$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797d3498-a160-4006-845e-131ce55f21f5.roa File: 797d3498-a160-4006-845e-131ce55f21f5.roa (raw, json) Hash identifier: bl0mJoJJCVqxhADacs9cmdc5nxiu/myGb1SnWnjCw/k= Subject key identifier: D4:1B:4E:96:27:65:F8:A6:BD:78:AD:02:30:0A:75:65:1C:9B:8A:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70D082BB581D29DCB1AC70B6F5915680FE1112C8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797d3498-a160-4006-845e-131ce55f21f5.roa Signing time: Fri 13 Jun 2025 16:11:59 +0000 ROA not before: Fri 13 Jun 2025 16:11:59 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:d0:82:bb:58:1d:29:dc:b1:ac:70:b6:f5:91:56:80:fe:11:12:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:11:59 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=9aa9f5cc11a30fddb3f82766d21ecf5447815184a9df495728ec21efb39b7543, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:20:20:eb:ce:f4:5b:93:06:bb:df:7d:f8:04: bd:17:0c:b6:0c:de:d8:d7:1a:fb:d6:af:a3:b4:60: ae:d7:a6:90:ce:1f:e3:8b:de:32:60:4d:db:79:69: b2:70:54:67:8c:c1:88:2f:77:c1:5c:13:ce:6d:f2: 45:ba:91:51:8c:c2:6e:28:dd:6b:cc:37:be:a0:7d: 3d:0c:38:be:c5:a3:13:d8:f6:ec:10:44:da:d1:1d: 86:74:51:d3:1b:a2:e7:20:05:23:d6:3d:48:05:54: 00:44:dc:76:25:8c:0f:9f:66:27:08:d4:b7:a4:59: c4:92:e0:e8:d3:b4:8f:b6:4d:7a:e7:cb:d0:e7:2f: 16:b8:58:3e:94:07:f6:16:e5:80:ef:e3:94:84:2a: 2c:de:81:ec:a5:87:26:f1:f2:7f:53:9d:37:fb:93: b6:6f:2b:a8:15:81:e3:5a:d3:1a:16:72:1d:54:49: 87:99:3b:e8:2e:65:ce:34:a6:8c:2c:2b:9b:58:57: e6:b9:2f:2d:17:aa:62:ab:cb:78:02:05:00:dc:ca: 69:5c:3a:dd:6b:f3:d9:67:96:f5:5d:53:c1:b6:56: 1e:33:74:83:cc:0c:21:6d:1c:55:f4:48:77:62:9d: 1a:76:2a:16:bc:61:46:c6:1d:97:33:44:94:3a:17: 39:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:1B:4E:96:27:65:F8:A6:BD:78:AD:02:30:0A:75:65:1C:9B:8A:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/797d3498-a160-4006-845e-131ce55f21f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4000::/40 Signature Algorithm: sha256WithRSAEncryption a3:1c:2c:68:a7:3c:e8:c9:8b:55:2a:bb:26:4f:02:08:80:1d: 28:ab:df:ea:2f:b9:eb:cf:f5:56:e8:ed:24:0b:35:93:8a:3e: d4:e1:5e:dd:93:b0:52:86:c8:62:58:10:23:12:8f:4c:9e:74: 09:35:fd:91:94:2a:55:d8:ac:f9:2b:86:9a:60:93:70:be:37: 8a:d9:97:f6:a4:95:aa:33:6a:67:ad:d2:78:44:23:71:d5:c8: 16:59:0e:17:09:7b:6e:3f:3e:32:2f:af:f7:de:8e:10:ff:8d: d1:29:fc:60:5a:0e:ff:ed:e7:07:00:aa:2c:58:90:af:15:cc: 21:8d:db:1d:33:f2:ea:e2:0f:be:07:35:bc:78:85:1f:76:e4: f4:dd:fd:0c:9e:18:fe:bc:95:b6:2a:c2:34:a6:a5:12:4d:e1: 03:68:31:b9:7c:fa:0b:94:d2:4c:ce:e9:a4:5e:ee:38:f5:0f: 06:94:f4:05:8f:5b:01:7e:6b:46:f1:62:7f:9b:d9:52:83:54: 24:85:91:3b:18:36:6f:71:d9:76:ed:f9:88:d0:1e:f2:1e:e5: ae:76:c7:8d:6a:59:cf:4c:a5:ab:a2:3f:40:79:ec:67:db:74: 06:f7:aa:a8:a3:54:f6:5a:43:9d:fa:71:6f:fc:76:87:5c:32: d6:07:d6:d6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcNCCu1gdKdyxrHC29ZFWgP4REsgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYxMTU5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWE5ZjVjYzExYTMwZmRkYjNmODI3NjZkMjFlY2Y1NDQ3 ODE1MTg0YTlkZjQ5NTcyOGVjMjFlZmIzOWI3NTQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtICDrzvRbkwa73334BL0XDLYM3tjXGvvWr6O0YK7XppDO H+OL3jJgTdt5abJwVGeMwYgvd8FcE85t8kW6kVGMwm4o3WvMN76gfT0MOL7FoxPY 9uwQRNrRHYZ0UdMboucgBSPWPUgFVABE3HYljA+fZicI1LekWcSS4OjTtI+2TXrn y9DnLxa4WD6UB/YW5YDv45SEKizegeylhybx8n9TnTf7k7ZvK6gVgeNa0xoWch1U SYeZO+guZc40powsK5tYV+a5Ly0XqmKry3gCBQDcymlcOt1r89lnlvVdU8G2Vh4z dIPMDCFtHFX0SHdinRp2Kha8YUbGHZczRJQ6FzlLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1BtOlidl+Ka9eK0CMAp1ZRybisYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc5N2QzNDk4LWExNjAtNDAwNi04NDVlLTEzMWNlNTVmMjFmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8AQDANBgkqhkiG9w0BAQsFAAOCAQEAoxwsaKc86MmLVSq7Jk8CCIAd KKvf6i+568/1VujtJAs1k4o+1OFe3ZOwUobIYlgQIxKPTJ50CTX9kZQqVdis+SuG mmCTcL43itmX9qSVqjNqZ63SeEQjcdXIFlkOFwl7bj8+Mi+v996OEP+N0Sn8YFoO /+3nBwCqLFiQrxXMIY3bHTPy6uIPvgc1vHiFH3bk9N39DJ4Y/ryVtirCNKalEk3h A2gxuXz6C5TSTM7ppF7uOPUPBpT0BY9bAX5rRvFif5vZUoNUJIWROxg2b3HZdu35 iNAe8h7lrnbHjWpZz0ylq6I/QHnsZ9t0BveqqKNU9lpDnfpxb/x2h1wy1gfW1g== -----END CERTIFICATE-----Generated at Wed Jul 2 15:07:41 2025 by rpki-client