$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09e0eed7-f971-49f0-8b15-65706a28f0d4.roa File: 09e0eed7-f971-49f0-8b15-65706a28f0d4.roa (raw, json) Hash identifier: b6PTxwIXMEXC+lrxyNzyF2z7kGoZ4pOsy7dRV9zBUaU= Subject key identifier: FE:7F:09:C3:D0:22:79:8A:BB:75:5D:6D:B2:4D:8C:9E:89:C5:4D:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B9471F2EC6D7A7335ECC8F1007C6BA24B0AB40F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09e0eed7-f971-49f0-8b15-65706a28f0d4.roa Signing time: Fri 01 Aug 2025 15:50:25 +0000 ROA not before: Fri 01 Aug 2025 15:50:25 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:94:71:f2:ec:6d:7a:73:35:ec:c8:f1:00:7c:6b:a2:4b:0a:b4:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:50:25 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=784b6d4e5accaa09d9b72fd62bf85743dc37a2360ab797c3054abd361c7b2c9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a1:cf:7c:6e:7e:be:5c:6e:fd:45:ff:8b:f0: 8e:f8:b0:8e:8d:9d:64:9c:52:ef:d3:48:70:9c:24: 41:b2:3e:44:5f:14:a0:70:fe:67:cd:38:82:fc:d4: 86:a1:1b:63:1b:a6:5b:32:71:ef:e2:6e:a5:55:58: 20:e8:a6:25:00:3c:91:d3:af:1f:27:67:e1:60:9b: 40:5a:40:08:6f:a5:72:1c:f4:99:73:08:6b:bc:a6: bd:41:1a:81:b3:aa:c8:6d:c4:5c:9a:2b:10:4b:22: fd:88:74:b4:a0:3d:89:5e:ce:ae:40:68:f7:5c:23: bd:17:5e:cf:aa:f1:be:7d:88:f8:0d:c6:41:84:3e: 8f:4c:d5:fe:f0:51:ea:02:15:a1:88:a9:68:6c:a0: 72:db:a6:a4:95:6d:ef:0e:f1:64:80:57:4c:7f:b1: 8a:53:10:b6:44:a6:1e:f1:1f:24:ee:6b:95:df:2c: 57:19:f4:c1:75:ba:e0:64:33:42:91:74:e5:67:d8: be:46:fb:c8:87:1d:ef:35:a8:56:7c:47:2a:0b:9c: 1d:52:57:35:58:dd:4e:9b:7b:50:06:9f:e0:65:4a: ba:c2:f5:a1:f4:cc:1e:77:5d:d1:83:da:0d:67:1c: 75:fb:fd:d1:b5:a1:96:fb:a2:3d:75:de:24:16:9d: 4b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:7F:09:C3:D0:22:79:8A:BB:75:5D:6D:B2:4D:8C:9E:89:C5:4D:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09e0eed7-f971-49f0-8b15-65706a28f0d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4010::/48 Signature Algorithm: sha256WithRSAEncryption 1d:fa:7b:09:23:88:8d:13:55:32:3b:09:54:ad:04:8a:e5:2c: 09:10:09:07:82:71:2b:19:af:90:34:4a:cd:06:26:a7:f9:28: 66:e5:b5:df:1e:60:b7:38:93:77:8c:c0:89:c4:e2:84:c0:8b: 0d:07:4a:a7:34:06:5c:b5:53:26:c8:ad:4e:85:28:34:d0:2c: f6:45:0a:16:c2:ab:b4:07:dd:93:f5:f0:e9:01:fc:f1:18:f6: 8b:96:01:15:de:ac:57:4e:68:55:cd:9a:df:23:19:cc:be:51: 6a:23:1f:24:f6:29:9a:e9:f0:db:3d:1c:57:5a:2e:16:ae:f0: 00:4c:8e:ea:50:1d:7c:82:4f:12:a0:b6:db:5f:b1:33:a8:3e: b7:b7:31:81:f0:34:ab:d6:a4:f8:21:75:8e:49:fa:c1:a6:af: 6b:7b:21:65:ec:ee:71:26:21:df:fd:28:86:f6:c9:dc:b3:fa: 3c:ff:9d:3b:43:e3:f6:52:94:ad:ce:4c:2b:74:84:5c:f2:ad: 9a:f6:97:5d:03:13:9a:6c:60:63:5a:94:5c:1f:ad:6b:10:77: 20:c6:77:37:c1:e2:4f:7d:10:48:35:f8:5c:da:9e:2f:c9:88: 03:23:44:4d:de:33:8b:c4:6e:cd:4d:f3:e7:9e:4d:a0:b4:6d: 24:7d:e8:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW5Rx8uxtenM17MjxAHxroksKtA8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTU1MDI1WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODRiNmQ0ZTVhY2NhYTA5ZDliNzJmZDYyYmY4NTc0M2Rj MzdhMjM2MGFiNzk3YzMwNTRhYmQzNjFjN2IyYzliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeoc98bn6+XG79Rf+L8I74sI6NnWScUu/TSHCcJEGyPkRf FKBw/mfNOIL81IahG2Mbplsyce/ibqVVWCDopiUAPJHTrx8nZ+Fgm0BaQAhvpXIc 9JlzCGu8pr1BGoGzqshtxFyaKxBLIv2IdLSgPYlezq5AaPdcI70XXs+q8b59iPgN xkGEPo9M1f7wUeoCFaGIqWhsoHLbpqSVbe8O8WSAV0x/sYpTELZEph7xHyTua5Xf LFcZ9MF1uuBkM0KRdOVn2L5G+8iHHe81qFZ8RyoLnB1SVzVY3U6be1AGn+BlSrrC 9aH0zB53XdGD2g1nHHX7/dG1oZb7oj113iQWnUuvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/n8Jw9AieYq7dV1tsk2MnonFTXYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5ZTBlZWQ3LWY5NzEtNDlmMC04YjE1LTY1NzA2YTI4ZjBkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQBAwDQYJKoZIhvcNAQELBQADggEBAB36ewkjiI0TVTI7CVStBIrl LAkQCQeCcSsZr5A0Ss0GJqf5KGbltd8eYLc4k3eMwInE4oTAiw0HSqc0Bly1UybI rU6FKDTQLPZFChbCq7QH3ZP18OkB/PEY9ouWARXerFdOaFXNmt8jGcy+UWojHyT2 KZrp8Ns9HFdaLhau8ABMjupQHXyCTxKgtttfsTOoPre3MYHwNKvWpPghdY5J+sGm r2t7IWXs7nEmId/9KIb2ydyz+jz/nTtD4/ZSlK3OTCt0hFzyrZr2l10DE5psYGNa lFwfrWsQdyDGdzfB4k99EEg1+Fzani/JiAMjRE3eM4vEbs1N8+eeTaC0bSR96EM= -----END CERTIFICATE-----Generated at Wed Aug 6 05:24:43 2025 by rpki-client