$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b47ae49-7e0d-437b-8132-173dee6fae95.roa File: 2b47ae49-7e0d-437b-8132-173dee6fae95.roa (raw, json) Hash identifier: go+UA1QgjWLBIMerpbspbKT63YCXQWagEUm3PkAXwwo= Subject key identifier: 2B:81:9A:7E:02:FA:8A:64:CE:96:54:DE:DF:6C:E2:BD:6C:00:8B:E1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 55D51DE72525A734988C4CDDB5371407AAF22BCF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b47ae49-7e0d-437b-8132-173dee6fae95.roa Signing time: Fri 01 Aug 2025 15:20:24 +0000 ROA not before: Fri 01 Aug 2025 15:20:24 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8110::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:d5:1d:e7:25:25:a7:34:98:8c:4c:dd:b5:37:14:07:aa:f2:2b:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:20:24 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=0ad62792ddb2e2cc16c6f0497f3338647c14d563ef5a48a442d72e91677552f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ab:14:27:f6:76:23:e6:09:25:ce:90:88:92: 33:69:87:6d:a2:6e:3d:10:d9:79:e6:52:c0:aa:ab: b5:5c:d9:8f:31:08:ae:17:94:19:43:7f:6c:27:65: b3:c3:76:11:66:8c:e6:82:ba:10:80:5f:8c:d7:01: 50:99:34:bd:43:52:62:05:cf:34:d1:3c:77:0c:78: 21:b4:81:a8:a8:ce:db:ae:1b:7d:43:71:3b:85:1b: 0e:42:57:ad:9f:42:2f:b2:e3:75:42:e9:f2:fc:a2: 56:ff:e2:d0:2f:71:77:97:bc:be:ae:72:ca:31:8b: a2:52:97:ae:34:b3:44:09:7b:9b:66:fc:bf:3a:49: 8e:6c:ac:ff:45:b8:a7:0e:1d:39:da:cf:bd:2e:b2: ea:a0:fd:5a:61:3d:c9:10:84:38:b3:a9:6f:93:4e: e2:69:79:1d:63:d8:b4:39:d3:75:e1:86:de:1f:d7: f5:a3:3b:64:ce:86:d0:dd:5c:6c:ec:4c:b6:06:07: b2:9f:18:ed:b4:a6:ee:f3:6a:b8:50:cb:04:ea:c7: b4:ca:99:95:d2:9c:55:a5:a9:de:e6:f5:1e:1d:0e: 51:5e:97:aa:36:2c:57:5f:8a:85:9e:02:f8:eb:7e: 62:53:9c:87:91:88:b7:22:fa:80:ca:52:d0:41:0c: 9f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:81:9A:7E:02:FA:8A:64:CE:96:54:DE:DF:6C:E2:BD:6C:00:8B:E1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b47ae49-7e0d-437b-8132-173dee6fae95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8110::/48 Signature Algorithm: sha256WithRSAEncryption 36:f4:95:84:84:90:a3:1f:5d:c0:c9:ec:9a:1d:09:97:54:07: a4:15:2a:04:56:73:fb:79:6c:6a:5a:c8:cb:fb:76:61:9e:1b: 13:2f:6b:6b:c0:61:85:1b:bc:ea:db:ca:a9:b3:10:30:94:b7: e1:fb:82:60:44:64:10:e3:56:7f:51:bf:f3:0e:c6:ff:ba:75: 4f:bb:05:80:1f:c8:e7:bb:3b:2c:2f:09:e4:f2:62:d9:39:2b: 94:e3:cc:62:a8:c3:6e:f7:11:d2:4a:88:2e:62:94:5c:93:2d: 17:79:21:ce:d6:79:2b:22:fc:b5:ca:ba:68:82:24:e6:5c:86: 04:db:eb:49:38:07:1b:5a:b5:b6:29:2e:77:3c:a7:e0:a4:d4: 29:d8:8d:37:1d:0d:05:c1:b7:d2:dc:51:b6:98:9d:ff:90:91: 03:4a:2b:ce:64:95:00:e1:74:60:a8:de:e8:1a:35:3c:eb:5d: a2:82:93:82:f8:1a:bf:79:b5:45:0e:6a:47:04:20:4f:aa:0a: 52:9a:2e:a4:59:8f:a7:a0:78:53:f4:01:51:99:10:92:74:c1: 64:89:29:07:e9:2c:f8:36:61:9d:cc:41:87:f9:e3:c6:80:28: c8:1e:a6:68:71:8b:99:b4:67:1d:cc:9c:d6:c2:d3:09:cc:b5: bc:90:7b:f4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVdUd5yUlpzSYjEzdtTcUB6ryK88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUyMDI0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWQ2Mjc5MmRkYjJlMmNjMTZjNmYwNDk3ZjMzMzg2NDdj MTRkNTYzZWY1YTQ4YTQ0MmQ3MmU5MTY3NzU1MmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+qxQn9nYj5gklzpCIkjNph22ibj0Q2XnmUsCqq7Vc2Y8x CK4XlBlDf2wnZbPDdhFmjOaCuhCAX4zXAVCZNL1DUmIFzzTRPHcMeCG0gaioztuu G31DcTuFGw5CV62fQi+y43VC6fL8olb/4tAvcXeXvL6ucsoxi6JSl640s0QJe5tm /L86SY5srP9FuKcOHTnaz70usuqg/VphPckQhDizqW+TTuJpeR1j2LQ503Xhht4f 1/WjO2TOhtDdXGzsTLYGB7KfGO20pu7zarhQywTqx7TKmZXSnFWlqd7m9R4dDlFe l6o2LFdfioWeAvjrfmJTnIeRiLci+oDKUtBBDJ8/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUK4GafgL6imTOllTe32zivWwAi+EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiNDdhZTQ5LTdlMGQtNDM3Yi04MTMyLTE3M2RlZTZmYWU5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gRAwDQYJKoZIhvcNAQELBQADggEBADb0lYSEkKMfXcDJ7JodCZdU B6QVKgRWc/t5bGpayMv7dmGeGxMva2vAYYUbvOrbyqmzEDCUt+H7gmBEZBDjVn9R v/MOxv+6dU+7BYAfyOe7OywvCeTyYtk5K5TjzGKow273EdJKiC5ilFyTLRd5Ic7W eSsi/LXKumiCJOZchgTb60k4BxtatbYpLnc8p+Ck1CnYjTcdDQXBt9LcUbaYnf+Q kQNKK85klQDhdGCo3ugaNTzrXaKCk4L4Gr95tUUOakcEIE+qClKaLqRZj6egeFP0 AVGZEJJ0wWSJKQfpLPg2YZ3MQYf548aAKMgepmhxi5m0Zx3MnNbC0wnMtbyQe/Q= -----END CERTIFICATE-----Generated at Sat Aug 9 14:28:02 2025 by rpki-client