$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa File: 4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa (raw, json) Hash identifier: rcRS/fey7JcvckvUcVapvQz2D2h5ArvxP8niIo7Rk3A= Subject key identifier: D0:B2:44:40:D8:78:1F:70:7A:BE:C6:21:13:F8:75:43:92:CC:8F:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D54E0AC13166D8D61AC679A9438DAA17C62A581 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa Signing time: Tue 05 Aug 2025 00:21:23 +0000 ROA not before: Tue 05 Aug 2025 00:21:23 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fed:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:54:e0:ac:13:16:6d:8d:61:ac:67:9a:94:38:da:a1:7c:62:a5:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:21:23 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5806b6ed6e1981330d7fd3c0cd4261e016bd3220cf01b57b71755018f6b311b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:9f:aa:76:84:96:bf:5d:54:4e:52:48:ed:db: 55:c8:7b:74:5c:d7:0d:53:24:d9:bd:3e:3e:67:25: 40:9c:ba:11:c9:88:a5:ba:d8:a6:68:d6:d5:1c:01: b3:cf:15:8a:97:c1:d4:18:d3:9d:c8:03:30:8d:ad: 5f:35:5d:61:7a:c1:dc:dc:0d:d8:92:b7:3d:47:38: 71:ed:31:b2:5f:64:dc:ab:e9:b6:5c:8b:08:ef:84: d7:92:fd:b8:91:fc:eb:82:06:04:f1:6b:0f:88:03: 76:3c:1f:b2:2a:dd:49:32:fa:75:a5:66:7e:a3:b5: cb:c3:58:23:cd:41:d9:f6:cb:0e:3e:a4:80:8b:e8: 98:0f:e6:94:17:13:bc:c5:1b:4b:0f:a6:c9:70:fd: 82:e9:6e:37:19:15:85:8e:6b:3d:35:07:b9:3e:2c: e0:7b:8a:bd:47:a9:e3:20:e3:1b:1a:33:98:fc:35: ff:f2:05:6c:be:2b:dc:78:c3:4b:c6:bf:a1:1f:f3: b8:2f:bb:49:0e:06:50:8b:87:ba:f0:e5:13:22:49: d9:d6:15:77:c3:5f:e3:02:a0:35:2c:c6:8d:12:26: 38:89:a3:82:c1:f8:8f:08:43:1c:b8:34:9f:45:74: 91:b7:b3:65:23:ac:a0:4b:8f:66:0a:28:7f:5a:4f: 3c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B2:44:40:D8:78:1F:70:7A:BE:C6:21:13:F8:75:43:92:CC:8F:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fed:c000::/40 Signature Algorithm: sha256WithRSAEncryption 40:49:08:9b:84:fb:ea:b3:97:c5:3a:96:41:b4:28:8f:4f:b6: 54:65:68:b0:e2:7d:ac:c2:d5:fb:1a:aa:7e:dc:d5:33:fb:7f: d8:44:b5:5e:65:65:4f:96:8e:5b:5e:e7:09:a8:42:d9:d8:73: 7a:95:97:45:52:1e:90:fe:5c:a2:7c:2f:7e:9c:fb:db:57:56: f8:fc:90:5e:71:6e:b5:75:a3:c4:c3:8e:ed:71:8b:0e:0c:7d: bd:5c:d8:de:7a:47:ba:0f:cf:92:cd:df:be:04:eb:b1:4a:e5: 00:ff:0c:89:d8:d9:50:9a:a8:5e:32:27:b4:7c:e8:0c:6e:ef: 97:e1:d7:2c:b2:5a:6e:9e:02:80:06:71:6f:34:e4:2b:d1:b8: e0:86:af:0b:64:af:10:f5:af:ad:5b:28:07:19:b9:1a:4b:76: 69:c4:ee:82:a7:51:08:fa:e8:3c:48:e8:ca:06:28:0a:66:b7: 7a:44:32:18:83:ba:dc:65:e3:46:b2:85:a2:16:c9:c1:3b:34: 31:4f:af:e6:72:f8:35:7a:7e:0f:5f:2b:64:40:f3:11:fd:c2: 81:94:76:d1:39:6b:50:0e:ff:92:fd:cd:bb:64:28:6f:21:a2: cc:92:65:fb:60:aa:33:61:8c:df:9b:50:98:83:a6:f2:d2:17: b2:9a:06:3b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULVTgrBMWbY1hrGealDjaoXxipYEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAyMTIzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODA2YjZlZDZlMTk4MTMzMGQ3ZmQzYzBjZDQyNjFlMDE2 YmQzMjIwY2YwMWI1N2I3MTc1NTAxOGY2YjMxMWI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSn6p2hJa/XVROUkjt21XIe3Rc1w1TJNm9Pj5nJUCcuhHJ iKW62KZo1tUcAbPPFYqXwdQY053IAzCNrV81XWF6wdzcDdiStz1HOHHtMbJfZNyr 6bZciwjvhNeS/biR/OuCBgTxaw+IA3Y8H7Iq3Uky+nWlZn6jtcvDWCPNQdn2yw4+ pICL6JgP5pQXE7zFG0sPpslw/YLpbjcZFYWOaz01B7k+LOB7ir1HqeMg4xsaM5j8 Nf/yBWy+K9x4w0vGv6Ef87gvu0kOBlCLh7rw5RMiSdnWFXfDX+MCoDUsxo0SJjiJ o4LB+I8IQxy4NJ9FdJG3s2UjrKBLj2YKKH9aTzzNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0LJEQNh4H3B6vsYhE/h1Q5LMj3YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmNTFlODdlLTBjYjUtNDE2YS1hNzUwLWY0MzNiMmE5ZmEwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/twDANBgkqhkiG9w0BAQsFAAOCAQEAQEkIm4T76rOXxTqWQbQoj0+2 VGVosOJ9rMLV+xqqftzVM/t/2ES1XmVlT5aOW17nCahC2dhzepWXRVIekP5conwv fpz721dW+PyQXnFutXWjxMOO7XGLDgx9vVzY3npHug/Pks3fvgTrsUrlAP8MidjZ UJqoXjIntHzoDG7vl+HXLLJabp4CgAZxbzTkK9G44IavC2SvEPWvrVsoBxm5Gkt2 acTugqdRCProPEjoygYoCma3ekQyGIO63GXjRrKFohbJwTs0MU+v5nL4NXp+D18r ZEDzEf3CgZR20TlrUA7/kv3Nu2QobyGizJJl+2CqM2GM35tQmIOm8tIXspoGOw== -----END CERTIFICATE-----Generated at Fri Aug 8 00:45:16 2025 by rpki-client