$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac40b2e5-6b6b-4ba6-8bf8-b7f8df12f324.roa File: ac40b2e5-6b6b-4ba6-8bf8-b7f8df12f324.roa (raw, json) Hash identifier: FIe2G1mM0sqyRiXPWXkUr4W8Wbcsl0vDNACWT9i3IYk= Subject key identifier: 11:3F:A5:D7:AF:B6:22:4C:EB:26:3B:9F:CC:73:DE:77:EA:FE:90:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 687DCAE3EDE617C4CF7886770C3C4230C7442F0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac40b2e5-6b6b-4ba6-8bf8-b7f8df12f324.roa Signing time: Fri 01 Aug 2025 16:21:28 +0000 ROA not before: Fri 01 Aug 2025 16:21:28 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:7d:ca:e3:ed:e6:17:c4:cf:78:86:77:0c:3c:42:30:c7:44:2f:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:21:28 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=2815e72431fb248bad8de1843551be07f089bb810f0e14c3590b24afcae9c41e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:16:84:77:09:d9:6b:27:45:74:46:2a:84:fb: 3d:3e:6c:1b:49:b0:3a:a2:b8:61:95:42:dc:54:8e: 45:af:e5:90:7b:f2:51:c6:f9:83:8b:74:c0:29:1d: 85:82:b7:21:0c:82:f5:3e:55:a9:84:56:4e:73:00: 98:0e:7d:59:bc:2e:84:49:42:1d:74:32:cf:97:03: 1e:4d:aa:54:df:0d:e5:db:6b:3e:37:40:ff:16:1a: 1e:8e:63:bb:36:00:f7:b9:bc:b8:c8:23:69:6a:2e: 50:88:48:aa:55:b2:d7:f2:5d:7d:ea:a6:4e:25:f0: b3:09:e8:ea:cb:4a:43:9f:62:95:62:0b:56:05:42: d0:67:b4:c7:7f:bf:8b:42:f7:ac:6e:17:f0:a4:2b: a6:a2:da:9a:a4:e8:65:3f:46:d9:cb:b6:7a:fc:23: 41:fb:5c:52:1d:ca:30:78:af:75:aa:b6:22:33:2e: 36:6d:88:9c:ac:52:c5:3f:c9:14:63:ef:62:36:79: 6f:23:45:91:fa:00:6a:40:b9:29:c7:d6:66:76:1d: 16:9a:6a:6f:00:13:bc:cd:48:f0:3e:ea:42:7c:cc: 33:aa:09:7a:7c:1d:0e:b6:44:a4:c2:33:c3:ed:88: ee:16:53:13:64:5c:6a:87:91:b0:dc:7b:1a:50:99: ca:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:3F:A5:D7:AF:B6:22:4C:EB:26:3B:9F:CC:73:DE:77:EA:FE:90:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac40b2e5-6b6b-4ba6-8bf8-b7f8df12f324.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:e040::/48 Signature Algorithm: sha256WithRSAEncryption 28:3b:31:4f:7b:71:e6:36:da:0b:34:2a:4c:ee:bd:5d:cf:8d: d3:fc:13:0f:84:9f:e6:7c:7a:84:8f:d3:fb:c7:e1:c1:19:1e: d1:8e:3b:e0:7d:89:d5:b6:6c:73:41:39:4d:5a:91:ea:0a:da: d0:4d:40:34:67:cc:3a:7b:13:d5:5f:3d:58:50:63:74:e1:40: 76:de:e5:6d:07:24:8b:d9:9a:8e:74:c6:ad:09:12:da:6f:bf: 65:65:09:f9:74:9d:90:b6:d9:41:82:49:44:89:00:bd:63:fa: 65:23:dc:f4:fe:50:9b:4e:a2:80:ed:41:ad:c5:31:41:b5:be: 39:71:99:1e:1c:0b:f8:79:46:83:cd:d0:89:16:94:2c:ef:cb: e2:09:83:43:c2:23:9b:2d:fc:ef:d3:c8:bc:71:2f:a3:13:97: 0a:72:36:3d:21:f1:09:8e:e6:a7:9e:22:76:ae:a0:19:88:07: e2:e9:36:25:33:5a:23:a8:b0:3a:9d:68:24:01:0d:f4:31:ce: 63:e7:6e:8e:f2:75:79:e2:50:14:f5:16:5a:a2:a9:0b:c1:ad: e9:f2:62:5f:9e:21:f5:7f:5c:89:f5:47:5a:3a:33:72:04:27: 59:80:06:f0:cf:34:6e:d5:da:8a:54:57:ea:7d:5c:23:05:bf: 4a:73:9c:b5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaH3K4+3mF8TPeIZ3DDxCMMdELwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTYyMTI4WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODE1ZTcyNDMxZmIyNDhiYWQ4ZGUxODQzNTUxYmUwN2Yw ODliYjgxMGYwZTE0YzM1OTBiMjRhZmNhZTljNDFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLFoR3CdlrJ0V0RiqE+z0+bBtJsDqiuGGVQtxUjkWv5ZB7 8lHG+YOLdMApHYWCtyEMgvU+VamEVk5zAJgOfVm8LoRJQh10Ms+XAx5NqlTfDeXb az43QP8WGh6OY7s2APe5vLjII2lqLlCISKpVstfyXX3qpk4l8LMJ6OrLSkOfYpVi C1YFQtBntMd/v4tC96xuF/CkK6ai2pqk6GU/RtnLtnr8I0H7XFIdyjB4r3WqtiIz LjZtiJysUsU/yRRj72I2eW8jRZH6AGpAuSnH1mZ2HRaaam8AE7zNSPA+6kJ8zDOq CXp8HQ62RKTCM8PtiO4WUxNkXGqHkbDcexpQmcqVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUET+l16+2IkzrJjufzHPed+r+kLcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjNDBiMmU1LTZiNmItNGJhNi04YmY4LWI3ZjhkZjEyZjMyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//4EAwDQYJKoZIhvcNAQELBQADggEBACg7MU97ceY22gs0KkzuvV3P jdP8Ew+En+Z8eoSP0/vH4cEZHtGOO+B9idW2bHNBOU1akeoK2tBNQDRnzDp7E9Vf PVhQY3ThQHbe5W0HJIvZmo50xq0JEtpvv2VlCfl0nZC22UGCSUSJAL1j+mUj3PT+ UJtOooDtQa3FMUG1vjlxmR4cC/h5RoPN0IkWlCzvy+IJg0PCI5st/O/TyLxxL6MT lwpyNj0h8QmO5qeeInauoBmIB+LpNiUzWiOosDqdaCQBDfQxzmPnbo7ydXniUBT1 FlqiqQvBrenyYl+eIfV/XIn1R1o6M3IEJ1mABvDPNG7V2opUV+p9XCMFv0pznLU= -----END CERTIFICATE-----Generated at Mon Aug 4 22:20:43 2025 by rpki-client