$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa File: 65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa (raw, json) Hash identifier: F02UdyVIXFilZ4B0xDDXFrHJaMHKmQXGQ4bcAI26q1o= Subject key identifier: 94:E0:D2:48:71:ED:2A:BE:5E:03:C5:27:DC:68:DC:35:29:AE:F2:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 777541798636DD6D56516A5C3D2A47A5740ED60D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa Signing time: Fri 01 Aug 2025 16:41:58 +0000 ROA not before: Fri 01 Aug 2025 16:41:58 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffd:807b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:75:41:79:86:36:dd:6d:56:51:6a:5c:3d:2a:47:a5:74:0e:d6:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:41:58 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=3f1fb0e0e2275749279535e573640edf465e569fd15fb27a3322d1059722b214, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fc:d9:6e:6e:dd:24:af:72:9f:28:65:2d:e5: d5:a0:5d:b6:c8:f0:d8:e2:72:67:57:c0:27:97:27: 23:ec:7d:6a:77:83:95:ff:5f:68:6e:ff:fe:e5:c2: 6b:e5:0d:3c:c9:09:c9:42:27:4a:dd:0e:ef:93:58: d2:13:af:62:4a:cb:d4:58:31:f4:5c:ba:7f:e7:ce: 1c:0c:67:ad:4a:a7:95:8f:6f:c7:cd:93:c2:2b:44: ea:42:4f:46:f8:1a:4e:0d:8b:8a:88:fd:3f:74:31: 70:2e:02:5d:e3:90:a4:b2:5b:8e:e0:3e:f7:d4:e0: 0d:46:89:92:df:e5:17:33:c9:b4:73:d2:ca:eb:75: 17:2b:0a:e1:f7:77:9d:9c:61:68:a3:e8:de:74:61: 1b:92:be:02:2b:a3:4e:89:f7:57:73:19:1e:3e:6f: d8:9a:58:64:ac:ef:c9:a3:29:a1:d4:ff:31:59:e1: 8f:dd:46:a2:5c:5c:38:36:86:1d:b7:74:bd:f1:c6: d2:55:6b:6f:6b:03:16:a6:84:e3:c0:aa:a6:c0:ac: d1:0f:ca:17:76:94:c5:53:18:89:ba:01:2f:58:b8: 38:37:ea:91:42:89:d1:5e:c8:95:cc:e2:60:1e:9f: ce:8c:76:4d:4e:ba:46:8e:ac:0a:90:d7:50:cc:83: ee:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:E0:D2:48:71:ED:2A:BE:5E:03:C5:27:DC:68:DC:35:29:AE:F2:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65c7e436-50a0-4c45-a6d2-a899c8f5e790.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:807b::/48 Signature Algorithm: sha256WithRSAEncryption 2c:9d:5d:be:45:77:dd:58:ff:d6:fd:23:4f:62:8c:4e:6a:14: b9:d0:9b:ea:08:57:f9:99:80:34:cb:2c:9e:1c:63:d6:be:2a: 3b:01:5c:82:22:c6:26:30:b7:f8:b0:43:c0:3c:75:3f:a7:5f: fa:9b:d3:01:71:3a:40:86:94:15:c0:5e:0a:cd:4c:a3:08:ea: 03:3a:50:b1:21:d8:97:bb:fe:33:33:5f:07:94:17:dd:d3:f4: 76:0f:ad:b0:a6:58:6d:fb:6f:b6:23:06:96:22:60:f0:e3:83: 64:b4:65:fe:19:eb:ea:20:4f:fb:55:84:f9:bf:37:5b:2f:97: 3d:6f:bd:a4:13:14:c3:cf:d0:27:5b:e7:c1:bb:c4:93:5d:db: a0:93:25:3e:07:ee:1b:0a:54:68:c9:7a:2b:9d:b6:79:87:ce: 18:38:72:cf:8c:eb:f8:13:91:a1:d6:5d:11:ee:f6:5b:7e:44: e6:fb:3b:b0:c0:3f:40:64:ea:1f:6c:99:3b:ea:15:c0:d1:bb: 72:f6:b5:92:78:1f:f7:2a:af:7f:5d:8b:b3:73:bf:73:3b:36: 8f:5b:f3:29:56:d9:3e:fa:0d:40:10:c7:9b:03:ff:d1:7c:b4: bf:32:e1:1a:60:0d:b6:63:98:d0:4b:06:14:e5:63:f2:a0:88: 6a:73:83:4a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUd3VBeYY23W1WUWpcPSpHpXQO1g0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTY0MTU4WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjFmYjBlMGUyMjc1NzQ5Mjc5NTM1ZTU3MzY0MGVkZjQ2 NWU1NjlmZDE1ZmIyN2EzMzIyZDEwNTk3MjJiMjE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd/Nlubt0kr3KfKGUt5dWgXbbI8NjicmdXwCeXJyPsfWp3 g5X/X2hu//7lwmvlDTzJCclCJ0rdDu+TWNITr2JKy9RYMfRcun/nzhwMZ61Kp5WP b8fNk8IrROpCT0b4Gk4Ni4qI/T90MXAuAl3jkKSyW47gPvfU4A1GiZLf5RczybRz 0srrdRcrCuH3d52cYWij6N50YRuSvgIro06J91dzGR4+b9iaWGSs78mjKaHU/zFZ 4Y/dRqJcXDg2hh23dL3xxtJVa29rAxamhOPAqqbArNEPyhd2lMVTGIm6AS9YuDg3 6pFCidFeyJXM4mAen86Mdk1OukaOrAqQ11DMg+4ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlODSSHHtKr5eA8Un3GjcNSmu8mowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YzdlNDM2LTUwYTAtNGM0NS1hNmQyLWE4OTljOGY1ZTc5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gHswDQYJKoZIhvcNAQELBQADggEBACydXb5Fd91Y/9b9I09ijE5q FLnQm+oIV/mZgDTLLJ4cY9a+KjsBXIIixiYwt/iwQ8A8dT+nX/qb0wFxOkCGlBXA XgrNTKMI6gM6ULEh2Je7/jMzXweUF93T9HYPrbCmWG37b7YjBpYiYPDjg2S0Zf4Z 6+ogT/tVhPm/N1svlz1vvaQTFMPP0Cdb58G7xJNd26CTJT4H7hsKVGjJeiudtnmH zhg4cs+M6/gTkaHWXRHu9lt+ROb7O7DAP0Bk6h9smTvqFcDRu3L2tZJ4H/cqr39d i7Nzv3M7No9b8ylW2T76DUAQx5sD/9F8tL8y4RpgDbZjmNBLBhTlY/KgiGpzg0o= -----END CERTIFICATE-----Generated at Wed Aug 6 14:14:48 2025 by rpki-client