$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94a6c9be-efcb-4ad8-98a9-02a004c32420.roa File: 94a6c9be-efcb-4ad8-98a9-02a004c32420.roa (raw, json) Hash identifier: 3/mgI4uYlQV22CCuaCxP31WXuv/bNHM/bFlDzekoNMs= Subject key identifier: 12:B9:26:FD:75:00:E3:33:F8:2F:1A:6C:A9:79:3D:81:82:45:EB:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14C763F2BDCF26B962019DDBC50A5C0FAA1145A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94a6c9be-efcb-4ad8-98a9-02a004c32420.roa Signing time: Mon 21 Jul 2025 15:31:48 +0000 ROA not before: Mon 21 Jul 2025 15:31:48 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:80e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c7:63:f2:bd:cf:26:b9:62:01:9d:db:c5:0a:5c:0f:aa:11:45:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 15:31:48 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=3cab163918f353afc71d9e0dbd1a8785210a851867b27c07dc06788c10551c40, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5f:eb:f0:c1:68:c8:a0:f1:c6:24:b8:21:05: 25:2d:1f:8e:78:2f:d0:f3:10:71:aa:88:e3:5d:28: 5d:43:dc:5d:b0:6e:97:fa:9f:35:64:ce:50:b2:e3: 14:35:54:f3:e3:4d:1c:7f:2a:42:41:5a:e8:be:86: 49:17:0f:b0:39:ac:18:83:47:b2:f2:e9:d7:25:19: 91:20:7b:e6:e3:d2:77:b5:1d:db:97:ed:cc:86:a2: e9:4d:97:f4:a3:7c:fb:2c:aa:fd:c4:68:a0:5b:ce: 2f:71:62:aa:b4:f1:da:f5:fb:c8:c7:c3:a9:d5:22: c0:2c:69:68:e2:ce:e9:b3:2a:5a:cd:9a:98:5d:7e: 62:36:17:6d:73:c3:6e:dd:b3:ee:ce:b0:45:c2:37: 66:2a:84:33:f5:18:53:4f:83:87:a2:4c:f1:29:01: 71:fb:ad:53:43:7d:3e:16:b2:10:83:14:46:0c:f8: e6:90:10:38:8e:3a:6a:c5:33:5d:1c:16:bf:fd:6b: 59:05:40:04:e9:81:e9:83:79:60:78:c5:79:1c:54: 31:50:e1:be:2f:4a:0c:ef:3b:5a:f5:ef:3b:09:52: 23:85:fc:f1:f6:b7:97:05:e8:8f:0c:34:1e:14:e9: b5:6a:e2:81:83:08:12:3a:62:3f:7c:77:2b:56:6f: 02:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:B9:26:FD:75:00:E3:33:F8:2F:1A:6C:A9:79:3D:81:82:45:EB:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94a6c9be-efcb-4ad8-98a9-02a004c32420.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:80e0::/48 Signature Algorithm: sha256WithRSAEncryption 21:d3:09:9c:83:aa:f9:03:bd:6a:70:be:0c:e4:45:9b:9d:9b: 8b:b2:8c:2d:6b:95:49:f1:3c:22:6f:85:e1:e7:7c:b3:e0:d2: 39:d1:7e:26:aa:ba:e1:10:91:d1:a3:da:71:32:49:f7:c6:c3: ca:90:d2:97:3f:f6:1d:c5:4d:a2:91:6f:ce:eb:e7:e1:7f:b6: 7b:83:11:54:f7:72:83:68:b4:e2:e3:cd:64:ad:4d:cd:ca:5f: 02:ec:84:ff:83:3c:43:81:a8:4d:dc:e7:9d:15:ed:93:74:1c: 6a:36:4f:da:4d:ca:f6:19:fc:33:03:74:80:b3:f5:5e:07:f3: 56:85:ce:96:5b:f5:cb:c4:01:56:84:35:27:03:9c:31:5b:1b: 7c:91:ad:ed:f4:9e:41:d6:1b:75:b1:5c:8c:85:7a:c9:58:4a: 29:eb:6e:f2:f5:ec:36:3a:ef:e7:1d:3e:af:f2:50:fa:54:fa: 74:51:f5:23:97:b0:3f:5d:1b:db:6d:69:50:56:c9:80:3e:21: 8f:04:ba:27:97:50:1f:1b:1d:e9:84:06:52:9b:89:72:83:8b: 57:d9:a4:05:3f:e9:09:f9:14:cd:5e:56:f5:58:59:df:38:4d: 4a:5f:77:29:da:34:0b:ef:21:a6:f1:e6:42:70:09:90:b8:94: 34:d9:e6:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFMdj8r3PJrliAZ3bxQpcD6oRRacwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTUzMTQ4WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzY2FiMTYzOTE4ZjM1M2FmYzcxZDllMGRiZDFhODc4NTIx MGE4NTE4NjdiMjdjMDdkYzA2Nzg4YzEwNTUxYzQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOX+vwwWjIoPHGJLghBSUtH454L9DzEHGqiONdKF1D3F2w bpf6nzVkzlCy4xQ1VPPjTRx/KkJBWui+hkkXD7A5rBiDR7Ly6dclGZEge+bj0ne1 HduX7cyGoulNl/SjfPssqv3EaKBbzi9xYqq08dr1+8jHw6nVIsAsaWjizumzKlrN mphdfmI2F21zw27ds+7OsEXCN2YqhDP1GFNPg4eiTPEpAXH7rVNDfT4WshCDFEYM +OaQEDiOOmrFM10cFr/9a1kFQATpgemDeWB4xXkcVDFQ4b4vSgzvO1r17zsJUiOF /PH2t5cF6I8MNB4U6bVq4oGDCBI6Yj98dytWbwLhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUErkm/XUA4zP4LxpsqXk9gYJF6+YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0YTZjOWJlLWVmY2ItNGFkOC05OGE5LTAyYTAwNGMzMjQyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84gOAwDQYJKoZIhvcNAQELBQADggEBACHTCZyDqvkDvWpwvgzkRZud m4uyjC1rlUnxPCJvheHnfLPg0jnRfiaquuEQkdGj2nEySffGw8qQ0pc/9h3FTaKR b87r5+F/tnuDEVT3coNotOLjzWStTc3KXwLshP+DPEOBqE3c550V7ZN0HGo2T9pN yvYZ/DMDdICz9V4H81aFzpZb9cvEAVaENScDnDFbG3yRre30nkHWG3WxXIyFeslY SinrbvL17DY67+cdPq/yUPpU+nRR9SOXsD9dG9ttaVBWyYA+IY8EuieXUB8bHemE BlKbiXKDi1fZpAU/6Qn5FM1eVvVYWd84TUpfdynaNAvvIabx5kJwCZC4lDTZ5jk= -----END CERTIFICATE-----Generated at Sat Aug 9 01:15:20 2025 by rpki-client