$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/620594b5-1029-4a02-96f9-54c8e7262586.roa File: 620594b5-1029-4a02-96f9-54c8e7262586.roa (raw, json) Hash identifier: RrJBlj56YS8p19G4nZNX69PA7XVaQSCKqVudDEqtec4= Subject key identifier: 34:CF:DA:87:F5:8D:E7:2D:6A:88:14:B3:99:AD:EF:61:17:B4:65:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2ECC1BA90E6706EEBD4CC1B964BDD90E9B41DC23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/620594b5-1029-4a02-96f9-54c8e7262586.roa Signing time: Fri 01 Aug 2025 17:01:58 +0000 ROA not before: Fri 01 Aug 2025 17:01:58 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:cc:1b:a9:0e:67:06:ee:bd:4c:c1:b9:64:bd:d9:0e:9b:41:dc:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 17:01:58 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=a4654c1409b309d5599a4c3daaacc1d09ecb360c46bdc42e94132e43148cc0fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2c:1a:f4:61:d4:08:a9:24:d8:c6:ea:6a:2c: 10:f0:5d:05:2b:32:af:5a:8a:43:9b:01:1a:59:ff: 85:e0:a4:1a:f4:cc:8e:91:83:04:2e:5d:4a:13:c9: 84:24:b0:a3:1c:51:0f:1b:fd:a8:b4:08:83:95:51: 5f:8f:90:ae:11:a4:c7:e0:d5:17:ba:6a:bb:a3:46: b6:46:8e:9a:c5:e2:82:1c:8a:d5:8a:14:75:08:83: 39:0c:be:bc:17:be:7f:18:8b:30:79:62:41:ef:ec: c4:53:fd:eb:e9:5a:4c:c9:2a:6b:7f:0f:2f:78:d4: 87:2f:7a:05:24:6d:f3:ea:9b:2a:42:bd:7b:4d:c2: 36:33:f8:62:4d:98:99:0e:e2:f3:b3:d0:41:57:a6: 57:62:14:f6:48:f1:51:1a:d2:88:d4:00:63:c6:d8: 84:28:ac:cc:ca:9d:16:bb:29:63:7e:3d:47:1b:71: e6:ed:3c:be:9d:86:96:ed:e9:55:23:81:d1:6f:77: 56:14:72:19:83:53:c6:a5:76:99:ea:5e:ee:ed:8d: e4:76:2a:25:17:eb:f4:26:6c:b4:04:fd:ed:d1:2c: c0:25:c1:1c:59:76:0a:65:ff:a6:3a:b1:58:31:2f: 4e:8e:3c:a5:bf:2f:60:1f:eb:c6:8d:53:30:eb:78: ad:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:CF:DA:87:F5:8D:E7:2D:6A:88:14:B3:99:AD:EF:61:17:B4:65:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/620594b5-1029-4a02-96f9-54c8e7262586.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:e080::/48 Signature Algorithm: sha256WithRSAEncryption 1c:d2:b5:fa:f8:b0:e1:5f:22:88:65:3d:41:6f:ce:38:35:4a: af:d4:f5:6e:e9:f5:d2:f0:f5:d0:e8:89:f4:ca:7e:05:b0:0b: 82:f3:0c:e6:66:18:fc:d1:99:a3:fc:79:85:35:6e:2e:87:8a: c2:03:e9:ff:29:51:bf:da:8b:0e:89:24:08:80:57:5c:a7:2f: 53:11:4c:03:3a:55:71:68:c8:2a:3c:2d:2d:4d:8d:06:04:be: 60:1a:67:11:42:e2:6c:f0:3a:63:da:f9:1b:6b:aa:0c:a7:d5: 8d:14:c6:3e:b5:77:cf:40:1d:b8:51:87:63:64:4e:21:3d:f7: ed:c5:f8:2a:2a:c0:76:81:cd:ed:f8:56:fc:de:b9:cd:7b:cd: 6b:c4:96:0a:a8:30:ec:ee:6f:40:bf:08:a8:ca:b0:24:a1:ee: 1d:e1:4c:a4:b1:95:76:eb:e7:fb:d7:92:07:de:52:08:b5:73: d7:b1:b0:9d:7a:19:04:ef:f8:f0:7d:21:08:2e:a3:53:7e:70: d8:b6:73:ae:21:24:59:3e:fc:77:08:54:a3:1f:c2:39:49:f6: 08:ab:42:71:f3:cc:e7:8f:5d:2b:1f:52:01:ca:2e:65:a8:90: dc:9d:c6:3b:51:3c:a3:96:81:05:b4:f1:f0:49:38:07:25:00: ff:21:98:50 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULswbqQ5nBu69TMG5ZL3ZDptB3CMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTcwMTU4WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDY1NGMxNDA5YjMwOWQ1NTk5YTRjM2RhYWFjYzFkMDll Y2IzNjBjNDZiZGM0MmU5NDEzMmU0MzE0OGNjMGZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6LBr0YdQIqSTYxupqLBDwXQUrMq9aikObARpZ/4XgpBr0 zI6RgwQuXUoTyYQksKMcUQ8b/ai0CIOVUV+PkK4RpMfg1Re6arujRrZGjprF4oIc itWKFHUIgzkMvrwXvn8YizB5YkHv7MRT/evpWkzJKmt/Dy941IcvegUkbfPqmypC vXtNwjYz+GJNmJkO4vOz0EFXpldiFPZI8VEa0ojUAGPG2IQorMzKnRa7KWN+PUcb cebtPL6dhpbt6VUjgdFvd1YUchmDU8aldpnqXu7tjeR2KiUX6/QmbLQE/e3RLMAl wRxZdgpl/6Y6sVgxL06OPKW/L2Af68aNUzDreK3dAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNM/ah/WN5y1qiBSzma3vYRe0Zb4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyMDU5NGI1LTEwMjktNGEwMi05NmY5LTU0YzhlNzI2MjU4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9h4IAwDQYJKoZIhvcNAQELBQADggEBABzStfr4sOFfIohlPUFvzjg1 Sq/U9W7p9dLw9dDoifTKfgWwC4LzDOZmGPzRmaP8eYU1bi6HisID6f8pUb/aiw6J JAiAV1ynL1MRTAM6VXFoyCo8LS1NjQYEvmAaZxFC4mzwOmPa+Rtrqgyn1Y0Uxj61 d89AHbhRh2NkTiE99+3F+CoqwHaBze34Vvzeuc17zWvElgqoMOzub0C/CKjKsCSh 7h3hTKSxlXbr5/vXkgfeUgi1c9exsJ16GQTv+PB9IQguo1N+cNi2c64hJFk+/HcI VKMfwjlJ9girQnHzzOePXSsfUgHKLmWokNydxjtRPKOWgQW08fBJOAclAP8hmFA= -----END CERTIFICATE-----Generated at Fri Aug 8 20:46:09 2025 by rpki-client