$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab683a78-14b6-4a64-b744-55c9b85a9b70.roa File: ab683a78-14b6-4a64-b744-55c9b85a9b70.roa (raw, json) Hash identifier: byu7D7e1Jpy8Idf8bm7uHSYjmVR8/fvfC5ZauANEv5M= Subject key identifier: 50:BC:0B:6E:67:56:3E:49:5C:37:BA:FC:D6:00:BF:B0:91:B0:7D:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 030E7C93F50F02885A04962D0B70251DE0FE053C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab683a78-14b6-4a64-b744-55c9b85a9b70.roa Signing time: Fri 01 Aug 2025 16:02:00 +0000 ROA not before: Fri 01 Aug 2025 16:02:00 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff2:8020::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:0e:7c:93:f5:0f:02:88:5a:04:96:2d:0b:70:25:1d:e0:fe:05:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:02:00 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=078114fb49e2fd8426ac7a529bb46251da2401d096a1bbf744c686322be9d40b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:20:59:3a:88:c3:3d:d5:79:c9:a4:d4:34:ae: 86:42:a1:f1:60:f6:0b:bf:17:c2:3e:ca:46:61:29: e6:e1:ab:12:f6:d1:0e:7e:47:32:dc:a5:a0:77:35: 2b:80:63:02:6e:ab:67:7e:a5:e2:9b:f9:8f:5e:b6: 55:28:b9:af:39:7e:ac:e0:5e:f3:73:ef:ab:4e:b2: f2:71:00:99:c0:0d:65:53:54:70:f9:72:fb:5b:e6: 88:ed:2b:74:d5:ad:7e:8c:08:cc:ec:86:f7:37:0f: 31:00:c0:93:3a:74:79:48:87:b8:d4:99:20:f8:0c: 61:a2:cb:f5:3d:01:79:34:bf:d4:f2:e2:54:7b:52: e2:3b:86:3a:9f:87:ee:db:8c:91:af:49:cb:8f:c2: a3:cc:c6:b9:ed:23:7d:6a:0b:7a:b4:9f:a1:99:c1: d4:ef:2e:8d:de:c8:e7:de:76:9c:ae:de:76:2c:f5: 25:28:d4:a9:d8:e5:89:b3:d9:ef:eb:7f:68:3f:53: 7c:a3:71:ad:b7:ed:a9:12:07:98:23:08:54:9d:84: 44:20:46:6f:e0:0b:b6:cf:45:5f:65:9f:e9:48:58: 33:f0:af:cd:d0:65:5d:51:8b:92:1a:b5:73:6b:58: d8:5e:02:13:d5:5f:e5:ae:bb:72:79:46:12:5d:31: 9f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BC:0B:6E:67:56:3E:49:5C:37:BA:FC:D6:00:BF:B0:91:B0:7D:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab683a78-14b6-4a64-b744-55c9b85a9b70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8020::/48 Signature Algorithm: sha256WithRSAEncryption 24:ea:b3:32:c5:13:1e:9c:6c:c3:9f:a3:96:c6:ee:af:af:bc: a7:47:2a:b2:11:10:3c:f4:16:21:9b:9d:db:b5:d8:ad:60:fa: 42:14:e8:0e:21:d6:ef:02:48:75:a6:1d:b5:0b:95:6d:51:74: c2:a4:55:6a:71:24:c0:7c:85:b7:00:f9:a1:30:83:0e:9a:bb: 4f:e1:d3:a5:37:83:d0:e1:6b:21:24:cc:48:dc:bf:7f:d1:e5: 88:6e:7e:c1:6b:45:42:09:c7:02:fd:b0:bb:d2:2b:ff:f5:2e: 1b:2d:c6:2b:66:0f:b1:0d:c0:1f:2b:24:a2:1e:17:b1:e2:6e: fb:6b:db:5c:85:be:d9:13:4f:40:f6:b9:8a:1b:4c:9d:d2:ba: 9e:40:39:f4:f7:b7:74:7a:d3:41:a2:4d:da:b3:7b:43:e2:79: 8a:6a:e3:5f:28:04:8d:da:c4:14:5e:57:bd:60:28:f9:1f:42: cb:a3:f9:57:f8:66:3a:7d:72:f4:b7:08:07:e8:69:48:9e:22: 38:48:2d:f7:cc:6a:d6:2d:49:b0:8a:bd:f2:f7:20:d6:bf:fb: df:0c:8b:86:bf:fa:97:53:f2:32:8f:d3:7b:dd:ad:44:fe:a5: 7a:ed:9f:39:8f:b7:2d:43:20:39:ca:45:ce:47:5b:e8:cd:bb: 5a:91:1a:3a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAw58k/UPAohaBJYtC3AlHeD+BTwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTYwMjAwWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzgxMTRmYjQ5ZTJmZDg0MjZhYzdhNTI5YmI0NjI1MWRh MjQwMWQwOTZhMWJiZjc0NGM2ODYzMjJiZTlkNDBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsIFk6iMM91XnJpNQ0roZCofFg9gu/F8I+ykZhKebhqxL2 0Q5+RzLcpaB3NSuAYwJuq2d+peKb+Y9etlUoua85fqzgXvNz76tOsvJxAJnADWVT VHD5cvtb5ojtK3TVrX6MCMzshvc3DzEAwJM6dHlIh7jUmSD4DGGiy/U9AXk0v9Ty 4lR7UuI7hjqfh+7bjJGvScuPwqPMxrntI31qC3q0n6GZwdTvLo3eyOfedpyu3nYs 9SUo1KnY5Ymz2e/rf2g/U3yjca237akSB5gjCFSdhEQgRm/gC7bPRV9ln+lIWDPw r83QZV1Ri5IatXNrWNheAhPVX+Wuu3J5RhJdMZ9rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUULwLbmdWPklcN7r81gC/sJGwfRcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiNjgzYTc4LTE0YjYtNGE2NC1iNzQ0LTU1YzliODVhOWI3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ygCAwDQYJKoZIhvcNAQELBQADggEBACTqszLFEx6cbMOfo5bG7q+v vKdHKrIREDz0FiGbndu12K1g+kIU6A4h1u8CSHWmHbULlW1RdMKkVWpxJMB8hbcA +aEwgw6au0/h06U3g9DhayEkzEjcv3/R5YhufsFrRUIJxwL9sLvSK//1Lhstxitm D7ENwB8rJKIeF7Hibvtr21yFvtkTT0D2uYobTJ3Sup5AOfT3t3R600GiTdqze0Pi eYpq418oBI3axBReV71gKPkfQsuj+Vf4Zjp9cvS3CAfoaUieIjhILffMatYtSbCK vfL3INa/+98Mi4a/+pdT8jKP03vdrUT+pXrtnzmPty1DIDnKRc5HW+jNu1qRGjo= -----END CERTIFICATE-----Generated at Fri Aug 8 00:39:46 2025 by rpki-client