$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94209e4d-7b05-4729-b164-804591eea8be.roa File: 94209e4d-7b05-4729-b164-804591eea8be.roa (raw, json) Hash identifier: J8BFPubFcpCmXcK+n7cbRxizfgJ05xr6BVYaCQSNb5U= Subject key identifier: D8:20:C0:2C:2E:B3:B3:5B:CB:D0:A9:25:C8:A6:8E:DB:7A:3E:A4:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6086A70AEFE8C5BB1FF34D3BABFAB6BFABE7D98E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94209e4d-7b05-4729-b164-804591eea8be.roa Signing time: Mon 04 Aug 2025 15:51:17 +0000 ROA not before: Mon 04 Aug 2025 15:51:17 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:3400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:86:a7:0a:ef:e8:c5:bb:1f:f3:4d:3b:ab:fa:b6:bf:ab:e7:d9:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:51:17 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=8ede874b9c3cf477ec068a61dc97bdf6a5c9a0f73733acb5eaefd76bcbce4e9e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:36:7f:99:6c:85:57:f0:dc:07:24:b1:22:80: 37:bc:da:67:33:74:9e:1e:0e:e2:23:2b:99:99:a0: c6:cc:e9:1a:07:04:ff:3b:ec:3a:1d:0d:35:dd:d0: 1f:d0:7d:a9:8d:e7:c7:ae:09:8a:20:b4:d0:52:6e: 90:e4:f5:3f:4c:64:8c:09:04:23:4c:bf:0d:9b:fc: a7:bf:3a:90:1f:e2:2c:ea:d2:fc:66:71:e8:38:74: 2a:22:a1:e4:9e:24:84:90:ac:b8:02:d7:90:61:0a: f6:36:17:89:07:cc:a5:cf:41:4e:b4:71:ea:c7:45: 33:af:4c:87:ba:14:4a:b8:49:b7:44:60:00:b0:70: 75:e7:4e:e9:ea:43:61:d3:59:dc:a7:5a:95:0a:eb: 34:a8:41:1f:f4:09:30:29:4f:8e:b4:cd:7f:cb:b9: 81:e6:12:88:aa:c1:df:dc:d5:b8:f4:fa:df:58:8f: dd:2b:49:b2:67:e7:91:6f:39:76:93:47:fc:b2:8d: c6:3a:b6:85:1f:e3:1a:11:59:72:41:e1:6c:f2:ce: 30:8f:e7:44:ea:60:60:82:6b:6f:29:79:0d:02:67: 13:0c:07:9b:c3:1a:b3:a2:74:ae:d4:e0:1e:8f:87: fb:68:1d:eb:29:f5:55:4b:d6:7a:5f:5f:ab:cf:47: 6c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:20:C0:2C:2E:B3:B3:5B:CB:D0:A9:25:C8:A6:8E:DB:7A:3E:A4:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94209e4d-7b05-4729-b164-804591eea8be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:3400::/40 Signature Algorithm: sha256WithRSAEncryption 46:40:b9:ad:34:da:3f:5f:46:42:75:e2:b4:bb:59:2b:7c:60: b2:9d:1d:e6:11:30:c8:fd:f2:1d:ff:fa:e3:48:8f:b3:64:93: 7f:f6:cf:af:d5:b9:67:40:e5:8c:07:31:2e:1b:8d:7f:66:34: fd:ef:94:b4:4f:61:dd:d1:0b:24:36:c4:b7:10:17:ab:dd:30: 8c:e4:19:97:54:3d:b6:f2:bb:08:b1:d9:cc:59:c1:64:30:8c: f0:35:f2:0a:a1:73:02:c5:f2:c4:58:e4:f3:6f:9c:59:58:e4: 1f:51:b5:c3:5c:54:63:7c:be:77:17:58:44:da:0b:d7:19:1b: 0f:58:21:8b:08:72:10:61:55:47:32:f3:a6:a1:b5:3f:fe:54: 52:50:50:b9:f5:29:77:27:a6:83:f7:d9:62:fc:61:89:3f:fa: d6:9b:37:56:02:44:5c:fc:86:87:8b:ea:71:6c:0c:6b:27:41: 7a:62:70:a8:ae:d1:af:82:1a:d8:c7:84:19:0c:b3:0e:07:ef: 07:70:3f:03:c9:7b:7a:34:f1:23:54:7c:92:13:34:ea:92:9d: ca:50:4d:0d:95:94:30:47:69:1c:13:f7:fe:5b:a1:15:5b:84: de:51:13:1a:d3:13:27:1e:32:ae:0b:b9:82:c3:33:3c:da:30: d0:b1:9a:73 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYIanCu/oxbsf8007q/q2v6vn2Y4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU1MTE3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWRlODc0YjljM2NmNDc3ZWMwNjhhNjFkYzk3YmRmNmE1 YzlhMGY3MzczM2FjYjVlYWVmZDc2YmNiY2U0ZTllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLNn+ZbIVX8NwHJLEigDe82mczdJ4eDuIjK5mZoMbM6RoH BP877DodDTXd0B/QfamN58euCYogtNBSbpDk9T9MZIwJBCNMvw2b/Ke/OpAf4izq 0vxmceg4dCoioeSeJISQrLgC15BhCvY2F4kHzKXPQU60cerHRTOvTIe6FEq4SbdE YACwcHXnTunqQ2HTWdynWpUK6zSoQR/0CTApT460zX/LuYHmEoiqwd/c1bj0+t9Y j90rSbJn55FvOXaTR/yyjcY6toUf4xoRWXJB4WzyzjCP50TqYGCCa28peQ0CZxMM B5vDGrOidK7U4B6Ph/toHesp9VVL1npfX6vPR2ypAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU2CDALC6zs1vL0KklyKaO23o+pL4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MjA5ZTRkLTdiMDUtNDcyOS1iMTY0LTgwNDU5MWVlYThiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4NDANBgkqhkiG9w0BAQsFAAOCAQEARkC5rTTaP19GQnXitLtZK3xg sp0d5hEwyP3yHf/640iPs2STf/bPr9W5Z0DljAcxLhuNf2Y0/e+UtE9h3dELJDbE txAXq90wjOQZl1Q9tvK7CLHZzFnBZDCM8DXyCqFzAsXyxFjk82+cWVjkH1G1w1xU Y3y+dxdYRNoL1xkbD1ghiwhyEGFVRzLzpqG1P/5UUlBQufUpdyemg/fZYvxhiT/6 1ps3VgJEXPyGh4vqcWwMaydBemJwqK7Rr4Ia2MeEGQyzDgfvB3A/A8l7ejTxI1R8 khM06pKdylBNDZWUMEdpHBP3/luhFVuE3lETGtMTJx4yrgu5gsMzPNow0LGacw== -----END CERTIFICATE-----Generated at Wed Aug 6 10:16:21 2025 by rpki-client