$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c84c8b4-b6fd-476d-84bf-094c6f9e6769.roa File: 7c84c8b4-b6fd-476d-84bf-094c6f9e6769.roa (raw, json) Hash identifier: uICkOHMPt4TlQSYAZlmARd1lLaUU4VMzaM+GTAbypL4= Subject key identifier: 4C:02:9F:B5:87:9B:FE:66:F5:A4:F0:66:72:FB:50:64:53:87:52:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C1D00C6D9F48DF197AA22C4B405F68CDA10D324 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c84c8b4-b6fd-476d-84bf-094c6f9e6769.roa Signing time: Sat 28 Jun 2025 00:41:20 +0000 ROA not before: Sat 28 Jun 2025 00:41:20 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fbb::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:1d:00:c6:d9:f4:8d:f1:97:aa:22:c4:b4:05:f6:8c:da:10:d3:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:41:20 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=a089e9f5dedf0d7ffdf383c2642de8598f4ddf55c91e838424a8d866be4cc932, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bb:1c:85:04:fd:77:b6:70:81:d5:7a:d4:18: 4d:8d:24:c7:6c:44:8f:0b:9e:f2:aa:91:2b:52:9c: 40:46:d5:cb:30:f9:53:1e:0d:4d:65:61:09:b9:6c: cb:56:46:ba:1e:82:63:e0:91:c9:6b:6e:9a:5b:06: 8a:1e:1b:aa:bb:41:bc:c0:ab:7e:78:dc:0f:7d:39: b4:d1:56:5e:5a:f4:e3:20:09:6e:51:01:1f:2a:c1: df:67:66:13:45:bb:bf:97:9d:f5:e7:53:05:de:3a: 37:8a:8a:b3:cb:74:7f:8a:51:31:72:0d:0d:c4:c4: 74:0c:98:3e:79:79:7c:24:37:7e:43:d3:57:c4:4c: d8:49:6f:95:8c:cc:e8:31:ea:fa:ab:27:0e:4f:79: 02:10:53:22:9a:34:83:b1:89:e4:44:8a:f3:f0:80: 3f:ff:27:8a:2c:9c:68:6b:67:0a:49:e2:46:65:02: 27:00:60:e3:ca:b3:50:5b:95:10:5d:43:c0:88:eb: 7a:ed:34:b7:27:05:a6:c2:13:75:04:be:ae:fb:9c: b9:2d:6e:cb:ce:81:2f:fd:86:a5:44:c7:b2:78:a6: 89:81:7f:d1:ee:36:3d:2d:07:39:7d:ec:32:9e:aa: 76:fc:b0:73:f6:43:6d:fd:af:09:fe:7b:a1:03:f8: 8d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:02:9F:B5:87:9B:FE:66:F5:A4:F0:66:72:FB:50:64:53:87:52:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c84c8b4-b6fd-476d-84bf-094c6f9e6769.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fbb::/32 Signature Algorithm: sha256WithRSAEncryption a5:7e:d2:2f:b3:7b:c8:b3:b9:2d:02:3e:82:41:e1:4d:f3:57: 95:00:4f:80:f4:d2:ed:e7:67:54:97:5e:cd:a3:c0:77:e3:f9: e3:fd:3c:d5:bc:d2:d2:c4:4d:48:51:83:05:bf:d4:95:fd:f0: 00:d9:4b:93:98:b9:9a:5f:84:c3:40:c9:7b:42:d2:df:16:97: de:be:f8:21:8f:fc:25:53:f8:a3:fc:44:44:cc:3d:3d:6b:b4: 1a:8f:db:a6:27:16:f8:16:0a:3e:bd:61:3e:49:f8:b3:ac:34: ae:6d:de:68:99:ea:5d:68:b9:9b:85:b1:c5:c9:33:bb:5e:74: 9a:40:46:a0:f1:50:e3:32:04:b9:1b:90:3e:5e:c2:8f:17:c4: d7:36:9d:55:d3:37:4e:b6:31:a0:c3:84:4b:dc:bb:53:90:4a: ad:5e:da:56:f8:4e:49:0e:3a:c4:82:b7:fb:58:ae:57:69:db: 49:92:1e:7c:57:34:01:55:3a:4d:f2:19:4c:9f:bf:ea:ca:de: ba:41:3c:19:34:24:22:f8:69:89:ee:c4:be:b7:11:4b:e3:aa: 21:d7:e8:cf:7a:58:09:53:1c:5e:b7:f9:cb:7f:c4:c1:96:3f: 0b:6f:37:2a:57:d3:f4:f3:72:57:d9:10:20:87:83:b9:1d:23: 3a:ce:14:ab -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUfB0Axtn0jfGXqiLEtAX2jNoQ0yQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDA0MTIwWhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDg5ZTlmNWRlZGYwZDdmZmRmMzgzYzI2NDJkZTg1OThm NGRkZjU1YzkxZTgzODQyNGE4ZDg2NmJlNGNjOTMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJuxyFBP13tnCB1XrUGE2NJMdsRI8LnvKqkStSnEBG1csw +VMeDU1lYQm5bMtWRroegmPgkclrbppbBooeG6q7QbzAq3543A99ObTRVl5a9OMg CW5RAR8qwd9nZhNFu7+XnfXnUwXeOjeKirPLdH+KUTFyDQ3ExHQMmD55eXwkN35D 01fETNhJb5WMzOgx6vqrJw5PeQIQUyKaNIOxieREivPwgD//J4osnGhrZwpJ4kZl AicAYOPKs1BblRBdQ8CI63rtNLcnBabCE3UEvq77nLktbsvOgS/9hqVEx7J4pomB f9HuNj0tBzl97DKeqnb8sHP2Q239rwn+e6ED+I0XAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUTAKftYeb/mb1pPBmcvtQZFOHUpYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjODRjOGI0LWI2ZmQtNDc2ZC04NGJmLTA5NGM2ZjllNjc2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB+7MA0GCSqGSIb3DQEBCwUAA4IBAQClftIvs3vIs7ktAj6CQeFN81eV AE+A9NLt52dUl17No8B34/nj/TzVvNLSxE1IUYMFv9SV/fAA2UuTmLmaX4TDQMl7 QtLfFpfevvghj/wlU/ij/EREzD09a7Qaj9umJxb4Fgo+vWE+SfizrDSubd5omepd aLmbhbHFyTO7XnSaQEag8VDjMgS5G5A+XsKPF8TXNp1V0zdOtjGgw4RL3LtTkEqt XtpW+E5JDjrEgrf7WK5XadtJkh58VzQBVTpN8hlMn7/qyt66QTwZNCQi+GmJ7sS+ txFL46oh1+jPelgJUxxet/nLf8TBlj8LbzcqV9P083JX2RAgh4O5HSM6zhSr -----END CERTIFICATE-----Generated at Wed Jul 2 00:15:11 2025 by rpki-client