$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/782623ec-d256-4ded-93c7-2ba1b2f03b63.roa File: 782623ec-d256-4ded-93c7-2ba1b2f03b63.roa (raw, json) Hash identifier: 1WWhTBny85NIz0ikZfoyZy9faZ7ri9CU80PmLr5DgP8= Subject key identifier: 56:DB:C5:07:66:37:6D:D6:05:7F:9B:90:EF:C9:58:93:3C:A5:E5:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26CB0C39F37B0CAFDF9CC9AC0CA87B48CB94D9B0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/782623ec-d256-4ded-93c7-2ba1b2f03b63.roa Signing time: Mon 04 Aug 2025 16:20:30 +0000 ROA not before: Mon 04 Aug 2025 16:20:30 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1e:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:cb:0c:39:f3:7b:0c:af:df:9c:c9:ac:0c:a8:7b:48:cb:94:d9:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:20:30 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=3a140c378edb74d71eed86066692e87f358da69a59fc6053863812fdf340fbd7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4b:30:fd:ac:e4:d3:9a:6a:8d:50:6b:20:76: d5:8d:44:5b:aa:bf:90:37:34:4b:c8:63:be:8f:9c: 90:69:31:b1:00:62:6a:ca:8b:1b:be:f1:2d:9a:4a: d7:8c:51:e9:6f:91:55:a4:80:a2:b8:ae:6b:f2:bf: 8b:50:f2:b9:8c:8f:8a:dd:37:7c:5a:89:64:3e:80: 82:d2:2d:13:8b:bf:a3:2b:57:f2:56:86:37:42:7f: 80:e0:71:9d:59:8d:95:ed:e9:7f:23:b5:f5:c3:f1: f4:a4:f3:84:25:5d:31:98:00:93:73:79:bf:a4:3d: ca:e6:99:e2:d4:db:10:63:8a:67:5a:3a:99:b2:7f: 46:d4:42:83:88:69:54:ba:c4:ca:56:b5:c3:dc:f2: ad:53:9c:15:20:6b:97:13:c5:c7:8c:bf:bd:75:af: 2f:ae:e5:30:74:9a:dd:9e:1f:23:c1:b8:d5:ea:80: a6:e8:39:a1:75:99:36:bf:51:a1:77:25:f2:3d:60: c6:dd:43:e7:95:99:e9:b9:d0:d0:d1:e2:2a:b2:6e: a8:d3:16:81:21:35:40:ab:25:b4:78:73:d8:ff:2b: 3b:2f:69:4d:1e:7e:9d:7e:45:23:ad:61:e7:56:ed: ee:d9:5d:00:11:d3:d6:5f:8b:05:4a:ec:ae:eb:78: cf:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:DB:C5:07:66:37:6D:D6:05:7F:9B:90:EF:C9:58:93:3C:A5:E5:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/782623ec-d256-4ded-93c7-2ba1b2f03b63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1e:800::/38 Signature Algorithm: sha256WithRSAEncryption 6b:a0:93:9b:bb:37:ee:cb:a0:d6:1b:6f:a4:b9:83:f8:f2:b8: e0:03:22:d5:71:2d:b6:c3:fb:d8:ac:34:45:5c:bf:5f:52:42: 1e:b1:64:9e:c1:ff:19:f9:8d:43:bb:5f:3a:44:85:07:b3:e0: ae:2a:d8:9f:81:2c:e0:de:64:17:b2:b5:cb:f0:a9:5d:92:b6: e3:0c:19:e5:3d:64:9f:ab:89:02:50:e0:77:1c:30:1a:3b:cb: 1b:fe:c4:8c:d0:05:b6:0c:fa:ea:3d:26:4a:71:a5:12:40:af: d3:b4:59:7e:62:9d:f5:db:c4:fe:12:1f:5f:04:75:0a:f9:8f: 6b:33:07:3f:08:5a:88:37:d9:07:29:36:97:e4:7a:1b:02:ef: 68:4e:4f:3e:bb:d4:f4:15:eb:5b:f8:dd:8e:58:d7:a9:cc:bd: 4a:16:0b:08:e3:63:f6:50:74:a6:ec:41:ee:3d:ea:24:fe:3f: ee:cb:ab:8c:79:96:14:c9:0b:05:ab:cb:2a:f4:6d:ee:dd:a5: ef:a1:f3:60:d1:0d:ad:f5:ff:63:52:cc:50:77:a7:1a:3c:4d: d7:df:24:07:22:fd:2c:2d:19:41:cd:4b:3b:74:6e:0a:a9:00: 9b:f3:5d:02:09:70:43:26:bb:ff:cb:46:2d:3f:00:29:2b:21: e9:f5:76:93 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJssMOfN7DK/fnMmsDKh7SMuU2bAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYyMDMwWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTE0MGMzNzhlZGI3NGQ3MWVlZDg2MDY2NjkyZTg3ZjM1 OGRhNjlhNTlmYzYwNTM4NjM4MTJmZGYzNDBmYmQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7SzD9rOTTmmqNUGsgdtWNRFuqv5A3NEvIY76PnJBpMbEA YmrKixu+8S2aSteMUelvkVWkgKK4rmvyv4tQ8rmMj4rdN3xaiWQ+gILSLROLv6Mr V/JWhjdCf4DgcZ1ZjZXt6X8jtfXD8fSk84QlXTGYAJNzeb+kPcrmmeLU2xBjimda Opmyf0bUQoOIaVS6xMpWtcPc8q1TnBUga5cTxceMv711ry+u5TB0mt2eHyPBuNXq gKboOaF1mTa/UaF3JfI9YMbdQ+eVmem50NDR4iqybqjTFoEhNUCrJbR4c9j/Kzsv aU0efp1+RSOtYedW7e7ZXQAR09ZfiwVK7K7reM/XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUVtvFB2Y3bdYFf5uQ78lYkzyl5RIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4MjYyM2VjLWQyNTYtNGRlZC05M2M3LTJiYTFiMmYwM2I2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8eCDANBgkqhkiG9w0BAQsFAAOCAQEAa6CTm7s37sug1htvpLmD+PK4 4AMi1XEttsP72Kw0RVy/X1JCHrFknsH/GfmNQ7tfOkSFB7PgrirYn4Es4N5kF7K1 y/CpXZK24wwZ5T1kn6uJAlDgdxwwGjvLG/7EjNAFtgz66j0mSnGlEkCv07RZfmKd 9dvE/hIfXwR1CvmPazMHPwhaiDfZByk2l+R6GwLvaE5PPrvU9BXrW/jdjljXqcy9 ShYLCONj9lB0puxB7j3qJP4/7surjHmWFMkLBavLKvRt7t2l76HzYNENrfX/Y1LM UHenGjxN198kByL9LC0ZQc1LO3RuCqkAm/NdAglwQya7/8tGLT8AKSsh6fV2kw== -----END CERTIFICATE-----Generated at Thu Aug 7 04:42:10 2025 by rpki-client