$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa File: b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa (raw, json) Hash identifier: o8nBb7MGt9kHtgonvWdfytZfsI92zAnoDSjQv4ege6U= Subject key identifier: 2A:F3:CA:2A:39:F6:26:7F:D3:00:BF:D3:76:C5:8F:61:3C:EA:36:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 430926BBEE237182ECF176AB486BC0CA4E378DCF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa Signing time: Fri 01 Aug 2025 16:51:59 +0000 ROA not before: Fri 01 Aug 2025 16:51:59 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:09:26:bb:ee:23:71:82:ec:f1:76:ab:48:6b:c0:ca:4e:37:8d:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:51:59 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=e15c531558788e9744d5a35aa00655c41a7acc59e9b81df6af675d5c0333e1bc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:3e:9c:1f:b2:5d:b4:f8:3f:b6:e0:4e:f6:50: 1f:74:a2:63:ff:4b:02:f4:68:7f:22:fa:00:ba:74: 1e:e4:a4:ca:30:9e:1b:18:a8:c4:68:93:c2:e8:99: 6b:9b:d4:59:fe:03:63:1f:b4:73:12:b6:45:76:e8: 14:5b:d5:77:d7:61:1b:30:9f:31:3a:c9:4c:13:3f: c3:30:74:61:01:b4:c1:9d:a1:98:7c:4f:c7:a4:e6: 92:d6:b5:b0:93:03:da:c1:10:ab:78:e3:61:46:35: 08:2f:67:9f:bf:84:0e:e8:8f:25:3d:e5:dd:3e:95: c6:05:23:c6:5e:43:b6:ce:2b:d8:63:60:c8:1e:05: 72:fa:4c:41:98:e1:51:66:e6:bd:21:0f:a1:11:e8: 81:6d:34:ee:64:4c:ef:23:d5:75:48:ca:70:ea:55: 58:88:11:94:71:9b:6b:49:6a:a8:b7:aa:c4:b8:e1: 02:ad:f4:c6:79:3a:8e:65:26:ab:94:79:1e:9f:ce: 94:82:41:28:f5:fd:e6:71:ec:8e:6a:eb:9d:2e:c9: c7:0c:57:5d:15:5c:3e:26:f8:11:2d:7f:fa:60:af: c1:eb:4e:17:b2:c0:0f:40:77:39:40:74:cf:7f:1f: f9:2f:1a:4e:02:7e:63:96:87:25:63:29:9e:3b:d3: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:F3:CA:2A:39:F6:26:7F:D3:00:BF:D3:76:C5:8F:61:3C:EA:36:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1e68d6d-6823-4500-aa94-bf1a824a98f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:2000::/40 Signature Algorithm: sha256WithRSAEncryption 01:80:7e:da:81:7b:20:81:a6:08:99:e3:82:f8:01:40:f5:1a: f2:59:99:82:96:6a:b7:de:a0:3a:e4:45:d3:20:95:b7:a7:6e: dc:df:08:0b:37:d3:d1:70:2b:e3:af:6b:2d:83:9a:bb:e4:3b: 40:62:c3:37:bc:5d:c3:48:75:9e:1f:7a:53:44:91:dd:70:a3: c6:c8:0b:6f:85:52:0e:ea:b7:aa:1c:a2:2e:bb:f3:e8:31:5b: a3:2b:dd:97:7a:2a:f0:31:a0:b0:2a:34:75:12:84:07:1b:ad: 03:f5:40:69:25:6d:ea:3b:7e:d5:a4:3b:d8:9d:1e:e0:d0:15: c6:30:73:41:f8:21:af:15:b1:67:25:0a:07:26:c4:a6:eb:49: 46:01:bd:b8:fb:c5:05:4c:ca:fb:17:27:14:38:ac:64:25:9f: ee:2a:d8:4e:5a:f5:fb:04:a2:dc:5c:ff:d5:2f:e9:39:6e:ed: ee:ad:f5:bc:19:cb:67:07:51:d5:b8:e6:d2:82:16:29:90:5a: 6e:0d:ea:17:3a:9a:9c:28:ab:0d:4d:eb:c7:ff:85:29:60:2e: 81:98:ed:3b:c7:9e:c0:2e:5a:6a:6f:13:4a:96:1e:5f:c6:5e: 82:24:df:86:5d:75:b5:08:79:f6:46:a8:a8:48:a8:20:66:04: cc:26:1e:db -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQwkmu+4jcYLs8XarSGvAyk43jc8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTY1MTU5WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMTVjNTMxNTU4Nzg4ZTk3NDRkNWEzNWFhMDA2NTVjNDFh N2FjYzU5ZTliODFkZjZhZjY3NWQ1YzAzMzNlMWJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Ppwfsl20+D+24E72UB90omP/SwL0aH8i+gC6dB7kpMow nhsYqMRok8LomWub1Fn+A2MftHMStkV26BRb1XfXYRswnzE6yUwTP8MwdGEBtMGd oZh8T8ek5pLWtbCTA9rBEKt442FGNQgvZ5+/hA7ojyU95d0+lcYFI8ZeQ7bOK9hj YMgeBXL6TEGY4VFm5r0hD6ER6IFtNO5kTO8j1XVIynDqVViIEZRxm2tJaqi3qsS4 4QKt9MZ5Oo5lJquUeR6fzpSCQSj1/eZx7I5q650uyccMV10VXD4m+BEtf/pgr8Hr TheywA9AdzlAdM9/H/kvGk4CfmOWhyVjKZ4705epAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKvPKKjn2Jn/TAL/TdsWPYTzqNucwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxZTY4ZDZkLTY4MjMtNDUwMC1hYTk0LWJmMWE4MjRhOThmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//IDANBgkqhkiG9w0BAQsFAAOCAQEAAYB+2oF7IIGmCJnjgvgBQPUa 8lmZgpZqt96gOuRF0yCVt6du3N8ICzfT0XAr469rLYOau+Q7QGLDN7xdw0h1nh96 U0SR3XCjxsgLb4VSDuq3qhyiLrvz6DFboyvdl3oq8DGgsCo0dRKEBxutA/VAaSVt 6jt+1aQ72J0e4NAVxjBzQfghrxWxZyUKBybEputJRgG9uPvFBUzK+xcnFDisZCWf 7irYTlr1+wSi3Fz/1S/pOW7t7q31vBnLZwdR1bjm0oIWKZBabg3qFzqanCirDU3r x/+FKWAugZjtO8eewC5aam8TSpYeX8ZegiTfhl11tQh59kaoqEioIGYEzCYe2w== -----END CERTIFICATE-----Generated at Wed Aug 6 12:37:55 2025 by rpki-client