$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa File: 026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa (raw, json) Hash identifier: IodsrbB2eaJkg79Hx7dBU+ya14TeQl3YrRmmd6uZpwM= Subject key identifier: 0C:19:F7:8E:16:09:AA:A7:32:94:38:77:0F:64:A5:EA:60:12:5B:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0763818DD1598C632F21F0A175F72894E6EBB1E9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa Signing time: Tue 24 Jun 2025 00:11:43 +0000 ROA not before: Tue 24 Jun 2025 00:11:43 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:63:81:8d:d1:59:8c:63:2f:21:f0:a1:75:f7:28:94:e6:eb:b1:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:11:43 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=50f49f518cd121023b348b25c3f8f746bb41dd062cec2f25ef763418a9155b77, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f4:7e:79:28:6a:64:a9:5e:42:ff:37:d3:4f: 89:74:04:3f:72:3a:eb:76:c8:0d:51:20:8d:ac:da: 88:93:2e:ee:24:91:ca:2f:4a:14:5e:2a:2c:63:fc: de:48:9a:b3:76:16:08:86:7a:0b:8d:13:a8:67:5b: 1f:35:44:f9:ca:a7:0d:56:6d:6d:68:27:66:ee:ac: 62:3f:5e:61:16:3c:10:22:ec:2d:b2:57:c3:4e:01: ba:40:26:c2:ac:dc:1f:3b:ea:b2:b0:e5:da:48:87: 47:56:ed:79:1a:62:05:03:b1:3a:39:e9:6a:ab:12: 80:10:3e:be:65:78:72:f3:13:7e:51:8e:06:17:fc: a1:f3:87:f0:bf:21:bf:0e:8e:92:4c:84:23:ce:42: 6d:e6:17:9e:6a:cb:e0:1a:fd:52:e3:2c:13:e1:64: de:a9:4a:9d:d0:f7:90:fc:36:de:36:50:b0:f2:2d: 41:5b:3e:6a:46:e1:f7:44:d9:49:67:87:d1:c4:f8: a6:38:8e:ba:17:ea:83:4c:7b:24:bb:ed:9d:34:d9: c5:28:47:c0:ae:29:83:36:99:45:c5:c6:15:38:5f: 79:b9:1b:85:41:99:7c:80:43:85:a1:95:da:97:cd: 5f:bb:98:fc:f6:ac:26:f3:75:e9:24:ff:ee:33:26: 93:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:19:F7:8E:16:09:AA:A7:32:94:38:77:0F:64:A5:EA:60:12:5B:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:e000::/40 Signature Algorithm: sha256WithRSAEncryption 0b:67:09:93:3d:85:cd:59:9c:44:e3:68:cb:36:28:13:8a:2b: 29:be:1b:e9:c0:08:94:55:53:e5:63:50:61:3e:82:fc:4b:6b: b1:0b:c8:5e:c1:6a:6c:b8:e8:04:3c:b3:db:31:dd:01:fb:c2: f1:c6:bc:25:76:ec:d1:4d:bb:41:21:d8:3c:1f:f8:51:f7:4f: ea:d5:42:4a:df:d6:a6:2a:ec:4d:fc:8f:cc:d7:48:51:d4:25: e1:1d:9e:61:f5:ad:c3:d6:2d:c6:4f:4e:30:da:92:b3:e2:b3: 20:e3:84:14:53:6b:b1:7c:43:3d:93:d8:d9:37:80:23:91:67: 10:6c:6e:35:96:21:87:a8:78:f0:bd:ea:32:c1:0b:e0:29:bb: 65:ad:13:4a:28:df:db:6e:a0:f9:ef:37:d4:78:63:f1:90:4e: 75:e5:6d:95:bf:12:a7:56:b5:38:3b:36:da:b2:83:23:47:5a: ed:97:af:2a:b4:ac:c7:da:84:88:6b:9b:1d:30:e8:73:da:0d: f4:36:31:4b:e8:db:f4:36:05:ea:86:e6:d9:ad:bc:31:26:ff: e9:20:3d:b7:da:92:7e:d1:2f:32:11:4d:8b:c9:4a:0b:01:b4: 4e:10:9f:99:ec:48:a6:dc:2f:7a:a0:ac:5e:c3:5c:17:2b:fb: f5:84:b0:41 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUB2OBjdFZjGMvIfChdfcolObrsekwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAxMTQzWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGY0OWY1MThjZDEyMTAyM2IzNDhiMjVjM2Y4Zjc0NmJi NDFkZDA2MmNlYzJmMjVlZjc2MzQxOGE5MTU1Yjc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg9H55KGpkqV5C/zfTT4l0BD9yOut2yA1RII2s2oiTLu4k kcovShReKixj/N5ImrN2FgiGeguNE6hnWx81RPnKpw1WbW1oJ2burGI/XmEWPBAi 7C2yV8NOAbpAJsKs3B876rKw5dpIh0dW7XkaYgUDsTo56WqrEoAQPr5leHLzE35R jgYX/KHzh/C/Ib8OjpJMhCPOQm3mF55qy+Aa/VLjLBPhZN6pSp3Q95D8Nt42ULDy LUFbPmpG4fdE2Ulnh9HE+KY4jroX6oNMeyS77Z002cUoR8CuKYM2mUXFxhU4X3m5 G4VBmXyAQ4WhldqXzV+7mPz2rCbzdekk/+4zJpPfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDBn3jhYJqqcylDh3D2Sl6mASW5YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyNmQ5ZTBlLWU5ZjMtNDI0NS04MTg0LTJmNWExN2IzMjA0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8y4DANBgkqhkiG9w0BAQsFAAOCAQEAC2cJkz2FzVmcRONoyzYoE4or Kb4b6cAIlFVT5WNQYT6C/EtrsQvIXsFqbLjoBDyz2zHdAfvC8ca8JXbs0U27QSHY PB/4UfdP6tVCSt/WpirsTfyPzNdIUdQl4R2eYfWtw9Ytxk9OMNqSs+KzIOOEFFNr sXxDPZPY2TeAI5FnEGxuNZYhh6h48L3qMsEL4Cm7Za0TSijf226g+e831Hhj8ZBO deVtlb8Sp1a1ODs22rKDI0da7ZevKrSsx9qEiGubHTDoc9oN9DYxS+jb9DYF6obm 2a28MSb/6SA9t9qSftEvMhFNi8lKCwG0ThCfmexIptwveqCsXsNcFyv79YSwQQ== -----END CERTIFICATE-----Generated at Sun Jun 29 09:32:27 2025 by rpki-client