$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa File: 3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa (raw, json) Hash identifier: NOV89vB/PURXcjvyB0STZin+NyfL7+nN9KdleqH0Jtw= Subject key identifier: F1:43:5B:8F:46:DF:62:F2:7D:3A:D6:78:AD:D8:5E:3C:E9:72:A0:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02E0989579928A54FF045E469564964123AA8BE0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa Signing time: Mon 04 Aug 2025 15:11:28 +0000 ROA not before: Mon 04 Aug 2025 15:11:28 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:e0:98:95:79:92:8a:54:ff:04:5e:46:95:64:96:41:23:aa:8b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:11:28 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=71396c0eae4995f582ce0de782003c426f47c10dfc9074253c3927bf989ca808, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:0e:a1:0d:a6:c5:e9:41:4e:7b:04:81:99: bf:6d:55:05:99:d9:5f:3a:1d:0c:de:c9:31:18:53: af:df:0c:61:7f:db:27:5f:24:c6:4a:a0:78:a9:92: bc:db:38:88:25:82:f0:17:21:a6:29:ae:eb:27:86: 36:af:b4:34:11:32:0b:b2:0b:3e:4b:e7:7c:17:14: a3:94:27:9e:d8:0f:f1:1d:00:9c:43:97:c2:b8:e7: 92:0b:10:77:f1:31:df:13:3e:d1:b6:d6:93:3b:63: 47:43:1a:d1:27:8e:0e:98:e4:4a:ed:ad:f7:a0:df: 3f:d1:30:97:f9:d0:da:3f:85:e3:d9:45:5f:40:ae: 32:3b:ab:4c:dc:2c:f1:f0:28:20:ad:ed:3d:07:29: 95:1e:43:a0:0d:f1:3f:ec:89:2a:df:38:52:a2:7c: a9:6e:41:09:d6:b1:0a:90:99:1e:67:9c:5f:99:ba: af:e8:92:45:10:e1:92:be:13:2f:cd:38:6c:6d:b4: 01:f2:5c:75:43:44:ed:46:33:02:fd:47:6f:43:9a: 9e:1c:f2:52:21:ec:b0:c3:d8:a6:6d:09:d6:eb:8e: de:29:60:70:78:36:2c:0c:de:bb:84:e7:32:c3:6e: 6c:05:3a:4c:7d:8c:e1:f8:b6:7d:05:ec:f8:34:06: d3:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:43:5B:8F:46:DF:62:F2:7D:3A:D6:78:AD:D8:5E:3C:E9:72:A0:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3734e7db-8f22-40e0-b2cc-489f2d6365f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c040::/48 Signature Algorithm: sha256WithRSAEncryption 6e:4e:80:a7:5d:c5:97:e9:ff:be:4c:3c:39:6e:5b:21:9c:58: a5:99:4d:08:fd:cf:4f:47:a0:83:87:39:21:68:40:8f:84:09: 9d:c5:49:7a:aa:cb:c7:38:28:02:12:fe:66:c1:ae:41:23:3d: 0a:1d:0a:17:5a:e0:ec:d8:b5:b0:a0:93:47:1b:64:8c:e6:9f: 50:1d:04:43:65:d3:c7:ca:cc:03:40:17:c8:18:9b:9c:f2:1b: e5:a6:e4:60:f0:bd:af:65:30:07:4c:2f:fe:e9:0f:b1:1c:0d: 9b:b0:47:24:ae:ff:8e:ff:7c:cf:2c:d9:e9:c5:dc:9d:2f:98: 9e:a2:d3:c5:22:7f:b7:e4:0d:45:50:88:5d:3a:a1:2d:ec:bb: 44:8d:d4:12:ad:ec:02:79:26:df:d7:12:4b:e6:f6:8b:7b:d5: b6:d3:be:84:92:44:e2:ba:e0:d0:57:5b:41:19:93:25:21:18: e0:11:93:83:68:3e:6a:d5:d7:9b:7f:4e:df:da:56:2f:31:39: 36:8f:57:73:be:47:a8:c5:ac:98:d1:dd:5f:66:dd:6c:30:56: fa:d7:a5:13:f2:68:8e:7b:24:97:94:f6:13:70:4d:77:f6:da: 90:56:00:da:ac:a3:35:86:1b:0a:9b:77:d3:d3:ed:f9:93:a8: 95:3a:9a:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAuCYlXmSilT/BF5GlWSWQSOqi+AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUxMTI4WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTM5NmMwZWFlNDk5NWY1ODJjZTBkZTc4MjAwM2M0MjZm NDdjMTBkZmM5MDc0MjUzYzM5MjdiZjk4OWNhODA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7lQ6hDabF6UFOewSBmb9tVQWZ2V86HQzeyTEYU6/fDGF/ 2ydfJMZKoHipkrzbOIglgvAXIaYprusnhjavtDQRMguyCz5L53wXFKOUJ57YD/Ed AJxDl8K455ILEHfxMd8TPtG21pM7Y0dDGtEnjg6Y5Ertrfeg3z/RMJf50No/hePZ RV9ArjI7q0zcLPHwKCCt7T0HKZUeQ6AN8T/siSrfOFKifKluQQnWsQqQmR5nnF+Z uq/okkUQ4ZK+Ey/NOGxttAHyXHVDRO1GMwL9R29Dmp4c8lIh7LDD2KZtCdbrjt4p YHB4NiwM3ruE5zLDbmwFOkx9jOH4tn0F7Pg0BtOFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8UNbj0bfYvJ9OtZ4rdhePOlyoA0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM3MzRlN2RiLThmMjItNDBlMC1iMmNjLTQ4OWYyZDYzNjVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wEAwDQYJKoZIhvcNAQELBQADggEBAG5OgKddxZfp/75MPDluWyGc WKWZTQj9z09HoIOHOSFoQI+ECZ3FSXqqy8c4KAIS/mbBrkEjPQodChda4OzYtbCg k0cbZIzmn1AdBENl08fKzANAF8gYm5zyG+Wm5GDwva9lMAdML/7pD7EcDZuwRySu /47/fM8s2enF3J0vmJ6i08Uif7fkDUVQiF06oS3su0SN1BKt7AJ5Jt/XEkvm9ot7 1bbTvoSSROK64NBXW0EZkyUhGOARk4NoPmrV15t/Tt/aVi8xOTaPV3O+R6jFrJjR 3V9m3WwwVvrXpRPyaI57JJeU9hNwTXf22pBWANqsozWGGwqbd9PT7fmTqJU6mq8= -----END CERTIFICATE-----Generated at Wed Aug 6 05:24:10 2025 by rpki-client