$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa File: a7f567f4-babd-45d0-82c9-1e940fee8aff.roa (raw, json) Hash identifier: rIO1jc5YNmW7iEEZj86TN4xqHpXbKgzq7QpbpP3ZT/M= Subject key identifier: CF:37:F7:99:57:9D:F3:F7:B6:9C:E2:DB:2E:C0:D0:54:93:5F:13:99 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36DAB92C90676456277D04AA836BCB8BE98B0157 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa Signing time: Sat 28 Jun 2025 00:41:14 +0000 ROA not before: Sat 28 Jun 2025 00:41:14 +0000 ROA not after: Sat 02 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:da:b9:2c:90:67:64:56:27:7d:04:aa:83:6b:cb:8b:e9:8b:01:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 28 00:41:14 2025 GMT Not After : Aug 2 23:59:59 2025 GMT Subject: serialNumber=3936d06775612d24e2a01398755330fab8b5c5c7f8c73af35518f19f7cfecb87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:93:9d:ae:1a:1f:a3:20:f7:5a:b6:2e:4a:32: 09:1f:89:6d:0a:ab:13:22:ed:17:b5:07:40:87:c5: 45:e0:a5:87:87:76:f7:40:fa:88:b4:5d:4d:21:eb: 9d:0d:24:a9:af:aa:30:fc:6d:48:fd:ce:c5:ea:17: a9:57:82:14:a5:be:6f:b2:3b:4d:75:50:25:a6:d8: f4:03:09:dd:45:f1:b1:08:3f:e9:68:d2:a5:8f:25: 73:82:51:9e:0a:d6:58:99:96:bb:7e:b1:d6:e0:8d: 4b:f6:6b:0d:df:6d:61:e6:86:c3:ab:0d:e0:ac:6a: a1:fd:1c:78:9c:73:4d:ce:a3:11:80:9b:fd:af:63: da:fa:6d:14:22:5d:85:29:5c:df:c6:52:28:2a:fa: 13:bb:58:9c:47:ed:ec:da:c9:59:07:cd:ff:13:22: 62:eb:8c:72:35:41:e0:c3:52:00:57:49:18:6c:1e: 8c:a9:82:25:24:08:ed:f5:39:92:82:87:b0:99:ed: e1:38:cd:c1:dd:c9:63:ac:56:01:86:0c:b6:d2:04: 50:df:5c:04:a2:fd:30:ac:44:4b:5e:3d:c4:0f:b1: f7:48:94:e7:0e:e3:9c:e5:aa:d8:c6:2a:a6:89:6c: 99:39:ff:b5:31:e3:fc:73:6c:bd:ad:e3:6f:6f:25: e6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:37:F7:99:57:9D:F3:F7:B6:9C:E2:DB:2E:C0:D0:54:93:5F:13:99 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7f567f4-babd-45d0-82c9-1e940fee8aff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:3400::/40 Signature Algorithm: sha256WithRSAEncryption d1:9e:6e:e0:a1:eb:db:91:73:a8:88:26:fe:b3:a7:fb:7a:2e: fe:90:3a:d2:7b:83:f8:7a:ae:6d:f6:19:15:7b:ff:0a:72:2d: 7b:57:88:bb:f3:d7:b7:9a:fa:2d:98:40:de:9d:fd:f6:23:05: d4:b6:c7:b9:21:f5:40:ce:3e:7e:cb:ea:43:9f:2e:1c:74:54: 9d:bd:86:7c:45:c2:4f:67:90:61:29:c6:6a:79:07:06:36:ab: 23:d3:a9:8d:6d:01:da:bd:5a:30:f9:30:29:fc:b5:da:8b:21: 47:ae:47:c6:82:64:d1:46:40:73:ca:f4:e5:b5:e6:5c:a4:9f: 03:ce:3c:af:5d:c9:21:b4:a4:f2:59:d1:f9:1e:de:b1:e5:94: 1f:01:c8:d0:ab:14:45:96:75:02:58:97:b0:cc:85:70:80:23: 10:9a:65:7c:6c:ee:6b:31:e4:3c:85:35:25:33:34:26:c1:70: 16:ae:3a:43:1b:93:8f:ca:9b:44:38:64:ba:65:89:fd:a5:a0: e2:07:34:dd:a9:4e:d5:27:80:fb:3f:b1:a1:70:aa:6e:61:31: 5c:8d:5f:5a:20:03:ce:67:11:3e:ef:33:ff:d5:45:ff:b3:c1: 62:d5:31:12:2f:af:32:37:f0:79:df:0e:68:64:85:8f:cf:be: 34:5f:0b:5d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNtq5LJBnZFYnfQSqg2vLi+mLAVcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI4MDA0MTE0WhcNMjUwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTM2ZDA2Nzc1NjEyZDI0ZTJhMDEzOTg3NTUzMzBmYWI4 YjVjNWM3ZjhjNzNhZjM1NTE4ZjE5ZjdjZmVjYjg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYk52uGh+jIPdati5KMgkfiW0KqxMi7Re1B0CHxUXgpYeH dvdA+oi0XU0h650NJKmvqjD8bUj9zsXqF6lXghSlvm+yO011UCWm2PQDCd1F8bEI P+lo0qWPJXOCUZ4K1liZlrt+sdbgjUv2aw3fbWHmhsOrDeCsaqH9HHicc03OoxGA m/2vY9r6bRQiXYUpXN/GUigq+hO7WJxH7ezayVkHzf8TImLrjHI1QeDDUgBXSRhs HoypgiUkCO31OZKCh7CZ7eE4zcHdyWOsVgGGDLbSBFDfXASi/TCsREtePcQPsfdI lOcO45zlqtjGKqaJbJk5/7Ux4/xzbL2t429vJeYRAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUzzf3mVed8/e2nOLbLsDQVJNfE5kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZjU2N2Y0LWJhYmQtNDVkMC04MmM5LTFlOTQwZmVlOGFmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0NDANBgkqhkiG9w0BAQsFAAOCAQEA0Z5u4KHr25FzqIgm/rOn+3ou /pA60nuD+HqubfYZFXv/CnIte1eIu/PXt5r6LZhA3p399iMF1LbHuSH1QM4+fsvq Q58uHHRUnb2GfEXCT2eQYSnGankHBjarI9OpjW0B2r1aMPkwKfy12oshR65HxoJk 0UZAc8r05bXmXKSfA848r13JIbSk8lnR+R7eseWUHwHI0KsURZZ1AliXsMyFcIAj EJplfGzuazHkPIU1JTM0JsFwFq46QxuTj8qbRDhkumWJ/aWg4gc03alO1SeA+z+x oXCqbmExXI1fWiADzmcRPu8z/9VF/7PBYtUxEi+vMjfwed8OaGSFj8++NF8LXQ== -----END CERTIFICATE-----Generated at Sun Jun 29 09:04:39 2025 by rpki-client