$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa File: 3e37dce6-073c-42e1-9afc-071c9e360693.roa (raw, json) Hash identifier: oQKNyuQ8PFCamBSExTzpL4MgWscvIHb6gkghEZSzsYc= Subject key identifier: A9:78:B5:1D:D5:B1:65:D8:01:CC:01:36:64:DC:3C:B2:6A:BB:43:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5110A8DF5F6DA83F57F2D23F939AC0A630B9D52D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa Signing time: Mon 04 Aug 2025 16:41:07 +0000 ROA not before: Mon 04 Aug 2025 16:41:07 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:10:a8:df:5f:6d:a8:3f:57:f2:d2:3f:93:9a:c0:a6:30:b9:d5:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:41:07 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=5b1a3d8a0655f11bb859212c61f858511d767c7d99dfa0950df0ed108cb3b1f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:3d:4b:55:20:9b:5a:51:a3:a0:93:c0:ff:70: 5e:14:60:b2:d7:9e:84:81:eb:db:1d:15:d8:63:a9: 54:8f:6a:5c:9f:c8:b2:71:4e:83:26:5c:4e:44:f7: f1:01:f8:0a:53:0a:41:30:a6:ea:3c:c0:00:29:3d: b2:f0:30:39:46:de:83:1b:bb:22:96:6b:ad:83:af: 66:bf:9e:02:8f:41:a3:de:e9:22:f8:19:81:b6:d0: 98:49:07:b3:5e:72:e9:05:6b:ac:2d:8e:df:18:a5: a6:ab:d0:c9:64:36:b8:20:d2:1c:e4:bc:48:02:fd: 31:eb:96:70:cd:51:d5:7d:47:81:94:d0:16:3d:ec: 66:f3:19:d7:6a:9d:f3:48:e5:37:37:aa:97:b4:1b: 66:a7:06:ce:fb:61:c0:29:4b:ff:9e:4e:88:4b:30: d7:01:4f:5e:48:16:79:86:01:14:20:ed:43:dc:aa: 50:91:63:1e:e7:59:ad:80:41:26:ae:82:79:f2:62: 82:6e:75:45:95:08:6f:81:4b:6f:c2:6a:1e:35:63: a0:a4:4f:19:96:3d:6d:68:7b:19:36:03:30:31:22: ee:1b:8c:cf:7a:c7:a8:ef:ce:45:5f:58:ec:61:17: 77:80:d2:85:79:e3:fc:36:39:64:19:df:5c:e4:72: d3:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:78:B5:1D:D5:B1:65:D8:01:CC:01:36:64:DC:3C:B2:6A:BB:43:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16::/34 Signature Algorithm: sha256WithRSAEncryption 81:9b:4d:22:b2:c5:cf:67:3b:3a:21:3f:8e:ca:67:1b:73:f3: cb:0c:28:c6:80:9b:ef:3b:d6:64:7a:7b:46:9b:20:76:6d:b3: b1:d2:fa:ce:8c:77:07:89:15:03:cd:ec:73:8b:16:9a:2d:91: 87:83:af:aa:74:02:55:eb:5d:2f:97:4a:ab:b7:22:dc:64:ff: d9:a3:f3:b0:7a:18:7e:47:78:64:a7:5b:2f:dd:29:33:78:2a: 7b:65:3b:30:c8:88:68:c2:9b:45:5c:a2:d5:97:8b:a6:94:fb: 97:2e:03:2e:02:8d:ec:dc:20:be:a2:ed:7a:6c:7e:d5:2e:f0: 7e:dd:fd:6e:9f:ba:6f:c8:43:48:60:97:17:56:30:d6:d0:f1: a5:9d:02:36:05:f2:83:1e:61:71:d2:86:47:9c:24:d4:36:67: f9:96:4e:7c:ed:3a:47:88:a4:e3:5c:93:1a:2b:e4:91:71:2c: 0a:a6:60:9c:29:7f:11:41:89:72:c9:3b:b4:4b:53:5a:25:a5: 43:e5:df:98:a9:98:01:40:27:f4:56:cf:97:a4:4c:d5:34:0f: 5a:f9:47:65:ac:ab:5e:88:cb:49:90:c9:d2:d6:5a:6d:83:e5: 98:8a:7f:88:fd:67:b9:30:27:e5:00:93:5d:bb:94:d7:43:69: ab:4e:f8:48 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUURCo319tqD9X8tI/k5rApjC51S0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTY0MTA3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjFhM2Q4YTA2NTVmMTFiYjg1OTIxMmM2MWY4NTg1MTFk NzY3YzdkOTlkZmEwOTUwZGYwZWQxMDhjYjNiMWYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8PUtVIJtaUaOgk8D/cF4UYLLXnoSB69sdFdhjqVSPalyf yLJxToMmXE5E9/EB+ApTCkEwpuo8wAApPbLwMDlG3oMbuyKWa62Dr2a/ngKPQaPe 6SL4GYG20JhJB7NecukFa6wtjt8Ypaar0MlkNrgg0hzkvEgC/THrlnDNUdV9R4GU 0BY97GbzGddqnfNI5Tc3qpe0G2anBs77YcApS/+eTohLMNcBT15IFnmGARQg7UPc qlCRYx7nWa2AQSaugnnyYoJudUWVCG+BS2/Cah41Y6CkTxmWPW1oexk2AzAxIu4b jM96x6jvzkVfWOxhF3eA0oV54/w2OWQZ31zkctNXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqXi1HdWxZdgBzAE2ZNw8smq7Q5AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMzdkY2U2LTA3M2MtNDJlMS05YWZjLTA3MWM5ZTM2MDY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgYmAB8WADANBgkqhkiG9w0BAQsFAAOCAQEAgZtNIrLFz2c7OiE/jspnG3Pz ywwoxoCb7zvWZHp7Rpsgdm2zsdL6zox3B4kVA83sc4sWmi2Rh4OvqnQCVetdL5dK q7ci3GT/2aPzsHoYfkd4ZKdbL90pM3gqe2U7MMiIaMKbRVyi1ZeLppT7ly4DLgKN 7NwgvqLtemx+1S7wft39bp+6b8hDSGCXF1Yw1tDxpZ0CNgXygx5hcdKGR5wk1DZn +ZZOfO06R4ik41yTGivkkXEsCqZgnCl/EUGJcsk7tEtTWiWlQ+XfmKmYAUAn9FbP l6RM1TQPWvlHZayrXojLSZDJ0tZabYPlmIp/iP1nuTAn5QCTXbuU10Npq074SA== -----END CERTIFICATE-----Generated at Mon Aug 4 22:27:52 2025 by rpki-client