$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa File: 6281a3cd-fc20-4f89-a2d4-8e1827292796.roa (raw, json) Hash identifier: UxqUFFn8JJ2iM0luQMxH7qPO3FhkgtcxHWTQRQyad2I= Subject key identifier: 23:92:64:3B:76:29:54:81:50:12:C1:F8:6D:C5:EA:4C:F4:61:B5:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 65D158D30DBD576CC22AA06295CB4983E3E32E4E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa Signing time: Fri 01 Aug 2025 15:51:52 +0000 ROA not before: Fri 01 Aug 2025 15:51:52 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:6060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d1:58:d3:0d:bd:57:6c:c2:2a:a0:62:95:cb:49:83:e3:e3:2e:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:51:52 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=8801de172387e3c3b48c347e4ca09c9a8b799ef96b6883676bda1456317b8fdf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:11:45:5e:a8:e0:75:79:5c:b7:b3:e5:ec:5c: d8:16:ca:a1:f8:94:ab:c3:b5:9e:99:c8:5c:74:04: 4a:c9:27:e4:3c:2a:93:7c:16:56:20:76:ec:dd:2c: c3:dd:4a:1b:2d:19:1c:62:02:3a:f6:7d:2a:fc:f4: d8:50:2a:7e:bf:18:2b:b3:58:91:62:d9:84:49:33: 6b:4c:05:c0:4a:f0:72:c0:61:93:6f:2d:81:f9:a0: 35:fb:12:9b:23:f8:3b:4b:58:15:d1:b3:7b:44:fa: a6:05:14:e8:54:d9:fd:eb:b9:92:7c:4c:25:e7:53: c6:90:46:b2:b2:3e:74:a6:bd:6e:b9:ea:37:0f:13: 41:04:e3:fe:4d:50:41:03:1f:72:2c:88:3d:f4:ec: 76:ef:35:ec:cd:dc:51:c2:6c:d6:c8:d7:d6:d7:d8: 98:f1:af:5c:e4:cf:18:c4:42:81:a4:74:50:b3:53: 6f:27:7a:45:4b:d5:ca:a8:65:89:32:0f:88:ff:3a: 7d:6b:1f:6e:5a:d8:94:93:b4:b0:e7:ee:a0:88:03: 9a:f6:e1:99:02:aa:41:50:6c:a7:97:03:42:fa:db: 70:2f:65:07:97:40:1c:f5:d1:56:c0:ae:35:d4:60: 90:94:4f:b9:03:28:49:c9:86:14:26:96:9d:dd:ee: b5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:92:64:3B:76:29:54:81:50:12:C1:F8:6D:C5:EA:4C:F4:61:B5:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:6060::/48 Signature Algorithm: sha256WithRSAEncryption 88:4b:46:29:01:d4:52:1d:a5:74:07:73:43:4c:52:89:b0:7a: c6:9f:60:a3:fd:50:53:41:21:0e:9f:84:a0:1a:12:c4:10:4d: 04:4d:d5:de:78:5f:ee:53:a0:8e:1c:4d:0f:4a:97:87:0d:1e: 1c:93:63:a9:10:75:ca:5f:3b:67:d9:06:d4:47:33:7f:12:c2: b7:4a:39:69:94:3e:59:61:85:80:94:c5:5c:f1:d9:32:a5:ef: cb:81:67:5a:dd:51:8d:99:7c:26:ac:c6:de:5c:1d:f3:ef:54: 65:06:bb:d1:88:aa:d1:51:f7:48:90:32:9e:8d:f8:44:28:e0: 02:6c:92:25:fb:3f:22:3d:b5:7d:41:07:87:f3:ca:f4:c3:f4: 37:8d:cc:d9:b9:9a:5b:e5:11:3e:2d:8b:9b:0f:92:db:d8:3c: b1:33:8c:e9:99:20:07:53:12:b9:e5:94:c8:cd:48:03:11:5f: 8d:5b:21:27:64:66:99:8b:85:c8:f8:4e:d7:f6:8f:6e:d8:76: 4a:0d:af:bf:bf:4a:49:28:a9:36:dc:57:f5:70:e2:05:2c:c9: 2f:e9:db:b4:db:0d:3d:2b:bf:e7:d9:b5:7a:02:3b:01:d4:1e: 92:f2:ec:0d:3e:eb:eb:e7:92:ed:f1:bc:0d:ba:23:5b:2e:6e: 3d:99:7c:aa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZdFY0w29V2zCKqBilctJg+PjLk4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTU1MTUyWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODAxZGUxNzIzODdlM2MzYjQ4YzM0N2U0Y2EwOWM5YThi Nzk5ZWY5NmI2ODgzNjc2YmRhMTQ1NjMxN2I4ZmRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHEUVeqOB1eVy3s+XsXNgWyqH4lKvDtZ6ZyFx0BErJJ+Q8 KpN8FlYgduzdLMPdShstGRxiAjr2fSr89NhQKn6/GCuzWJFi2YRJM2tMBcBK8HLA YZNvLYH5oDX7Epsj+DtLWBXRs3tE+qYFFOhU2f3ruZJ8TCXnU8aQRrKyPnSmvW65 6jcPE0EE4/5NUEEDH3IsiD307HbvNezN3FHCbNbI19bX2Jjxr1zkzxjEQoGkdFCz U28nekVL1cqoZYkyD4j/On1rH25a2JSTtLDn7qCIA5r24ZkCqkFQbKeXA0L623Av ZQeXQBz10VbArjXUYJCUT7kDKEnJhhQmlp3d7rVhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUI5JkO3YpVIFQEsH4bcXqTPRhtfYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyODFhM2NkLWZjMjAtNGY4OS1hMmQ0LThlMTgyNzI5Mjc5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//YGAwDQYJKoZIhvcNAQELBQADggEBAIhLRikB1FIdpXQHc0NMUomw esafYKP9UFNBIQ6fhKAaEsQQTQRN1d54X+5ToI4cTQ9Kl4cNHhyTY6kQdcpfO2fZ BtRHM38SwrdKOWmUPllhhYCUxVzx2TKl78uBZ1rdUY2ZfCasxt5cHfPvVGUGu9GI qtFR90iQMp6N+EQo4AJskiX7PyI9tX1BB4fzyvTD9DeNzNm5mlvlET4ti5sPktvY PLEzjOmZIAdTErnllMjNSAMRX41bISdkZpmLhcj4Ttf2j27YdkoNr7+/SkkoqTbc V/Vw4gUsyS/p27TbDT0rv+fZtXoCOwHUHpLy7A0+6+vnku3xvA26I1subj2ZfKo= -----END CERTIFICATE-----Generated at Sat Aug 9 15:06:31 2025 by rpki-client