$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa File: b3f91ab4-930a-4958-b6c8-811feb211be7.roa (raw, json) Hash identifier: xxToHMIN6JAAr5I+C6oaQy2y2DlQBk3RHEHNooxGtPg= Subject key identifier: 8C:BA:89:DD:47:E5:F0:3B:10:B1:E6:E3:92:BF:95:CC:15:1C:77:D8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BBDF7F0DFB5B479BDD98E616C6B7A40822D9EC1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa Signing time: Mon 04 Aug 2025 17:02:09 +0000 ROA not before: Mon 04 Aug 2025 17:02:09 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f10:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:bd:f7:f0:df:b5:b4:79:bd:d9:8e:61:6c:6b:7a:40:82:2d:9e:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:02:09 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=7f564252419f7a5d6c46f890434e71137e18240198b8a2e716391312d138a571, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c2:dd:7c:43:07:1c:73:00:49:86:3f:e8:bf: 8f:b5:ce:b1:12:c7:55:68:1b:f7:b6:90:41:60:96: b9:94:ac:ef:6e:cd:ea:81:85:2c:09:10:31:7c:e3: 20:75:91:3b:db:4c:56:b3:60:66:4a:bf:91:f2:e1: e0:e5:0f:e6:31:d3:c4:36:11:93:6a:64:c6:a0:6e: 37:31:e8:ba:6d:61:8a:bb:18:5f:e1:87:e6:03:8a: 2b:2c:68:a3:08:f2:4c:8a:5f:61:b5:34:7d:01:0a: 3d:59:b7:11:6a:b8:36:91:1b:96:3e:12:c6:f3:93: db:86:65:a5:aa:73:0a:75:7b:bf:1f:07:d0:32:7d: bd:26:6a:e0:b5:ff:6b:dd:ac:4a:1a:bb:c2:53:d0: d3:3f:ab:1f:26:b0:2c:32:05:64:e1:09:c2:e0:b2: 44:36:16:19:cd:8d:36:ff:62:ca:08:40:0b:12:87: 26:b1:95:e0:93:ac:0d:5d:54:2d:8e:33:a8:7f:93: 6b:cd:c5:66:0c:04:6b:b2:7e:d6:65:b5:b5:47:36: d1:2d:19:74:4f:59:8a:e7:66:a0:25:b9:1c:3d:ab: 96:f5:c5:58:27:84:ae:be:f9:78:d9:76:7e:a7:75: df:9b:39:11:53:6b:75:39:55:ec:a8:ab:ff:82:da: 03:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BA:89:DD:47:E5:F0:3B:10:B1:E6:E3:92:BF:95:CC:15:1C:77:D8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3f91ab4-930a-4958-b6c8-811feb211be7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f10:c800::/37 Signature Algorithm: sha256WithRSAEncryption 1f:f0:9f:26:cb:a0:03:fd:85:91:88:5c:6d:02:c5:30:17:10: 85:da:7a:28:1e:20:ea:f6:bd:a3:1b:0b:71:19:7e:80:e8:cb: 55:7d:67:f9:67:a1:58:2e:9c:e9:11:44:ea:14:3e:a2:98:79: f4:42:60:fa:de:2c:91:85:16:88:fe:73:95:64:3e:7a:a4:3a: 47:31:fe:56:d1:f1:14:bf:26:9a:89:89:10:ba:c8:7b:c9:8c: 1e:6c:6a:1c:fc:14:9e:05:5c:39:26:a2:95:5a:50:79:a4:a9: 85:3c:c3:5e:40:11:ea:e2:d3:91:e7:b6:c0:5c:05:42:8b:08: c6:a1:06:79:c5:ff:9d:3b:67:aa:2c:bc:82:55:fc:5e:e3:58: 7d:38:7a:c1:3b:4b:a4:c2:6f:c0:bb:5c:9e:60:ae:60:75:fe: cb:4d:59:1a:f7:f6:46:4d:d6:0f:b8:4e:ac:51:fc:ed:83:4d: 49:be:17:9b:87:55:d7:97:38:b2:df:e6:9d:4f:a4:53:f9:07: 63:72:ad:d6:30:73:4b:fc:53:a7:65:98:a6:d9:6c:5e:df:4b: 49:87:39:0e:c8:8a:6b:78:fa:86:47:4e:68:e2:c0:c0:e8:fb: 51:05:c2:88:76:25:c1:b2:ef:26:4f:1b:21:d8:e9:4c:89:6c: db:b8:bf:5f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUa7338N+1tHm92Y5hbGt6QIItnsEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTcwMjA5WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjU2NDI1MjQxOWY3YTVkNmM0NmY4OTA0MzRlNzExMzdl MTgyNDAxOThiOGEyZTcxNjM5MTMxMmQxMzhhNTcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOwt18QwcccwBJhj/ov4+1zrESx1VoG/e2kEFglrmUrO9u zeqBhSwJEDF84yB1kTvbTFazYGZKv5Hy4eDlD+Yx08Q2EZNqZMagbjcx6LptYYq7 GF/hh+YDiissaKMI8kyKX2G1NH0BCj1ZtxFquDaRG5Y+Esbzk9uGZaWqcwp1e78f B9Ayfb0mauC1/2vdrEoau8JT0NM/qx8msCwyBWThCcLgskQ2FhnNjTb/YsoIQAsS hyaxleCTrA1dVC2OM6h/k2vNxWYMBGuyftZltbVHNtEtGXRPWYrnZqAluRw9q5b1 xVgnhK6++XjZdn6ndd+bORFTa3U5Veyoq/+C2gOhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUjLqJ3Ufl8DsQsebjkr+VzBUcd9gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzZjkxYWI0LTkzMGEtNDk1OC1iNmM4LTgxMWZlYjIxMWJlNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8QyDANBgkqhkiG9w0BAQsFAAOCAQEAH/CfJsugA/2FkYhcbQLFMBcQ hdp6KB4g6va9oxsLcRl+gOjLVX1n+WehWC6c6RFE6hQ+oph59EJg+t4skYUWiP5z lWQ+eqQ6RzH+VtHxFL8mmomJELrIe8mMHmxqHPwUngVcOSailVpQeaSphTzDXkAR 6uLTkee2wFwFQosIxqEGecX/nTtnqiy8glX8XuNYfTh6wTtLpMJvwLtcnmCuYHX+ y01ZGvf2Rk3WD7hOrFH87YNNSb4Xm4dV15c4st/mnU+kU/kHY3Kt1jBzS/xTp2WY ptlsXt9LSYc5DsiKa3j6hkdOaOLAwOj7UQXCiHYlwbLvJk8bIdjpTIls27i/Xw== -----END CERTIFICATE-----Generated at Wed Aug 6 05:52:42 2025 by rpki-client