$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa File: 6352e220-cec8-412c-9a38-a2b74750551e.roa (raw, json) Hash identifier: zuf11Ltiwc2ZDbQB2n4Uvdjp/6ucJQIuTfmYN+9srPs= Subject key identifier: 42:25:66:51:D3:EF:48:64:88:E1:EA:FE:B9:4C:56:07:5C:18:98:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F8952B5A654E1015CE38658489E5202A3F69322 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa Signing time: Fri 01 Aug 2025 15:20:31 +0000 ROA not before: Fri 01 Aug 2025 15:20:31 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:89:52:b5:a6:54:e1:01:5c:e3:86:58:48:9e:52:02:a3:f6:93:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:20:31 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=ded86830b3cad4917c3b3dbed8d9e1da6f6e1e6e387d89610cc62327474e244f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4e:7a:b9:0f:cb:ab:c9:6b:8b:b6:f6:9e:bb: 06:31:5a:84:cf:75:ab:59:94:04:8e:73:72:7c:6b: 22:68:28:75:ac:c3:f9:3e:81:45:eb:0c:28:8a:dc: ad:d8:81:63:71:79:f2:13:ea:c1:14:c3:90:f1:1e: 84:c7:69:70:df:d7:d3:cd:9b:d4:98:81:bb:4b:12: 97:df:9d:aa:46:9d:b8:3b:29:18:19:38:92:c9:5b: 6d:10:1f:8a:b0:84:d4:f2:21:b3:18:7f:6b:6b:65: 23:22:6e:c4:74:4c:83:21:08:1a:3c:d5:84:7d:e0: f9:23:6a:67:59:54:ef:97:39:4f:8c:f9:e7:66:2a: 43:be:a7:2f:d5:fe:03:24:91:e7:88:f2:1a:84:11: 70:14:5f:73:71:e9:b9:ab:65:24:4e:06:2d:96:4b: 0f:c8:93:e9:77:71:19:87:6b:30:91:f5:53:c7:23: ef:da:31:20:db:1f:76:ad:64:68:fd:19:ba:e6:6c: 55:36:ef:ef:0b:01:15:03:17:21:0b:e9:a2:40:42: 45:18:28:38:29:4a:6e:e2:72:f0:a7:07:fc:58:df: cc:a7:cc:64:8a:65:8d:4f:ff:ec:84:16:d6:40:fc: e4:31:f7:bd:1b:7d:93:a1:f8:ec:61:eb:70:33:52: 78:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:25:66:51:D3:EF:48:64:88:E1:EA:FE:B9:4C:56:07:5C:18:98:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:7440::/48 Signature Algorithm: sha256WithRSAEncryption 33:c8:cd:ff:a4:62:74:ae:52:2b:de:3a:aa:01:a9:59:4e:83: 6f:0e:b9:8d:44:fd:f8:a3:7a:95:5d:a4:3a:eb:e9:b5:3b:b8: 78:b5:03:c9:bc:51:91:ff:18:2a:7f:39:15:ce:10:73:59:6d: f6:53:26:b1:61:4e:e5:c5:63:b3:6e:8c:71:7c:d2:e7:86:5f: 47:a4:6c:92:d6:80:f9:86:97:f6:16:73:11:da:40:0e:a0:aa: 95:6c:97:14:de:88:da:1a:b8:3f:bb:e0:b0:ed:06:6e:17:93: c8:d4:80:94:1c:b4:9d:14:fa:18:f7:98:d6:5e:83:e8:1f:29: ac:ba:10:7a:8f:15:03:8d:d1:eb:be:e3:36:85:84:7f:bc:71: 56:25:00:b0:52:fd:74:08:85:80:92:e0:ea:0a:a2:eb:ba:7c: 8e:3c:a7:e0:b3:2e:06:16:26:e2:ed:b8:50:5b:b1:b1:96:d2: b2:b9:5c:22:dc:80:ad:98:3a:22:08:a8:6e:ef:59:5e:40:94: 03:ac:8a:f1:c0:5a:a9:3e:0e:81:a2:7f:fb:8a:fd:60:12:39: 73:d0:2a:a4:7a:78:27:e0:d5:f8:8a:8d:0a:21:06:03:1d:ab: 41:c5:7e:60:6f:4d:fb:6a:57:ba:fa:8e:31:ab:7e:ff:54:28: ce:0d:b4:3f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUb4lStaZU4QFc44ZYSJ5SAqP2kyIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUyMDMxWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWQ4NjgzMGIzY2FkNDkxN2MzYjNkYmVkOGQ5ZTFkYTZm NmUxZTZlMzg3ZDg5NjEwY2M2MjMyNzQ3NGUyNDRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeTnq5D8uryWuLtvaeuwYxWoTPdatZlASOc3J8ayJoKHWs w/k+gUXrDCiK3K3YgWNxefIT6sEUw5DxHoTHaXDf19PNm9SYgbtLEpffnapGnbg7 KRgZOJLJW20QH4qwhNTyIbMYf2trZSMibsR0TIMhCBo81YR94PkjamdZVO+XOU+M +edmKkO+py/V/gMkkeeI8hqEEXAUX3Nx6bmrZSROBi2WSw/Ik+l3cRmHazCR9VPH I+/aMSDbH3atZGj9GbrmbFU27+8LARUDFyEL6aJAQkUYKDgpSm7icvCnB/xY38yn zGSKZY1P/+yEFtZA/OQx970bfZOh+Oxh63AzUnhDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQiVmUdPvSGSI4er+uUxWB1wYmOMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzNTJlMjIwLWNlYzgtNDEyYy05YTM4LWEyYjc0NzUwNTUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ydEAwDQYJKoZIhvcNAQELBQADggEBADPIzf+kYnSuUiveOqoBqVlO g28OuY1E/fijepVdpDrr6bU7uHi1A8m8UZH/GCp/ORXOEHNZbfZTJrFhTuXFY7Nu jHF80ueGX0ekbJLWgPmGl/YWcxHaQA6gqpVslxTeiNoauD+74LDtBm4Xk8jUgJQc tJ0U+hj3mNZeg+gfKay6EHqPFQON0eu+4zaFhH+8cVYlALBS/XQIhYCS4OoKouu6 fI48p+CzLgYWJuLtuFBbsbGW0rK5XCLcgK2YOiIIqG7vWV5AlAOsivHAWqk+DoGi f/uK/WASOXPQKqR6eCfg1fiKjQohBgMdq0HFfmBvTftqV7r6jjGrfv9UKM4NtD8= -----END CERTIFICATE-----Generated at Thu Aug 7 04:39:10 2025 by rpki-client