$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa File: cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa (raw, json) Hash identifier: foFL/R8eeJslLcaWBNvofvURF0KINt+lWSIHD7YSy5E= Subject key identifier: 63:4E:AF:EA:DF:99:4A:61:2D:C8:B8:99:68:D0:B3:EA:01:B6:CB:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D39704DDE93724DB9D5A9D9AA2D3066A30EAE38 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa Signing time: Fri 01 Aug 2025 16:00:14 +0000 ROA not before: Fri 01 Aug 2025 16:00:14 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:a4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:39:70:4d:de:93:72:4d:b9:d5:a9:d9:aa:2d:30:66:a3:0e:ae:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:00:14 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=3d2ee35b420d410436a5500b80b54f282413e9518b091149de753a36de36a71b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:e5:e3:97:ff:60:98:b6:3a:56:b4:bd:0a:80: 03:85:b1:c6:20:51:f4:6c:29:d8:0d:28:29:59:fd: 6c:74:c0:d9:3e:b5:dd:c0:d3:f2:ac:2d:7b:d1:2c: 28:ea:88:79:d0:83:7b:33:35:c0:0a:2e:75:65:67: 0c:3e:e7:de:fd:23:74:bd:c4:dc:75:05:95:8f:f2: b7:fc:2f:ea:aa:af:bb:47:86:10:3e:61:28:9b:75: db:69:ab:ef:0d:a6:b6:42:a5:f0:e5:b1:dc:2d:29: c9:a6:56:2e:6a:7e:c8:8f:bb:86:af:b3:88:b3:f3: 15:13:a7:c4:46:6b:6c:c2:22:e4:ee:c9:f2:58:f6: 4c:87:d5:b6:da:6b:5a:b5:1b:61:26:40:e2:03:ad: 34:51:cc:ba:3f:d6:cd:1c:d1:f4:c5:2b:ec:ad:a6: d4:ab:77:26:de:e6:3c:ce:4b:99:a0:8f:5d:48:6f: 1e:28:dc:13:b3:51:7c:2a:76:94:fc:e4:14:61:90: f3:a5:da:c6:bf:d9:46:43:47:3f:fa:c8:be:43:c8: b0:6b:84:0a:c8:45:5e:77:7b:52:bd:b6:aa:07:96: d0:0f:de:7e:89:23:1b:c7:47:bd:59:7d:a3:0a:0c: d7:3e:42:95:6e:85:28:61:d6:20:29:8f:0a:c4:46: d3:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:4E:AF:EA:DF:99:4A:61:2D:C8:B8:99:68:D0:B3:EA:01:B6:CB:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cc9f5c91-e465-4ceb-a73b-236ab84fd8ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:a4c0::/48 Signature Algorithm: sha256WithRSAEncryption 8d:b2:48:78:6a:f2:94:28:47:9a:1c:5e:88:3f:b1:3f:ed:ec: 1f:bf:78:df:d7:c1:a6:b4:7a:77:99:07:6a:b2:68:e7:ea:d9: 41:de:cb:4b:b8:45:5b:5e:2f:4f:3f:c5:64:8b:71:6d:d6:21: e0:b9:4e:3d:ab:79:3c:8b:cb:ec:b4:0e:c0:ae:81:8e:21:c7: db:7d:db:6d:7e:8a:a2:98:0c:33:3f:d6:42:d3:e8:0f:4a:37: 3d:60:92:6f:a5:c0:aa:57:b3:e8:79:76:ee:7d:81:b6:6a:6b: 47:53:d3:91:92:e3:df:a9:f8:42:cf:52:b5:a4:2a:12:0a:38: 04:d6:bf:9a:b6:ba:39:f4:71:e6:fb:d7:56:b0:24:18:a6:a7: d0:ac:a9:1b:cd:9e:11:49:d5:80:c5:b6:9f:ff:f8:e2:f4:c3: de:98:f1:97:74:f7:8e:ad:11:ca:91:e6:ab:88:0d:b8:5c:5a: b3:95:7a:21:a8:f8:42:f5:49:17:5a:86:f9:02:f6:59:be:89: 66:ed:e9:1c:75:36:23:f3:0f:83:68:36:ee:87:89:2f:ef:62: a6:ba:d2:82:2b:54:8d:f7:eb:a7:19:d4:d9:55:af:5c:ce:95: 24:53:4d:dc:0b:35:e1:71:70:38:16:49:fe:21:48:dc:8c:72: 40:ae:3d:1f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHTlwTd6Tck251anZqi0wZqMOrjgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTYwMDE0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDJlZTM1YjQyMGQ0MTA0MzZhNTUwMGI4MGI1NGYyODI0 MTNlOTUxOGIwOTExNDlkZTc1M2EzNmRlMzZhNzFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCL5eOX/2CYtjpWtL0KgAOFscYgUfRsKdgNKClZ/Wx0wNk+ td3A0/KsLXvRLCjqiHnQg3szNcAKLnVlZww+5979I3S9xNx1BZWP8rf8L+qqr7tH hhA+YSibddtpq+8NprZCpfDlsdwtKcmmVi5qfsiPu4avs4iz8xUTp8RGa2zCIuTu yfJY9kyH1bbaa1q1G2EmQOIDrTRRzLo/1s0c0fTFK+ytptSrdybe5jzOS5mgj11I bx4o3BOzUXwqdpT85BRhkPOl2sa/2UZDRz/6yL5DyLBrhArIRV53e1K9tqoHltAP 3n6JIxvHR71ZfaMKDNc+QpVuhShh1iApjwrERtPXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUY06v6t+ZSmEtyLiZaNCz6gG2y7QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjOWY1YzkxLWU0NjUtNGNlYi1hNzNiLTIzNmFiODRmZDhjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8ApMAwDQYJKoZIhvcNAQELBQADggEBAI2ySHhq8pQoR5ocXog/sT/t 7B+/eN/Xwaa0eneZB2qyaOfq2UHey0u4RVteL08/xWSLcW3WIeC5Tj2reTyLy+y0 DsCugY4hx9t9221+iqKYDDM/1kLT6A9KNz1gkm+lwKpXs+h5du59gbZqa0dT05GS 49+p+ELPUrWkKhIKOATWv5q2ujn0ceb711awJBimp9CsqRvNnhFJ1YDFtp//+OL0 w96Y8Zd0946tEcqR5quIDbhcWrOVeiGo+EL1SRdahvkC9lm+iWbt6Rx1NiPzD4No Nu6HiS/vYqa60oIrVI3366cZ1NlVr1zOlSRTTdwLNeFxcDgWSf4hSNyMckCuPR8= -----END CERTIFICATE-----Generated at Wed Aug 6 09:31:45 2025 by rpki-client