$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce4f6fb5-9c8f-40a2-ba65-57ed341b323c.roa File: ce4f6fb5-9c8f-40a2-ba65-57ed341b323c.roa (raw, json) Hash identifier: e7H4/9uKAM2T6X13N8FbDjkNEZHw4qTQ77Z7YT76KHI= Subject key identifier: AD:85:21:B7:6B:D9:A1:CD:1C:A0:46:E6:60:8D:A7:64:C4:D3:F7:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E0CFC7A14420FA8E8BA42B24131CA03C3C34201 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce4f6fb5-9c8f-40a2-ba65-57ed341b323c.roa Signing time: Wed 23 Jul 2025 00:41:07 +0000 ROA not before: Wed 23 Jul 2025 00:41:07 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:0c:fc:7a:14:42:0f:a8:e8:ba:42:b2:41:31:ca:03:c3:c3:42:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:41:07 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=fa80fd05b5eb24f748ef486103baf1de694885ed4f88ab7239919c69acb110f7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:af:20:b2:54:56:4c:2e:c4:6f:38:94:3c:ea: f9:9e:20:b1:88:c0:29:dd:2e:e1:fa:29:a9:94:1a: 9e:44:11:7e:98:fb:38:e7:d6:5d:16:1c:08:71:b5: d3:f3:41:38:b2:6d:b5:ff:cd:96:79:08:7c:20:a1: 6f:5a:71:d1:f0:ea:93:f4:49:5a:63:09:4c:dd:ad: 7b:a3:a3:95:3a:6e:92:fd:a9:b0:5a:9d:5a:f8:94: e3:69:01:79:7d:07:14:ad:21:63:ff:44:fe:de:54: 2f:19:d7:42:93:ec:83:3a:0b:8f:72:ae:6e:24:26: cc:22:a8:85:3b:c9:2d:67:57:90:48:93:d1:f7:bc: 67:53:85:24:9a:e7:13:1b:10:13:32:3d:45:92:eb: 11:50:d7:8f:39:61:ff:d2:50:30:c5:7a:30:e1:10: 27:5a:af:43:41:ed:bf:d0:ad:22:50:f3:1a:e9:3b: 7b:8e:f7:ea:e7:d4:c4:8e:a7:93:eb:00:07:e8:88: 3f:be:02:fc:62:b8:c2:fd:77:33:7a:f6:93:75:89: 5e:09:d8:0d:60:33:12:e2:f2:27:c0:98:9d:b3:d0: bb:ff:d6:4a:bb:5f:c2:f8:cd:79:70:d9:af:57:5d: 05:46:f4:46:2b:40:71:81:c2:1a:ac:93:23:a8:96: 9e:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:85:21:B7:6B:D9:A1:CD:1C:A0:46:E6:60:8D:A7:64:C4:D3:F7:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce4f6fb5-9c8f-40a2-ba65-57ed341b323c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:5000::/40 Signature Algorithm: sha256WithRSAEncryption 1b:c9:fc:6c:f0:0b:ad:cf:74:7c:90:00:cb:54:7e:fb:cf:bc: 60:9c:29:80:4b:91:13:fc:42:3b:fe:50:36:00:0e:42:f9:5a: 67:ae:e7:54:13:b3:74:5c:ed:28:d1:2e:5b:74:d0:d6:9c:97: cc:03:a7:f1:05:81:16:1a:cd:b4:f6:47:95:7b:37:f9:cb:f4: 42:59:43:3b:5f:6a:65:89:d4:34:49:92:2b:8e:2c:d3:bd:0d: 9f:c8:57:36:b5:ed:54:60:f6:b5:05:7f:46:5c:dd:31:d6:e5: 61:44:66:b6:ca:f2:e1:20:be:7a:0c:76:76:e5:ef:16:f7:3e: 17:f4:95:ee:87:e6:85:d9:d3:b9:46:f1:96:a4:e5:0f:32:4c: ae:26:66:7c:90:58:8d:e7:15:68:7f:79:c9:29:6d:ed:61:df: 2a:1c:42:be:df:88:0f:f0:ba:c0:c2:18:5f:f0:fe:72:59:b7: 02:f6:4e:0b:3b:42:56:e1:31:bd:2c:1a:d8:a9:e6:ba:c2:6f: ab:8f:6c:d3:49:1b:f9:d9:5f:98:48:49:3a:e6:02:ef:16:1e: bf:fb:28:f9:db:46:d6:cd:a7:02:ee:ff:2a:a8:c2:50:7e:48: a9:91:63:37:e8:3f:81:a2:cf:a8:95:e8:cd:33:af:6e:11:0e: 02:a0:11:b4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfgz8ehRCD6joukKyQTHKA8PDQgEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDA0MTA3WhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYTgwZmQwNWI1ZWIyNGY3NDhlZjQ4NjEwM2JhZjFkZTY5 NDg4NWVkNGY4OGFiNzIzOTkxOWM2OWFjYjExMGY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0ryCyVFZMLsRvOJQ86vmeILGIwCndLuH6KamUGp5EEX6Y +zjn1l0WHAhxtdPzQTiybbX/zZZ5CHwgoW9acdHw6pP0SVpjCUzdrXujo5U6bpL9 qbBanVr4lONpAXl9BxStIWP/RP7eVC8Z10KT7IM6C49yrm4kJswiqIU7yS1nV5BI k9H3vGdThSSa5xMbEBMyPUWS6xFQ1485Yf/SUDDFejDhECdar0NB7b/QrSJQ8xrp O3uO9+rn1MSOp5PrAAfoiD++AvxiuML9dzN69pN1iV4J2A1gMxLi8ifAmJ2z0Lv/ 1kq7X8L4zXlw2a9XXQVG9EYrQHGBwhqskyOolp4/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrYUht2vZoc0coEbmYI2nZMTT90owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlNGY2ZmI1LTljOGYtNDBhMi1iYTY1LTU3ZWQzNDFiMzIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+5UDANBgkqhkiG9w0BAQsFAAOCAQEAG8n8bPALrc90fJAAy1R++8+8 YJwpgEuRE/xCO/5QNgAOQvlaZ67nVBOzdFztKNEuW3TQ1pyXzAOn8QWBFhrNtPZH lXs3+cv0QllDO19qZYnUNEmSK44s070Nn8hXNrXtVGD2tQV/RlzdMdblYURmtsry 4SC+egx2duXvFvc+F/SV7ofmhdnTuUbxlqTlDzJMriZmfJBYjecVaH95ySlt7WHf KhxCvt+ID/C6wMIYX/D+clm3AvZOCztCVuExvSwa2KnmusJvq49s00kb+dlfmEhJ OuYC7xYev/so+dtG1s2nAu7/KqjCUH5IqZFjN+g/gaLPqJXozTOvbhEOAqARtA== -----END CERTIFICATE-----Generated at Thu Jul 31 01:06:55 2025 by rpki-client