$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa File: 3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa (raw, json) Hash identifier: jiI4pgfgqmjGguJwbpmhKZmDirXjymftCCluYfzTZKw= Subject key identifier: CB:83:1F:13:27:7F:E8:F8:A4:77:7A:9C:B5:21:A9:4F:59:DB:6A:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A191608AFE2FB1B3B8271A7F40FEC50934A7E73 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa Signing time: Mon 04 Aug 2025 15:32:21 +0000 ROA not before: Mon 04 Aug 2025 15:32:21 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:19:16:08:af:e2:fb:1b:3b:82:71:a7:f4:0f:ec:50:93:4a:7e:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:32:21 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=97874d245918ffd58ea80053d8ab969d951369fbfb517e05815a9447d2ac659d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:df:dc:7a:8d:81:da:1b:df:2a:da:ba:4b:83: f6:ae:2a:4b:74:f1:f7:f9:3f:37:95:c7:13:e9:96: 04:bf:41:56:d6:2a:ff:a7:a8:0d:e5:42:3d:95:2f: 43:82:3d:0e:d0:3f:4c:8e:ad:68:25:72:df:b9:03: 0a:59:19:5c:2c:8d:27:70:5f:69:26:01:e7:83:fe: 0f:21:55:4b:fa:c2:b9:80:7b:a0:db:f8:80:c5:6c: 14:71:dd:9a:f2:79:6d:9e:fd:7c:dc:17:d5:41:58: 49:f6:bc:ed:91:05:53:a2:68:e7:6d:f7:36:03:7f: a8:34:42:1d:71:10:5b:53:10:75:74:1d:f6:ce:30: 38:d5:06:b5:cc:47:3b:26:f8:93:02:53:a2:22:86: 81:38:7f:b6:08:10:01:08:45:c7:92:ac:87:7b:bd: ca:7b:e4:08:90:58:e7:15:8d:0b:2f:1d:1d:45:2d: bd:0b:0d:7e:c5:fa:81:f1:5e:48:72:2f:ae:cd:5c: 7b:55:51:f9:54:bd:2b:66:54:43:93:3a:1e:e7:31: 10:3d:d0:d7:ee:46:74:8b:53:2b:56:b8:6b:a7:ef: 13:78:8b:8a:48:53:cf:39:eb:ef:59:b0:55:39:49: 65:4f:e8:92:79:c9:2c:02:d8:a3:6a:b7:13:21:9e: 48:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:83:1F:13:27:7F:E8:F8:A4:77:7A:9C:B5:21:A9:4F:59:DB:6A:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:e000::/40 Signature Algorithm: sha256WithRSAEncryption bf:5e:56:10:e4:e0:de:13:58:5a:13:62:4f:70:5c:a8:51:87: 71:6c:03:95:8a:c0:9c:6f:95:68:92:58:bc:b9:42:da:54:c5: 7d:19:39:a5:2e:d2:26:33:78:15:b9:19:e6:ea:4d:b8:b4:a4: 6a:dd:27:ea:49:bc:74:8c:a3:f5:d2:5a:94:f6:e0:a9:48:24: 58:25:51:a9:55:59:f1:6d:49:74:fe:cf:fa:e1:01:d3:9f:57: b3:14:2e:78:71:90:18:11:a3:e8:ee:0c:84:47:d2:16:3e:99: 0e:27:33:00:7c:79:ee:8c:0e:8d:55:38:68:f3:fd:75:1b:ca: 4d:64:84:09:3f:75:46:8a:bd:28:b8:a0:ea:4d:e8:e6:ac:bc: c6:69:cd:78:8b:db:26:c8:78:2e:83:1e:f7:d7:21:3e:03:b7: ca:8a:c0:58:52:37:26:75:cd:5d:cd:13:f9:95:6a:43:32:5d: 8f:8b:1f:9f:79:27:ba:61:7a:5e:c6:8b:70:23:4f:9d:cc:ac: 05:a8:56:87:40:da:a8:dd:26:97:5b:29:a0:7f:8e:3a:6f:07: 60:25:4a:16:48:fd:92:63:7d:b5:f6:4f:cc:ee:64:8d:8e:49: e3:5c:a6:cd:f2:3f:6a:97:d4:2e:54:37:b0:bc:2a:d3:3a:17: 23:22:f8:92 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUShkWCK/i+xs7gnGn9A/sUJNKfnMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUzMjIxWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Nzg3NGQyNDU5MThmZmQ1OGVhODAwNTNkOGFiOTY5ZDk1 MTM2OWZiZmI1MTdlMDU4MTVhOTQ0N2QyYWM2NTlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDR39x6jYHaG98q2rpLg/auKkt08ff5PzeVxxPplgS/QVbW Kv+nqA3lQj2VL0OCPQ7QP0yOrWglct+5AwpZGVwsjSdwX2kmAeeD/g8hVUv6wrmA e6Db+IDFbBRx3ZryeW2e/XzcF9VBWEn2vO2RBVOiaOdt9zYDf6g0Qh1xEFtTEHV0 HfbOMDjVBrXMRzsm+JMCU6IihoE4f7YIEAEIRceSrId7vcp75AiQWOcVjQsvHR1F Lb0LDX7F+oHxXkhyL67NXHtVUflUvStmVEOTOh7nMRA90NfuRnSLUytWuGun7xN4 i4pIU8856+9ZsFU5SWVP6JJ5ySwC2KNqtxMhnkiJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUy4MfEyd/6Pikd3qctSGpT1nbagYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiM2JkZWFiLTZiMTMtNGEyOC04MGVkLTBmZTJhNWZhNGRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//4DANBgkqhkiG9w0BAQsFAAOCAQEAv15WEOTg3hNYWhNiT3BcqFGH cWwDlYrAnG+VaJJYvLlC2lTFfRk5pS7SJjN4FbkZ5upNuLSkat0n6km8dIyj9dJa lPbgqUgkWCVRqVVZ8W1JdP7P+uEB059XsxQueHGQGBGj6O4MhEfSFj6ZDiczAHx5 7owOjVU4aPP9dRvKTWSECT91Roq9KLig6k3o5qy8xmnNeIvbJsh4LoMe99chPgO3 yorAWFI3JnXNXc0T+ZVqQzJdj4sfn3knumF6XsaLcCNPncysBahWh0DaqN0ml1sp oH+OOm8HYCVKFkj9kmN9tfZPzO5kjY5J41ymzfI/apfULlQ3sLwq0zoXIyL4kg== -----END CERTIFICATE-----Generated at Wed Aug 6 00:40:24 2025 by rpki-client