$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3709c02-3b03-40ee-a552-a17b19d43a03.roa File: c3709c02-3b03-40ee-a552-a17b19d43a03.roa (raw, json) Hash identifier: DDNYUJcukU5oVmW2vsFQuzvWtomtLTEhIbDq4w5Pq9o= Subject key identifier: 5F:1A:80:2B:11:C4:F5:8E:BF:48:07:E9:2F:9B:DB:39:95:59:01:1F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67158E1E2760F6A3FD760A717C8D5DC8AD0E8253 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3709c02-3b03-40ee-a552-a17b19d43a03.roa Signing time: Mon 21 Jul 2025 15:52:21 +0000 ROA not before: Mon 21 Jul 2025 15:52:21 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3:a4c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:15:8e:1e:27:60:f6:a3:fd:76:0a:71:7c:8d:5d:c8:ad:0e:82:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 15:52:21 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=93df008788cf244269804306a485744faa66624a8feef4ae99f81761cd18a504, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:36:fa:6c:f6:1a:83:6c:ba:41:3e:15:7d:2a: a5:18:90:20:ea:db:40:9e:6c:78:7f:e5:bb:67:79: 05:a6:69:d8:31:69:ce:44:eb:5b:d2:0b:50:db:75: 43:c1:65:69:b8:8a:73:b2:9b:fb:21:2e:25:06:b6: 66:30:6b:93:f9:9a:e9:d4:12:54:8b:3c:ca:e4:e9: 66:a1:79:b7:3c:ed:b0:72:74:ac:cc:ab:ac:9d:db: 82:0e:10:42:5b:70:7a:8e:4b:a6:23:82:1e:5d:62: 11:9b:e2:69:41:50:ff:a4:35:9e:c2:23:91:40:b1: c8:9b:39:12:07:e3:f4:08:a7:a7:55:ca:77:d4:af: c9:cf:1c:13:8d:08:df:81:d6:1c:04:c4:cc:32:49: cc:b3:af:dc:90:5c:4d:c5:46:60:de:ec:d8:ac:d7: 2c:60:29:b2:72:14:44:db:8b:ba:22:36:83:48:e5: 4f:43:13:31:5e:43:7f:ab:7c:fe:c4:29:38:68:ab: 3f:78:9c:9e:b9:e7:2a:18:86:1b:32:4c:f4:a2:e2: 3d:27:f3:a2:ff:a8:ee:4d:26:49:fd:76:0e:97:6f: c7:5a:07:fe:ef:e0:4a:01:56:64:17:fb:bf:59:f3: d1:25:70:ce:0e:df:ac:9f:12:71:2a:a5:d5:f4:f0: 4a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:1A:80:2B:11:C4:F5:8E:BF:48:07:E9:2F:9B:DB:39:95:59:01:1F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c3709c02-3b03-40ee-a552-a17b19d43a03.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:a4c0::/46 Signature Algorithm: sha256WithRSAEncryption 6a:80:15:4c:80:82:5e:b4:77:2d:29:ab:57:41:74:1d:28:55: 2e:2a:71:79:93:29:51:23:e3:3c:36:90:12:9c:a6:12:22:e5: 2c:63:6e:8c:50:ef:3c:4d:dd:e4:8c:8a:67:9e:48:0f:0e:33: 39:9b:bd:ed:99:4c:37:84:ee:e5:26:bd:f4:cc:2a:08:33:bb: 0f:97:b1:b4:9d:89:ce:36:2d:0d:f7:07:10:94:e6:d5:72:3e: 45:2b:5b:98:80:6f:ea:81:fd:30:79:d6:ea:c5:38:f2:28:7b: d0:b7:87:00:4f:7e:5f:2f:ec:15:91:b2:5f:19:31:c1:93:9f: 09:50:ac:23:f0:f6:5f:2d:fb:05:25:b4:e4:5b:9c:41:37:80: 65:a9:90:00:e1:27:61:24:29:e5:88:1c:91:58:3a:c8:c7:3e: 47:31:08:c4:76:ac:4f:64:a6:a4:6e:c6:8a:5f:13:fc:13:6f: a9:af:05:29:51:3b:a5:82:83:bb:8b:59:3b:e7:93:20:95:26: d1:af:9d:8f:57:93:7b:98:c2:78:cd:a5:f9:4c:79:aa:70:58: 31:e3:54:6c:e4:22:fc:02:40:93:4e:25:24:b7:b4:f8:e1:fb: c4:54:e0:85:ff:3c:60:33:9d:40:5f:87:7d:2c:7c:28:57:b2: 9e:f5:26:0b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZxWOHidg9qP9dgpxfI1dyK0OglMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTU1MjIxWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2RmMDA4Nzg4Y2YyNDQyNjk4MDQzMDZhNDg1NzQ0ZmFh NjY2MjRhOGZlZWY0YWU5OWY4MTc2MWNkMThhNTA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZNvps9hqDbLpBPhV9KqUYkCDq20CebHh/5btneQWmadgx ac5E61vSC1DbdUPBZWm4inOym/shLiUGtmYwa5P5munUElSLPMrk6Wahebc87bBy dKzMq6yd24IOEEJbcHqOS6Yjgh5dYhGb4mlBUP+kNZ7CI5FAscibORIH4/QIp6dV ynfUr8nPHBONCN+B1hwExMwyScyzr9yQXE3FRmDe7Nis1yxgKbJyFETbi7oiNoNI 5U9DEzFeQ3+rfP7EKThoqz94nJ655yoYhhsyTPSi4j0n86L/qO5NJkn9dg6Xb8da B/7v4EoBVmQX+79Z89ElcM4O36yfEnEqpdX08EpZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXxqAKxHE9Y6/SAfpL5vbOZVZAR8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MzNzA5YzAyLTNiMDMtNDBlZS1hNTUyLWExN2IxOWQ0M2EwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/zpMAwDQYJKoZIhvcNAQELBQADggEBAGqAFUyAgl60dy0pq1dBdB0o VS4qcXmTKVEj4zw2kBKcphIi5SxjboxQ7zxN3eSMimeeSA8OMzmbve2ZTDeE7uUm vfTMKggzuw+XsbSdic42LQ33BxCU5tVyPkUrW5iAb+qB/TB51urFOPIoe9C3hwBP fl8v7BWRsl8ZMcGTnwlQrCPw9l8t+wUltORbnEE3gGWpkADhJ2EkKeWIHJFYOsjH PkcxCMR2rE9kpqRuxopfE/wTb6mvBSlRO6WCg7uLWTvnkyCVJtGvnY9Xk3uYwnjN pflMeapwWDHjVGzkIvwCQJNOJSS3tPjh+8RU4IX/PGAznUBfh30sfChXsp71Jgs= -----END CERTIFICATE-----Generated at Mon Aug 4 21:50:22 2025 by rpki-client