$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea9eb72d-e6fb-4a87-9b3a-82d8b070491d.roa File: ea9eb72d-e6fb-4a87-9b3a-82d8b070491d.roa (raw, json) Hash identifier: dy85Vf+KNgJ1P4fCl4M2xoSvdPdW6VyMywztpqeSK5Q= Subject key identifier: 68:96:39:27:AE:53:83:08:96:84:1B:1C:F2:55:C3:2A:AF:E4:0B:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3108425E46C5836AA54A534BD76378115F814BF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea9eb72d-e6fb-4a87-9b3a-82d8b070491d.roa Signing time: Fri 18 Jul 2025 00:10:22 +0000 ROA not before: Fri 18 Jul 2025 00:10:22 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:85c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:08:42:5e:46:c5:83:6a:a5:4a:53:4b:d7:63:78:11:5f:81:4b:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:10:22 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=ccc26ee1f37c5fcdb1c56e83ac70bbc30b1ab708a34ec48cffc31aa00cbe0076, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:91:13:26:de:c7:a5:13:f9:78:c7:33:ab:33: 8f:2b:ba:7b:f9:30:27:cb:28:f1:bf:ef:3a:e1:f7: 10:45:21:c6:d2:c2:30:c9:16:57:de:79:bb:17:f7: 7d:22:2e:2b:df:6f:67:94:d1:48:6e:8b:07:14:6d: 5e:0b:21:df:76:96:65:37:de:a5:08:79:d1:7e:40: 75:c5:81:ed:d9:79:38:9d:73:5d:3b:9a:d0:ca:64: 00:ed:e5:5a:df:ac:db:18:c2:34:98:5d:85:68:28: 03:4c:0b:9c:a8:de:74:e4:b6:ea:80:67:e0:a8:8a: d2:26:e5:78:2e:67:3b:7e:4b:8a:b7:69:ed:7b:e2: 51:61:8a:5f:d2:27:dc:f2:9a:77:b2:7b:60:af:89: f4:69:68:fd:54:89:36:da:bb:52:79:09:ab:fa:7a: b7:5f:c8:e9:61:29:e5:82:56:ea:1f:24:32:72:c9: be:3f:9c:a7:18:76:e9:f5:09:2e:d7:f0:64:4c:8c: 78:74:6e:2c:95:91:7e:bf:27:dd:61:b6:3e:76:07: c8:d5:b5:02:0b:5c:e9:c3:34:63:b2:c3:76:30:b2: ae:9e:b1:10:f1:d6:37:2e:bc:bd:66:4e:8a:be:5b: 9b:57:df:3f:37:c0:65:e0:76:37:f8:66:a7:e6:a0: b0:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:96:39:27:AE:53:83:08:96:84:1B:1C:F2:55:C3:2A:AF:E4:0B:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea9eb72d-e6fb-4a87-9b3a-82d8b070491d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:85c0::/48 Signature Algorithm: sha256WithRSAEncryption 27:9d:4f:20:0d:be:78:68:91:19:01:3e:a0:a2:76:59:96:be: 14:62:fc:cb:33:0e:22:9d:c2:6d:ce:59:b4:b7:d2:a9:46:11: f8:4f:5e:41:eb:6b:04:c9:d7:6d:7a:26:f9:7f:46:00:74:74: 03:85:be:83:b2:91:18:99:1e:92:a2:69:34:d3:59:b1:9b:48: 54:7e:73:28:3b:03:33:91:77:2f:33:a6:c7:64:c0:d5:7a:02: 17:92:08:cc:2b:f9:67:4a:85:7b:ba:58:ab:18:ed:ee:74:dc: 68:4d:1c:c3:2c:f5:be:6f:5a:bb:54:bc:15:07:be:e7:d4:e1: d1:31:b9:0f:1b:1c:2f:ee:71:27:da:71:06:cc:1a:71:49:6b: f7:75:3b:65:fa:4e:f7:f9:7d:dd:a9:cb:04:bb:bd:fa:4d:b4: f8:05:89:89:0a:96:a1:14:56:77:66:d0:fb:e2:90:4f:34:c8: 26:4e:16:ee:bd:50:aa:d0:75:66:7c:ea:90:fd:d5:86:d1:ee: ee:2e:aa:a9:75:a1:df:f2:e2:e3:71:27:c3:9e:01:25:37:fb: 2b:19:1e:6e:01:55:71:cd:bb:ae:90:b0:62:12:3c:f3:fb:46: a5:4b:da:0e:e8:91:1c:80:5d:94:6c:13:5a:b0:9b:cb:28:04: 37:a1:65:7c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMQhCXkbFg2qlSlNL12N4EV+BS/IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAxMDIyWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2MyNmVlMWYzN2M1ZmNkYjFjNTZlODNhYzcwYmJjMzBi MWFiNzA4YTM0ZWM0OGNmZmMzMWFhMDBjYmUwMDc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYkRMm3selE/l4xzOrM48runv5MCfLKPG/7zrh9xBFIcbS wjDJFlfeebsX930iLivfb2eU0UhuiwcUbV4LId92lmU33qUIedF+QHXFge3ZeTid c107mtDKZADt5VrfrNsYwjSYXYVoKANMC5yo3nTktuqAZ+CoitIm5XguZzt+S4q3 ae174lFhil/SJ9zymneye2CvifRpaP1UiTbau1J5Cav6erdfyOlhKeWCVuofJDJy yb4/nKcYdun1CS7X8GRMjHh0biyVkX6/J91htj52B8jVtQILXOnDNGOyw3Ywsq6e sRDx1jcuvL1mToq+W5tX3z83wGXgdjf4ZqfmoLCLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaJY5J65TgwiWhBsc8lXDKq/kC14wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhOWViNzJkLWU2ZmItNGE4Ny05YjNhLTgyZDhiMDcwNDkxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hcAwDQYJKoZIhvcNAQELBQADggEBACedTyANvnhokRkBPqCidlmW vhRi/MszDiKdwm3OWbS30qlGEfhPXkHrawTJ1216Jvl/RgB0dAOFvoOykRiZHpKi aTTTWbGbSFR+cyg7AzORdy8zpsdkwNV6AheSCMwr+WdKhXu6WKsY7e503GhNHMMs 9b5vWrtUvBUHvufU4dExuQ8bHC/ucSfacQbMGnFJa/d1O2X6Tvf5fd2pywS7vfpN tPgFiYkKlqEUVndm0PvikE80yCZOFu69UKrQdWZ86pD91YbR7u4uqql1od/y4uNx J8OeASU3+ysZHm4BVXHNu66QsGISPPP7RqVL2g7okRyAXZRsE1qwm8soBDehZXw= -----END CERTIFICATE-----Generated at Tue Aug 5 08:22:49 2025 by rpki-client