$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa File: c222f035-1c02-4052-94b2-4fc3e0405321.roa (raw, json) Hash identifier: QQUGyvEFtt/X45dlbKXq9SdWnMl8B/zWS2SopVNaoAo= Subject key identifier: 20:EF:C9:8F:C0:FE:52:44:38:9E:65:92:5F:28:FB:63:B4:4B:E4:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E7EA3AF799266BAB4A67E7A74DCBA06D475ED2A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa Signing time: Wed 09 Jul 2025 00:40:25 +0000 ROA not before: Wed 09 Jul 2025 00:40:25 +0000 ROA not after: Wed 13 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f20:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:7e:a3:af:79:92:66:ba:b4:a6:7e:7a:74:dc:ba:06:d4:75:ed:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 9 00:40:25 2025 GMT Not After : Aug 13 23:59:59 2025 GMT Subject: serialNumber=02104ac030a042a1f49b6fe60539d8564359ba0fff14cf3d72f3ad938817d673, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9d:dc:a9:db:bd:1a:21:8a:0b:ff:88:da:6d: 04:ca:5c:0f:76:7f:14:9f:29:f8:cb:5f:e8:a0:ec: a6:49:68:6a:b1:ed:b8:1d:1e:90:0a:be:0b:ff:c6: ec:86:4e:5c:8c:29:34:3a:1a:71:e6:a1:93:55:bf: 12:eb:ab:c8:27:d1:c8:bc:5d:4d:58:39:8c:8b:80: 28:2d:ec:cb:e4:bc:c1:10:75:f3:62:e9:cc:83:db: b9:d7:1f:29:5d:66:4b:1f:09:45:96:f9:4c:8a:a5: a2:f0:50:60:0e:d5:3f:11:ce:9e:3c:82:e3:b6:59: f6:c7:6c:31:82:c6:ca:5f:6d:f9:2c:6e:47:d1:c1: 69:80:d0:a8:9e:b4:c1:ff:f4:4a:e2:82:98:43:11: 70:3d:71:df:ee:ac:c5:0c:7a:e7:61:1b:ae:ae:8f: 11:ef:02:ce:d2:ed:f3:f8:ef:7d:1b:af:7a:06:50: 3f:cf:b0:98:15:8f:48:73:21:74:65:e0:1a:6b:ce: 10:d6:8f:27:23:8a:91:b5:d1:1e:3c:a6:56:b5:3c: ee:7e:81:be:89:a2:d6:d6:5b:19:2f:1f:13:38:cd: 87:d2:0c:2b:56:05:6a:27:1e:39:33:17:99:f5:98: d4:4f:ec:66:31:df:ee:f7:d9:6b:99:0c:2e:ef:f4: ef:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:EF:C9:8F:C0:FE:52:44:38:9E:65:92:5F:28:FB:63:B4:4B:E4:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f20:8000::/36 Signature Algorithm: sha256WithRSAEncryption 54:00:00:6e:b4:a1:6f:5e:50:21:9c:f1:12:ed:0f:2a:8f:56: 60:1c:cb:37:07:12:b5:f4:c0:fa:57:1d:db:7f:5d:0c:fa:60: 7c:51:21:4b:2b:72:8e:a3:64:9c:9d:91:3a:31:ef:37:0d:fa: 24:1d:eb:b5:64:9a:af:ea:61:21:6e:d8:dc:81:62:cb:7f:e6: e6:83:95:3e:7c:d9:c5:fa:02:b9:a4:78:82:e8:78:8b:59:07: e0:7f:a6:d9:34:74:16:f2:74:4a:20:8b:a8:d9:80:71:e6:b2: 7c:ac:14:ad:63:cc:ed:88:52:37:ea:c8:7c:64:c9:8e:b6:a8: a7:d7:fa:bd:28:12:26:69:74:3b:fc:a9:e1:47:24:25:97:70: 43:26:16:a0:0f:44:91:22:57:06:b5:5e:6b:de:7e:19:aa:dc: dd:01:c6:e9:a2:75:c4:15:d2:72:c8:a5:a4:1a:51:52:59:66: 83:27:7f:d3:52:9c:de:d5:70:3f:a0:0c:2a:a9:6c:cc:fc:21: 6b:38:81:12:c2:ea:d7:a4:04:02:45:f5:45:09:4e:22:4a:5c: 66:05:84:54:12:19:e2:41:3c:33:52:03:0f:62:c6:45:f3:e2: e2:83:1a:16:7a:97:b5:76:3c:99:fc:0b:81:b1:05:a4:05:06: e6:15:71:67 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHn6jr3mSZrq0pn56dNy6BtR17SowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA5MDA0MDI1WhcNMjUwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjEwNGFjMDMwYTA0MmExZjQ5YjZmZTYwNTM5ZDg1NjQz NTliYTBmZmYxNGNmM2Q3MmYzYWQ5Mzg4MTdkNjczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFndyp270aIYoL/4jabQTKXA92fxSfKfjLX+ig7KZJaGqx 7bgdHpAKvgv/xuyGTlyMKTQ6GnHmoZNVvxLrq8gn0ci8XU1YOYyLgCgt7MvkvMEQ dfNi6cyD27nXHyldZksfCUWW+UyKpaLwUGAO1T8Rzp48guO2WfbHbDGCxspfbfks bkfRwWmA0KietMH/9ErigphDEXA9cd/urMUMeudhG66ujxHvAs7S7fP4730br3oG UD/PsJgVj0hzIXRl4BprzhDWjycjipG10R48pla1PO5+gb6JotbWWxkvHxM4zYfS DCtWBWonHjkzF5n1mNRP7GYx3+732WuZDC7v9O/FAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIO/Jj8D+UkQ4nmWSXyj7Y7RL5NwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMjJmMDM1LTFjMDItNDA1Mi05NGIyLTRmYzNlMDQwNTMyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8ggDANBgkqhkiG9w0BAQsFAAOCAQEAVAAAbrShb15QIZzxEu0PKo9W YBzLNwcStfTA+lcd239dDPpgfFEhSytyjqNknJ2ROjHvNw36JB3rtWSar+phIW7Y 3IFiy3/m5oOVPnzZxfoCuaR4guh4i1kH4H+m2TR0FvJ0SiCLqNmAceayfKwUrWPM 7YhSN+rIfGTJjraop9f6vSgSJml0O/yp4UckJZdwQyYWoA9EkSJXBrVea95+Garc 3QHG6aJ1xBXScsilpBpRUllmgyd/01Kc3tVwP6AMKqlszPwhaziBEsLq16QEAkX1 RQlOIkpcZgWEVBIZ4kE8M1IDD2LGRfPi4oMaFnqXtXY8mfwLgbEFpAUG5hVxZw== -----END CERTIFICATE-----Generated at Thu Jul 31 01:12:14 2025 by rpki-client