ae:ca:0f:ec:55:d3:9e:43:ce:85:2a:50: 6c:0b:ed:7e:82:cf:0a:31:2d:f5:cb:c1:72:08:e6: 3e:6a:76:b3:43:57:91:02:8a:d5:8c:e4:d6:79:22: cf:0a:ad:f2:a3:9c:db:98:04:e9:b6:20:40:d2:63: 40:e3:93:41:ec:b7:a0:53:73:f9:96:31:da:84:6a: 58:d5:66:88:59:5d:fc:50:9b:f2:22:71:d1:89:3d: 82:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:9E:19:5D:2D:0F:E7:6C:24:F7:2B:9D:55:F3:C4:16:32:BF:38:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/974e6dfc-61bf-4f05-b26a-c4ebcc875cfc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f21::/36 Signature Algorithm: sha256WithRSAEncryption 45:77:ce:af:7f:99:f7:98:73:4b:f3:3b:48:4a:5c:72:a0:9b: 2d:a7:5e:09:4a:67:47:8c:d1:7a:d7:e9:66:ea:50:d1:a8:00: 00:f4:b2:bb:99:8b:f2:5a:63:e3:f2:70:26:98:36:90:6a:a3: ef:40:ec:45:9c:94:53:41:e9:f5:1e:62:17:83:50:7e:2f:ec: ce:2f:da:1b:fa:d0:cf:78:2a:08:b3:e6:33:12:65:e0:d6:14: 82:32:b9:80:72:23:c9:52:47:d0:67:9f:ff:98:2d:3e:a3:45: a2:aa:90:fe:c9:7a:6b:fa:cf:e5:e9:01:b7:ea:d0:ff:bf:7e: 45:c7:78:1b:3e:a3:34:d2:04:a8:55:37:32:e4:8f:a7:67:e7: 1e:d1:f5:95:a3:87:e4:46:76:35:11:02:b8:44:f7:fe:c8:e9: 63:58:78:65:97:cb:ec:6a:1f:ff:18:a5:ea:ed:cc:28:34:61: 3b:9d:ea:49:a1:3d:11:ea:bf:20:2a:b2:49:16:cf:79:40:ab: 1c:68:c2:31:b7:6f:a6:d9:f6:46:f9:21:51:b2:c1:6f:07:2a: 8d:ab:d5:b8:3e:10:0d:0d:10:c4:d2:4e:97:30:87:5f:a6:d1: 19:a8:5b:f2:31:ef:01:9f:d4:f7:6e:2f:58:e9:d7:78:d4:ce: 70:fc:65:8d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYjZXchtB+jJypCzGHHOfdrNu0VMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAyMDE3WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NzU5NmMwN2VjYjYzMzZlYjM5YmRjMmZhNjM3NDQ0MTUz OGI3M2Q3N2ExN2ViOWFlY2RlYjA3MWUyNThiYjFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCksGrhsOdOQx3f09kCMHgnCKJmJ1XGGR5L9NinxaZBJcdU BQG1rUuM9fKa5GblqdtPfWLCSvpM7DY0HIXPNsv0qT82IkhaSfFIqAQkzPgmDeFE zAoH7miXc8xmlcPgB8als7Rcm9xuLyQ1mIrmHhzpzZpU6hO5Vb66AzRvUef4SCui f1711eP7YiE7FhSNn6/SC5B+tIiPWF3yjcW9uw85FmqS8+GNqK7KD+xV055DzoUq UGwL7X6CzwoxLfXLwXII5j5qdrNDV5ECitWM5NZ5Is8KrfKjnNuYBOm2IEDSY0Dj k0Hst6BTc/mWMdqEaljVZohZXfxQm/IicdGJPYIbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmJ4ZXS0P52wk9yudVfPEFjK/OB8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3NGU2ZGZjLTYxYmYtNGYwNS1iMjZhLWM0ZWJjYzg3NWNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8hADANBgkqhkiG9w0BAQsFAAOCAQEARXfOr3+Z95hzS/M7SEpccqCb LadeCUpnR4zRetfpZupQ0agAAPSyu5mL8lpj4/JwJpg2kGqj70DsRZyUU0Hp9R5i F4NQfi/szi/aG/rQz3gqCLPmMxJl4NYUgjK5gHIjyVJH0Gef/5gtPqNFoqqQ/sl6 a/rP5ekBt+rQ/79+Rcd4Gz6jNNIEqFU3MuSPp2fnHtH1laOH5EZ2NRECuET3/sjp Y1h4ZZfL7Gof/xil6u3MKDRhO53qSaE9Eeq/ICqySRbPeUCrHGjCMbdvptn2Rvkh UbLBbwcqjavVuD4QDQ0QxNJOlzCHX6bRGahb8jHvAZ/U924vWOnXeNTOcPxljQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:27 2025 by rpki-client