$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51d50b39-7870-44a9-b76b-572243a73f11.roa File: 51d50b39-7870-44a9-b76b-572243a73f11.roa (raw, json) Hash identifier: f19qyV/f3czeT5RWD+tRFwdLo7t3iFl0PTVGm94GcgI= Subject key identifier: BC:2E:38:0B:FE:AF:62:09:A5:1D:A1:B2:E6:D0:9D:41:D5:77:60:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2909C322EF1129283F016DB88D0A584B6FA174E5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51d50b39-7870-44a9-b76b-572243a73f11.roa Signing time: Fri 01 Aug 2025 16:32:11 +0000 ROA not before: Fri 01 Aug 2025 16:32:11 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:40f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:09:c3:22:ef:11:29:28:3f:01:6d:b8:8d:0a:58:4b:6f:a1:74:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:32:11 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=bd9599cfb3b7e09b02eeb97cffd4134cb4d62226169a4edf5712dd22cc40c86e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d8:10:8e:cc:dc:17:fc:3c:0d:a6:6f:7b:07: 5f:af:92:d7:02:98:ae:97:50:ac:d9:48:18:e8:0a: 8e:a9:52:0f:60:a6:41:c7:bc:86:9e:35:b1:1f:9c: 1c:13:a0:26:6a:e6:44:70:1c:6f:5d:9b:86:2f:56: 62:68:30:65:c6:d1:6e:40:5c:86:e9:a6:29:1c:0c: 4a:c7:b2:ef:82:c7:7d:ef:d8:0e:bd:e1:9f:cf:bb: d1:49:be:94:2e:2f:54:eb:e2:4b:15:7c:f6:b6:16: 39:51:50:c7:43:3f:5f:9b:22:55:20:bb:f5:af:13: dd:3e:ba:df:bc:70:08:c9:84:b8:00:4c:85:03:ec: 32:ef:3d:ee:7d:f0:8e:a6:8d:c8:ad:08:a3:91:3e: 83:07:e4:77:36:25:a7:05:df:cb:31:7b:4d:7a:15: 71:6e:b1:9c:c6:c4:fa:02:0d:e6:77:16:21:bd:d7: 2d:fe:da:8b:85:82:8b:1b:78:04:ea:c3:f4:4e:f9: 3c:45:40:03:4a:a4:dc:5c:44:39:4b:4c:77:54:4e: 26:8f:b5:05:8b:5c:d1:6c:5e:3d:6a:35:b6:cc:c3: 3c:01:c9:24:1a:51:c4:5d:83:9b:71:59:96:69:e1: ce:02:08:c0:aa:b7:4f:75:b7:8c:f1:ac:98:ea:0c: 74:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2E:38:0B:FE:AF:62:09:A5:1D:A1:B2:E6:D0:9D:41:D5:77:60:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51d50b39-7870-44a9-b76b-572243a73f11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:40f0::/48 Signature Algorithm: sha256WithRSAEncryption ab:08:6b:fb:a5:ba:96:53:cc:3a:ea:ac:db:67:53:94:8b:1c: d0:c0:12:db:05:a7:1e:bc:e6:86:26:64:56:c2:51:db:9b:ec: 4b:a7:ed:26:6e:d0:71:3f:52:d4:5a:de:6b:1b:fe:f2:a4:c7: fd:85:d9:e0:52:67:07:c7:e1:c8:70:70:4b:f2:df:1b:80:ae: 62:2a:a8:16:ac:9b:f9:eb:c5:9e:cf:79:74:26:15:f0:7a:1c: cc:ae:9b:60:b7:76:25:d9:a0:63:6a:db:0f:56:5f:0d:1d:f7: c2:db:6c:1f:f0:e4:e5:53:c9:3d:ac:b7:01:c8:b6:49:02:31: 78:61:a1:7d:32:86:93:e8:e7:9b:7a:6f:58:76:04:d6:b7:c5: 56:eb:bc:01:50:96:23:1c:39:10:05:c8:5d:97:d1:dd:2c:e9: 0d:ab:3e:f5:57:a9:be:c6:a3:be:43:8c:dd:a0:be:04:57:3c: 20:b6:37:9b:51:3f:24:6a:4a:1c:b4:47:f7:ba:71:84:81:a7: b7:b0:15:3c:6c:ec:54:fe:37:f4:a5:0b:81:42:78:87:b8:93: 2d:a7:cc:63:2c:a6:38:eb:24:56:f7:c9:0f:fa:da:69:05:6f: 4d:00:2f:fd:4d:a0:55:83:34:a9:9e:84:ab:e2:2b:6d:26:36: c3:cc:60:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKQnDIu8RKSg/AW24jQpYS2+hdOUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTYzMjExWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDk1OTljZmIzYjdlMDliMDJlZWI5N2NmZmQ0MTM0Y2I0 ZDYyMjI2MTY5YTRlZGY1NzEyZGQyMmNjNDBjODZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX2BCOzNwX/DwNpm97B1+vktcCmK6XUKzZSBjoCo6pUg9g pkHHvIaeNbEfnBwToCZq5kRwHG9dm4YvVmJoMGXG0W5AXIbppikcDErHsu+Cx33v 2A694Z/Pu9FJvpQuL1Tr4ksVfPa2FjlRUMdDP1+bIlUgu/WvE90+ut+8cAjJhLgA TIUD7DLvPe598I6mjcitCKORPoMH5Hc2JacF38sxe016FXFusZzGxPoCDeZ3FiG9 1y3+2ouFgosbeATqw/RO+TxFQANKpNxcRDlLTHdUTiaPtQWLXNFsXj1qNbbMwzwB ySQaUcRdg5txWZZp4c4CCMCqt091t4zxrJjqDHTlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvC44C/6vYgmlHaGy5tCdQdV3YC8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxZDUwYjM5LTc4NzAtNDRhOS1iNzZiLTU3MjI0M2E3M2YxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQPAwDQYJKoZIhvcNAQELBQADggEBAKsIa/ulupZTzDrqrNtnU5SL HNDAEtsFpx685oYmZFbCUdub7Eun7SZu0HE/UtRa3msb/vKkx/2F2eBSZwfH4chw cEvy3xuArmIqqBasm/nrxZ7PeXQmFfB6HMyum2C3diXZoGNq2w9WXw0d98LbbB/w 5OVTyT2stwHItkkCMXhhoX0yhpPo55t6b1h2BNa3xVbrvAFQliMcORAFyF2X0d0s 6Q2rPvVXqb7Go75DjN2gvgRXPCC2N5tRPyRqShy0R/e6cYSBp7ewFTxs7FT+N/Sl C4FCeIe4ky2nzGMspjjrJFb3yQ/62mkFb00AL/1NoFWDNKmehKviK20mNsPMYEU= -----END CERTIFICATE-----Generated at Wed Aug 6 00:55:26 2025 by rpki-client