$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bca413bd-7320-44f7-a129-8a68742a9485.roa File: bca413bd-7320-44f7-a129-8a68742a9485.roa (raw, json) Hash identifier: ZRJRwA12bFPwjVy8UzH2dG5SrJd+7Da9Ojhbp3HQQDc= Subject key identifier: EF:5F:00:18:41:F0:59:DB:A1:42:F2:0B:FA:08:F6:8F:E2:0F:D3:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35F7D22B2742147398E6F831EF38B86CCE136E11 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bca413bd-7320-44f7-a129-8a68742a9485.roa Signing time: Fri 18 Jul 2025 00:21:04 +0000 ROA not before: Fri 18 Jul 2025 00:21:04 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2620:107:4004::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:f7:d2:2b:27:42:14:73:98:e6:f8:31:ef:38:b8:6c:ce:13:6e:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:21:04 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=13999c6272dfc37ee619aa9b7dee3efc6ddbc458dbc9efc61953626156d6bb62, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:71:00:a5:c2:eb:6b:d5:47:e7:1b:47:8e:7d: 70:27:49:91:68:85:14:ba:2d:ea:59:3b:a3:21:13: c0:29:f0:54:c7:16:f1:62:c8:3b:5d:69:ec:64:6d: d4:74:73:32:42:66:ed:af:d5:2a:bf:83:a9:c8:f0: d2:86:58:49:e2:43:6a:7b:45:ee:3f:bc:cd:e8:80: fc:57:ce:ef:e0:d5:37:a6:df:b1:49:42:79:c3:c5: 8b:af:1f:ea:b3:4f:48:a4:88:9c:13:78:96:de:66: c4:f0:fb:13:eb:f7:1c:61:d6:ae:5a:9f:ff:c0:c7: 53:6e:28:00:d5:34:ad:2a:dd:82:54:5a:07:d5:1f: 23:e0:c9:23:f3:b8:e7:1a:cf:2b:4a:74:ec:5a:a7: 3a:76:ed:11:6b:6b:52:66:bc:67:a0:9a:c4:3f:f4: ea:71:fb:e2:4d:59:9d:e1:b3:93:26:b5:2b:82:4b: ac:bf:ea:a8:c8:cb:1a:46:f0:c0:76:e9:f6:57:01: 63:5f:8e:1f:93:ce:8e:b3:05:75:59:fd:21:2a:de: 25:5b:94:0f:94:14:e4:1c:f1:fb:29:0d:31:0d:b0: d6:a0:0a:52:08:21:b5:ef:d5:00:18:5a:c7:7b:dd: aa:b4:cf:19:d5:2c:d8:45:62:a7:71:80:a9:f0:38: a5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:5F:00:18:41:F0:59:DB:A1:42:F2:0B:FA:08:F6:8F:E2:0F:D3:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bca413bd-7320-44f7-a129-8a68742a9485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2620:107:4004::/48 Signature Algorithm: sha256WithRSAEncryption 82:64:ab:31:79:c3:14:71:c4:eb:8e:e4:c4:18:fa:99:b5:43: 75:ca:37:ad:6d:8d:26:65:3f:44:43:df:e2:19:41:ac:3a:c5: 4f:34:d0:f6:8d:cb:20:d5:e8:bb:43:39:78:b3:68:17:1a:bf: 2a:ea:eb:19:0e:36:2a:09:fb:0d:83:7d:f2:f0:f3:55:c7:ee: 7a:cd:4b:d1:88:48:f5:a0:2f:ab:7f:4e:2e:cb:23:86:c7:3d: 6c:c7:7d:c7:61:bb:34:5a:30:12:95:3f:fc:58:a3:d0:eb:c6: 0b:d9:b0:83:72:01:18:76:8f:29:34:13:29:11:38:59:f6:9d: bb:2f:b9:68:e1:d2:ce:ba:f0:66:a1:d2:44:48:2d:f5:8d:bb: dd:4c:97:ca:79:15:70:c7:33:6d:fd:58:23:29:fa:82:7c:8d: d8:96:49:1a:79:97:fa:91:29:b8:43:42:6e:5a:2f:d5:71:86: a7:0a:9c:36:23:67:b3:61:87:6a:44:07:b6:a5:e2:7d:2a:37: 20:ac:03:7c:10:07:64:fb:a7:70:9c:19:f6:d6:ef:6c:94:82: fd:a8:17:4d:32:c6:f7:d6:a7:ec:75:49:c4:e7:7f:5e:2e:f2: cd:af:c0:a8:91:4b:fa:3e:38:72:62:e6:4a:a5:8c:df:12:ea: f3:89:92:f7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNffSKydCFHOY5vgx7zi4bM4TbhEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAyMTA0WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzk5OWM2MjcyZGZjMzdlZTYxOWFhOWI3ZGVlM2VmYzZk ZGJjNDU4ZGJjOWVmYzYxOTUzNjI2MTU2ZDZiYjYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtcQClwutr1UfnG0eOfXAnSZFohRS6LepZO6MhE8Ap8FTH FvFiyDtdaexkbdR0czJCZu2v1Sq/g6nI8NKGWEniQ2p7Re4/vM3ogPxXzu/g1Tem 37FJQnnDxYuvH+qzT0ikiJwTeJbeZsTw+xPr9xxh1q5an//Ax1NuKADVNK0q3YJU WgfVHyPgySPzuOcazytKdOxapzp27RFra1JmvGegmsQ/9Opx++JNWZ3hs5MmtSuC S6y/6qjIyxpG8MB26fZXAWNfjh+Tzo6zBXVZ/SEq3iVblA+UFOQc8fspDTENsNag ClIIIbXv1QAYWsd73aq0zxnVLNhFYqdxgKnwOKUJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU718AGEHwWduhQvIL+gj2j+IP0/YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjYTQxM2JkLTczMjAtNDRmNy1hMTI5LThhNjg3NDJhOTQ4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmIAEHQAQwDQYJKoZIhvcNAQELBQADggEBAIJkqzF5wxRxxOuO5MQY+pm1 Q3XKN61tjSZlP0RD3+IZQaw6xU800PaNyyDV6LtDOXizaBcavyrq6xkONioJ+w2D ffLw81XH7nrNS9GISPWgL6t/Ti7LI4bHPWzHfcdhuzRaMBKVP/xYo9DrxgvZsINy ARh2jyk0EykROFn2nbsvuWjh0s668Gah0kRILfWNu91Ml8p5FXDHM239WCMp+oJ8 jdiWSRp5l/qRKbhDQm5aL9VxhqcKnDYjZ7Nhh2pEB7al4n0qNyCsA3wQB2T7p3Cc GfbW72yUgv2oF00yxvfWp+x1ScTnf14u8s2vwKiRS/o+OHJi5kqljN8S6vOJkvc= -----END CERTIFICATE-----Generated at Wed Aug 6 10:17:21 2025 by rpki-client