$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa File: 4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa (raw, json) Hash identifier: I6EgDndlBfbpQqG7w/NlKMtGYWvo2GeWft/gUxSk0Lo= Subject key identifier: 1E:80:5D:27:C4:1D:C2:EE:3C:64:89:60:0B:19:E1:AD:3F:A2:0B:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E287B9E2C171BFAD59CA036F4CF2CA5C57E3AFA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa Signing time: Mon 04 Aug 2025 16:01:07 +0000 ROA not before: Mon 04 Aug 2025 16:01:07 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:28:7b:9e:2c:17:1b:fa:d5:9c:a0:36:f4:cf:2c:a5:c5:7e:3a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:01:07 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=7d538e59ef96208a9b1a44081657786c8b85ca3d2d215b2186ad55016938d729, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6e:5c:60:e5:db:14:0b:6e:82:9b:51:c3:c0: fd:85:84:46:da:ca:69:f6:c8:6f:30:8f:d6:e2:e7: d6:07:88:16:26:c0:6b:b8:c1:7f:21:4d:52:9b:bf: ec:07:ca:fe:1a:68:e9:db:a0:c2:e6:01:73:09:70: f6:5c:3f:08:82:3e:fc:5d:47:47:3e:c1:5b:6f:ba: 57:43:37:d1:ef:40:b3:a0:fe:bd:de:13:9f:b1:4a: 4c:8e:39:f2:5a:4a:7c:d7:7d:06:eb:2b:78:7c:b0: e3:6a:1b:6b:9f:60:03:80:b1:9b:9c:67:d7:07:29: 70:ac:3b:f0:76:87:c0:ae:b6:ed:dd:3a:be:0a:0d: 04:95:34:d8:ac:0f:d7:33:b3:44:d9:db:da:d1:26: ed:a2:3e:3a:c8:61:d8:eb:f9:93:8b:31:33:56:3d: a8:9f:d8:8b:54:b3:4a:12:0c:3d:1b:99:50:c2:f9: 4a:7d:ad:4c:71:5a:32:96:69:a0:06:c6:5a:d0:14: 93:25:49:0e:ab:10:be:05:a9:d4:a3:4f:dc:0d:29: ad:62:a7:da:63:65:44:da:d2:55:d6:b0:80:b5:3f: a1:f9:48:d9:21:97:d3:90:29:5a:c0:92:cd:21:97: b4:af:7f:a2:a7:9e:99:5c:d5:82:44:89:93:bb:75: 30:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:80:5D:27:C4:1D:C2:EE:3C:64:89:60:0B:19:E1:AD:3F:A2:0B:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4cdf5cff-df56-4c05-9cb6-5b2abeb0c76f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:5000::/40 Signature Algorithm: sha256WithRSAEncryption d0:83:88:07:84:3d:4d:46:9c:be:ce:fc:f9:1b:32:77:f9:1b: 1a:f1:76:15:86:65:1c:cd:a5:69:8b:b9:dc:13:26:77:27:37: 0a:6e:f6:d4:5b:13:9a:1c:d3:95:34:d4:30:7a:29:46:6b:46: 50:53:34:13:b2:af:2e:6b:43:8d:f5:61:46:3e:17:d0:cf:e3: 51:b2:30:ba:4e:9e:65:22:95:81:d7:26:32:93:75:88:24:d6: c4:f5:dc:39:d8:4e:7d:3c:6a:62:1b:e7:12:08:3e:f2:b6:1e: 4a:f9:df:32:1c:40:66:49:c6:62:5d:00:c9:68:2b:22:8c:39: c0:ff:51:cd:92:9a:98:fa:2e:f2:6f:7c:6d:99:88:c8:3b:a2: 51:1e:79:f8:ad:98:dd:e5:dc:ef:d3:cd:a7:f5:22:ef:f7:de: 3c:6e:3f:c1:80:84:00:49:73:9d:79:e2:12:bb:be:06:9d:f9: c9:a5:cf:ca:28:05:af:9a:45:fc:4b:0d:41:6a:4d:23:7c:1d: 00:5e:e1:fc:ea:bc:f3:30:21:3b:c0:f8:e9:a6:02:22:44:5e: 95:f2:00:34:e2:8c:15:b9:ad:70:3b:86:47:fd:8f:2a:30:36: c4:ca:ba:cb:75:76:07:f9:fb:42:b2:79:0a:c9:0d:26:dd:25: 34:a6:c1:45 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDih7niwXG/rVnKA29M8spcV+OvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYwMTA3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDUzOGU1OWVmOTYyMDhhOWIxYTQ0MDgxNjU3Nzg2Yzhi ODVjYTNkMmQyMTViMjE4NmFkNTUwMTY5MzhkNzI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXblxg5dsUC26Cm1HDwP2FhEbaymn2yG8wj9bi59YHiBYm wGu4wX8hTVKbv+wHyv4aaOnboMLmAXMJcPZcPwiCPvxdR0c+wVtvuldDN9HvQLOg /r3eE5+xSkyOOfJaSnzXfQbrK3h8sONqG2ufYAOAsZucZ9cHKXCsO/B2h8Cutu3d Or4KDQSVNNisD9czs0TZ29rRJu2iPjrIYdjr+ZOLMTNWPaif2ItUs0oSDD0bmVDC +Up9rUxxWjKWaaAGxlrQFJMlSQ6rEL4FqdSjT9wNKa1ip9pjZUTa0lXWsIC1P6H5 SNkhl9OQKVrAks0hl7Svf6Knnplc1YJEiZO7dTB9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHoBdJ8Qdwu48ZIlgCxnhrT+iC6cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjZGY1Y2ZmLWRmNTYtNGMwNS05Y2I2LTViMmFiZWIwYzc2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82UDANBgkqhkiG9w0BAQsFAAOCAQEA0IOIB4Q9TUacvs78+Rsyd/kb GvF2FYZlHM2laYu53BMmdyc3Cm721FsTmhzTlTTUMHopRmtGUFM0E7KvLmtDjfVh Rj4X0M/jUbIwuk6eZSKVgdcmMpN1iCTWxPXcOdhOfTxqYhvnEgg+8rYeSvnfMhxA ZknGYl0AyWgrIow5wP9RzZKamPou8m98bZmIyDuiUR55+K2Y3eXc79PNp/Ui7/fe PG4/wYCEAElznXniEru+Bp35yaXPyigFr5pF/EsNQWpNI3wdAF7h/Oq88zAhO8D4 6aYCIkRelfIANOKMFbmtcDuGR/2PKjA2xMq6y3V2B/n7QrJ5CskNJt0lNKbBRQ== -----END CERTIFICATE-----Generated at Tue Aug 5 17:22:49 2025 by rpki-client