$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa File: 9824ff97-2456-49b2-84a0-9566b712b248.roa (raw, json) Hash identifier: qiYdy5fBxPfL8CS7A/twLH5pS3r9kZcPwzcYPsgUNRc= Subject key identifier: 06:0A:56:8D:AA:20:69:D2:22:3C:68:C4:25:E5:8E:15:CD:2B:DB:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B604A8CD86B7492A18EB4438492C36DF5A490D2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa Signing time: Fri 25 Jul 2025 00:11:59 +0000 ROA not before: Fri 25 Jul 2025 00:11:59 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:60:4a:8c:d8:6b:74:92:a1:8e:b4:43:84:92:c3:6d:f5:a4:90:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:11:59 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=f0467a7f9acd846c223b61c756b68e469cd8059c130ad9844d0966fd626ae65a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:39:c0:27:f6:56:cc:68:8a:29:6a:be:2d:46: 02:3c:9b:46:36:59:85:97:ec:ed:7c:f0:f9:85:d1: ad:23:dd:5a:44:4a:a0:8e:62:bb:b4:8c:1c:42:f8: 0b:b2:90:0a:e5:c0:f7:b8:09:e9:e3:92:bc:6e:c9: 3b:b9:41:f8:e4:54:a5:20:64:5e:08:f6:4d:95:be: 87:67:34:87:3a:f9:9b:87:27:0e:fe:ad:0b:65:a3: 30:f9:23:bc:1f:c5:24:02:03:df:da:6b:75:1b:85: ee:74:61:3a:6b:a3:07:1b:6c:10:ce:8d:12:f7:88: fd:8d:1f:b7:0e:6a:3a:56:8c:fe:fa:59:e9:cd:d4: 74:c2:aa:64:65:77:aa:a3:12:d0:9e:c5:4c:ad:12: 88:45:a2:9e:ee:32:c5:14:b8:9b:b0:c0:4e:29:70: 86:37:d9:f3:c6:fb:23:a4:67:39:5e:44:df:39:92: 2e:51:67:98:70:c1:cf:0e:98:37:66:18:dc:12:75: 97:91:a7:a3:f2:3c:91:9e:a3:d7:97:45:4e:f9:b6: fc:39:4d:f1:a7:be:a8:a2:5d:57:08:a6:13:56:0b: 8a:b7:fe:90:49:b5:22:e7:0b:ca:44:36:75:74:4c: 8e:bb:5e:7d:f8:da:9f:91:8b:17:96:70:c3:87:b0: 39:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:0A:56:8D:AA:20:69:D2:22:3C:68:C4:25:E5:8E:15:CD:2B:DB:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9824ff97-2456-49b2-84a0-9566b712b248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:7400::/40 Signature Algorithm: sha256WithRSAEncryption 51:70:67:3d:98:6a:96:58:12:2e:f0:ea:e9:d8:97:70:88:38: 57:81:af:e0:a7:ea:ce:44:f0:cd:a4:de:ed:04:bf:ae:de:a1: ec:df:1a:4f:d6:24:47:26:79:d0:ed:70:ab:f4:37:ac:2b:ac: 94:87:70:97:4a:bd:c8:b4:6c:d6:9f:4a:7f:f5:b2:60:83:ec: aa:98:c7:cb:5a:63:d6:73:7c:ae:81:49:98:bf:72:74:96:47: e6:af:c0:e0:bb:7a:83:0d:7c:2d:06:89:5f:e9:c8:77:d1:f6: 21:ed:a2:19:ae:56:a9:36:90:91:76:fc:fa:f5:8f:97:5e:dd: 52:4e:9f:a4:e0:5a:00:21:5b:67:47:69:4c:a3:4c:97:af:dd: 17:59:ad:3e:75:14:af:c3:6a:9c:4c:d7:8d:a4:90:33:86:e0: fe:66:74:4e:a1:ec:bb:57:ad:57:00:d3:b1:14:99:d0:7b:29: 27:64:94:d5:61:c1:78:65:04:9b:c4:87:92:cb:ae:cc:d5:07: 67:dc:e0:58:98:24:51:cc:98:ec:9c:6a:62:61:50:97:9f:15: c2:53:b1:68:e0:85:a1:a8:af:65:73:f5:6c:8e:d2:29:91:61: 8d:ae:4d:44:ae:d8:63:ef:1e:ef:82:c6:de:8c:32:24:e5:3b: d8:03:1a:df -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUC2BKjNhrdJKhjrRDhJLDbfWkkNIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAxMTU5WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDQ2N2E3ZjlhY2Q4NDZjMjIzYjYxYzc1NmI2OGU0Njlj ZDgwNTljMTMwYWQ5ODQ0ZDA5NjZmZDYyNmFlNjVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmOcAn9lbMaIopar4tRgI8m0Y2WYWX7O188PmF0a0j3VpE SqCOYru0jBxC+AuykArlwPe4CenjkrxuyTu5QfjkVKUgZF4I9k2VvodnNIc6+ZuH Jw7+rQtlozD5I7wfxSQCA9/aa3Ubhe50YTprowcbbBDOjRL3iP2NH7cOajpWjP76 WenN1HTCqmRld6qjEtCexUytEohFop7uMsUUuJuwwE4pcIY32fPG+yOkZzleRN85 ki5RZ5hwwc8OmDdmGNwSdZeRp6PyPJGeo9eXRU75tvw5TfGnvqiiXVcIphNWC4q3 /pBJtSLnC8pENnV0TI67Xn342p+RixeWcMOHsDlDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBgpWjaogadIiPGjEJeWOFc0r22UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4MjRmZjk3LTI0NTYtNDliMi04NGEwLTk1NjZiNzEyYjI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gdDANBgkqhkiG9w0BAQsFAAOCAQEAUXBnPZhqllgSLvDq6diXcIg4 V4Gv4KfqzkTwzaTe7QS/rt6h7N8aT9YkRyZ50O1wq/Q3rCuslIdwl0q9yLRs1p9K f/WyYIPsqpjHy1pj1nN8roFJmL9ydJZH5q/A4Lt6gw18LQaJX+nId9H2Ie2iGa5W qTaQkXb8+vWPl17dUk6fpOBaACFbZ0dpTKNMl6/dF1mtPnUUr8NqnEzXjaSQM4bg /mZ0TqHsu1etVwDTsRSZ0HspJ2SU1WHBeGUEm8SHksuuzNUHZ9zgWJgkUcyY7Jxq YmFQl58VwlOxaOCFoaivZXP1bI7SKZFhja5NRK7YY+8e74LG3owyJOU72AMa3w== -----END CERTIFICATE-----Generated at Sun Aug 10 05:49:51 2025 by rpki-client