$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa File: 6e9ea69d-4b33-4a85-894c-5620e610e709.roa (raw, json) Hash identifier: nh1R8gpbdtpvlYQmDCWnoyqDiFnvIHnDPjvvVflodY4= Subject key identifier: 78:A9:ED:1F:AA:3C:D1:B3:CC:E8:07:50:29:96:96:53:A0:9A:39:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4107542B9D191F9C124508AC8B0507FB96B3AB5F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa Signing time: Fri 08 Aug 2025 00:10:26 +0000 ROA not before: Fri 08 Aug 2025 00:10:26 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:85e8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:07:54:2b:9d:19:1f:9c:12:45:08:ac:8b:05:07:fb:96:b3:ab:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 8 00:10:26 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=df124dd1a2e1efe3b8029b3b1dc6af71acda4126b6eff1f2286cbdadf4bb61a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:89:38:2c:da:b9:98:f3:14:bc:94:12:94:ab: a1:57:2a:99:90:ae:39:2a:9d:f3:d5:0d:78:e2:6b: 44:35:da:b7:f2:36:ab:50:8e:3a:24:0c:cf:a4:42: 34:53:7a:38:a7:20:d4:cd:0f:ff:e6:1b:98:9d:45: 99:17:7a:8d:ff:74:b5:6e:2a:4b:54:65:19:fc:90: e3:b2:66:c9:d0:e8:1e:72:e8:6c:a3:5b:f4:45:ff: ce:7d:12:b8:43:25:8f:c8:a6:8b:ab:3a:54:a9:aa: 10:66:80:7f:b7:40:5d:cf:03:05:77:4a:13:6b:c3: 9a:71:cc:de:b2:0a:b6:6f:e4:10:3f:63:aa:ab:6d: 4c:0d:a6:7b:d5:14:c1:f4:8f:dd:91:f8:82:7b:e2: 1b:b8:ba:06:8f:b6:e9:4d:08:70:16:af:f7:80:ff: a8:a3:3a:92:bb:b5:f7:ff:f9:d2:e5:6c:b3:00:17: c6:fd:e0:f3:92:a6:55:d1:7d:b6:6f:57:1b:8d:26: 90:c4:a5:33:1d:03:9f:60:f5:24:ba:b9:bf:42:30: 46:ef:93:42:01:aa:63:6c:3d:36:82:98:67:ff:49: 9f:46:e2:9a:ec:1c:fb:11:dd:e8:2b:86:2f:27:58: 25:7e:a8:c8:a8:98:b4:ce:fd:f8:40:82:7b:d2:07: 7d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A9:ED:1F:AA:3C:D1:B3:CC:E8:07:50:29:96:96:53:A0:9A:39:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e9ea69d-4b33-4a85-894c-5620e610e709.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:85e8::/48 Signature Algorithm: sha256WithRSAEncryption bd:1e:3f:39:26:7d:e7:38:70:34:a1:82:12:6f:ff:e4:b3:42: c8:66:e5:78:82:10:9b:f5:9b:8b:17:dd:0e:22:6f:ae:67:42: 6f:5f:ea:7b:55:65:d8:59:21:a9:89:5b:c1:40:70:c7:1d:5c: 74:01:9c:85:a2:19:33:a1:10:cf:65:2e:ce:4f:01:88:fa:36: b9:b1:4f:ac:ca:b9:97:c1:07:97:dc:1a:4b:42:36:52:32:a8: a8:67:18:e3:6a:a6:79:56:5e:7d:64:ac:6f:b2:f7:c0:75:1d: d8:4c:99:73:2e:64:b1:28:63:07:7f:34:0f:5d:18:9c:02:b2: c5:9c:32:a2:22:a1:8d:e2:9e:b0:5e:c3:dc:1e:91:af:79:0a: c1:47:e6:63:ad:44:2e:d3:9e:82:1d:4f:ab:94:26:98:20:65: b7:df:8d:3f:a6:57:12:a9:2b:9e:93:6c:79:bf:a6:47:b0:a9: dd:54:ea:da:9c:3d:1c:ad:5b:d7:19:74:df:e7:9a:54:44:5f: 74:17:be:70:63:c2:c5:90:db:50:c1:d0:57:d1:76:55:23:32: 37:41:93:7e:d1:e4:62:50:55:9f:7a:60:76:c6:c1:aa:6c:0f: 23:cb:e1:e3:8c:01:80:3e:16:bd:24:1b:5b:10:a3:1d:70:bb: c5:4f:66:b0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQQdUK50ZH5wSRQisiwUH+5azq18wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA4MDAxMDI2WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjEyNGRkMWEyZTFlZmUzYjgwMjliM2IxZGM2YWY3MWFj ZGE0MTI2YjZlZmYxZjIyODZjYmRhZGY0YmI2MWEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUiTgs2rmY8xS8lBKUq6FXKpmQrjkqnfPVDXjia0Q12rfy NqtQjjokDM+kQjRTejinINTND//mG5idRZkXeo3/dLVuKktUZRn8kOOyZsnQ6B5y 6GyjW/RF/859ErhDJY/IpourOlSpqhBmgH+3QF3PAwV3ShNrw5pxzN6yCrZv5BA/ Y6qrbUwNpnvVFMH0j92R+IJ74hu4ugaPtulNCHAWr/eA/6ijOpK7tff/+dLlbLMA F8b94POSplXRfbZvVxuNJpDEpTMdA59g9SS6ub9CMEbvk0IBqmNsPTaCmGf/SZ9G 4prsHPsR3egrhi8nWCV+qMiomLTO/fhAgnvSB33ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeKntH6o80bPM6AdQKZaWU6CaOY4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlOWVhNjlkLTRiMzMtNGE4NS04OTRjLTU2MjBlNjEwZTcwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9hegwDQYJKoZIhvcNAQELBQADggEBAL0ePzkmfec4cDShghJv/+Sz Qshm5XiCEJv1m4sX3Q4ib65nQm9f6ntVZdhZIamJW8FAcMcdXHQBnIWiGTOhEM9l Ls5PAYj6NrmxT6zKuZfBB5fcGktCNlIyqKhnGONqpnlWXn1krG+y98B1HdhMmXMu ZLEoYwd/NA9dGJwCssWcMqIioY3inrBew9weka95CsFH5mOtRC7TnoIdT6uUJpgg ZbffjT+mVxKpK56TbHm/pkewqd1U6tqcPRytW9cZdN/nmlREX3QXvnBjwsWQ21DB 0FfRdlUjMjdBk37R5GJQVZ96YHbGwapsDyPL4eOMAYA+Fr0kG1sQox1wu8VPZrA= -----END CERTIFICATE-----Generated at Fri Aug 8 19:29:45 2025 by rpki-client