$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa File: 298f7a82-24b8-4c48-8005-46f4c30ff875.roa (raw, json) Hash identifier: AWh3kDmo2NN9YceKCI9mVhaLRBmLNG92WYHRRL1VYk8= Subject key identifier: A3:C7:90:0D:1A:D6:D8:57:CB:B3:2C:78:40:E3:29:F5:22:AF:C5:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55BBCFD53A7BDE4CC1A69B781D661A2EAB5E9BFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa Signing time: Tue 24 Jun 2025 00:11:42 +0000 ROA not before: Tue 24 Jun 2025 00:11:42 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fa0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:bb:cf:d5:3a:7b:de:4c:c1:a6:9b:78:1d:66:1a:2e:ab:5e:9b:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:11:42 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=bfc3477882b3a56beddbcbf2ec05f01f6d8fa59fc6fb59553576e8739216e249, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:65:3b:a7:8e:f2:75:22:4c:ac:d9:94:5f:cf: 8d:80:8e:71:b7:e3:3c:81:f9:d2:dd:e9:94:61:ef: ff:7e:11:f5:d6:4e:98:a8:57:02:5a:bc:44:84:e0: 24:81:f0:e2:c8:7b:62:7d:0a:a7:83:a5:d2:64:22: dd:f6:90:19:37:78:f7:07:0e:f7:ec:50:e2:64:37: 19:4e:92:14:60:57:7f:1e:06:9d:49:fe:b8:b2:18: c7:ab:f5:bf:3a:ac:9e:4c:88:1a:b8:79:34:11:b4: bb:30:26:98:a4:2b:37:0c:e4:f8:48:02:dd:be:94: 84:2a:e6:5c:88:66:07:82:fc:78:16:44:02:ed:c3: 5e:0c:1e:01:11:2b:0f:f7:07:14:4f:47:3c:9c:b4: 7f:b7:d0:83:e6:cd:41:66:32:8d:48:7e:c1:0a:9a: 67:b4:ae:52:16:2e:43:ca:5e:4e:0c:bd:77:79:27: 5d:0b:5d:6f:35:07:70:fb:3b:86:2c:f0:a8:3c:b5: 6a:0c:3a:48:02:d6:70:fb:98:c7:ce:3e:d0:b5:19: 93:ff:b7:95:f7:11:78:f0:a4:01:98:3c:b4:70:ea: d8:c7:df:d9:0e:de:92:fe:5a:c9:87:e6:12:59:23: 71:43:11:2c:33:33:6a:0b:36:36:3a:6b:a9:46:1d: 36:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C7:90:0D:1A:D6:D8:57:CB:B3:2C:78:40:E3:29:F5:22:AF:C5:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:5000::/40 Signature Algorithm: sha256WithRSAEncryption 91:51:4e:3b:ce:62:72:d9:d9:bc:56:1b:5e:80:61:08:20:fd: 98:30:70:3c:6e:fe:94:b2:8a:af:81:ca:fd:3b:9f:48:07:4d: 46:f1:45:d4:5b:3e:b2:50:6d:2a:c4:f0:e0:53:f3:37:2f:b0: 06:1f:9d:7f:69:44:1d:0a:0d:ac:a6:7b:db:fe:72:4a:0f:4d: 99:f7:43:1a:79:95:ab:a6:33:a0:8a:78:69:04:cf:b5:74:4d: 45:26:8f:ed:65:b9:95:9c:26:ca:13:77:fe:b7:92:37:79:4f: 3e:f0:1a:31:29:8a:06:87:62:38:ef:1c:14:f8:fc:c1:b5:95: a6:16:4a:bc:4d:13:3c:c1:ac:24:67:41:28:26:88:0b:0f:bd: 24:f5:71:2e:31:f3:f1:b9:38:5f:33:a0:77:7a:09:52:9e:65: 62:c8:21:7a:42:9e:01:b5:c5:7c:38:9f:92:93:1c:a4:4d:f6: 90:99:d8:48:2c:8e:d8:b0:1f:26:13:3a:f3:47:e5:1a:e5:d8: f6:d4:42:67:e8:bf:41:01:a2:89:a9:44:bc:87:6f:03:ce:73: da:3a:09:6b:1e:65:5a:d0:db:14:6c:ac:3c:17:ae:a6:0d:ef: 1d:25:bc:3f:15:dd:aa:7e:48:b3:97:3b:61:1c:c5:22:06:49: 0f:36:1c:a4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVbvP1Tp73kzBppt4HWYaLqtem/0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAxMTQyWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZmMzNDc3ODgyYjNhNTZiZWRkYmNiZjJlYzA1ZjAxZjZk OGZhNTlmYzZmYjU5NTUzNTc2ZTg3MzkyMTZlMjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbZTunjvJ1Ikys2ZRfz42AjnG34zyB+dLd6ZRh7/9+EfXW TpioVwJavESE4CSB8OLIe2J9CqeDpdJkIt32kBk3ePcHDvfsUOJkNxlOkhRgV38e Bp1J/riyGMer9b86rJ5MiBq4eTQRtLswJpikKzcM5PhIAt2+lIQq5lyIZgeC/HgW RALtw14MHgERKw/3BxRPRzyctH+30IPmzUFmMo1IfsEKmme0rlIWLkPKXk4MvXd5 J10LXW81B3D7O4Ys8Kg8tWoMOkgC1nD7mMfOPtC1GZP/t5X3EXjwpAGYPLRw6tjH 39kO3pL+WsmH5hJZI3FDESwzM2oLNjY6a6lGHTaPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUo8eQDRrW2FfLsyx4QOMp9SKvxQYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5OGY3YTgyLTI0YjgtNGM0OC04MDA1LTQ2ZjRjMzBmZjg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gUDANBgkqhkiG9w0BAQsFAAOCAQEAkVFOO85ictnZvFYbXoBhCCD9 mDBwPG7+lLKKr4HK/TufSAdNRvFF1Fs+slBtKsTw4FPzNy+wBh+df2lEHQoNrKZ7 2/5ySg9NmfdDGnmVq6YzoIp4aQTPtXRNRSaP7WW5lZwmyhN3/reSN3lPPvAaMSmK BodiOO8cFPj8wbWVphZKvE0TPMGsJGdBKCaICw+9JPVxLjHz8bk4XzOgd3oJUp5l YsghekKeAbXFfDifkpMcpE32kJnYSCyO2LAfJhM680flGuXY9tRCZ+i/QQGiialE vIdvA85z2joJax5lWtDbFGysPBeupg3vHSW8PxXdqn5Is5c7YRzFIgZJDzYcpA== -----END CERTIFICATE-----Generated at Tue Jul 1 18:24:49 2025 by rpki-client