$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a586f7e6-d190-49ce-b214-346b4b821aa1.roa File: a586f7e6-d190-49ce-b214-346b4b821aa1.roa (raw, json) Hash identifier: tq4KNkJWQW2BZvefCxjSvUpzsplyy0Y+gZA3NeM1BuU= Subject key identifier: 72:AD:E7:7B:FC:10:3F:81:D6:0F:DE:68:FF:0F:A9:85:23:99:99:88 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 060AE574408D2965401B4F183A5434F945EF201B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a586f7e6-d190-49ce-b214-346b4b821aa1.roa Signing time: Tue 17 Jun 2025 16:21:55 +0000 ROA not before: Tue 17 Jun 2025 16:21:55 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:0a:e5:74:40:8d:29:65:40:1b:4f:18:3a:54:34:f9:45:ef:20:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 16:21:55 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=62cba1c97058cf484e7ae6d2c347a1b04793498000c7fdb5477d8bae64626f0e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:37:c0:4d:22:6d:01:4a:2e:fb:5e:7f:24:f1: 7d:1a:30:b1:ba:7d:c0:66:45:ff:82:ae:12:50:b8: 05:79:92:4f:4f:f6:b1:78:63:1f:a0:14:d3:15:f7: 3b:01:45:eb:89:68:02:f7:71:58:7e:1c:a1:48:33: 59:f4:d4:d1:ae:e2:8e:f5:9c:00:8d:f0:1e:97:44: bd:5f:fe:d3:6f:e9:3c:16:fa:5b:5b:05:67:30:f9: 1f:22:e1:88:24:6a:a9:9d:bd:7f:46:f4:d0:be:f1: 2c:e0:cc:2e:ec:cc:2d:b7:09:fb:fb:70:18:5f:63: e0:4d:ff:07:82:f2:64:2e:a7:b0:11:46:0f:bc:8a: ef:4a:12:43:56:1c:7f:2c:7f:fc:48:17:63:f2:23: fc:76:e1:3e:a4:eb:33:d7:81:39:32:2c:71:7d:d0: 65:40:4a:cf:e8:1e:3e:2a:50:33:f4:14:28:10:94: e6:d1:9a:82:8e:8f:da:05:9b:d2:ca:b7:8e:61:69: 1b:69:94:6c:4f:44:e6:bd:e9:14:6e:a6:44:43:6d: e7:d9:85:ef:ac:01:a5:f9:cb:a5:cb:ff:24:c4:e1: 89:02:56:82:7c:9a:8a:3c:7e:5c:9f:4e:90:f5:d3: b3:b5:0c:a6:d1:2d:51:7f:b7:ba:95:6c:fd:04:2e: 9b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:AD:E7:7B:FC:10:3F:81:D6:0F:DE:68:FF:0F:A9:85:23:99:99:88 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a586f7e6-d190-49ce-b214-346b4b821aa1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16:c800::/37 Signature Algorithm: sha256WithRSAEncryption 10:a4:71:50:04:82:71:98:19:9d:de:c7:c8:99:97:10:b5:f9: c3:13:90:89:30:83:fa:62:ab:0f:93:7a:0b:bc:90:e2:34:eb: e0:9d:7d:2a:6d:38:81:31:6d:b8:1b:fb:27:3f:80:6b:a0:45: fe:95:a6:e3:8e:d6:3c:84:12:be:db:2f:d2:e2:74:3a:3b:ee: ab:6d:15:75:e8:d5:f7:eb:1f:bd:f7:bb:cd:97:1f:06:34:51: c1:00:34:9d:5e:28:5d:05:ea:37:7c:0c:ff:c2:e7:ef:4f:73: 92:aa:0c:21:53:c9:7f:43:c5:4f:38:d4:2c:0f:b9:39:ce:e8: 7e:95:81:83:e7:c1:29:83:26:d7:a8:7b:92:eb:cd:5c:c1:75: 56:a2:60:fc:d4:a9:1f:ed:fc:a0:32:0c:91:a5:9a:c2:ac:c8: 35:bc:3c:dd:2c:f4:39:a7:9e:ad:83:bf:ac:dc:06:28:a5:0c: b4:17:0a:df:5c:9d:43:97:3d:fc:11:6c:16:a2:f5:72:1d:33: 4f:5b:dd:c0:dc:2d:e0:83:a1:76:51:b2:bc:a4:cf:f7:a1:72: 5c:83:6f:86:fe:b8:88:2b:7f:10:9c:28:ef:0d:cd:91:e0:e4: ca:e7:96:cd:ea:8a:6e:97:8c:90:d1:ad:53:7a:b7:58:01:f3: 40:28:33:13 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBgrldECNKWVAG08YOlQ0+UXvIBswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MTYyMTU1WhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MmNiYTFjOTcwNThjZjQ4NGU3YWU2ZDJjMzQ3YTFiMDQ3 OTM0OTgwMDBjN2ZkYjU0NzdkOGJhZTY0NjI2ZjBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYN8BNIm0BSi77Xn8k8X0aMLG6fcBmRf+CrhJQuAV5kk9P 9rF4Yx+gFNMV9zsBReuJaAL3cVh+HKFIM1n01NGu4o71nACN8B6XRL1f/tNv6TwW +ltbBWcw+R8i4YgkaqmdvX9G9NC+8SzgzC7szC23Cfv7cBhfY+BN/weC8mQup7AR Rg+8iu9KEkNWHH8sf/xIF2PyI/x24T6k6zPXgTkyLHF90GVASs/oHj4qUDP0FCgQ lObRmoKOj9oFm9LKt45haRtplGxPROa96RRupkRDbefZhe+sAaX5y6XL/yTE4YkC VoJ8moo8flyfTpD107O1DKbRLVF/t7qVbP0ELputAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUcq3ne/wQP4HWD95o/w+phSOZmYgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1ODZmN2U2LWQxOTAtNDljZS1iMjE0LTM0NmI0YjgyMWFhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8WyDANBgkqhkiG9w0BAQsFAAOCAQEAEKRxUASCcZgZnd7HyJmXELX5 wxOQiTCD+mKrD5N6C7yQ4jTr4J19Km04gTFtuBv7Jz+Aa6BF/pWm447WPIQSvtsv 0uJ0Ojvuq20VdejV9+sfvfe7zZcfBjRRwQA0nV4oXQXqN3wM/8Ln709zkqoMIVPJ f0PFTzjULA+5Oc7ofpWBg+fBKYMm16h7kuvNXMF1VqJg/NSpH+38oDIMkaWawqzI Nbw83Sz0OaeerYO/rNwGKKUMtBcK31ydQ5c9/BFsFqL1ch0zT1vdwNwt4IOhdlGy vKTP96FyXINvhv64iCt/EJwo7w3NkeDkyueWzeqKbpeMkNGtU3q3WAHzQCgzEw== -----END CERTIFICATE-----Generated at Tue Jul 1 01:22:00 2025 by rpki-client