$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa File: a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa (raw, json) Hash identifier: 9t/QeOu4fJOuXMrFNDSfrowe2fSZwqDJLt3h75ib+m8= Subject key identifier: 2F:1A:6C:EF:4B:11:C4:4B:60:6C:E2:D7:F4:7A:96:D5:69:BD:2E:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35F88130D39AB9400ED9B32CB79D2164377AE90A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa Signing time: Fri 01 Aug 2025 17:01:24 +0000 ROA not before: Fri 01 Aug 2025 17:01:24 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f8:81:30:d3:9a:b9:40:0e:d9:b3:2c:b7:9d:21:64:37:7a:e9:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 17:01:24 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=de1d511028587340037585a6b3ab40d5d757af9b102ffb1b1445672889d014cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5c:1e:0f:2f:e6:f1:6f:3c:f6:ac:da:fe:36: ce:b4:2b:a4:80:e3:2a:40:fd:dc:3a:d8:4c:52:db: 69:2b:d2:d7:5c:94:80:df:69:6d:ad:5c:91:a4:23: 2b:d2:27:09:76:bc:92:7a:12:3b:55:74:45:50:b0: 10:dd:ec:db:14:85:91:f3:39:33:f7:05:5f:42:1d: b5:e6:43:32:2d:f5:71:db:86:7e:35:ca:45:29:b3: b2:21:11:2b:8d:89:fe:24:2c:30:f7:b2:51:f1:3e: 2e:5d:9b:41:61:ec:eb:92:d9:40:00:e2:ac:39:d5: 10:60:5d:3c:9b:34:45:c2:85:f0:cb:98:4a:f6:b9: 46:5a:95:ef:48:ce:96:96:6e:cb:d3:b3:3a:2d:62: b9:6e:b2:bb:3e:e0:d2:b3:51:dd:5a:46:da:11:7c: 3c:79:a8:6b:68:37:4e:2b:32:b1:7a:c6:89:05:96: 92:79:1e:6d:94:0a:26:8a:fa:53:1f:9b:91:dd:2e: a8:fd:44:38:fd:16:2b:a9:b4:9e:f5:17:e0:13:f3: df:e5:e7:7b:47:70:a0:1e:30:5b:4c:e0:dc:06:e9: 71:3b:07:c2:8b:4b:83:c2:a4:a8:8a:fd:e6:dc:90: 40:5a:24:07:ce:cb:b6:fa:64:f7:1c:34:6a:59:c7: cb:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:1A:6C:EF:4B:11:C4:4B:60:6C:E2:D7:F4:7A:96:D5:69:BD:2E:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a99936ff-2397-4c4c-a8d6-95ecf5ad9244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 77:8d:f8:e4:71:c5:0a:78:ab:f7:5e:b2:8c:3d:86:c5:9e:4c: e9:e9:0d:e8:93:4d:7a:33:21:9f:a2:47:a9:72:62:6e:d1:da: 2c:bb:21:19:89:e1:4c:7f:03:33:ea:2c:64:29:a5:e2:92:1b: 68:ae:65:08:aa:c4:bd:2d:48:01:8d:75:b4:27:83:f4:78:f3: 16:0c:47:e6:59:62:62:98:7b:0f:be:3f:9e:fc:dc:7c:50:82: 77:0e:ec:27:c0:85:18:34:75:11:07:76:d9:11:d9:a2:6f:98: 5d:50:82:b3:df:4c:8e:90:84:81:fd:f1:e0:7b:f0:27:47:f3: 86:c7:4c:0c:ca:48:3a:37:d1:92:66:84:af:d6:f1:9a:eb:41: b1:a9:18:ff:d5:73:63:3f:52:c1:fc:0a:df:07:82:3c:23:a6: 5b:83:44:d8:b0:02:79:60:69:cb:d3:47:be:dc:2c:60:4a:44: 24:e4:86:3e:7c:7f:4d:6c:d7:c9:0b:75:52:77:f0:76:d3:45: d1:3c:ff:9d:1c:e1:09:e4:20:54:49:30:d5:4e:91:c5:a2:52: 35:69:81:45:b6:fa:90:1e:67:8a:c0:89:9f:00:52:b3:16:85: 85:33:49:a1:fa:6e:4d:97:84:d4:cc:56:f1:a2:6a:84:cf:1f: f6:08:47:25 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNfiBMNOauUAO2bMst50hZDd66QowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTcwMTI0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZTFkNTExMDI4NTg3MzQwMDM3NTg1YTZiM2FiNDBkNWQ3 NTdhZjliMTAyZmZiMWIxNDQ1NjcyODg5ZDAxNGNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTXB4PL+bxbzz2rNr+Ns60K6SA4ypA/dw62ExS22kr0tdc lIDfaW2tXJGkIyvSJwl2vJJ6EjtVdEVQsBDd7NsUhZHzOTP3BV9CHbXmQzIt9XHb hn41ykUps7IhESuNif4kLDD3slHxPi5dm0Fh7OuS2UAA4qw51RBgXTybNEXChfDL mEr2uUZale9IzpaWbsvTszotYrlusrs+4NKzUd1aRtoRfDx5qGtoN04rMrF6xokF lpJ5Hm2UCiaK+lMfm5HdLqj9RDj9FiuptJ71F+AT89/l53tHcKAeMFtM4NwG6XE7 B8KLS4PCpKiK/ebckEBaJAfOy7b6ZPccNGpZx8ujAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULxps70sRxEtgbOLX9HqW1Wm9LvEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5OTkzNmZmLTIzOTctNGM0Yy1hOGQ2LTk1ZWNmNWFkOTI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hQMAwDQYJKoZIhvcNAQELBQADggEBAHeN+ORxxQp4q/desow9hsWe TOnpDeiTTXozIZ+iR6lyYm7R2iy7IRmJ4Ux/AzPqLGQppeKSG2iuZQiqxL0tSAGN dbQng/R48xYMR+ZZYmKYew++P5783HxQgncO7CfAhRg0dREHdtkR2aJvmF1QgrPf TI6QhIH98eB78CdH84bHTAzKSDo30ZJmhK/W8ZrrQbGpGP/Vc2M/UsH8Ct8Hgjwj pluDRNiwAnlgacvTR77cLGBKRCTkhj58f01s18kLdVJ38HbTRdE8/50c4QnkIFRJ MNVOkcWiUjVpgUW2+pAeZ4rAiZ8AUrMWhYUzSaH6bk2XhNTMVvGiaoTPH/YIRyU= -----END CERTIFICATE-----Generated at Sat Aug 9 01:15:30 2025 by rpki-client