$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa File: 4492468d-ade8-4955-9c65-98cc7b723380.roa (raw, json) Hash identifier: TVMxiRpFcGGYTHIiTVIryJXvg9+2lxgcX4SkrEbQhps= Subject key identifier: 23:AA:D5:4C:3D:CE:7E:B4:8D:E9:4F:45:0B:55:E0:92:A3:51:D5:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F6F047B995B011ACD8924FFFD3C25D9C0904127 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa Signing time: Mon 04 Aug 2025 15:31:42 +0000 ROA not before: Mon 04 Aug 2025 15:31:42 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:6f:04:7b:99:5b:01:1a:cd:89:24:ff:fd:3c:25:d9:c0:90:41:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:31:42 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=8ce35b7c282d8a2f0d22e6d5b6dab16ce82f8b331d4d485b97be7b34d70cbc1e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:52:bb:b1:16:ac:2c:72:29:6f:01:1c:20:4b: 90:8d:c0:3b:11:81:d2:79:59:bf:1f:18:85:5f:dd: 68:31:e9:26:a9:84:1b:d7:20:fc:95:52:e3:a2:a1: f8:5a:42:9d:26:6d:60:95:19:ef:f4:fb:eb:f8:6f: 8b:bf:06:1c:9e:a9:04:06:25:b1:2e:66:4b:c5:75: e0:79:21:f3:a1:7d:e1:e4:3c:da:75:73:33:aa:29: bb:a3:4c:99:33:c1:39:fe:6f:b7:78:53:4f:b9:56: 1f:26:08:b7:79:90:01:3a:27:b7:3a:ac:12:85:c6: bc:aa:41:94:a3:e2:79:26:06:bf:64:3c:d4:61:79: 73:67:2a:2c:e5:fc:0e:0d:68:16:75:b6:26:d0:0e: 77:3e:48:3c:09:46:98:3d:65:8c:96:d1:f8:f8:00: 5a:43:0e:74:b2:10:32:57:57:7b:39:e3:af:b7:95: 70:50:7c:aa:e0:67:63:4b:a3:ce:d5:3c:2c:ca:66: 16:1e:f1:3d:20:28:a3:42:c3:1c:e3:1f:30:74:45: 30:34:17:ec:03:55:7c:e8:57:6c:1d:cb:47:41:ae: cc:c8:ef:bb:78:63:c3:42:4c:0e:7d:81:17:15:57: 6c:71:88:cd:6c:2d:c7:87:fc:13:f8:9a:68:34:bb: 6a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AA:D5:4C:3D:CE:7E:B4:8D:E9:4F:45:0B:55:E0:92:A3:51:D5:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8000::/40 Signature Algorithm: sha256WithRSAEncryption c4:7f:59:fc:7d:3d:bc:e6:ac:d4:b7:5f:a5:d8:9a:5c:16:0f: ae:62:60:c9:83:d9:f8:e9:44:ab:42:47:52:3e:eb:e3:45:53: f7:6c:81:f1:90:a9:ad:8b:bc:18:62:78:32:e9:56:16:0e:30: 6b:0a:57:10:c3:8c:86:86:80:21:1f:49:56:3e:32:e7:19:ac: fa:11:3c:fd:6c:b2:48:16:27:e0:4b:09:81:62:7a:62:c8:e1: 00:88:ef:9e:42:de:5e:07:2b:52:73:36:8c:69:57:19:f0:fd: 0b:8b:04:1a:33:94:01:fa:77:10:8a:84:2e:0a:a0:28:ae:b9: 89:df:c6:c0:ad:4e:11:2a:fd:6f:18:cb:21:f1:35:f0:61:a4: d7:e2:09:1e:93:da:6b:f4:28:01:7c:1f:d2:5b:3c:bd:0a:12: 27:fd:3f:d5:b1:b9:5c:11:84:de:df:8b:9e:1b:3b:e1:bd:e3: f8:f4:e3:d4:e7:81:05:93:2a:a3:c7:76:98:bd:7e:9a:33:d1: 57:d5:c8:c6:58:6f:cc:ed:ab:02:5e:f0:1c:1c:a5:7f:3f:6b: 90:44:c6:91:ca:12:fb:a5:eb:dd:61:ae:70:16:8f:9d:7d:d8: 87:1b:70:f0:71:bf:0d:a3:b4:97:34:73:c0:56:d4:8f:c7:b3: ee:d9:b2:24 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUH28Ee5lbARrNiST//Twl2cCQQScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUzMTQyWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4Y2UzNWI3YzI4MmQ4YTJmMGQyMmU2ZDViNmRhYjE2Y2U4 MmY4YjMzMWQ0ZDQ4NWI5N2JlN2IzNGQ3MGNiYzFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSUruxFqwscilvARwgS5CNwDsRgdJ5Wb8fGIVf3Wgx6Sap hBvXIPyVUuOiofhaQp0mbWCVGe/0++v4b4u/BhyeqQQGJbEuZkvFdeB5IfOhfeHk PNp1czOqKbujTJkzwTn+b7d4U0+5Vh8mCLd5kAE6J7c6rBKFxryqQZSj4nkmBr9k PNRheXNnKizl/A4NaBZ1tibQDnc+SDwJRpg9ZYyW0fj4AFpDDnSyEDJXV3s546+3 lXBQfKrgZ2NLo87VPCzKZhYe8T0gKKNCwxzjHzB0RTA0F+wDVXzoV2wdy0dBrszI 77t4Y8NCTA59gRcVV2xxiM1sLceH/BP4mmg0u2rFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUI6rVTD3OfrSN6U9FC1XgkqNR1aQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0OTI0NjhkLWFkZTgtNDk1NS05YzY1LTk4Y2M3YjcyMzM4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//gDANBgkqhkiG9w0BAQsFAAOCAQEAxH9Z/H09vOas1LdfpdiaXBYP rmJgyYPZ+OlEq0JHUj7r40VT92yB8ZCprYu8GGJ4MulWFg4wawpXEMOMhoaAIR9J Vj4y5xms+hE8/WyySBYn4EsJgWJ6YsjhAIjvnkLeXgcrUnM2jGlXGfD9C4sEGjOU Afp3EIqELgqgKK65id/GwK1OESr9bxjLIfE18GGk1+IJHpPaa/QoAXwf0ls8vQoS J/0/1bG5XBGE3t+Lnhs74b3j+PTj1OeBBZMqo8d2mL1+mjPRV9XIxlhvzO2rAl7w HBylfz9rkETGkcoS+6Xr3WGucBaPnX3Yhxtw8HG/DaO0lzRzwFbUj8ez7tmyJA== -----END CERTIFICATE-----Generated at Sun Aug 10 16:12:32 2025 by rpki-client