$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991e350c-1b09-4392-a15e-8cc8924ef0f5.roa File: 991e350c-1b09-4392-a15e-8cc8924ef0f5.roa (raw, json) Hash identifier: ppkGD6bC+ro9LTKwbesjbrBFhukoQfDkug7DlkUhBJw= Subject key identifier: 35:D4:FC:BE:8E:F1:DF:3D:96:1F:71:24:0B:1C:8E:CA:BE:6B:EA:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F5D373BF4FC58DE2A88B6157BA8710BD9062028 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991e350c-1b09-4392-a15e-8cc8924ef0f5.roa Signing time: Fri 01 Aug 2025 16:41:13 +0000 ROA not before: Fri 01 Aug 2025 16:41:13 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:5d:37:3b:f4:fc:58:de:2a:88:b6:15:7b:a8:71:0b:d9:06:20:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:41:13 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=3914329fe6e3bb04a7608eb06b370ddde1e31a655772a20a7e67be92928ead74, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a4:86:a1:51:d0:f6:c2:c4:59:8f:54:f1:ea: 92:90:01:48:1a:ae:96:3b:3c:b5:cc:e9:fe:e9:5d: 20:2a:d2:81:94:cb:41:15:87:93:e9:04:94:7f:28: 6d:fc:f1:c8:4a:7e:69:5f:fb:3f:88:32:b8:de:46: 18:07:c8:0d:2e:17:39:cf:13:03:b3:5c:82:64:bb: 2a:aa:f5:e3:06:75:4c:54:89:9b:be:79:ec:62:81: 4f:a9:da:3f:c4:04:4c:e8:71:77:ce:8d:de:a2:5f: 28:b9:6b:7c:87:8d:f3:b3:6e:56:70:f3:0f:ae:37: 77:7f:5a:5e:7b:39:3e:c9:cd:c8:cd:08:6e:82:ac: d8:cb:26:91:da:ae:7e:38:76:48:e7:94:20:26:a6: a2:56:86:eb:4c:e6:df:6b:de:5a:11:be:23:08:57: b4:e2:69:44:86:a0:64:3e:30:e3:c6:0f:08:ee:13: b2:82:f6:a6:af:34:ba:dc:09:01:cb:86:40:dd:96: 6f:32:56:d3:e5:70:38:2b:dc:ca:f5:f4:41:29:bc: fa:60:02:e4:ac:b5:3e:0d:d3:6d:36:df:b7:76:55: 0c:38:91:b0:e9:dd:02:ef:46:f9:e6:ea:35:fa:ff: 7e:58:39:7b:b8:73:f5:97:1c:3e:4d:9d:98:3b:40: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:D4:FC:BE:8E:F1:DF:3D:96:1F:71:24:0B:1C:8E:CA:BE:6B:EA:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/991e350c-1b09-4392-a15e-8cc8924ef0f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8180::/48 Signature Algorithm: sha256WithRSAEncryption 1a:77:c9:cc:6b:3c:26:53:e6:4b:eb:39:29:f7:b4:92:d0:d6: 84:45:3d:0f:a0:c2:bc:2a:82:7e:2a:1b:ca:0a:26:c4:7b:c8: fc:f2:c1:3c:14:e7:ae:f1:1a:e3:70:59:67:07:a4:11:9c:fe: f4:b8:c8:f0:7c:b9:bf:7e:e0:2c:f1:3a:18:2a:4b:d7:00:e5: 42:fb:b0:5a:a2:46:5c:4b:43:45:a9:0c:12:7e:db:28:37:2d: ca:e3:7b:37:ac:7b:34:02:f3:a6:76:3c:db:9a:20:39:2c:42: 18:f9:bb:71:ff:f1:a0:eb:84:e4:16:cc:14:47:78:f3:c0:3a: f3:07:ad:c4:0c:74:e6:39:53:c6:32:65:71:3d:69:73:51:a1: 8e:68:75:af:7c:9c:f3:fa:1a:4d:50:6d:94:07:c1:ac:a1:79: aa:4b:8e:a6:29:77:ac:b3:8f:04:6d:43:6b:f5:a2:4c:dd:1c: cc:fe:d4:6f:e2:6b:b2:b2:59:78:15:d5:21:1e:32:df:37:b3: 24:ab:09:03:7d:c9:0d:ca:86:70:0b:1e:c6:4f:84:87:ce:5f: 5d:09:6d:39:3d:84:b3:dc:72:ad:32:15:31:4f:06:56:6f:10: 20:20:b4:d6:f9:ed:ee:0f:80:8a:9b:37:b1:26:15:f3:16:18: 99:29:29:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD103O/T8WN4qiLYVe6hxC9kGICgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTY0MTEzWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOTE0MzI5ZmU2ZTNiYjA0YTc2MDhlYjA2YjM3MGRkZGUx ZTMxYTY1NTc3MmEyMGE3ZTY3YmU5MjkyOGVhZDc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlpIahUdD2wsRZj1Tx6pKQAUgarpY7PLXM6f7pXSAq0oGU y0EVh5PpBJR/KG388chKfmlf+z+IMrjeRhgHyA0uFznPEwOzXIJkuyqq9eMGdUxU iZu+eexigU+p2j/EBEzocXfOjd6iXyi5a3yHjfOzblZw8w+uN3d/Wl57OT7JzcjN CG6CrNjLJpHarn44dkjnlCAmpqJWhutM5t9r3loRviMIV7TiaUSGoGQ+MOPGDwju E7KC9qavNLrcCQHLhkDdlm8yVtPlcDgr3Mr19EEpvPpgAuSstT4N020237d2VQw4 kbDp3QLvRvnm6jX6/35YOXu4c/WXHD5NnZg7QIQ/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUNdT8vo7x3z2WH3EkCxyOyr5r6gIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5MWUzNTBjLTFiMDktNDM5Mi1hMTVlLThjYzg5MjRlZjBmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gYAwDQYJKoZIhvcNAQELBQADggEBABp3ycxrPCZT5kvrOSn3tJLQ 1oRFPQ+gwrwqgn4qG8oKJsR7yPzywTwU567xGuNwWWcHpBGc/vS4yPB8ub9+4Czx OhgqS9cA5UL7sFqiRlxLQ0WpDBJ+2yg3LcrjezesezQC86Z2PNuaIDksQhj5u3H/ 8aDrhOQWzBRHePPAOvMHrcQMdOY5U8YyZXE9aXNRoY5oda98nPP6Gk1QbZQHwayh eapLjqYpd6yzjwRtQ2v1okzdHMz+1G/ia7KyWXgV1SEeMt83sySrCQN9yQ3KhnAL HsZPhIfOX10JbTk9hLPccq0yFTFPBlZvECAgtNb57e4PgIqbN7EmFfMWGJkpKWE= -----END CERTIFICATE-----Generated at Mon Aug 4 22:24:33 2025 by rpki-client