$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c593235-d4d1-42e7-a46c-4f5812080ba3.roa File: 1c593235-d4d1-42e7-a46c-4f5812080ba3.roa (raw, json) Hash identifier: hHPcLGFhkCaUZqNANGTYTb+G4AlNDQvz65n+M3tLQ04= Subject key identifier: F1:89:F2:CB:DE:25:D7:60:89:5E:72:99:A4:FB:16:99:40:0E:1E:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 622CF8F433C30AC6E5348ED1261F82407AB9E462 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c593235-d4d1-42e7-a46c-4f5812080ba3.roa Signing time: Fri 01 Aug 2025 15:52:03 +0000 ROA not before: Fri 01 Aug 2025 15:52:03 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:8160::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:2c:f8:f4:33:c3:0a:c6:e5:34:8e:d1:26:1f:82:40:7a:b9:e4:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:52:03 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=f973a53258d52cf215ac3fc1ebf41e656f4258b3a3276ec73664b055f462c10f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:5b:12:79:f4:3a:23:f6:0d:26:08:4d:5f:51: 10:7b:69:ec:af:1b:0e:de:27:71:24:11:8f:0f:49: fb:29:38:eb:46:dd:87:db:b8:89:aa:f9:6a:e0:23: 54:64:8b:f2:72:f6:9b:f9:ca:50:7f:36:e1:20:43: 06:8e:f4:6c:46:07:bc:4d:f7:8e:28:de:53:21:f9: 11:42:9e:60:d0:56:0c:b5:69:d0:a1:e1:0b:76:c5: 9a:38:2f:10:3a:0d:6f:80:6c:a6:ad:69:d5:f7:d1: bb:3a:01:21:c6:51:dc:d1:20:1c:a6:76:c0:32:4d: 6c:8c:68:11:44:f8:d8:44:85:11:58:58:f4:35:f8: cd:ff:2b:bb:d2:c3:0e:80:aa:10:e8:57:dd:e3:7b: d5:75:3b:10:8d:20:a2:59:ac:a8:35:b2:36:76:90: 31:d1:d5:09:ed:3f:41:c5:5a:2a:62:06:89:3a:fb: 92:ba:6b:f5:1b:67:d4:62:15:3f:7d:32:a4:e3:d7: 0c:61:58:35:fa:72:1c:8b:ee:87:c7:04:bf:57:d9: 58:1d:ff:91:0b:fd:ab:e9:14:2d:db:b0:71:2a:13: 5e:b6:8d:d2:33:56:e2:65:ca:3d:01:87:19:15:51: 32:f5:fc:31:33:93:b1:24:e0:2a:b9:c3:ec:a7:bb: cf:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:89:F2:CB:DE:25:D7:60:89:5E:72:99:A4:FB:16:99:40:0E:1E:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c593235-d4d1-42e7-a46c-4f5812080ba3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8160::/48 Signature Algorithm: sha256WithRSAEncryption 08:ad:96:1d:a9:72:78:b1:34:77:85:10:ae:82:00:ae:39:e7: b8:2a:d7:6b:f1:f2:37:ed:2a:44:c0:26:ce:f7:06:d1:d8:ac: b3:fd:58:c9:6b:d9:0d:07:a5:48:6e:56:7d:89:ef:33:cb:78: 15:64:21:21:d3:20:9b:4d:ad:2d:c4:84:1f:2c:4c:11:a3:11: b1:49:77:29:a0:51:fa:4a:7c:24:78:1b:1b:69:08:66:09:0d: 93:ef:30:cf:5d:30:78:ad:cf:6b:5f:21:c9:4f:a3:91:43:c7: 91:6a:4e:3d:11:58:17:72:09:46:d5:88:f6:22:36:f1:a1:c9: f2:2a:80:3a:36:49:a6:4f:73:91:ad:41:76:0d:25:f8:28:d4: bb:a9:56:6a:86:bf:07:6f:b2:d3:6e:a8:aa:5d:9d:bf:23:d4: 1b:02:c8:f2:20:b1:c8:66:71:40:c8:30:ba:15:e1:1b:5b:82: 2d:fe:7b:51:eb:e8:2e:09:2e:0e:fe:76:0e:b3:04:15:e4:a4: c0:77:9d:eb:d9:97:56:f1:b2:89:95:12:40:ec:9c:90:7b:f8: 54:e8:6a:b6:fd:96:8d:be:74:f9:70:e8:aa:d4:b5:07:45:81: 5c:ec:62:06:db:06:ed:27:4f:20:43:df:6e:f9:30:a5:ae:c5: 0e:4e:af:2d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYiz49DPDCsblNI7RJh+CQHq55GIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTU1MjAzWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTczYTUzMjU4ZDUyY2YyMTVhYzNmYzFlYmY0MWU2NTZm NDI1OGIzYTMyNzZlYzczNjY0YjA1NWY0NjJjMTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOWxJ59Doj9g0mCE1fURB7aeyvGw7eJ3EkEY8PSfspOOtG 3YfbuImq+WrgI1Rki/Jy9pv5ylB/NuEgQwaO9GxGB7xN944o3lMh+RFCnmDQVgy1 adCh4Qt2xZo4LxA6DW+AbKatadX30bs6ASHGUdzRIBymdsAyTWyMaBFE+NhEhRFY WPQ1+M3/K7vSww6AqhDoV93je9V1OxCNIKJZrKg1sjZ2kDHR1QntP0HFWipiBok6 +5K6a/UbZ9RiFT99MqTj1wxhWDX6chyL7ofHBL9X2Vgd/5EL/avpFC3bsHEqE162 jdIzVuJlyj0BhxkVUTL1/DEzk7Ek4Cq5w+ynu895AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8Ynyy94l12CJXnKZpPsWmUAOHv4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjNTkzMjM1LWQ0ZDEtNDJlNy1hNDZjLTRmNTgxMjA4MGJhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgWAwDQYJKoZIhvcNAQELBQADggEBAAitlh2pcnixNHeFEK6CAK45 57gq12vx8jftKkTAJs73BtHYrLP9WMlr2Q0HpUhuVn2J7zPLeBVkISHTIJtNrS3E hB8sTBGjEbFJdymgUfpKfCR4GxtpCGYJDZPvMM9dMHitz2tfIclPo5FDx5FqTj0R WBdyCUbViPYiNvGhyfIqgDo2SaZPc5GtQXYNJfgo1LupVmqGvwdvstNuqKpdnb8j 1BsCyPIgschmcUDIMLoV4Rtbgi3+e1Hr6C4JLg7+dg6zBBXkpMB3nevZl1bxsomV EkDsnJB7+FToarb9lo2+dPlw6KrUtQdFgVzsYgbbBu0nTyBD3275MKWuxQ5Ory0= -----END CERTIFICATE-----Generated at Mon Aug 4 22:22:19 2025 by rpki-client