$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84735eb9-3d3c-435d-bd71-a0b5ca2da261.roa File: 84735eb9-3d3c-435d-bd71-a0b5ca2da261.roa (raw, json) Hash identifier: t0Cm3gBgD5IyqBUy/vDupRuLHbcSSNT5oXQOnel3Unk= Subject key identifier: 3C:24:C1:97:FB:02:40:28:3F:1B:C3:63:62:2E:A8:16:AE:F8:01:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54E6BD72C9845B076F4CC4D89C620270C8D3BF66 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84735eb9-3d3c-435d-bd71-a0b5ca2da261.roa Signing time: Fri 01 Aug 2025 17:00:21 +0000 ROA not before: Fri 01 Aug 2025 17:00:21 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:2080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:e6:bd:72:c9:84:5b:07:6f:4c:c4:d8:9c:62:02:70:c8:d3:bf:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 17:00:21 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=9cc3b457f3650d2a0ee8068a591fe2962f51672aa4aa4bd328d478f799087bde, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:b5:c6:0c:7b:40:d3:6a:5a:d2:6e:04:27:bd: b4:7c:85:b6:6d:b4:16:0a:9e:14:75:38:23:6b:a2: 3a:57:14:5a:00:16:8a:b3:33:d5:b4:0a:34:45:81: 5a:ea:99:82:de:9e:59:51:ac:09:cf:c7:70:7d:01: 77:bd:b3:5b:f1:5a:96:8c:28:0f:f1:91:0e:c5:45: 80:e6:1c:f3:5d:10:74:5a:02:99:28:c4:1d:32:8b: 7c:46:4f:64:fb:66:b7:c0:9d:d6:74:2b:77:8c:1f: 0b:af:ca:d2:91:1b:2c:46:37:a1:d6:03:53:c1:c4: 84:61:14:98:f4:b4:ca:88:38:73:e3:e2:47:1e:fe: 7a:77:76:b3:6e:cf:31:9c:ce:3d:10:6b:ab:40:a1: 0d:be:59:4e:da:27:02:f2:8b:00:0d:37:07:38:0d: ca:ef:b0:e5:b0:ff:28:b6:d1:9e:7a:df:4f:51:6d: eb:62:6a:73:90:37:f1:71:bd:22:ef:54:bd:a7:4e: 33:f0:c7:39:68:82:38:7d:4f:bd:0c:43:e8:49:03: e4:62:95:37:6b:bf:fd:b3:90:7b:f7:93:b4:72:23: 31:10:cf:a5:94:e5:39:ee:39:b6:64:37:96:18:ac: 3a:36:ca:45:45:8a:ea:d4:27:2e:95:d0:c1:22:50: 46:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:24:C1:97:FB:02:40:28:3F:1B:C3:63:62:2E:A8:16:AE:F8:01:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84735eb9-3d3c-435d-bd71-a0b5ca2da261.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:2080::/48 Signature Algorithm: sha256WithRSAEncryption d6:07:77:3e:b6:7a:c4:9d:68:3d:ab:4a:29:09:5f:0b:c2:67: ca:bb:87:02:3b:ca:60:92:90:20:15:59:09:f9:3a:bb:65:12: 95:7f:0e:32:56:fc:f3:30:52:fe:9f:c0:b8:67:a0:19:8b:7c: ce:c8:06:57:64:72:0c:74:3b:b6:e7:5b:76:d9:bb:15:5f:37: ea:21:72:05:45:db:29:61:65:8e:2e:63:14:2f:a0:33:04:1c: f9:08:7e:fe:63:75:ef:a9:0c:43:d3:26:ed:33:4b:83:90:e0: db:f2:98:b5:d0:50:57:1b:85:37:27:18:a5:45:4b:18:c9:c1: fa:f6:64:2c:9d:52:00:22:01:72:fb:73:cd:a2:01:f7:a6:c8: 0b:4c:ce:dc:2c:83:7d:4b:cf:9c:d4:82:b2:c6:ca:a4:ce:61: cd:b3:0c:7f:13:ba:c9:70:2a:eb:ea:66:ed:fc:ea:3a:31:be: c7:24:a3:e2:05:de:ea:b6:16:aa:e2:60:38:49:8f:fb:4c:dc: 02:d4:5e:c6:4b:3d:46:8c:83:c9:74:a7:af:da:c9:f5:5e:d0: b7:d9:1b:5d:92:03:b0:7b:4b:ff:14:ba:c5:44:e5:f8:88:62: c7:b5:8e:f6:67:3c:0b:59:28:5d:44:51:93:61:ce:bf:e8:9b: 4d:82:2b:16 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVOa9csmEWwdvTMTYnGICcMjTv2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTcwMDIxWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Y2MzYjQ1N2YzNjUwZDJhMGVlODA2OGE1OTFmZTI5NjJm NTE2NzJhYTRhYTRiZDMyOGQ0NzhmNzk5MDg3YmRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD4tcYMe0DTalrSbgQnvbR8hbZttBYKnhR1OCNrojpXFFoA FoqzM9W0CjRFgVrqmYLenllRrAnPx3B9AXe9s1vxWpaMKA/xkQ7FRYDmHPNdEHRa ApkoxB0yi3xGT2T7ZrfAndZ0K3eMHwuvytKRGyxGN6HWA1PBxIRhFJj0tMqIOHPj 4kce/np3drNuzzGczj0Qa6tAoQ2+WU7aJwLyiwANNwc4DcrvsOWw/yi20Z56309R betianOQN/FxvSLvVL2nTjPwxzlogjh9T70MQ+hJA+RilTdrv/2zkHv3k7RyIzEQ z6WU5TnuObZkN5YYrDo2ykVFiurUJy6V0MEiUEZPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPCTBl/sCQCg/G8NjYi6oFq74AaIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NzM1ZWI5LTNkM2MtNDM1ZC1iZDcxLWEwYjVjYTJkYTI2MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hIIAwDQYJKoZIhvcNAQELBQADggEBANYHdz62esSdaD2rSikJXwvC Z8q7hwI7ymCSkCAVWQn5OrtlEpV/DjJW/PMwUv6fwLhnoBmLfM7IBldkcgx0O7bn W3bZuxVfN+ohcgVF2ylhZY4uYxQvoDMEHPkIfv5jde+pDEPTJu0zS4OQ4NvymLXQ UFcbhTcnGKVFSxjJwfr2ZCydUgAiAXL7c82iAfemyAtMztwsg31Lz5zUgrLGyqTO Yc2zDH8TuslwKuvqZu386joxvscko+IF3uq2FqriYDhJj/tM3ALUXsZLPUaMg8l0 p6/ayfVe0LfZG12SA7B7S/8UusVE5fiIYse1jvZnPAtZKF1EUZNhzr/om02CKxY= -----END CERTIFICATE-----Generated at Tue Aug 5 17:12:27 2025 by rpki-client