$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a23495d-0d6b-499b-9424-b8406aeda85a.roa File: 8a23495d-0d6b-499b-9424-b8406aeda85a.roa (raw, json) Hash identifier: xZccJSBw/4MdGEyqe0sdghdsDIgJ4awUhWKVeLQJfI0= Subject key identifier: DA:9A:A1:82:D6:65:72:38:70:39:75:43:82:6E:BD:B3:C0:16:30:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E529CB9885106A6CD661458CA5D3A8D4ADFB486 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a23495d-0d6b-499b-9424-b8406aeda85a.roa Signing time: Fri 01 Aug 2025 15:21:21 +0000 ROA not before: Fri 01 Aug 2025 15:21:21 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8070::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:52:9c:b9:88:51:06:a6:cd:66:14:58:ca:5d:3a:8d:4a:df:b4:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:21:21 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=8c61462d54dd311c74a55491188ee9ca98a6b499337497d540ca81c9aab10089, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:59:42:14:7d:79:35:09:c7:1f:a8:2d:0a:3c: a7:af:c8:91:10:6f:cc:22:9d:2b:b5:97:66:2f:b8: 7e:65:9d:c2:07:f9:dd:4a:06:cc:94:de:31:a7:b2: da:ef:41:b1:0e:c0:b3:b4:12:88:47:c6:88:34:70: dc:ef:e5:2e:a5:f0:94:76:df:80:aa:fd:f0:d0:43: 77:6d:02:c1:3d:28:ad:66:b9:f2:2f:9d:a7:71:fb: 18:cc:ba:e6:3d:0b:d2:74:2d:e4:23:8a:58:e0:4c: d2:b6:10:e5:e5:10:8f:b1:82:d2:47:07:bb:59:9a: ac:29:6b:9f:33:32:fb:b8:72:2c:a9:3e:fc:4b:43: 33:59:ec:07:ab:f8:3c:7b:ed:bc:e9:4f:c1:28:a8: e0:b0:17:61:70:b1:18:b9:2c:16:5b:98:63:a9:46: e6:4b:96:d2:1e:78:cf:72:eb:d5:6d:6a:84:da:65: d8:ef:f7:18:61:04:d3:2b:fa:a4:95:08:a2:16:ec: 81:ee:3e:bc:38:07:1f:29:cc:90:59:45:06:f0:12: 13:d8:82:ce:d3:cc:d4:db:28:6b:42:63:29:59:b0: 5f:6e:1f:77:ab:c1:5f:c0:7a:9e:f3:35:0c:9e:f5: 7e:b9:27:0c:18:1d:38:45:26:81:05:30:87:c7:59: fe:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:9A:A1:82:D6:65:72:38:70:39:75:43:82:6E:BD:B3:C0:16:30:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8a23495d-0d6b-499b-9424-b8406aeda85a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8070::/48 Signature Algorithm: sha256WithRSAEncryption 3f:77:4a:d1:64:c3:51:08:eb:03:de:91:2a:05:d4:9d:93:fc: d7:92:b2:bc:f1:6b:26:87:6f:75:3b:c6:b5:8f:0c:59:51:e3: a8:e8:a6:eb:c9:11:41:af:46:f5:c0:d0:40:14:81:ea:8b:1b: e3:5c:0c:8a:99:a7:32:22:ea:97:ff:78:29:43:bf:06:ff:18: 4d:88:15:39:c4:ce:15:68:19:cf:cf:8c:26:35:e7:34:da:fd: 73:43:7a:66:e4:cb:0d:98:db:dc:33:7f:03:48:bd:1a:64:13: 2b:e7:60:cc:d9:0f:8c:04:8f:68:2f:a1:7c:e7:d5:60:50:42: 29:e6:a3:1c:38:22:f3:e7:c0:1c:7e:4e:98:c6:4c:fd:82:fe: 4b:7f:5d:e2:f8:77:26:82:87:0e:ff:2d:1b:7d:5d:8d:5b:ff: 8f:76:ea:68:65:76:be:b4:90:0d:9e:3d:5e:7c:c9:d5:46:06: 4e:d5:9f:66:6c:d4:50:a3:2c:08:85:3d:77:14:95:c9:50:d6: d6:68:5a:58:37:f0:2f:3d:b0:66:21:3f:51:33:e6:8c:fd:1a: 6c:a8:bc:db:e2:94:15:e7:e6:e6:59:fb:21:cd:1f:71:89:24: 71:43:41:52:b8:e4:a2:52:49:1e:60:fb:ce:1e:f9:00:11:4a: d4:a9:e7:1c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUblKcuYhRBqbNZhRYyl06jUrftIYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUyMTIxWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzYxNDYyZDU0ZGQzMTFjNzRhNTU0OTExODhlZTljYTk4 YTZiNDk5MzM3NDk3ZDU0MGNhODFjOWFhYjEwMDg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQWUIUfXk1CccfqC0KPKevyJEQb8winSu1l2YvuH5lncIH +d1KBsyU3jGnstrvQbEOwLO0EohHxog0cNzv5S6l8JR234Cq/fDQQ3dtAsE9KK1m ufIvnadx+xjMuuY9C9J0LeQjiljgTNK2EOXlEI+xgtJHB7tZmqwpa58zMvu4ciyp PvxLQzNZ7Aer+Dx77bzpT8EoqOCwF2FwsRi5LBZbmGOpRuZLltIeeM9y69VtaoTa Zdjv9xhhBNMr+qSVCKIW7IHuPrw4Bx8pzJBZRQbwEhPYgs7TzNTbKGtCYylZsF9u H3erwV/Aep7zNQye9X65JwwYHThFJoEFMIfHWf5TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2pqhgtZlcjhwOXVDgm69s8AWMBkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhMjM0OTVkLTBkNmItNDk5Yi05NDI0LWI4NDA2YWVkYTg1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgHAwDQYJKoZIhvcNAQELBQADggEBAD93StFkw1EI6wPekSoF1J2T /NeSsrzxayaHb3U7xrWPDFlR46jopuvJEUGvRvXA0EAUgeqLG+NcDIqZpzIi6pf/ eClDvwb/GE2IFTnEzhVoGc/PjCY15zTa/XNDembkyw2Y29wzfwNIvRpkEyvnYMzZ D4wEj2gvoXzn1WBQQinmoxw4IvPnwBx+TpjGTP2C/kt/XeL4dyaChw7/LRt9XY1b /4926mhldr60kA2ePV58ydVGBk7Vn2Zs1FCjLAiFPXcUlclQ1tZoWlg38C89sGYh P1Ez5oz9GmyovNvilBXn5uZZ+yHNH3GJJHFDQVK45KJSSR5g+84e+QARStSp5xw= -----END CERTIFICATE-----Generated at Fri Aug 8 12:56:22 2025 by rpki-client