$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62f09371-735d-42fb-9b57-288b7c3a6758.roa File: 62f09371-735d-42fb-9b57-288b7c3a6758.roa (raw, json) Hash identifier: 7oq+GteZbKpVqf8rmHrhRW/3R5Y+XMTjogpQK8gMVIE= Subject key identifier: E9:D3:C9:D5:D5:1B:44:2D:9A:36:17:CD:D6:56:86:0C:DB:73:9F:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 586263E502B2A47DEFEED281A98C8EC9EC95F6D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62f09371-735d-42fb-9b57-288b7c3a6758.roa Signing time: Fri 25 Jul 2025 00:11:54 +0000 ROA not before: Fri 25 Jul 2025 00:11:54 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:62:63:e5:02:b2:a4:7d:ef:ee:d2:81:a9:8c:8e:c9:ec:95:f6:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:11:54 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=2e4e5c67ee93f0f1d5f5c6d65fb65dd387cabb4bd0f84159eeeab63242a0add2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:68:9f:49:ac:55:8b:64:03:a7:6a:e6:6a:42: 00:46:68:8e:c6:e5:83:ca:9b:63:8d:54:75:95:10: 7b:c8:be:b2:63:16:64:dd:15:fb:07:b9:04:4d:36: c1:6e:99:a2:a1:f6:3e:67:6d:03:f3:c8:73:74:a1: 10:5d:04:19:08:94:45:51:90:41:e0:c0:50:81:29: 31:3c:c5:b7:08:f8:29:08:b0:8e:77:ff:ab:f5:a7: f1:1a:7c:65:b3:5d:25:cb:dd:a7:14:31:72:12:08: 56:88:53:32:b2:b1:42:7f:39:d9:3c:06:57:8f:20: 8f:3a:f7:6b:50:b8:ac:de:15:52:0f:02:3f:fb:c5: b6:72:75:cb:78:fb:c7:83:e1:d9:57:d3:dc:59:12: 39:45:58:3a:2c:c6:73:7a:69:8e:8b:4e:c1:ca:4e: a3:ad:18:17:06:60:33:bb:1c:e9:1c:b5:3f:f5:86: 28:04:aa:14:21:2a:79:16:87:5a:3b:c3:de:fd:26: c6:5b:fa:b0:13:e0:a4:2c:ad:36:7b:7c:af:3e:6f: 11:50:8d:6e:f6:8a:66:9c:79:d9:b0:60:a0:0a:4a: f6:9b:35:5c:a9:69:fc:f8:cd:4f:15:78:9e:56:fa: 51:af:ad:b8:60:06:ee:67:89:26:9d:43:88:57:d5: 28:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D3:C9:D5:D5:1B:44:2D:9A:36:17:CD:D6:56:86:0C:DB:73:9F:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62f09371-735d-42fb-9b57-288b7c3a6758.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:3400::/40 Signature Algorithm: sha256WithRSAEncryption 9b:fa:84:fb:70:a8:9f:30:d5:3b:33:7c:e4:58:4a:32:b6:60: 44:ed:a7:b5:9a:10:0b:49:7d:c2:09:43:a5:c4:27:17:b9:f6: 5a:27:d0:cf:f3:8c:a8:1d:6e:57:c0:6b:e3:cd:a0:44:da:e6: e5:d9:78:b0:46:36:dd:56:8b:93:a8:06:c5:bd:e1:dd:2e:aa: f4:e8:29:a2:54:cd:0c:d4:32:11:7e:19:a8:2b:5e:51:e4:b8: 2d:43:27:0d:b5:ef:2e:34:87:b9:01:6e:72:37:7a:9f:e8:5a: fa:be:d4:84:8c:f3:0d:41:02:76:21:c4:05:a1:43:08:ad:5a: 09:38:76:cf:0f:32:f1:47:67:0a:ee:da:64:2c:77:68:20:f3: 0d:be:5a:fb:e1:df:ee:b7:50:82:69:c0:67:f4:cf:99:c3:5e: 44:a1:db:1c:0d:6b:31:61:c1:8a:0a:60:26:2f:93:4c:87:d0: 33:ce:07:fb:bb:97:03:b3:dc:c8:99:33:07:2e:82:ad:91:8e: 88:86:34:ef:0a:d1:6d:06:8f:6c:30:6e:3e:ce:6f:eb:04:96: 9a:0b:11:f8:18:de:cd:95:d7:b9:19:86:f6:03:ed:21:44:2d: d4:b8:49:55:7a:9a:dd:5d:b8:3b:4c:e4:da:e0:31:c0:3a:e7: c6:ea:5c:35 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWGJj5QKypH3v7tKBqYyOyeyV9tcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAxMTU0WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZTRlNWM2N2VlOTNmMGYxZDVmNWM2ZDY1ZmI2NWRkMzg3 Y2FiYjRiZDBmODQxNTllZWVhYjYzMjQyYTBhZGQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUaJ9JrFWLZAOnauZqQgBGaI7G5YPKm2ONVHWVEHvIvrJj FmTdFfsHuQRNNsFumaKh9j5nbQPzyHN0oRBdBBkIlEVRkEHgwFCBKTE8xbcI+CkI sI53/6v1p/EafGWzXSXL3acUMXISCFaIUzKysUJ/Odk8BlePII8692tQuKzeFVIP Aj/7xbZydct4+8eD4dlX09xZEjlFWDosxnN6aY6LTsHKTqOtGBcGYDO7HOkctT/1 higEqhQhKnkWh1o7w979JsZb+rAT4KQsrTZ7fK8+bxFQjW72imacedmwYKAKSvab NVypafz4zU8VeJ5W+lGvrbhgBu5niSadQ4hX1ShpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6dPJ1dUbRC2aNhfN1laGDNtzn8kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyZjA5MzcxLTczNWQtNDJmYi05YjU3LTI4OGI3YzNhNjc1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gNDANBgkqhkiG9w0BAQsFAAOCAQEAm/qE+3ConzDVOzN85FhKMrZg RO2ntZoQC0l9wglDpcQnF7n2WifQz/OMqB1uV8Br482gRNrm5dl4sEY23VaLk6gG xb3h3S6q9OgpolTNDNQyEX4ZqCteUeS4LUMnDbXvLjSHuQFucjd6n+ha+r7UhIzz DUECdiHEBaFDCK1aCTh2zw8y8UdnCu7aZCx3aCDzDb5a++Hf7rdQgmnAZ/TPmcNe RKHbHA1rMWHBigpgJi+TTIfQM84H+7uXA7PcyJkzBy6CrZGOiIY07wrRbQaPbDBu Ps5v6wSWmgsR+BjezZXXuRmG9gPtIUQt1LhJVXqa3V24O0zk2uAxwDrnxupcNQ== -----END CERTIFICATE-----Generated at Wed Aug 6 06:07:11 2025 by rpki-client