$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694e0c3d-e0a6-4e0c-8286-be8fe4b79d8b.roa File: 694e0c3d-e0a6-4e0c-8286-be8fe4b79d8b.roa (raw, json) Hash identifier: iffTuzrF8SFJs3hgtHsGarWbA4WFpJFpgMCWVWKmm0M= Subject key identifier: 22:F3:B8:05:C2:87:52:88:3D:3B:A7:F6:FF:AF:CB:CB:99:45:C0:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25A63D6E8064F2B9F091ACC56FDF90CF5AED0BA5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694e0c3d-e0a6-4e0c-8286-be8fe4b79d8b.roa Signing time: Mon 04 Aug 2025 17:01:13 +0000 ROA not before: Mon 04 Aug 2025 17:01:13 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a6:3d:6e:80:64:f2:b9:f0:91:ac:c5:6f:df:90:cf:5a:ed:0b:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:01:13 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=79395cce962b457d301976566c330df1b5c2d4ff1290bbbba52bd86d11714152, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5c:8e:49:4b:19:ff:42:5e:0b:5a:6a:1a:a4: 09:6c:3c:f8:cf:99:ab:3f:a6:6e:05:d7:22:b9:63: 42:3c:32:4f:ff:48:e7:38:20:29:9b:a3:ea:87:1d: 26:43:a9:20:0f:20:71:cc:db:67:13:c8:81:ca:1e: 98:47:06:d0:87:66:ad:ba:11:e8:fc:49:2b:d8:e8: b9:19:f3:6c:4d:ec:b0:ad:7f:4d:b8:2c:6f:83:85: 28:41:60:6f:2a:97:60:3a:5a:36:62:60:ac:1d:1b: 51:2c:8f:7d:1b:7a:c9:09:5b:81:62:ee:af:f9:ac: a4:e6:cc:5a:2c:b4:4a:6d:bf:d9:cb:77:78:4e:9f: bf:89:c7:66:11:ea:b2:2c:a2:7b:01:ed:e4:d0:f2: a5:88:d3:60:08:b4:8a:2e:53:c8:69:e4:9e:0d:5e: b5:9f:55:40:26:dd:c1:e3:fa:2e:a1:33:38:f0:c2: e1:4d:d1:3a:1b:10:0d:98:9d:29:52:9c:18:5e:d7: 08:38:fb:f6:69:5c:db:72:7b:63:8d:d5:cf:c4:dc: fd:fa:0c:4d:b9:a8:1b:4f:ff:86:83:5e:73:94:83: 97:d8:37:4e:98:54:dc:53:7d:be:c9:3f:af:72:9f: 28:a9:9d:67:0c:d2:4d:47:f1:b6:ff:48:44:ad:07: 77:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F3:B8:05:C2:87:52:88:3D:3B:A7:F6:FF:AF:CB:CB:99:45:C0:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/694e0c3d-e0a6-4e0c-8286-be8fe4b79d8b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11:4000::/37 Signature Algorithm: sha256WithRSAEncryption 5f:8a:62:ff:b9:3e:a5:14:93:29:76:07:53:87:c0:ec:fc:5e: 9a:ed:77:75:08:76:09:08:57:d5:f2:ee:81:de:ed:42:e3:3d: d6:2b:f0:45:9d:20:a9:e5:a9:5e:bd:4c:7e:c3:70:27:a4:94: 49:c9:85:53:a6:24:67:84:cf:67:53:08:9d:57:fb:4a:2e:37: d4:bb:e2:e5:3a:2d:22:cf:e3:50:e3:cf:58:ac:41:38:9e:1a: d3:31:40:ba:84:7b:d8:98:3d:70:a3:6f:6f:34:1e:12:b5:7a: 43:0f:5f:51:34:f9:57:f8:05:8c:d8:17:8f:52:a6:d5:f3:84: af:4b:e0:4c:6a:00:d7:73:13:f5:d6:90:1f:75:af:88:aa:23: ac:2f:f4:01:c6:04:4c:c0:36:b4:28:27:4d:57:af:5e:63:c9: bf:5b:da:ed:f2:c4:31:96:75:58:a3:99:9c:bb:8a:bb:e6:d1: 71:a3:d0:4f:80:5f:96:bb:57:ba:64:93:25:56:05:3c:c3:d2: 72:10:68:55:90:02:7a:c3:e5:f9:01:e8:35:b4:0c:dc:59:56: 2e:a7:58:20:77:8c:27:39:4c:4a:58:15:25:13:bb:03:b3:ad: f4:d7:98:f2:4d:8c:a3:77:fc:e2:78:fc:4f:86:48:6c:ce:42: 82:7e:38:58 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJaY9boBk8rnwkazFb9+Qz1rtC6UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTcwMTEzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTM5NWNjZTk2MmI0NTdkMzAxOTc2NTY2YzMzMGRmMWI1 YzJkNGZmMTI5MGJiYmJhNTJiZDg2ZDExNzE0MTUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCXI5JSxn/Ql4LWmoapAlsPPjPmas/pm4F1yK5Y0I8Mk// SOc4ICmbo+qHHSZDqSAPIHHM22cTyIHKHphHBtCHZq26Eej8SSvY6LkZ82xN7LCt f024LG+DhShBYG8ql2A6WjZiYKwdG1Esj30beskJW4Fi7q/5rKTmzFostEptv9nL d3hOn7+Jx2YR6rIsonsB7eTQ8qWI02AItIouU8hp5J4NXrWfVUAm3cHj+i6hMzjw wuFN0TobEA2YnSlSnBhe1wg4+/ZpXNtye2ON1c/E3P36DE25qBtP/4aDXnOUg5fY N06YVNxTfb7JP69ynyipnWcM0k1H8bb/SEStB3fDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIvO4BcKHUog9O6f2/6/Ly5lFwDwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NGUwYzNkLWUwYTYtNGUwYy04Mjg2LWJlOGZlNGI3OWQ4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8RQDANBgkqhkiG9w0BAQsFAAOCAQEAX4pi/7k+pRSTKXYHU4fA7Pxe mu13dQh2CQhX1fLugd7tQuM91ivwRZ0gqeWpXr1MfsNwJ6SUScmFU6YkZ4TPZ1MI nVf7Si431Lvi5TotIs/jUOPPWKxBOJ4a0zFAuoR72Jg9cKNvbzQeErV6Qw9fUTT5 V/gFjNgXj1Km1fOEr0vgTGoA13MT9daQH3WviKojrC/0AcYETMA2tCgnTVevXmPJ v1va7fLEMZZ1WKOZnLuKu+bRcaPQT4BflrtXumSTJVYFPMPSchBoVZACesPl+QHo NbQM3FlWLqdYIHeMJzlMSlgVJRO7A7Ot9NeY8k2Mo3f84nj8T4ZIbM5Cgn44WA== -----END CERTIFICATE-----Generated at Wed Aug 6 04:06:37 2025 by rpki-client