$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9868705-9902-4e3c-8621-591fc3d61f79.roa File: c9868705-9902-4e3c-8621-591fc3d61f79.roa (raw, json) Hash identifier: cLIqcIdCd7K1U0kYbNS8gCD0ctZfZ+GnZZ+IBCwrdX0= Subject key identifier: 5F:20:5C:29:4C:D6:63:AD:A6:E4:91:5C:4A:DC:63:2C:2B:A9:A1:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70E7E68C2F9ED24E3081475F92F1D401A2A9D998 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9868705-9902-4e3c-8621-591fc3d61f79.roa Signing time: Thu 26 Jun 2025 19:22:30 +0000 ROA not before: Thu 26 Jun 2025 19:22:30 +0000 ROA not after: Thu 31 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:8090::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:e7:e6:8c:2f:9e:d2:4e:30:81:47:5f:92:f1:d4:01:a2:a9:d9:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 26 19:22:30 2025 GMT Not After : Jul 31 23:59:59 2025 GMT Subject: serialNumber=cc5b439706bbefcc7b3a97b575b9ceee176bd58f35e604add9d9c2f7038476eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:16:6d:a0:9b:18:9f:a4:f2:fc:57:15:3e:f9: 95:4c:51:e7:90:da:9a:96:96:f0:ea:19:66:a6:7f: f8:5e:39:c1:ff:1b:d6:23:d3:14:ad:c5:17:dc:4f: 2a:33:1a:fe:2d:f5:5c:9a:d3:74:a5:27:2d:26:99: e2:e0:96:04:dc:89:90:3e:a8:a6:68:10:8a:55:23: c1:9b:d5:31:28:6b:56:94:b1:34:b5:76:ef:46:8a: 91:c2:fa:c4:ab:24:57:37:f2:02:ee:e4:4f:e9:c7: c5:3c:6c:d0:44:75:2a:1a:29:97:7d:37:6f:29:eb: 2b:50:1f:7d:32:a9:1a:9a:a8:b0:34:0f:fc:49:40: 60:b7:7c:ac:8c:72:9d:bf:bc:ac:49:85:a2:27:8e: ab:69:a0:b5:ef:2b:51:93:ff:1d:c5:62:c3:8c:10: fb:57:fc:71:86:f8:0e:74:d1:3f:51:04:51:39:6a: ed:6f:cc:eb:6e:6d:bc:8a:34:a5:6b:72:93:84:f9: 30:33:48:6a:a8:10:c5:44:b9:ce:7b:f7:3e:d0:64: 6c:ee:6a:10:29:6a:ec:1a:ea:ca:26:de:4a:bc:53: 78:c1:3a:de:4e:08:e9:90:4d:ad:24:2f:31:fe:9d: 1f:d3:e0:a6:5c:83:80:f1:3d:58:65:1d:03:54:a0: 4b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:20:5C:29:4C:D6:63:AD:A6:E4:91:5C:4A:DC:63:2C:2B:A9:A1:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9868705-9902-4e3c-8621-591fc3d61f79.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:8090::/48 Signature Algorithm: sha256WithRSAEncryption bf:a0:04:37:c7:6c:24:cc:e3:fb:5e:1b:cf:1a:63:b2:28:9c: e3:d4:e7:43:f8:fd:df:17:b7:e6:bb:bc:d2:39:b5:b6:26:b1: f1:8e:91:7f:e6:a1:ed:a5:7d:b8:f4:50:76:36:b5:41:0f:d6: c4:9e:ea:8b:3e:73:f9:42:35:5d:a2:73:bb:24:49:f3:77:4e: 18:1c:be:07:53:1c:0b:99:d8:f4:2f:9b:80:5c:36:dc:5e:af: ca:89:b9:e3:ee:41:b3:c7:63:6b:ae:32:ee:99:f1:30:21:81: ea:e8:f8:a6:dc:2e:94:32:f9:8f:e3:2c:71:ef:84:79:c4:f6: 2e:9a:58:64:4a:03:54:68:c0:c6:c5:b0:51:b6:28:09:ef:f6: 18:2a:c7:d1:ec:0f:15:c5:62:70:0c:c6:00:c3:f7:a6:cf:b9: c9:d9:91:09:3d:5c:e3:f2:c1:fe:bc:0a:c2:80:9f:41:1e:d4: 29:f0:96:8e:27:3d:d1:7e:8f:d9:f4:99:dc:8c:6d:03:5a:8c: 84:8c:d3:74:3e:04:b2:90:6d:b3:d4:24:8f:13:d6:dd:b6:2a: 0f:5e:9e:76:56:db:1b:b1:fa:ff:b0:df:2a:f0:f6:ec:de:8d: a8:a4:6f:ad:21:0c:40:71:15:c4:95:41:d3:dc:34:ea:a1:6c: f2:05:85:32 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcOfmjC+e0k4wgUdfkvHUAaKp2ZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI2MTkyMjMwWhcNMjUwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzViNDM5NzA2YmJlZmNjN2IzYTk3YjU3NWI5Y2VlZTE3 NmJkNThmMzVlNjA0YWRkOWQ5YzJmNzAzODQ3NmViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUFm2gmxifpPL8VxU++ZVMUeeQ2pqWlvDqGWamf/heOcH/ G9Yj0xStxRfcTyozGv4t9Vya03SlJy0mmeLglgTciZA+qKZoEIpVI8Gb1TEoa1aU sTS1du9GipHC+sSrJFc38gLu5E/px8U8bNBEdSoaKZd9N28p6ytQH30yqRqaqLA0 D/xJQGC3fKyMcp2/vKxJhaInjqtpoLXvK1GT/x3FYsOMEPtX/HGG+A500T9RBFE5 au1vzOtubbyKNKVrcpOE+TAzSGqoEMVEuc579z7QZGzuahApauwa6som3kq8U3jB Ot5OCOmQTa0kLzH+nR/T4KZcg4DxPVhlHQNUoEsnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXyBcKUzWY62m5JFcStxjLCupoacwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5ODY4NzA1LTk5MDItNGUzYy04NjIxLTU5MWZjM2Q2MWY3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84gJAwDQYJKoZIhvcNAQELBQADggEBAL+gBDfHbCTM4/teG88aY7Io nOPU50P4/d8Xt+a7vNI5tbYmsfGOkX/moe2lfbj0UHY2tUEP1sSe6os+c/lCNV2i c7skSfN3ThgcvgdTHAuZ2PQvm4BcNtxer8qJuePuQbPHY2uuMu6Z8TAhgero+Kbc LpQy+Y/jLHHvhHnE9i6aWGRKA1RowMbFsFG2KAnv9hgqx9HsDxXFYnAMxgDD96bP ucnZkQk9XOPywf68CsKAn0Ee1Cnwlo4nPdF+j9n0mdyMbQNajISM03Q+BLKQbbPU JI8T1t22Kg9ennZW2xux+v+w3yrw9uzejaikb60hDEBxFcSVQdPcNOqhbPIFhTI= -----END CERTIFICATE-----Generated at Sun Jun 29 09:25:13 2025 by rpki-client