$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4c8a2a-83fa-465e-8b41-32661fce3929.roa File: 9f4c8a2a-83fa-465e-8b41-32661fce3929.roa (raw, json) Hash identifier: qDA0Rumc4CtttnQSHo9xTO696CWfemB7IRTjFWAhMmg= Subject key identifier: F2:EA:61:03:C7:6B:19:BC:81:6C:24:5B:42:F9:6B:A2:2A:53:89:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7847B3A4020C1577286834211544B1A65B658157 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4c8a2a-83fa-465e-8b41-32661fce3929.roa Signing time: Mon 04 Aug 2025 15:10:32 +0000 ROA not before: Mon 04 Aug 2025 15:10:32 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:6080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:47:b3:a4:02:0c:15:77:28:68:34:21:15:44:b1:a6:5b:65:81:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:10:32 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=0bf80f91193b9869484d570e0cc4a80ad33b302a7ff8afd09f8ed3e8a834f54d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d1:95:ee:d2:89:a2:98:5a:db:58:7f:04:d0: 97:90:5a:9d:ed:19:ca:d3:01:ef:f9:74:ec:0c:d8: 4c:59:97:96:19:98:62:79:a2:be:c5:8f:9d:b4:ab: 9c:48:a9:5c:15:db:52:04:e1:04:aa:1c:31:cc:cd: 80:3f:90:6f:77:10:ff:a1:30:7f:d7:20:07:0e:85: 99:5b:dc:b4:9c:33:e5:ed:d5:d7:2f:fc:9d:89:c4: 77:c6:41:fd:db:3e:cf:f8:b2:9e:1d:35:28:88:7b: 41:16:26:31:64:26:10:6f:87:4c:09:f3:ed:18:ec: 7c:cd:bc:ad:03:11:67:99:df:78:35:9f:c9:68:ca: 86:ef:24:4b:76:79:49:8c:bf:70:88:28:31:9f:34: bc:3f:14:21:cb:a7:c6:c2:94:0e:a5:c5:5f:39:c1: df:30:d6:b2:a5:8c:8d:d8:02:c5:c6:20:3e:26:bf: 31:44:f8:a9:11:42:0a:a4:cd:58:89:d8:6d:50:a9: c0:0d:f5:a5:97:4a:45:af:08:ad:3c:c7:af:f0:05: 18:c9:cb:5f:24:39:d0:4c:5b:f0:7f:23:b7:ee:dd: 34:ae:4e:32:2b:c7:4f:99:3b:ec:d8:7b:93:34:62: 6f:ee:3c:e5:d3:b5:2c:08:eb:a7:45:82:99:57:0e: bf:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EA:61:03:C7:6B:19:BC:81:6C:24:5B:42:F9:6B:A2:2A:53:89:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4c8a2a-83fa-465e-8b41-32661fce3929.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:6080::/48 Signature Algorithm: sha256WithRSAEncryption 08:5e:f1:02:8c:64:b8:23:02:7b:3a:08:72:4a:b6:9f:ed:ae: 69:0b:99:ba:2a:1a:f9:0c:c8:eb:97:66:92:e9:71:69:74:c4: 6c:31:55:4d:93:82:a6:cb:48:cf:0c:cf:1d:6a:c2:ce:61:37: de:1a:a7:d7:f7:f3:9f:ad:21:06:80:63:b0:ea:81:56:e6:c4: 39:e1:f2:32:df:9b:dc:b9:0c:55:1f:bd:59:b4:c8:5a:79:89: 9c:89:cf:5d:9c:38:30:16:54:3e:78:79:f2:63:bb:9f:5f:cc: dd:4a:35:72:61:6a:ee:aa:ff:a9:e6:28:b5:b2:15:50:cc:32: 50:b4:4b:0b:84:9f:6f:40:ae:c1:2c:0b:87:3e:45:6f:b4:ee: b6:ba:a9:e7:ae:9b:48:97:30:fa:d0:de:63:10:ad:8a:9d:e0: ef:74:21:47:5e:cc:8c:7b:81:f9:02:43:17:bd:3d:75:77:e1: 4d:bf:19:f8:3f:b2:d2:f4:41:e4:72:b3:bc:45:18:62:3a:80: d6:3b:11:9f:47:c3:32:d5:32:fa:28:98:b5:f4:e3:ec:bd:98: 57:e4:3c:fb:7f:73:af:7c:9b:54:cc:5f:5e:fb:51:19:c6:d3: 26:1d:e3:ff:17:f0:66:b7:ed:57:58:72:6b:42:c2:66:d5:21: 77:86:d2:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeEezpAIMFXcoaDQhFUSxpltlgVcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUxMDMyWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmY4MGY5MTE5M2I5ODY5NDg0ZDU3MGUwY2M0YTgwYWQz M2IzMDJhN2ZmOGFmZDA5ZjhlZDNlOGE4MzRmNTRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC10ZXu0omimFrbWH8E0JeQWp3tGcrTAe/5dOwM2ExZl5YZ mGJ5or7Fj520q5xIqVwV21IE4QSqHDHMzYA/kG93EP+hMH/XIAcOhZlb3LScM+Xt 1dcv/J2JxHfGQf3bPs/4sp4dNSiIe0EWJjFkJhBvh0wJ8+0Y7HzNvK0DEWeZ33g1 n8loyobvJEt2eUmMv3CIKDGfNLw/FCHLp8bClA6lxV85wd8w1rKljI3YAsXGID4m vzFE+KkRQgqkzViJ2G1QqcAN9aWXSkWvCK08x6/wBRjJy18kOdBMW/B/I7fu3TSu TjIrx0+ZO+zYe5M0Ym/uPOXTtSwI66dFgplXDr8VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8uphA8drGbyBbCRbQvlroipTiSMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmNGM4YTJhLTgzZmEtNDY1ZS04YjQxLTMyNjYxZmNlMzkyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//YIAwDQYJKoZIhvcNAQELBQADggEBAAhe8QKMZLgjAns6CHJKtp/t rmkLmboqGvkMyOuXZpLpcWl0xGwxVU2TgqbLSM8Mzx1qws5hN94ap9f385+tIQaA Y7DqgVbmxDnh8jLfm9y5DFUfvVm0yFp5iZyJz12cODAWVD54efJju59fzN1KNXJh au6q/6nmKLWyFVDMMlC0SwuEn29ArsEsC4c+RW+07ra6qeeum0iXMPrQ3mMQrYqd 4O90IUdezIx7gfkCQxe9PXV34U2/Gfg/stL0QeRys7xFGGI6gNY7EZ9HwzLVMvoo mLX04+y9mFfkPPt/c698m1TMX177URnG0yYd4/8X8Ga37VdYcmtCwmbVIXeG0gE= -----END CERTIFICATE-----Generated at Sat Aug 9 10:37:36 2025 by rpki-client