$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a72a214c-660b-4404-9cf2-6877b6d84a40.roa File: a72a214c-660b-4404-9cf2-6877b6d84a40.roa (raw, json) Hash identifier: il4W0RgrshCgy0ztB4WS5BIV06lUJv9FhVz2beBEwDU= Subject key identifier: 50:D9:E4:00:A2:3E:04:1C:BD:8D:3D:4E:DB:78:AE:08:03:97:BE:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DE17EB982ED46E8993A96E779B734126FE8DBA6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a72a214c-660b-4404-9cf2-6877b6d84a40.roa Signing time: Sat 26 Jul 2025 00:12:04 +0000 ROA not before: Sat 26 Jul 2025 00:12:04 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:c000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e1:7e:b9:82:ed:46:e8:99:3a:96:e7:79:b7:34:12:6f:e8:db:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:12:04 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=ac7acd54efc9114ad1c3b2759122fa8651612b6831a1a63c1e713602e7e3528f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c8:3d:5a:fc:d9:02:c5:30:44:0b:93:4a:3e: fe:b6:11:3f:4a:11:9f:a6:9f:e7:cd:f8:c6:0b:df: ab:d6:6b:c1:85:9a:29:ee:75:1d:90:d4:d8:4d:c4: f5:24:b2:68:5a:f1:ad:5e:33:86:d4:8e:36:02:26: 28:80:3e:4f:f6:39:28:b1:6e:84:47:34:ad:c4:3a: 29:e9:31:b3:f9:49:6c:72:60:cc:f2:69:ee:ec:30: 9d:13:51:70:12:a3:12:b4:0b:b5:f5:6f:6d:f3:4b: fd:c6:08:48:10:bc:bc:8c:76:90:82:78:45:cb:6d: b1:0f:4f:aa:2d:f0:a5:c3:04:cb:7a:b5:e8:33:ac: a5:f2:06:66:06:8a:58:1f:65:ec:a5:4f:74:83:38: a2:7e:bb:ce:1a:80:55:6d:d3:09:07:94:22:80:80: a3:11:b9:02:87:aa:55:72:dc:90:8e:05:fe:5a:38: a2:5d:e6:59:93:09:7e:2d:bb:4d:e8:17:9b:cb:ce: 50:5a:d7:c5:b1:ef:80:79:8a:a2:18:f0:19:c2:49: e9:b7:51:d3:a3:c6:1a:99:33:a5:d8:9f:de:72:d7: b9:63:b8:3b:45:04:e4:9f:2d:4f:d2:4f:e9:65:b7: f9:e3:3d:89:39:d9:13:48:70:80:06:29:7e:bc:7b: 41:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:D9:E4:00:A2:3E:04:1C:BD:8D:3D:4E:DB:78:AE:08:03:97:BE:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a72a214c-660b-4404-9cf2-6877b6d84a40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:c000::/48 Signature Algorithm: sha256WithRSAEncryption 8b:aa:59:2f:a2:54:90:7a:af:b2:df:ac:c8:df:33:cd:f5:b6: df:93:61:14:2a:0d:de:b5:f0:f0:9e:12:6c:63:1c:53:80:32: 9c:4c:4e:c8:42:8f:f9:e3:2c:3e:66:49:ec:3b:56:36:b1:23: 7e:f9:c1:29:a4:03:a7:38:38:06:ff:d3:1c:b9:29:94:95:7f: 67:56:6a:51:13:ee:5d:bb:cb:dc:6c:86:8b:9b:5f:d6:85:a8: 31:9f:75:be:2a:d2:e8:fa:ca:ef:69:12:0d:ea:02:87:c6:b5: 48:52:e7:ed:29:b6:a0:27:84:75:5b:bf:e0:9b:eb:d0:65:f8: dc:d4:f9:e2:f1:7e:ce:ec:08:1f:04:9b:a3:d7:78:60:3a:ce: f4:32:23:34:04:41:7a:26:5b:e4:fa:f3:e9:1f:52:32:f3:6f: 6d:be:a3:e9:07:ef:63:f0:be:13:7d:df:ae:40:54:61:05:71: 92:32:3f:3d:f9:e7:d5:b8:03:79:2e:2e:6d:78:c8:0b:3d:f7: 82:0a:d1:e8:e3:90:1e:fb:8d:dc:c0:08:d1:db:59:ff:37:80: e9:67:bb:3d:bc:b3:a9:dd:c4:4f:55:7e:4a:b5:6d:fa:d9:42: 2b:f3:5e:e9:17:dc:76:b3:3a:29:14:41:69:f3:90:47:1e:76: 42:c9:9e:1c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTeF+uYLtRuiZOpbnebc0Em/o26YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMjA0WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzdhY2Q1NGVmYzkxMTRhZDFjM2IyNzU5MTIyZmE4NjUx NjEyYjY4MzFhMWE2M2MxZTcxMzYwMmU3ZTM1MjhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNyD1a/NkCxTBEC5NKPv62ET9KEZ+mn+fN+MYL36vWa8GF minudR2Q1NhNxPUksmha8a1eM4bUjjYCJiiAPk/2OSixboRHNK3EOinpMbP5SWxy YMzyae7sMJ0TUXASoxK0C7X1b23zS/3GCEgQvLyMdpCCeEXLbbEPT6ot8KXDBMt6 tegzrKXyBmYGilgfZeylT3SDOKJ+u84agFVt0wkHlCKAgKMRuQKHqlVy3JCOBf5a OKJd5lmTCX4tu03oF5vLzlBa18Wx74B5iqIY8BnCSem3UdOjxhqZM6XYn95y17lj uDtFBOSfLU/ST+llt/njPYk52RNIcIAGKX68e0GNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUNnkAKI+BBy9jT1O23iuCAOXvuEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3MmEyMTRjLTY2MGItNDQwNC05Y2YyLTY4NzdiNmQ4NGE0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2wAAwDQYJKoZIhvcNAQELBQADggEBAIuqWS+iVJB6r7LfrMjfM831 tt+TYRQqDd618PCeEmxjHFOAMpxMTshCj/njLD5mSew7VjaxI375wSmkA6c4OAb/ 0xy5KZSVf2dWalET7l27y9xshoubX9aFqDGfdb4q0uj6yu9pEg3qAofGtUhS5+0p tqAnhHVbv+Cb69Bl+NzU+eLxfs7sCB8Em6PXeGA6zvQyIzQEQXomW+T68+kfUjLz b22+o+kH72PwvhN9365AVGEFcZIyPz3559W4A3kuLm14yAs994IK0ejjkB77jdzA CNHbWf83gOlnuz28s6ndxE9Vfkq1bfrZQivzXukX3HazOikUQWnzkEcedkLJnhw= -----END CERTIFICATE-----Generated at Thu Aug 7 03:57:13 2025 by rpki-client