$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa File: efc992f9-00af-49f7-9474-d7a5b0a4a931.roa (raw, json) Hash identifier: KQ+PjizD5szgshAouwjJyIuU+0dUJmGTJFBzo323xX0= Subject key identifier: 00:76:43:5B:A7:25:0D:A4:72:D3:5E:2C:60:15:A3:F0:30:91:65:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1588A81CB0990B46BA60741E6598E91D9C1BED60 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa Signing time: Tue 24 Jun 2025 00:10:23 +0000 ROA not before: Tue 24 Jun 2025 00:10:23 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01:4850::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:88:a8:1c:b0:99:0b:46:ba:60:74:1e:65:98:e9:1d:9c:1b:ed:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:10:23 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=130a124b1fb9472d9f0f3f9eeb586cc5b8d9b95f33b40372d0976dc5d41e39ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5b:5b:29:d2:59:9a:67:b1:c1:47:81:dd:91: 82:ac:fa:23:b7:01:73:b4:59:af:35:10:b1:aa:4f: b2:3d:54:5f:c5:41:3c:89:a7:0c:c2:c4:fc:2f:2d: 7f:d4:97:c7:ab:35:53:a6:8c:56:f5:a8:5a:90:fe: 2a:78:9b:45:42:59:1d:25:a2:03:57:04:40:b8:1c: df:dd:23:fc:f8:76:56:4e:16:1c:f7:a2:2b:53:f9: fa:a9:2c:81:34:52:e2:04:e9:1c:84:ee:71:87:bd: ba:d5:ee:9a:c4:27:63:76:0d:81:03:f9:29:80:2c: 42:ff:a2:1d:40:26:91:d9:b2:a5:48:19:2b:2a:97: 5d:2d:5a:cf:21:37:ca:77:37:0e:3c:1f:c8:89:b5: 29:55:26:f9:fc:34:f4:19:a1:17:5d:cf:93:62:57: 33:0b:69:f2:36:a1:a9:ca:38:87:7f:71:ba:05:1d: 62:30:33:2c:64:c0:21:f6:9f:ec:47:20:6a:98:2c: e5:d9:a7:63:7d:19:e8:7a:91:81:98:97:7e:2b:ee: 6e:bd:0b:03:cd:6a:93:de:ea:ac:f8:6a:5d:2a:64: cd:e8:83:2a:bf:f8:60:3e:9e:6c:7f:2e:70:25:ff: a9:5a:a2:a1:65:da:f9:21:7d:6f:2d:e7:2a:54:89: 84:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:76:43:5B:A7:25:0D:A4:72:D3:5E:2C:60:15:A3:F0:30:91:65:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:4850::/47 Signature Algorithm: sha256WithRSAEncryption 9b:15:79:e1:86:73:73:b7:fb:ef:6b:05:05:c2:65:1a:bb:1b: 72:55:37:51:73:41:36:0c:b8:ab:75:e7:3a:32:af:4e:96:03: 43:1b:7f:fb:1d:a2:c6:10:4c:3a:bd:5f:8c:94:b7:eb:32:ce: 4b:69:a5:da:2b:64:1c:44:56:03:17:85:36:40:8e:df:d9:f2: 96:f5:c7:b9:fc:f4:ed:64:4a:df:52:60:2d:27:ec:21:02:ae: 9d:a2:25:34:6f:44:74:5e:34:51:b7:bf:d6:12:82:5a:6a:f4: 60:31:0d:1f:44:5e:e3:33:bf:06:9c:ca:31:f8:c8:5a:cf:c0: 4f:17:83:8a:86:0e:e1:53:c4:45:94:84:d5:e7:e9:aa:ac:9f: 2d:2a:a1:57:47:66:ec:7f:83:1e:83:14:cf:9f:e2:52:a1:cc: 82:a8:87:0f:15:a1:7f:82:83:8d:20:2c:6f:00:91:10:3e:bc: ec:1f:b7:01:38:25:1b:93:2a:17:fc:45:fa:86:b3:9b:ed:f7: 91:d2:bb:7f:65:f7:e6:b9:59:d8:85:9d:45:cf:0f:e4:7f:fd: d6:c3:47:74:57:0a:31:5b:8d:4a:f7:8d:7d:2e:2b:ce:fc:46: 5b:15:f5:b4:ea:bc:dd:37:58:df:32:eb:99:77:6c:3c:a8:85: 0c:4f:d0:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFYioHLCZC0a6YHQeZZjpHZwb7WAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAxMDIzWhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzBhMTI0YjFmYjk0NzJkOWYwZjNmOWVlYjU4NmNjNWI4 ZDliOTVmMzNiNDAzNzJkMDk3NmRjNWQ0MWUzOWFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKW1sp0lmaZ7HBR4HdkYKs+iO3AXO0Wa81ELGqT7I9VF/F QTyJpwzCxPwvLX/Ul8erNVOmjFb1qFqQ/ip4m0VCWR0logNXBEC4HN/dI/z4dlZO Fhz3oitT+fqpLIE0UuIE6RyE7nGHvbrV7prEJ2N2DYED+SmALEL/oh1AJpHZsqVI GSsql10tWs8hN8p3Nw48H8iJtSlVJvn8NPQZoRddz5NiVzMLafI2oanKOId/cboF HWIwMyxkwCH2n+xHIGqYLOXZp2N9Geh6kYGYl34r7m69CwPNapPe6qz4al0qZM3o gyq/+GA+nmx/LnAl/6laoqFl2vkhfW8t5ypUiYTjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAHZDW6clDaRy014sYBWj8DCRZVgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmYzk5MmY5LTAwYWYtNDlmNy05NDc0LWQ3YTViMGE0YTkzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSFAwDQYJKoZIhvcNAQELBQADggEBAJsVeeGGc3O3++9rBQXCZRq7 G3JVN1FzQTYMuKt15zoyr06WA0Mbf/sdosYQTDq9X4yUt+syzktppdorZBxEVgMX hTZAjt/Z8pb1x7n89O1kSt9SYC0n7CECrp2iJTRvRHReNFG3v9YSglpq9GAxDR9E XuMzvwacyjH4yFrPwE8Xg4qGDuFTxEWUhNXn6aqsny0qoVdHZux/gx6DFM+f4lKh zIKohw8VoX+Cg40gLG8AkRA+vOwftwE4JRuTKhf8RfqGs5vt95HSu39l9+a5WdiF nUXPD+R//dbDR3RXCjFbjUr3jX0uK878RlsV9bTqvN03WN8y65l3bDyohQxP0GE= -----END CERTIFICATE-----Generated at Tue Jul 1 22:34:24 2025 by rpki-client