$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa File: 2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa (raw, json) Hash identifier: bMbLKHEoknPLGryuNp3p11ps4RziGy6CBPdi6ZEq+Ig= Subject key identifier: 36:59:A4:74:FD:FC:E6:20:60:75:7A:06:37:F9:61:1B:84:28:72:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EE01E658F362919474530FFBC6A7107D6DFE62A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa Signing time: Mon 04 Aug 2025 15:21:19 +0000 ROA not before: Mon 04 Aug 2025 15:21:19 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e0:1e:65:8f:36:29:19:47:45:30:ff:bc:6a:71:07:d6:df:e6:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:21:19 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=048b0278cfd4e9478949846b467a5653d30dd4b61fb3769a9e44d8f25a6f9f5b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b0:46:f0:2e:64:25:b5:26:69:15:92:ca:c0: 96:84:25:61:60:ef:5d:72:3d:30:36:20:33:b9:a0: 9b:de:e3:97:65:a0:79:78:b9:78:ec:71:1f:08:ac: a3:e7:1f:d8:7e:47:34:18:ea:c0:b3:25:4a:e0:02: 8a:04:be:14:32:2d:14:02:ed:f4:a2:54:9d:42:0f: cc:e4:47:4e:6d:7d:4c:59:f2:9d:43:66:84:2e:a0: ce:30:ee:26:62:e3:f7:c0:00:7c:89:da:e9:a7:df: 9d:d5:e3:9d:13:0b:d3:54:f3:0b:9c:69:6b:83:71: 43:0a:d0:6f:ec:32:77:77:89:d9:cb:c4:24:8c:f4: 98:40:f6:d5:3f:5f:f9:18:f3:4b:05:d7:18:b2:71: 6a:5c:ec:88:6e:a5:9b:fe:fd:1d:b3:f2:f2:c0:c5: 94:ff:d9:3c:27:c8:f1:90:10:f5:79:99:f9:41:23: b7:5f:66:b2:c1:c1:18:23:9b:45:4c:2a:3e:44:2e: b3:5d:f2:00:09:73:26:99:60:30:ec:07:ad:79:23: c0:b8:e5:6a:fa:78:27:45:24:f5:c7:e8:96:06:7c: c5:70:c8:c0:be:ee:c1:38:09:d7:b7:3f:00:2e:31: 88:f1:8d:f9:58:88:dc:85:4b:4e:e2:22:91:08:00: 91:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:59:A4:74:FD:FC:E6:20:60:75:7A:06:37:F9:61:1B:84:28:72:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:3480::/48 Signature Algorithm: sha256WithRSAEncryption c6:96:b6:69:44:5f:f1:d9:6d:4c:1f:ca:98:76:c3:60:3e:5b: a0:cb:1d:17:1b:6d:ac:d9:9d:41:6f:ed:99:c5:01:46:05:ab: 15:f6:ac:64:e0:0f:35:86:76:22:70:47:4a:b7:30:de:2e:58: 45:96:51:65:e1:42:07:74:a4:35:ab:2c:43:3d:64:72:55:8e: c1:e3:8d:e6:ee:8d:97:a7:f3:c2:c3:d2:29:18:d5:80:ef:19: 8c:a1:0d:5c:c4:fc:2b:8e:17:e9:5c:52:c6:b2:e7:08:6e:dc: d5:21:d3:e2:99:5f:32:64:ad:bb:5f:ba:9d:d0:03:a0:08:e0: b6:e1:07:0e:68:f5:f7:74:28:23:74:aa:b7:e7:98:d7:48:68: 59:a5:b5:06:35:32:4f:d0:a5:1a:64:0c:4d:30:eb:02:1b:6b: 54:65:fd:d6:40:f9:17:62:1b:bf:a3:63:04:ff:29:8d:79:e2: 18:0d:70:33:b3:de:fc:81:11:8c:f5:57:ac:58:1e:a9:09:a0: a9:7a:60:cd:1a:1b:df:8c:e2:99:fd:00:99:fa:81:cc:31:d1: 5c:a0:21:f9:5d:43:1b:17:df:ce:0e:49:94:c2:13:09:38:6a: 6e:01:3e:80:44:98:89:25:7f:88:47:35:6f:2f:9f:25:99:0e: 1d:35:11:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPuAeZY82KRlHRTD/vGpxB9bf5iowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUyMTE5WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDhiMDI3OGNmZDRlOTQ3ODk0OTg0NmI0NjdhNTY1M2Qz MGRkNGI2MWZiMzc2OWE5ZTQ0ZDhmMjVhNmY5ZjViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKsEbwLmQltSZpFZLKwJaEJWFg711yPTA2IDO5oJve45dl oHl4uXjscR8IrKPnH9h+RzQY6sCzJUrgAooEvhQyLRQC7fSiVJ1CD8zkR05tfUxZ 8p1DZoQuoM4w7iZi4/fAAHyJ2umn353V450TC9NU8wucaWuDcUMK0G/sMnd3idnL xCSM9JhA9tU/X/kY80sF1xiycWpc7IhupZv+/R2z8vLAxZT/2TwnyPGQEPV5mflB I7dfZrLBwRgjm0VMKj5ELrNd8gAJcyaZYDDsB615I8C45Wr6eCdFJPXH6JYGfMVw yMC+7sE4Cde3PwAuMYjxjflYiNyFS07iIpEIAJEVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNlmkdP385iBgdXoGN/lhG4QocmwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiMGUxMGMyLWI3ZTQtNDcxNS04M2Y3LWExMzQ1NjIyMWJiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yNIAwDQYJKoZIhvcNAQELBQADggEBAMaWtmlEX/HZbUwfyph2w2A+ W6DLHRcbbazZnUFv7ZnFAUYFqxX2rGTgDzWGdiJwR0q3MN4uWEWWUWXhQgd0pDWr LEM9ZHJVjsHjjebujZen88LD0ikY1YDvGYyhDVzE/CuOF+lcUsay5whu3NUh0+KZ XzJkrbtfup3QA6AI4LbhBw5o9fd0KCN0qrfnmNdIaFmltQY1Mk/QpRpkDE0w6wIb a1Rl/dZA+RdiG7+jYwT/KY154hgNcDOz3vyBEYz1V6xYHqkJoKl6YM0aG9+M4pn9 AJn6gcwx0VygIfldQxsX384OSZTCEwk4am4BPoBEmIklf4hHNW8vnyWZDh01EeY= -----END CERTIFICATE-----Generated at Wed Aug 6 05:14:53 2025 by rpki-client