$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa File: 71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa (raw, json) Hash identifier: bohQwRblGfUznw7oiOhurTe+bAK/Vg9rInrUe1f4bzE= Subject key identifier: B8:AE:C4:44:9B:36:BF:DC:57:40:90:70:56:24:46:BA:1F:72:81:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30D3E528BBB95E3BC7E707FB4D72F716806C021C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa Signing time: Sat 12 Jul 2025 00:31:58 +0000 ROA not before: Sat 12 Jul 2025 00:31:58 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1a:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:d3:e5:28:bb:b9:5e:3b:c7:e7:07:fb:4d:72:f7:16:80:6c:02:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:31:58 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=00e14e43f609066b1a617d1b82684ca9e9c5dd1a57b209fbc853eccb71cdfc26, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:62:35:8b:e0:1f:a0:33:f8:99:76:4e:29:5c: db:05:37:c2:9d:40:c8:55:41:45:5a:2c:d4:a0:e2: a2:8a:70:0b:69:6e:38:5d:b7:48:7c:b1:d2:4f:50: bd:8e:39:3c:6a:2c:b4:7e:ce:c8:5d:3d:28:ce:84: 75:02:f6:be:ad:5a:3e:e1:58:15:c7:a7:be:91:2c: a0:57:d3:b2:52:24:92:53:1a:e3:34:8d:14:84:3a: a2:94:d5:86:e9:fc:d7:a2:42:4c:fe:c8:02:2b:1a: 29:9f:88:c3:d8:b8:49:39:b2:7a:54:52:ed:af:21: 32:a6:b7:f8:52:ee:d6:ee:3b:fc:0b:05:8f:3d:52: bd:ae:f3:30:9e:c7:de:81:2a:be:21:dc:3a:86:51: 62:61:da:f0:b3:d8:e3:f3:0f:1d:e6:72:3f:a7:85: 73:85:c4:96:ff:c1:55:9d:a0:60:f6:3f:98:cb:40: a5:a8:ba:1a:81:ef:63:4d:7c:7d:d3:35:ee:2c:b7: 49:54:d2:4c:68:bf:4d:79:f2:c7:c1:97:58:64:ac: 4d:2f:7f:cb:83:00:e1:ee:fd:83:47:00:4c:64:7c: 71:02:46:38:3d:83:7e:40:93:39:12:a8:01:99:d8: 2a:35:f6:8a:6c:80:c8:85:4b:58:ca:61:0a:3e:8f: 4f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AE:C4:44:9B:36:BF:DC:57:40:90:70:56:24:46:BA:1F:72:81:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1a:c000::/36 Signature Algorithm: sha256WithRSAEncryption 07:bf:e5:cb:bb:1f:46:55:1a:3f:84:29:a1:45:a3:40:ac:25: 26:57:d1:da:83:41:99:60:bc:23:e9:80:06:07:d6:1d:16:a8: 8b:3a:f5:f4:e9:40:b8:b8:0b:53:92:3e:9f:37:0f:70:5a:02: 41:8a:f7:ad:7f:e5:bd:8c:ee:57:bf:c5:96:4a:83:3a:c6:1c: 9e:11:6b:08:5c:d1:93:4a:9b:f0:c8:95:15:a7:05:e5:62:f3: a2:95:a4:7f:8e:ba:15:e2:18:44:d5:12:c9:ae:98:96:64:e3: 8b:8e:73:ca:2e:88:bc:c3:72:80:ec:82:fa:40:79:63:59:0e: 4d:f3:5d:d3:be:04:bd:5f:c7:99:5a:bd:8c:45:df:bd:28:b7: 0c:46:da:47:c0:3f:76:65:5d:a0:55:f2:88:c7:40:8e:32:98: 3b:6e:68:a1:de:63:4d:ce:f1:b6:1a:05:f1:4e:1e:72:78:60: e6:5e:e8:ab:f6:49:07:ae:0a:5a:be:e2:8f:71:0b:05:12:e7: 2e:59:76:6e:9b:4d:84:f2:d0:19:d2:30:83:0e:e4:d4:b5:78: 93:52:ca:cf:a6:c9:ea:3e:27:17:40:8b:62:0c:9a:4f:72:2b: b6:12:cb:50:8b:a5:c9:74:0d:25:45:76:c0:30:38:00:d0:f4: e0:c5:55:49 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMNPlKLu5XjvH5wf7TXL3FoBsAhwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAzMTU4WhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGUxNGU0M2Y2MDkwNjZiMWE2MTdkMWI4MjY4NGNhOWU5 YzVkZDFhNTdiMjA5ZmJjODUzZWNjYjcxY2RmYzI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4YjWL4B+gM/iZdk4pXNsFN8KdQMhVQUVaLNSg4qKKcAtp bjhdt0h8sdJPUL2OOTxqLLR+zshdPSjOhHUC9r6tWj7hWBXHp76RLKBX07JSJJJT GuM0jRSEOqKU1Ybp/NeiQkz+yAIrGimfiMPYuEk5snpUUu2vITKmt/hS7tbuO/wL BY89Ur2u8zCex96BKr4h3DqGUWJh2vCz2OPzDx3mcj+nhXOFxJb/wVWdoGD2P5jL QKWouhqB72NNfH3TNe4st0lU0kxov0158sfBl1hkrE0vf8uDAOHu/YNHAExkfHEC Rjg9g35AkzkSqAGZ2Co19opsgMiFS1jKYQo+j0+pAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUuK7ERJs2v9xXQJBwViRGuh9ygTUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxOTM3ZGM0LWQzZGItNDFmYi1hNmY2LWQ2Nzk0ZmJlMWM2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8awDANBgkqhkiG9w0BAQsFAAOCAQEAB7/ly7sfRlUaP4QpoUWjQKwl JlfR2oNBmWC8I+mABgfWHRaoizr19OlAuLgLU5I+nzcPcFoCQYr3rX/lvYzuV7/F lkqDOsYcnhFrCFzRk0qb8MiVFacF5WLzopWkf466FeIYRNUSya6YlmTji45zyi6I vMNygOyC+kB5Y1kOTfNd074EvV/HmVq9jEXfvSi3DEbaR8A/dmVdoFXyiMdAjjKY O25ood5jTc7xthoF8U4ecnhg5l7oq/ZJB64KWr7ij3ELBRLnLll2bptNhPLQGdIw gw7k1LV4k1LKz6bJ6j4nF0CLYgyaT3IrthLLUIulyXQNJUV2wDA4AND04MVVSQ== -----END CERTIFICATE-----Generated at Mon Aug 4 21:36:53 2025 by rpki-client