$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa File: abba2545-31ab-4828-b5fd-dd228d23ed7a.roa (raw, json) Hash identifier: 1QTosU/yfR1pIjKKNjRMBoRw+6wne8wztBN6JFBnce8= Subject key identifier: D1:23:73:3E:20:CB:25:11:0F:F4:9B:3F:E8:03:89:1A:AF:B1:39:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 010162FE3A84FEC50F12FB9E8DCF5DAC1D1E52B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa Signing time: Fri 01 Aug 2025 16:10:32 +0000 ROA not before: Fri 01 Aug 2025 16:10:32 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:01:62:fe:3a:84:fe:c5:0f:12:fb:9e:8d:cf:5d:ac:1d:1e:52:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:10:32 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=3299c6bbff1b2830c3de1450545619d587ce2872f7dc197ec36e95d42bebb224, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:b3:94:81:dd:0a:0a:03:59:c9:43:92:5b:8c: a4:fd:e5:1f:76:ab:67:f6:0f:ee:0f:80:cd:ad:f4: ea:f1:d3:e1:0c:14:71:91:70:98:4e:0d:35:b5:00: 77:23:18:89:1c:89:9d:23:62:4e:33:6f:cc:7a:34: bf:b4:ac:dc:49:42:0b:25:6d:45:3d:4d:28:de:19: 15:0d:1a:be:d4:93:61:e4:81:db:c8:05:f0:74:f6: e7:26:4a:88:27:89:75:f0:d1:61:bb:8f:cc:30:79: 6f:bf:ce:95:78:9e:e6:28:ec:a1:e0:bb:12:1b:d4: d9:37:2f:ef:28:b6:fd:d2:38:a2:7b:68:fc:79:d6: 1a:cf:18:d8:88:8a:fc:38:1c:52:bd:5f:08:01:93: 0d:ef:39:6c:90:1b:fd:e8:ef:48:14:ed:0a:d2:44: b1:2f:47:c4:fc:be:49:b3:06:03:b6:dc:da:de:ca: cb:53:ab:23:e7:b5:09:8a:77:73:c6:77:91:56:4b: 76:e0:3d:68:21:95:3c:dd:9d:2e:06:d0:1d:a8:9d: 3f:4b:b7:a6:44:d9:13:d2:79:a6:95:c3:c4:89:b5: 51:9c:cf:e5:f5:3e:76:4d:fb:7f:b5:c7:83:d3:7e: 83:5b:34:28:de:e3:06:10:9f:95:d6:53:6d:61:36: 6c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:23:73:3E:20:CB:25:11:0F:F4:9B:3F:E8:03:89:1A:AF:B1:39:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abba2545-31ab-4828-b5fd-dd228d23ed7a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8140::/48 Signature Algorithm: sha256WithRSAEncryption 3c:91:a3:bf:d3:e6:c7:6f:10:cd:17:b6:3e:11:cb:a8:1b:97: 77:27:5c:1d:6b:3e:c6:42:70:b8:0a:b6:17:e5:5c:60:4f:c2: 94:55:3e:4e:61:ed:a7:8b:5f:97:86:45:bf:71:fe:24:c7:15: e2:99:4b:e4:cb:00:07:fa:52:8d:94:ba:29:c1:5a:5d:89:61: ba:3c:3c:24:8d:cf:8e:cb:80:c7:33:12:25:56:50:7b:f7:17: 1b:ec:4c:8d:0c:e4:77:3f:35:2f:4f:90:38:76:00:93:b0:a0: 18:d8:ce:48:7e:ee:42:3c:8d:af:0e:7b:0a:59:a9:99:0b:27: f0:ea:3d:34:66:5d:b6:ba:3e:12:0c:bb:cb:4c:2c:bc:29:3c: b3:c9:68:d8:f7:d0:72:a3:4c:af:75:31:ef:19:5a:ac:82:84: 3a:ce:d7:db:09:08:c6:1e:b2:88:b4:f2:e3:d3:f8:23:47:a4: aa:37:58:b6:8d:43:b1:f7:0b:26:5b:26:cd:cf:d3:1f:28:ab: 32:6a:d7:05:3f:7d:ac:90:7a:19:ff:ca:00:aa:bb:8f:97:ee: 12:cf:e0:df:67:4c:a5:4f:64:d3:cb:f4:03:14:1c:91:9e:61: a6:6b:67:86:85:42:6c:e2:31:bb:f5:96:ff:cb:76:f2:52:73: c7:00:a4:ee -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUAQFi/jqE/sUPEvuejc9drB0eUrIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTYxMDMyWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjk5YzZiYmZmMWIyODMwYzNkZTE0NTA1NDU2MTlkNTg3 Y2UyODcyZjdkYzE5N2VjMzZlOTVkNDJiZWJiMjI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjs5SB3QoKA1nJQ5JbjKT95R92q2f2D+4PgM2t9Orx0+EM FHGRcJhODTW1AHcjGIkciZ0jYk4zb8x6NL+0rNxJQgslbUU9TSjeGRUNGr7Uk2Hk gdvIBfB09ucmSogniXXw0WG7j8wweW+/zpV4nuYo7KHguxIb1Nk3L+8otv3SOKJ7 aPx51hrPGNiIivw4HFK9XwgBkw3vOWyQG/3o70gU7QrSRLEvR8T8vkmzBgO23Nre ystTqyPntQmKd3PGd5FWS3bgPWghlTzdnS4G0B2onT9Lt6ZE2RPSeaaVw8SJtVGc z+X1PnZN+3+1x4PTfoNbNCje4wYQn5XWU21hNmy7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU0SNzPiDLJREP9Js/6AOJGq+xOVcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiYmEyNTQ1LTMxYWItNDgyOC1iNWZkLWRkMjI4ZDIzZWQ3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gUAwDQYJKoZIhvcNAQELBQADggEBADyRo7/T5sdvEM0Xtj4Ry6gb l3cnXB1rPsZCcLgKthflXGBPwpRVPk5h7aeLX5eGRb9x/iTHFeKZS+TLAAf6Uo2U uinBWl2JYbo8PCSNz47LgMczEiVWUHv3FxvsTI0M5Hc/NS9PkDh2AJOwoBjYzkh+ 7kI8ja8OewpZqZkLJ/DqPTRmXba6PhIMu8tMLLwpPLPJaNj30HKjTK91Me8ZWqyC hDrO19sJCMYesoi08uPT+CNHpKo3WLaNQ7H3CyZbJs3P0x8oqzJq1wU/fayQehn/ ygCqu4+X7hLP4N9nTKVPZNPL9AMUHJGeYaZrZ4aFQmziMbv1lv/LdvJSc8cApO4= -----END CERTIFICATE-----Generated at Sat Aug 9 15:16:27 2025 by rpki-client