$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/209c3229-a553-41b6-ac59-9ded61685621.roa File: 209c3229-a553-41b6-ac59-9ded61685621.roa (raw, json) Hash identifier: cZTeB1QdC+6AQhRx7f1MSCNslalrU23JN4sCz2+XwAg= Subject key identifier: 51:1C:61:15:9C:C4:D8:5C:24:EF:80:33:7E:C7:4F:51:2E:BE:70:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DDE43A366560D4E2B85B9336167B75ACCFAA820 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/209c3229-a553-41b6-ac59-9ded61685621.roa Signing time: Mon 04 Aug 2025 15:20:35 +0000 ROA not before: Mon 04 Aug 2025 15:20:35 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:a480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:de:43:a3:66:56:0d:4e:2b:85:b9:33:61:67:b7:5a:cc:fa:a8:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:20:35 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=1678d7e628d8ed330d93be6ebb7cfbe856d9f6cedb7acd8f448469213df122ec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8d:19:d2:54:7a:cf:ac:fd:07:a1:b2:b2:4b: 60:04:57:07:13:1f:a3:5a:17:1a:12:d4:63:a4:9a: 32:61:b6:81:cc:c3:a8:4e:c9:aa:be:5b:e6:eb:92: 6e:ce:b3:1d:c2:1d:ac:fa:67:dc:36:a0:09:1a:77: fd:93:75:89:6d:40:e1:dd:cc:72:03:ef:19:15:a7: 8a:30:bb:b2:39:5c:2c:e3:ae:24:dd:3d:e1:c3:0a: a8:37:76:79:de:37:6a:59:07:1d:be:89:7e:d7:91: 87:ea:a7:3d:13:d4:b6:97:72:0e:48:cc:b7:8e:6e: 8e:d9:c2:18:2c:6c:bb:f9:4a:e0:d9:aa:4c:f9:65: 76:4a:80:90:00:dd:49:5a:16:2c:ae:40:3b:bc:1a: f7:37:b1:19:ea:21:ff:1c:c1:99:9e:2f:a9:3b:81: 84:70:f9:98:33:ce:01:b8:57:85:48:ce:7e:71:b6: 75:86:98:11:e9:8e:4b:ac:31:6c:7f:ac:2d:ce:37: ab:48:2f:fa:a5:72:96:c4:44:31:88:e4:ff:33:60: dc:24:c0:a4:f6:d1:98:cf:41:e4:31:4a:c2:56:82: 15:6f:34:59:dc:41:f5:4e:f3:16:d6:61:53:e7:e4: 87:ce:47:e9:54:b4:06:e1:93:fb:98:2f:0b:cf:df: d7:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:1C:61:15:9C:C4:D8:5C:24:EF:80:33:7E:C7:4F:51:2E:BE:70:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/209c3229-a553-41b6-ac59-9ded61685621.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:a480::/48 Signature Algorithm: sha256WithRSAEncryption 84:dc:e6:13:b5:48:45:c5:9e:95:7b:48:b0:09:d9:e0:09:9e: 3a:c8:4d:bd:9d:70:6e:41:4e:99:7d:40:ff:3e:c3:40:38:b9: 43:28:15:82:bf:8b:6b:69:4a:c7:ee:fa:09:88:7e:21:21:d4: 9f:f3:24:19:9e:cf:1a:74:73:07:db:69:18:49:10:1a:af:24: 9d:d7:7e:e1:ea:07:e0:22:ba:ae:4c:ae:43:cb:c6:cf:95:90: 60:1f:50:ca:75:4d:ce:96:7e:d3:c0:c2:c7:4c:79:78:57:bb: 37:e3:e1:1d:41:b7:bc:32:dc:16:f9:72:cb:69:49:f7:3a:62: 5b:27:1b:e0:c4:fc:a1:28:cd:d2:19:21:0d:7c:04:f7:b7:79: 83:72:7c:b0:e6:6a:fd:7e:35:ff:86:7f:f2:8a:1b:7d:a8:7e: ec:1d:dc:cc:6e:a7:f2:5c:3d:6f:f2:78:79:e8:d3:5d:99:f8: e3:e6:7f:43:f0:0f:fc:d7:a1:02:ef:03:83:1b:0a:c1:24:0c: 0a:2e:55:62:0a:92:13:be:34:a2:e2:82:db:42:64:35:ee:f2: cb:3a:03:45:70:f0:69:c8:1b:ed:e6:0a:44:9c:5c:9d:d1:b5: 03:31:f1:7c:6b:6e:12:c2:87:44:a1:5f:94:b4:c0:00:95:6b: ec:74:51:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDd5Do2ZWDU4rhbkzYWe3Wsz6qCAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUyMDM1WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjc4ZDdlNjI4ZDhlZDMzMGQ5M2JlNmViYjdjZmJlODU2 ZDlmNmNlZGI3YWNkOGY0NDg0NjkyMTNkZjEyMmVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyjRnSVHrPrP0HobKyS2AEVwcTH6NaFxoS1GOkmjJhtoHM w6hOyaq+W+brkm7Osx3CHaz6Z9w2oAkad/2TdYltQOHdzHID7xkVp4owu7I5XCzj riTdPeHDCqg3dnneN2pZBx2+iX7XkYfqpz0T1LaXcg5IzLeObo7ZwhgsbLv5SuDZ qkz5ZXZKgJAA3UlaFiyuQDu8Gvc3sRnqIf8cwZmeL6k7gYRw+ZgzzgG4V4VIzn5x tnWGmBHpjkusMWx/rC3ON6tIL/qlcpbERDGI5P8zYNwkwKT20ZjPQeQxSsJWghVv NFncQfVO8xbWYVPn5IfOR+lUtAbhk/uYLwvP39dZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUURxhFZzE2Fwk74AzfsdPUS6+cHEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwOWMzMjI5LWE1NTMtNDFiNi1hYzU5LTlkZWQ2MTY4NTYyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8ApIAwDQYJKoZIhvcNAQELBQADggEBAITc5hO1SEXFnpV7SLAJ2eAJ njrITb2dcG5BTpl9QP8+w0A4uUMoFYK/i2tpSsfu+gmIfiEh1J/zJBmezxp0cwfb aRhJEBqvJJ3XfuHqB+Aiuq5MrkPLxs+VkGAfUMp1Tc6WftPAwsdMeXhXuzfj4R1B t7wy3Bb5cstpSfc6YlsnG+DE/KEozdIZIQ18BPe3eYNyfLDmav1+Nf+Gf/KKG32o fuwd3Mxup/JcPW/yeHno012Z+OPmf0PwD/zXoQLvA4MbCsEkDAouVWIKkhO+NKLi gttCZDXu8ss6A0Vw8GnIG+3mCkScXJ3RtQMx8XxrbhLCh0ShX5S0wACVa+x0Uao= -----END CERTIFICATE-----Generated at Sun Aug 10 10:45:45 2025 by rpki-client