$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0796eace-3a85-420a-a7a4-ba54f4050cce.roa File: 0796eace-3a85-420a-a7a4-ba54f4050cce.roa (raw, json) Hash identifier: xgBaiwNFgvkm9LNto1qd+rc2vZwhMLXaS8l7NhmqiqI= Subject key identifier: 42:85:9F:EF:00:63:48:81:26:50:B7:3D:0B:DE:EE:92:AE:DC:C8:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 141EF790653F176E2C587459F9257C84E9EEB7E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0796eace-3a85-420a-a7a4-ba54f4050cce.roa Signing time: Mon 04 Aug 2025 16:11:07 +0000 ROA not before: Mon 04 Aug 2025 16:11:07 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1e:f7:90:65:3f:17:6e:2c:58:74:59:f9:25:7c:84:e9:ee:b7:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:11:07 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=a280e51fa6144c37c2cd2a95827b0a48bce0a2e4dcddcf9b38cd49aaa8f050e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b9:d1:37:77:53:ea:d3:bc:95:be:12:fd:09: 0c:2a:53:77:48:9c:31:49:df:21:fe:bc:87:a9:73: 38:5b:30:f6:67:49:ce:e8:08:1d:ab:48:e3:3f:84: 81:c6:78:a2:a0:0d:54:d3:0c:61:cd:44:8c:80:ac: 76:21:d7:7b:93:de:bd:85:ae:fe:e2:93:99:7c:22: 37:00:5a:bf:31:d4:d2:b5:b7:20:d6:21:9c:61:02: 47:af:75:97:7b:20:a0:2f:09:b4:9e:6c:60:75:73: 87:6a:fc:12:64:74:ab:be:ef:73:6d:8d:82:47:06: 7e:6b:24:01:66:56:6d:af:2d:3a:0c:d2:00:1b:8e: 32:4a:14:ed:fe:a5:fc:93:ce:1c:19:f2:2a:d2:43: 8a:d8:65:73:17:51:30:22:7b:11:86:52:80:a9:e0: a0:ef:db:6c:27:b6:4b:5c:48:dd:17:d8:a4:10:d5: 2e:eb:00:74:c3:d5:5b:41:b3:fc:19:f3:40:f2:f1: 03:db:39:56:27:bc:40:01:f2:d2:20:52:c6:62:ed: 95:e5:9e:22:f0:df:c5:89:85:bf:3b:c3:bc:a1:64: e0:4b:38:02:9b:8d:9c:47:5a:c8:1a:1f:10:cc:53: ad:1b:77:9b:cf:85:ea:b5:b1:69:85:53:cd:f4:6e: 84:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:85:9F:EF:00:63:48:81:26:50:B7:3D:0B:DE:EE:92:AE:DC:C8:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0796eace-3a85-420a-a7a4-ba54f4050cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 3d:61:fa:c4:90:3f:12:e2:c1:bd:eb:31:14:51:d5:0d:87:b9: d1:c6:59:ca:ed:2c:4c:01:92:6d:cd:47:88:d3:34:12:91:c7: 71:9c:65:13:67:cf:3e:a1:9b:7b:51:97:78:97:e6:fe:d7:6d: 76:08:3e:53:41:2f:7c:c3:d5:1d:84:7d:3e:fc:97:bc:c8:06: a3:7c:56:37:1f:9c:d6:c9:a0:8a:d5:cb:42:e0:3f:9d:d1:9c: a3:e1:8f:30:b7:12:ff:8c:07:2d:08:2b:ff:be:a7:6b:dd:5d: 77:21:0e:d0:35:24:99:70:02:2d:e9:69:89:77:db:4b:66:ff: e9:7e:00:46:23:41:44:33:5a:08:40:3b:37:e7:95:f1:5f:0e: d6:21:32:41:73:33:33:f2:43:d0:83:3a:52:cb:c1:06:f3:8d: 5d:91:34:ea:52:59:1f:78:f1:48:af:11:2d:ec:bc:df:c9:28: fb:77:81:93:c1:87:c0:a3:a4:0b:35:98:55:62:3b:9a:44:72: 0e:96:28:f2:38:b6:89:7d:7c:bd:8d:2b:f1:24:e0:07:99:b9: 94:eb:b6:99:85:e2:2e:a4:18:4e:ef:a6:58:b2:cc:27:2f:67: 31:2a:db:2f:99:7c:be:1c:9a:88:f9:16:ce:17:a0:a9:8a:bf: e5:c7:86:ae -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFB73kGU/F24sWHRZ+SV8hOnut+EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYxMTA3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjgwZTUxZmE2MTQ0YzM3YzJjZDJhOTU4MjdiMGE0OGJj ZTBhMmU0ZGNkZGNmOWIzOGNkNDlhYWE4ZjA1MGUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIudE3d1Pq07yVvhL9CQwqU3dInDFJ3yH+vIepczhbMPZn Sc7oCB2rSOM/hIHGeKKgDVTTDGHNRIyArHYh13uT3r2Frv7ik5l8IjcAWr8x1NK1 tyDWIZxhAkevdZd7IKAvCbSebGB1c4dq/BJkdKu+73NtjYJHBn5rJAFmVm2vLToM 0gAbjjJKFO3+pfyTzhwZ8irSQ4rYZXMXUTAiexGGUoCp4KDv22wntktcSN0X2KQQ 1S7rAHTD1VtBs/wZ80Dy8QPbOVYnvEAB8tIgUsZi7ZXlniLw38WJhb87w7yhZOBL OAKbjZxHWsgaHxDMU60bd5vPheq1sWmFU830boRzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUQoWf7wBjSIEmULc9C97ukq7cyIswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3OTZlYWNlLTNhODUtNDIwYS1hN2E0LWJhNTRmNDA1MGNjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAPWH6xJA/EuLBvesxFFHVDYe5 0cZZyu0sTAGSbc1HiNM0EpHHcZxlE2fPPqGbe1GXeJfm/tdtdgg+U0EvfMPVHYR9 PvyXvMgGo3xWNx+c1smgitXLQuA/ndGco+GPMLcS/4wHLQgr/76na91ddyEO0DUk mXACLelpiXfbS2b/6X4ARiNBRDNaCEA7N+eV8V8O1iEyQXMzM/JD0IM6UsvBBvON XZE06lJZH3jxSK8RLey838ko+3eBk8GHwKOkCzWYVWI7mkRyDpYo8ji2iX18vY0r 8STgB5m5lOu2mYXiLqQYTu+mWLLMJy9nMSrbL5l8vhyaiPkWzhegqYq/5ceGrg== -----END CERTIFICATE-----Generated at Thu Aug 7 02:11:06 2025 by rpki-client