$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6053747c-2d18-4318-b6f0-8cc795ce2a12.roa File: 6053747c-2d18-4318-b6f0-8cc795ce2a12.roa (raw, json) Hash identifier: FQa+TP72jPXGaANZaAcuL9dWzEZ6iHYeq7wQyB7vR6s= Subject key identifier: D1:79:D3:76:B0:03:95:9D:06:0C:20:03:49:FE:BD:1B:03:3B:94:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64734399FD5BCEA1316B6C71BCC26B7F782D39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6053747c-2d18-4318-b6f0-8cc795ce2a12.roa Signing time: Mon 04 Aug 2025 16:11:08 +0000 ROA not before: Mon 04 Aug 2025 16:11:08 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:73:43:99:fd:5b:ce:a1:31:6b:6c:71:bc:c2:6b:7f:78:2d:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:11:08 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=e55304bb63cb634ae2a7897ed7deac1a3c73f3058ae01fb1cc71eab4bd73de0c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:64:11:99:fa:40:f9:7e:ad:53:21:76:60:af: 99:1f:db:e8:1f:9f:98:21:0c:4e:b5:d4:0a:71:6e: 94:64:db:31:4b:32:eb:71:15:6d:d8:4a:d9:47:55: b8:6f:85:11:f0:dd:7f:a8:5d:06:c6:34:71:02:47: 40:98:fa:d2:cd:e6:4e:07:44:19:d3:78:c9:01:da: 9b:94:6f:fd:04:71:93:41:ca:63:c5:29:e4:11:6e: dc:12:43:dc:b0:a5:35:1b:26:72:2b:c6:d2:c2:c5: fc:88:aa:5e:26:cc:c7:0d:3b:b4:fd:c2:a3:ef:b1: e4:a1:e9:7c:ba:ee:d4:b7:03:b1:e9:d2:66:92:cc: 0a:b1:66:17:92:c0:5d:c0:92:99:e0:7b:26:1b:6b: 1c:37:23:1f:72:58:c8:8a:6f:19:e1:14:fd:b1:71: bb:d9:50:71:fe:e3:08:47:c7:4b:3e:47:e7:3d:07: cd:9a:b9:e3:08:c2:c4:41:fa:62:79:bb:22:be:4e: 2b:47:58:a1:6f:9a:15:e2:24:8a:76:64:63:fc:fa: 5c:1a:c1:6b:cc:57:9e:86:2d:0f:92:40:e2:e3:df: 3c:0b:07:9f:bc:2b:4a:6f:3e:15:22:d5:ed:4b:fe: e1:2b:85:d4:9c:bf:55:c7:7b:fd:21:fe:ff:c0:d2: 7a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:79:D3:76:B0:03:95:9D:06:0C:20:03:49:FE:BD:1B:03:3B:94:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6053747c-2d18-4318-b6f0-8cc795ce2a12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 56:28:38:6a:6c:1a:b4:ac:9e:0e:ff:9f:14:f8:7e:8b:7a:01: 89:58:18:0e:0d:51:72:36:78:4c:c7:5e:26:08:73:c5:44:f8: 0b:78:1e:fc:cc:9e:8c:c7:a4:e5:79:de:3a:8c:dd:a4:fd:94: 54:7d:9b:cc:00:9e:b4:90:5e:e1:88:a6:3d:14:e5:cb:4c:5a: c6:81:38:2c:ff:94:88:d7:9d:aa:b4:00:ae:d2:fe:f5:6f:17: 5e:ac:ba:d9:07:4b:34:77:1f:62:42:c7:67:e5:18:1c:00:9e: c4:b6:40:c5:b1:72:c8:c4:d1:eb:02:db:d5:91:78:e4:78:16: d7:4e:0b:6f:98:24:4f:a6:f6:46:b1:54:00:e7:0d:96:77:ea: 86:e7:30:35:7c:09:25:22:4f:89:35:22:d5:0e:74:83:8c:4c: 3b:a3:9d:7c:b5:69:62:ac:c9:82:3a:84:e6:a7:58:24:af:1a: 75:7e:98:a9:fb:5f:7c:81:69:92:40:9c:35:c7:ed:13:52:3b: 31:47:44:c8:2f:06:4a:2b:fa:e2:4a:cb:b2:0a:dc:19:20:69: e5:dc:59:e8:9d:32:c3:f2:7a:3e:24:b9:c9:10:ef:56:12:b8: 1f:74:c6:ee:f4:b3:f7:3a:93:74:5d:a3:4f:91:85:79:05:3d: c2:bc:de:9f -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITZHNDmf1bzqExa2xxvMJrf3gtOTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNTA4MDQxNjExMDhaFw0yNTA5MDgyMzU5NTla MHoxSTBHBgNVBAUTQGU1NTMwNGJiNjNjYjYzNGFlMmE3ODk3ZWQ3ZGVhYzFhM2M3 M2YzMDU4YWUwMWZiMWNjNzFlYWI0YmQ3M2RlMGMxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOZkEZn6QPl+rVMhdmCvmR/b6B+fmCEMTrXUCnFulGTbMUsy 63EVbdhK2UdVuG+FEfDdf6hdBsY0cQJHQJj60s3mTgdEGdN4yQHam5Rv/QRxk0HK Y8Up5BFu3BJD3LClNRsmcivG0sLF/IiqXibMxw07tP3Co++x5KHpfLru1LcDsenS ZpLMCrFmF5LAXcCSmeB7JhtrHDcjH3JYyIpvGeEU/bFxu9lQcf7jCEfHSz5H5z0H zZq54wjCxEH6Ynm7Ir5OK0dYoW+aFeIkinZkY/z6XBrBa8xXnoYtD5JA4uPfPAsH n7wrSm8+FSLV7Uv+4SuF1Jy/Vcd7/SH+/8DSensCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBTRedN2sAOVnQYMIANJ/r0bAzuUqjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNjA1Mzc0N2MtMmQxOC00MzE4LWI2ZjAtOGNjNzk1Y2UyYTEyLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACYAH7iAMA0GCSqGSIb3DQEBCwUAA4IBAQBWKDhqbBq0rJ4O/58U+H6LegGJ WBgODVFyNnhMx14mCHPFRPgLeB78zJ6Mx6Tled46jN2k/ZRUfZvMAJ60kF7hiKY9 FOXLTFrGgTgs/5SI152qtACu0v71bxderLrZB0s0dx9iQsdn5RgcAJ7EtkDFsXLI xNHrAtvVkXjkeBbXTgtvmCRPpvZGsVQA5w2Wd+qG5zA1fAklIk+JNSLVDnSDjEw7 o518tWlirMmCOoTmp1gkrxp1fpip+198gWmSQJw1x+0TUjsxR0TILwZKK/riSsuy CtwZIGnl3FnonTLD8no+JLnJEO9WErgfdMbu9LP3OpN0XaNPkYV5BT3CvN6f -----END CERTIFICATE-----Generated at Fri Aug 8 10:20:46 2025 by rpki-client