$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eefecc86-9a13-4739-98c4-e5b08bb89dac.roa File: eefecc86-9a13-4739-98c4-e5b08bb89dac.roa (raw, json) Hash identifier: tybhvzFtF27W+89E68q4Cuo5lVB6aji25KAvahHTUBQ= Subject key identifier: AC:FE:AD:18:22:2C:BF:E2:0E:4D:90:33:27:D5:96:DF:77:F7:2B:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BFBAB75F2FBCD08E25A93FA4441F3505B7DC40B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eefecc86-9a13-4739-98c4-e5b08bb89dac.roa Signing time: Mon 14 Jul 2025 15:11:10 +0000 ROA not before: Mon 14 Jul 2025 15:11:10 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ffc:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:fb:ab:75:f2:fb:cd:08:e2:5a:93:fa:44:41:f3:50:5b:7d:c4:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 14 15:11:10 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=dcaad254d00269ba007a23bcb86dc2e6c76f24a7c2215d74620ba0f8919e501e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:19:3c:b1:67:a9:e4:5d:a6:07:d9:ca:71:33: 8f:42:7b:34:7d:d0:7e:fb:1f:38:a9:64:96:ce:09: 38:b2:c9:fe:3c:f4:d1:17:3c:5a:14:8b:31:5a:c8: e4:c9:a1:2c:b0:b0:76:65:7a:7e:6e:a4:f2:74:f4: 22:3a:7c:b6:92:4c:b9:84:aa:d1:c1:92:af:ac:82: 5a:09:ad:fc:5a:b4:f1:21:1f:0d:b1:82:12:b5:7a: 66:99:e0:c5:26:04:20:a2:94:d6:00:60:fa:65:76: 15:79:a5:28:ac:66:a7:f4:90:04:44:df:1e:67:af: 6e:03:30:48:83:f1:e9:c9:1c:4f:8c:26:52:3c:9b: 73:7b:c5:fe:42:a6:de:81:83:b7:4c:77:1c:cc:d0: bf:f3:10:cb:b1:40:e0:1b:f3:d7:9a:97:8e:f7:15: 2d:f6:a5:b8:94:e8:2f:2e:3b:89:14:ae:6d:b0:6d: 1c:bf:8c:5a:df:3f:ea:d7:6c:24:1f:47:70:ee:2f: 54:42:11:c2:2f:34:64:d2:ea:b4:60:43:d5:32:dc: f6:05:bb:da:76:bb:04:a2:ab:41:d8:af:cd:10:46: e9:c8:09:5d:18:b7:81:7d:2a:ca:2c:ca:05:ba:2e: 7c:7f:f0:cf:11:a7:60:42:36:53:11:65:d0:73:04: b3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:FE:AD:18:22:2C:BF:E2:0E:4D:90:33:27:D5:96:DF:77:F7:2B:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eefecc86-9a13-4739-98c4-e5b08bb89dac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffc:5000::/40 Signature Algorithm: sha256WithRSAEncryption a9:94:db:8c:3c:92:f5:be:c4:cb:4b:c7:07:3c:0d:3d:0b:87: e8:40:84:ca:fa:5f:7e:70:21:bf:d6:4e:e1:aa:64:86:ec:19: 21:ad:7f:35:0e:f8:34:85:80:bb:34:fd:1b:e9:6b:d2:f7:c9: a4:9d:33:f0:e2:f6:ed:80:1f:b4:0d:9a:48:a6:11:27:b7:0d: e5:84:6f:c6:55:39:f4:02:b1:b4:cf:1f:76:3c:76:61:1f:a9: 12:61:a9:4e:8c:1e:d2:54:ec:38:c1:31:c3:d4:3d:fb:34:1e: 15:78:09:67:e8:09:cb:51:ad:db:1f:ed:28:d2:28:8f:ab:d7: ef:79:c2:02:fa:55:a0:57:1d:f2:be:82:c1:6d:28:cc:23:78: 50:23:bc:75:15:2d:fe:88:32:34:22:30:41:2a:b9:47:19:0f: 94:03:72:bf:a5:85:65:f3:57:64:af:75:62:48:fa:cc:1c:3b: 16:55:ab:b6:a8:a3:94:03:dd:db:c5:35:94:f3:6c:54:ac:a0: 22:ff:f2:ed:41:62:d7:88:61:19:9a:af:92:b0:e5:44:33:16: 12:dc:41:bc:b2:4a:8f:e4:fc:ed:03:c8:e6:55:9e:a7:47:97: 1a:53:fc:a2:f9:ee:d9:10:44:97:b6:64:de:e2:ef:b4:6f:1b: 4c:23:67:88 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUS/urdfL7zQjiWpP6REHzUFt9xAswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE0MTUxMTEwWhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkY2FhZDI1NGQwMDI2OWJhMDA3YTIzYmNiODZkYzJlNmM3 NmYyNGE3YzIyMTVkNzQ2MjBiYTBmODkxOWU1MDFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXGTyxZ6nkXaYH2cpxM49CezR90H77HzipZJbOCTiyyf48 9NEXPFoUizFayOTJoSywsHZlen5upPJ09CI6fLaSTLmEqtHBkq+sgloJrfxatPEh Hw2xghK1emaZ4MUmBCCilNYAYPpldhV5pSisZqf0kARE3x5nr24DMEiD8enJHE+M JlI8m3N7xf5Cpt6Bg7dMdxzM0L/zEMuxQOAb89eal473FS32pbiU6C8uO4kUrm2w bRy/jFrfP+rXbCQfR3DuL1RCEcIvNGTS6rRgQ9Uy3PYFu9p2uwSiq0HYr80QRunI CV0Yt4F9KsosygW6Lnx/8M8Rp2BCNlMRZdBzBLP3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrP6tGCIsv+IOTZAzJ9WW33f3K5MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlZmVjYzg2LTlhMTMtNDczOS05OGM0LWU1YjA4YmI4OWRhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/8UDANBgkqhkiG9w0BAQsFAAOCAQEAqZTbjDyS9b7Ey0vHBzwNPQuH 6ECEyvpffnAhv9ZO4apkhuwZIa1/NQ74NIWAuzT9G+lr0vfJpJ0z8OL27YAftA2a SKYRJ7cN5YRvxlU59AKxtM8fdjx2YR+pEmGpTowe0lTsOMExw9Q9+zQeFXgJZ+gJ y1Gt2x/tKNIoj6vX73nCAvpVoFcd8r6CwW0ozCN4UCO8dRUt/ogyNCIwQSq5RxkP lANyv6WFZfNXZK91Ykj6zBw7FlWrtqijlAPd28U1lPNsVKygIv/y7UFi14hhGZqv krDlRDMWEtxBvLJKj+T87QPI5lWep0eXGlP8ovnu2RBEl7Zk3uLvtG8bTCNniA== -----END CERTIFICATE-----Generated at Wed Aug 6 11:00:54 2025 by rpki-client