$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa File: 0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa (raw, json) Hash identifier: BXTNl8P08Ra4KUaqUpnp8VHsjut1PPH0z3Nh9EhTI34= Subject key identifier: 6A:14:DB:CD:65:41:60:B2:E5:67:05:11:07:F9:CF:EA:D9:B2:1E:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0447DD940E99062D47F200CE60FA6FCFE72946B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa Signing time: Fri 01 Aug 2025 17:02:14 +0000 ROA not before: Fri 01 Aug 2025 17:02:14 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:47:dd:94:0e:99:06:2d:47:f2:00:ce:60:fa:6f:cf:e7:29:46:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 17:02:14 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=e9e162551b0b9719ef78d3322f3e1944e38c50552ed981dd665e37f2bee0bb67, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5b:dc:f2:1a:d9:85:43:81:07:ca:c7:ed:ce: 44:09:6a:79:54:38:69:dc:63:1d:75:ef:8c:63:50: 8a:9a:e9:b8:6d:24:cc:3f:e9:fc:1c:c2:a2:e9:9b: 9e:fd:3d:04:14:4b:3e:57:f5:97:cd:95:6b:38:b2: cb:51:57:c0:c0:9f:01:fb:c1:bb:92:40:b0:ed:e7: e3:4a:a4:92:83:fd:3f:50:14:ef:e1:49:8e:3f:77: b1:58:b5:59:48:bb:6e:0e:a8:82:2c:94:62:67:1f: 15:fe:bb:8d:57:c3:1b:5f:ae:65:f8:df:57:ff:1a: 62:d3:51:de:d1:4b:94:ff:b5:8b:10:c7:63:af:b6: bc:0c:c6:ef:b9:db:f6:e6:11:c0:b0:36:59:d8:c9: 65:7a:65:e9:52:51:aa:c0:9e:77:fa:c5:61:7a:24: 0f:49:4e:9a:d0:25:01:61:b5:6e:2c:21:06:12:3e: 7e:a9:4a:ad:3a:98:19:d2:f9:d1:2a:5a:b0:22:35: c1:f2:d4:8f:bf:a4:7f:82:14:87:59:54:3b:ef:5e: 82:15:b8:af:f5:57:25:c5:f3:7c:72:ae:60:04:91: a8:18:47:79:6e:6e:20:7a:c3:d5:7f:97:2e:24:54: 34:c2:d1:89:12:82:30:f8:73:0a:06:06:13:98:9f: fd:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:14:DB:CD:65:41:60:B2:E5:67:05:11:07:F9:CF:EA:D9:B2:1E:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0c4b3cc1-2758-4f84-93c3-9706e2d1a0b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:8000::/48 Signature Algorithm: sha256WithRSAEncryption b9:f6:c4:41:1f:d5:1a:ea:5c:fd:71:d5:a9:fe:d8:71:98:e1: 4d:86:c7:db:35:dc:f9:f3:79:05:9f:11:3e:0c:ea:33:81:36: c8:42:49:bb:9e:55:a7:4f:57:eb:90:e7:08:cd:3f:18:f8:22: 19:b7:4a:27:5b:34:aa:79:6e:dc:d7:2c:21:b0:25:08:f5:7c: 78:03:83:4c:ab:66:37:c2:b3:27:40:e1:97:4d:5a:d4:ef:84: 29:1b:16:c4:a0:72:48:34:95:32:30:54:7f:cd:08:4a:22:01: a8:fd:b1:f1:c1:72:d9:3f:cf:e2:ec:2c:62:24:c3:85:ac:7d: f7:b5:45:45:1f:f1:07:f8:7b:bb:f2:f9:5d:d4:66:04:ce:61: 0b:d7:bb:fe:1d:16:95:dc:e7:4b:67:cf:d8:9b:8d:87:a8:37: 47:0a:78:4a:9d:97:71:16:07:8a:b4:69:e9:48:14:24:55:a1: d2:5e:0e:90:84:e0:77:98:e8:2e:ba:39:67:3e:c4:64:f8:2d: 7b:34:43:e7:1a:08:f5:5b:11:0d:e4:51:eb:46:9e:fd:14:e2: 27:d1:40:dc:a7:ff:9e:e4:06:af:4c:b3:62:b2:1d:e6:64:1b: f6:d0:0e:95:8f:31:6a:d0:d5:13:4a:85:03:d9:fb:46:82:f1: 10:78:f0:96 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBEfdlA6ZBi1H8gDOYPpvz+cpRrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTcwMjE0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOWUxNjI1NTFiMGI5NzE5ZWY3OGQzMzIyZjNlMTk0NGUz OGM1MDU1MmVkOTgxZGQ2NjVlMzdmMmJlZTBiYjY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAW9zyGtmFQ4EHysftzkQJanlUOGncYx1174xjUIqa6bht JMw/6fwcwqLpm579PQQUSz5X9ZfNlWs4sstRV8DAnwH7wbuSQLDt5+NKpJKD/T9Q FO/hSY4/d7FYtVlIu24OqIIslGJnHxX+u41XwxtfrmX431f/GmLTUd7RS5T/tYsQ x2OvtrwMxu+52/bmEcCwNlnYyWV6ZelSUarAnnf6xWF6JA9JTprQJQFhtW4sIQYS Pn6pSq06mBnS+dEqWrAiNcHy1I+/pH+CFIdZVDvvXoIVuK/1VyXF83xyrmAEkagY R3lubiB6w9V/ly4kVDTC0YkSgjD4cwoGBhOYn/1jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUahTbzWVBYLLlZwURB/nP6tmyHrEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjNGIzY2MxLTI3NTgtNGY4NC05M2MzLTk3MDZlMmQxYTBiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2gAAwDQYJKoZIhvcNAQELBQADggEBALn2xEEf1RrqXP1x1an+2HGY 4U2Gx9s13PnzeQWfET4M6jOBNshCSbueVadPV+uQ5wjNPxj4Ihm3SidbNKp5btzX LCGwJQj1fHgDg0yrZjfCsydA4ZdNWtTvhCkbFsSgckg0lTIwVH/NCEoiAaj9sfHB ctk/z+LsLGIkw4Wsffe1RUUf8Qf4e7vy+V3UZgTOYQvXu/4dFpXc50tnz9ibjYeo N0cKeEqdl3EWB4q0aelIFCRVodJeDpCE4HeY6C66OWc+xGT4LXs0Q+caCPVbEQ3k UetGnv0U4ifRQNyn/57kBq9Ms2KyHeZkG/bQDpWPMWrQ1RNKhQPZ+0aC8RB48JY= -----END CERTIFICATE-----Generated at Wed Aug 6 09:36:10 2025 by rpki-client