$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa File: 2420c225-afa1-4f5a-9de5-881837f8bf95.roa (raw, json) Hash identifier: ro/QjT/mcCZKY6Yz1bIM2ocnD1CTYMejzZ+3HEr+yjE= Subject key identifier: 94:84:D2:1A:3E:BD:4A:19:3B:13:A2:93:DE:21:E6:89:E9:4F:7E:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C75AFAF604B9319796F0689B8D41C3B8AC74DA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa Signing time: Mon 04 Aug 2025 16:31:34 +0000 ROA not before: Mon 04 Aug 2025 16:31:34 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f12:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:75:af:af:60:4b:93:19:79:6f:06:89:b8:d4:1c:3b:8a:c7:4d:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:31:34 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=f7f17089e677e2ce29c0ff496299978691f6ce02cc26578f90a2baf43277abbb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:9e:2d:7e:cb:76:49:dd:2f:5d:c8:75:b0: c4:ca:b0:54:32:15:de:3a:c9:85:77:92:08:79:c3: 93:d1:6b:74:da:c1:87:45:64:30:07:c8:d2:bc:12: 57:28:a6:a0:92:3b:a1:c4:e3:d0:e0:47:53:09:d6: 62:0a:51:47:4b:4b:83:33:03:0f:e7:8b:84:02:bb: cc:f5:f3:20:b0:4a:37:48:37:03:7f:7f:9e:8b:fd: ad:d1:7e:ab:b5:75:f3:aa:a6:b5:fd:84:0e:36:03: 5c:07:68:79:5b:5e:b3:e9:bc:f4:e9:b2:3b:88:49: 10:69:03:9e:fd:64:48:8e:ec:7a:23:b3:79:c0:9f: 6a:41:ac:d3:bd:1b:4b:7e:b4:be:3f:35:d3:06:b5: fb:31:f8:10:72:62:54:2a:84:e1:2d:93:e3:de:91: 4d:31:f2:6f:09:2a:1b:8d:40:04:db:d6:f2:0a:d9: a2:84:51:bf:39:11:0b:53:c3:9d:32:b4:a0:d2:79: 4a:3a:9c:c4:01:45:ef:49:d9:7f:b8:0c:be:28:5b: da:44:37:27:bb:ec:ae:d6:4c:53:c2:35:0d:7b:f1: c9:92:51:4e:8d:4d:a7:ff:94:c5:7a:95:16:2e:30: de:d0:ce:b0:1a:9e:27:af:d1:2f:80:2d:e8:28:08: 10:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:84:D2:1A:3E:BD:4A:19:3B:13:A2:93:DE:21:E6:89:E9:4F:7E:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2420c225-afa1-4f5a-9de5-881837f8bf95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12:c00::/38 Signature Algorithm: sha256WithRSAEncryption 4e:b2:a7:01:3e:01:e3:7d:57:06:0f:8e:9a:e9:f3:17:49:3a: 1a:d8:6e:38:7e:3a:f1:a2:b0:c4:0c:e9:12:51:d9:c0:42:41: a9:01:49:f4:18:c5:a5:fa:02:22:30:d8:2b:e9:3d:04:e2:df: f1:46:7b:b7:8b:28:1a:b7:18:c4:c9:d5:db:d0:de:d9:db:53: 81:d3:30:32:43:dd:4c:9b:60:a4:ec:d2:aa:31:15:56:5a:d5: d6:61:94:10:e6:91:32:6b:cc:52:bb:91:5d:01:24:58:18:d8: 95:5c:52:1b:24:0b:8b:17:81:3f:0d:15:7c:37:aa:ff:c3:c4: 25:c9:2a:cc:a0:63:39:41:2a:ea:4d:d6:d4:02:90:d0:41:1b: 47:b8:1e:20:90:10:b0:b4:d5:4c:e2:ad:46:e2:0a:e3:1a:62: af:12:51:0a:6f:90:2c:56:9e:f9:41:79:49:30:a6:ee:ab:a0: 75:7f:a9:98:3e:45:f3:33:35:01:9c:90:cd:61:e8:cf:43:dc: 17:d4:1c:cf:00:0a:49:0e:57:9d:ab:c4:72:92:1c:0e:da:52: 34:a4:c4:55:6e:81:92:c6:6c:6d:28:00:f8:20:c0:15:39:56: 08:4b:4b:de:a7:ce:1e:cb:63:d1:a6:4e:b6:2e:0d:81:22:91: 4c:57:cd:0d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXHWvr2BLkxl5bwaJuNQcO4rHTaIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYzMTM0WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmN2YxNzA4OWU2NzdlMmNlMjljMGZmNDk2Mjk5OTc4Njkx ZjZjZTAyY2MyNjU3OGY5MGEyYmFmNDMyNzdhYmJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4Dp4tfst2Sd0vXch1sMTKsFQyFd46yYV3kgh5w5PRa3Ta wYdFZDAHyNK8ElcopqCSO6HE49DgR1MJ1mIKUUdLS4MzAw/ni4QCu8z18yCwSjdI NwN/f56L/a3Rfqu1dfOqprX9hA42A1wHaHlbXrPpvPTpsjuISRBpA579ZEiO7Hoj s3nAn2pBrNO9G0t+tL4/NdMGtfsx+BByYlQqhOEtk+PekU0x8m8JKhuNQATb1vIK 2aKEUb85EQtTw50ytKDSeUo6nMQBRe9J2X+4DL4oW9pENye77K7WTFPCNQ178cmS UU6NTaf/lMV6lRYuMN7QzrAaniev0S+ALegoCBCVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUlITSGj69Shk7E6KT3iHmielPfrUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0MjBjMjI1LWFmYTEtNGY1YS05ZGU1LTg4MTgzN2Y4YmY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8SDDANBgkqhkiG9w0BAQsFAAOCAQEATrKnAT4B431XBg+OmunzF0k6 GthuOH468aKwxAzpElHZwEJBqQFJ9BjFpfoCIjDYK+k9BOLf8UZ7t4soGrcYxMnV 29De2dtTgdMwMkPdTJtgpOzSqjEVVlrV1mGUEOaRMmvMUruRXQEkWBjYlVxSGyQL ixeBPw0VfDeq/8PEJckqzKBjOUEq6k3W1AKQ0EEbR7geIJAQsLTVTOKtRuIK4xpi rxJRCm+QLFae+UF5STCm7qugdX+pmD5F8zM1AZyQzWHoz0PcF9QczwAKSQ5XnavE cpIcDtpSNKTEVW6BksZsbSgA+CDAFTlWCEtL3qfOHstj0aZOti4NgSKRTFfNDQ== -----END CERTIFICATE-----Generated at Thu Aug 7 04:34:35 2025 by rpki-client