$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/067db7a0-98da-4f57-9f73-acefae7c5ebb.roa File: 067db7a0-98da-4f57-9f73-acefae7c5ebb.roa (raw, json) Hash identifier: Bzwn07aPXwopWmKq4FmPT0eUvlufPwBH79sydDH+bAQ= Subject key identifier: 5C:52:DA:81:C4:4C:02:00:FF:3E:69:66:C8:95:DB:6E:D2:5A:64:C2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E8D2DA761D3027CDF8F119B2F0F85AB2DD25CFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/067db7a0-98da-4f57-9f73-acefae7c5ebb.roa Signing time: Mon 04 Aug 2025 16:30:35 +0000 ROA not before: Mon 04 Aug 2025 16:30:35 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:8d:2d:a7:61:d3:02:7c:df:8f:11:9b:2f:0f:85:ab:2d:d2:5c:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:30:35 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=0b8e7c54e03c4950f9bdc0722f9e3b105980e092e892fac8aa1e58d54c004cb1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:52:1d:46:8e:bf:13:96:3a:ea:d5:d2:ec:ec: 4f:99:8e:d7:25:cb:8f:c9:bf:45:61:ad:7e:fa:73: 97:5e:bc:5a:f7:fc:13:40:a0:07:5b:cb:47:2a:c5: dc:13:16:37:32:59:cf:f1:32:96:e0:fa:8f:d9:0e: 7b:71:7e:09:d1:6b:66:8d:49:b1:e7:8d:2f:4e:19: a7:5c:ae:cc:5c:1c:d4:b6:be:de:fb:18:7b:5a:13: b8:f3:76:35:c7:6a:a7:df:fa:29:2f:fa:61:c7:17: 04:bb:27:1c:12:90:c8:3b:cb:95:78:a5:02:93:34: ca:79:59:96:36:6d:f5:58:4c:d3:d6:aa:80:2d:c7: d5:e3:5a:2c:c0:46:d6:ae:e9:d8:42:50:84:cc:33: 63:6a:ae:cd:93:78:41:b0:80:6c:8c:f9:60:64:da: 85:19:2c:dc:37:f3:8f:80:1d:2a:87:c1:75:10:05: 88:2c:9f:06:18:1f:48:cf:6f:2f:d4:0e:2c:e9:92: 70:d9:b1:36:01:ee:d3:b8:bf:e0:f0:8e:b6:86:31: 3b:de:f6:ba:9a:c2:a3:52:98:3e:68:5d:44:2d:da: c0:d6:aa:c5:ba:e1:37:d0:d8:4c:fc:29:3c:47:31: b3:94:19:9b:dc:dd:13:f0:16:a4:13:4e:8f:20:1c: c7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:52:DA:81:C4:4C:02:00:FF:3E:69:66:C8:95:DB:6E:D2:5A:64:C2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/067db7a0-98da-4f57-9f73-acefae7c5ebb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:8000::/39 Signature Algorithm: sha256WithRSAEncryption b9:47:69:05:6c:de:6f:c7:1a:6a:85:84:fe:b4:41:df:a1:d5: 85:82:26:17:2b:d9:78:9e:9f:dd:77:84:15:ca:2d:91:1e:e9: 4d:55:ef:12:cf:58:0a:04:ad:1f:6d:72:3f:02:a1:6c:b1:4f: 6d:87:83:fe:9f:97:4e:dd:ce:2c:80:4c:47:41:19:94:6b:f9: 22:11:9f:42:f2:a0:78:22:5c:9d:90:e0:90:81:ad:90:21:21: 98:65:86:2c:64:32:b1:d8:12:ec:9c:15:e2:fa:a7:df:09:91: c7:6d:00:75:87:b0:4a:f1:21:76:b8:be:d3:00:cd:55:ee:4e: 43:24:8d:ef:20:cf:c1:d5:25:cc:9c:be:26:a1:69:08:ab:b2: 33:33:e8:c3:32:ce:ce:55:6b:6a:25:dd:f9:5f:8b:66:55:f3: 1c:bb:b8:27:67:ef:57:8a:70:f8:90:b0:2c:56:12:17:f6:ce: 2a:ff:91:28:1e:8b:52:97:42:20:e0:55:46:bb:11:78:18:e1: ae:d5:63:00:98:aa:97:5e:5f:c1:81:f5:b3:44:55:da:52:3a: a8:3d:9c:ae:70:8c:94:39:d5:03:f9:07:35:b5:e7:9d:8e:d6: 20:16:37:28:d6:e9:f4:b2:a6:74:aa:b0:c2:70:71:02:13:46: 25:17:09:5b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfo0tp2HTAnzfjxGbLw+Fqy3SXP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYzMDM1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYjhlN2M1NGUwM2M0OTUwZjliZGMwNzIyZjllM2IxMDU5 ODBlMDkyZTg5MmZhYzhhYTFlNThkNTRjMDA0Y2IxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAUh1Gjr8Tljrq1dLs7E+Zjtcly4/Jv0VhrX76c5devFr3 /BNAoAdby0cqxdwTFjcyWc/xMpbg+o/ZDntxfgnRa2aNSbHnjS9OGadcrsxcHNS2 vt77GHtaE7jzdjXHaqff+ikv+mHHFwS7JxwSkMg7y5V4pQKTNMp5WZY2bfVYTNPW qoAtx9XjWizARtau6dhCUITMM2Nqrs2TeEGwgGyM+WBk2oUZLNw384+AHSqHwXUQ BYgsnwYYH0jPby/UDizpknDZsTYB7tO4v+DwjraGMTve9rqawqNSmD5oXUQt2sDW qsW64TfQ2Ez8KTxHMbOUGZvc3RPwFqQTTo8gHMctAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXFLagcRMAgD/PmlmyJXbbtJaZMIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA2N2RiN2EwLTk4ZGEtNGY1Ny05ZjczLWFjZWZhZTdjNWViYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/2gDANBgkqhkiG9w0BAQsFAAOCAQEAuUdpBWzeb8caaoWE/rRB36HV hYImFyvZeJ6f3XeEFcotkR7pTVXvEs9YCgStH21yPwKhbLFPbYeD/p+XTt3OLIBM R0EZlGv5IhGfQvKgeCJcnZDgkIGtkCEhmGWGLGQysdgS7JwV4vqn3wmRx20AdYew SvEhdri+0wDNVe5OQySN7yDPwdUlzJy+JqFpCKuyMzPowzLOzlVraiXd+V+LZlXz HLu4J2fvV4pw+JCwLFYSF/bOKv+RKB6LUpdCIOBVRrsReBjhrtVjAJiql15fwYH1 s0RV2lI6qD2crnCMlDnVA/kHNbXnnY7WIBY3KNbp9LKmdKqwwnBxAhNGJRcJWw== -----END CERTIFICATE-----Generated at Wed Aug 6 14:11:12 2025 by rpki-client