$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/490b6781-139e-4caf-a10e-fecef09f1c02.roa File: 490b6781-139e-4caf-a10e-fecef09f1c02.roa (raw, json) Hash identifier: jYcrxHTvP6iM0m9x/NIA/vwzoCYuh3XbfDwhumSg2kA= Subject key identifier: 18:05:C6:91:A4:53:0B:5B:A3:13:99:7B:FD:50:79:31:DE:34:77:7C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D942E913B76454569E22F56AA79349C5FDB3C38 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/490b6781-139e-4caf-a10e-fecef09f1c02.roa Signing time: Fri 01 Aug 2025 15:30:32 +0000 ROA not before: Fri 01 Aug 2025 15:30:32 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f00:5040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:94:2e:91:3b:76:45:45:69:e2:2f:56:aa:79:34:9c:5f:db:3c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:30:32 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=0eff14a48e717d5f4a46a3cc440b9cdc9b5c6c7ea76b7c5451182a4c3aa81d54, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c5:12:51:e8:df:f4:77:bc:e2:ff:a8:6f:82: 0d:4a:52:a6:29:bb:76:0d:c7:00:90:48:84:d4:aa: 62:9f:a4:6c:59:f9:34:7b:cd:b4:56:30:cb:cc:08: 71:b2:53:38:af:26:b8:25:46:ef:2e:1a:a9:c7:a9: d8:97:07:55:a5:d7:41:2f:9a:90:d8:e0:38:db:e1: 35:6d:83:91:be:5c:36:8d:68:81:e5:b7:eb:e7:c0: c6:b8:61:d0:f2:81:5b:d4:36:ac:bf:98:42:b4:f7: c7:f6:2f:33:f6:e0:cd:bd:fc:fa:de:27:df:57:b2: a0:10:f7:70:b9:26:8b:e4:08:ef:4b:5c:16:a6:82: 54:22:d8:ba:20:2b:d9:60:a6:45:fb:90:87:bd:f2: bf:66:be:e7:d0:c1:bf:07:59:75:09:d1:70:e5:b1: 38:bd:fd:ce:88:38:71:1d:f7:86:f6:b6:40:cf:35: 8b:a4:0b:86:65:95:28:36:15:37:e7:a5:f5:95:eb: d5:86:a3:0b:57:d5:79:b0:98:c5:7a:46:92:c2:9e: bd:44:97:ac:58:d1:44:06:54:57:a8:88:62:7d:2d: a5:64:80:5e:c3:1a:2a:e2:b9:40:63:87:37:42:93: cb:fd:2c:16:b0:96:fb:d3:20:33:67:3f:3e:e7:7c: ae:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:05:C6:91:A4:53:0B:5B:A3:13:99:7B:FD:50:79:31:DE:34:77:7C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/490b6781-139e-4caf-a10e-fecef09f1c02.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:5040::/48 Signature Algorithm: sha256WithRSAEncryption 01:6f:c1:3c:7f:d7:73:09:e2:43:78:bc:39:46:9c:7e:81:8f: 95:c6:1a:95:8e:6d:fb:2e:e7:cf:cc:68:aa:98:99:2d:ad:58: 88:16:40:5e:43:49:67:5e:03:ce:5c:fa:28:09:35:15:32:89: 9e:55:d0:fa:ce:aa:49:16:91:4e:2b:89:f6:06:10:df:16:35: aa:7b:c3:8d:0b:b1:db:3c:83:5e:97:29:0d:8e:cb:c4:e3:d6: 31:6f:39:5f:cd:4b:5d:64:2a:d0:e8:c9:f5:f5:cf:4c:62:14: 2f:7e:ed:af:4e:bf:b5:d5:ec:f7:49:4a:b5:76:b7:77:cf:f0: 12:8f:69:dd:34:a1:31:8c:2c:2a:7c:71:4c:78:41:c9:6e:93: 11:0a:d0:49:88:93:64:fd:d3:04:50:a9:87:fa:76:f7:7b:e5: 7c:78:55:f9:ef:9f:e4:cd:f5:e3:75:6b:8e:39:df:a4:7a:6e: 3e:62:4f:7f:23:af:48:42:de:74:a3:fc:5e:30:bb:14:3b:36: 65:7d:df:25:23:27:c9:bb:d2:9e:d9:6a:96:2b:cc:43:25:61: b0:dd:0c:46:f6:85:75:86:4f:55:5b:e3:f5:47:93:0e:59:64: 1d:27:13:cc:26:d4:8f:9d:b5:e4:32:dc:45:eb:87:cf:72:4b: f5:ef:67:d7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbZQukTt2RUVp4i9Wqnk0nF/bPDgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUzMDMyWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWZmMTRhNDhlNzE3ZDVmNGE0NmEzY2M0NDBiOWNkYzli NWM2YzdlYTc2YjdjNTQ1MTE4MmE0YzNhYTgxZDU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBxRJR6N/0d7zi/6hvgg1KUqYpu3YNxwCQSITUqmKfpGxZ +TR7zbRWMMvMCHGyUzivJrglRu8uGqnHqdiXB1Wl10EvmpDY4Djb4TVtg5G+XDaN aIHlt+vnwMa4YdDygVvUNqy/mEK098f2LzP24M29/PreJ99XsqAQ93C5JovkCO9L XBamglQi2LogK9lgpkX7kIe98r9mvufQwb8HWXUJ0XDlsTi9/c6IOHEd94b2tkDP NYukC4ZllSg2FTfnpfWV69WGowtX1XmwmMV6RpLCnr1El6xY0UQGVFeoiGJ9LaVk gF7DGiriuUBjhzdCk8v9LBawlvvTIDNnPz7nfK5BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUGAXGkaRTC1ujE5l7/VB5Md40d3wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5MGI2NzgxLTEzOWUtNGNhZi1hMTBlLWZlY2VmMDlmMWMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AUEAwDQYJKoZIhvcNAQELBQADggEBAAFvwTx/13MJ4kN4vDlGnH6B j5XGGpWObfsu58/MaKqYmS2tWIgWQF5DSWdeA85c+igJNRUyiZ5V0PrOqkkWkU4r ifYGEN8WNap7w40Lsds8g16XKQ2Oy8Tj1jFvOV/NS11kKtDoyfX1z0xiFC9+7a9O v7XV7PdJSrV2t3fP8BKPad00oTGMLCp8cUx4QclukxEK0EmIk2T90wRQqYf6dvd7 5Xx4Vfnvn+TN9eN1a44536R6bj5iT38jr0hC3nSj/F4wuxQ7NmV93yUjJ8m70p7Z apYrzEMlYbDdDEb2hXWGT1Vb4/VHkw5ZZB0nE8wm1I+dteQy3EXrh89yS/XvZ9c= -----END CERTIFICATE-----Generated at Wed Aug 6 10:10:44 2025 by rpki-client