$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd2952bd-ccae-41d1-a73e-254ac17830cd.roa File: bd2952bd-ccae-41d1-a73e-254ac17830cd.roa (raw, json) Hash identifier: BIC7xHaVnqXd28IZAsvvRb94j091Meb8CMCXW7FlrLM= Subject key identifier: B1:3F:B0:6E:9B:95:38:1F:D6:8F:46:4A:CB:C1:96:0D:53:D6:CE:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 481EDED7CCF45655FA7C48DECF5BF370B0FC22B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd2952bd-ccae-41d1-a73e-254ac17830cd.roa Signing time: Mon 04 Aug 2025 16:40:23 +0000 ROA not before: Mon 04 Aug 2025 16:40:23 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f1f:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:1e:de:d7:cc:f4:56:55:fa:7c:48:de:cf:5b:f3:70:b0:fc:22:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:40:23 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=506c9d179f9e380137836d613e120666cf64f416473d7f80ac06ad29f79925af, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:87:e0:14:af:a6:7f:05:f2:5e:81:ca:44:d5: 28:49:8b:bc:4d:ec:49:4e:c9:b1:5d:5c:f7:3d:49: 64:35:4c:41:f6:f6:9b:79:c5:cd:df:c7:aa:59:e0: a0:1b:25:41:5a:02:2f:70:1f:61:80:05:17:35:a4: 70:38:77:fe:2d:a6:cc:96:07:c9:a7:87:89:a2:02: 8c:60:00:87:3b:b6:d0:2d:5f:43:48:39:86:1f:44: f6:39:c4:1f:88:91:43:f3:7d:17:cd:d5:93:09:e7: 72:64:3c:d0:2d:32:c9:7f:c3:df:28:5d:a7:f8:a9: 75:07:01:87:14:bb:81:a8:00:00:56:71:60:3f:4e: 73:84:96:40:c3:28:62:5e:86:cb:ce:c2:73:28:76: 0f:9e:b3:fe:b0:8b:50:ef:79:26:cb:e0:4f:ab:c3: e9:08:13:dd:26:d1:31:0d:f8:eb:84:c2:95:6d:8f: e7:72:57:3a:07:46:e8:cc:81:f6:09:5f:e6:6c:6c: 05:78:6f:c4:a3:fb:60:da:07:21:a9:36:30:5c:59: e8:20:9b:0f:d3:95:1b:e7:35:ed:cf:d9:51:d0:1d: 9a:49:87:e7:de:b2:a0:41:d1:d8:14:ad:a0:29:fb: 13:17:c9:d9:ff:cf:92:d8:7f:e5:72:c0:15:78:0e: 6e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:3F:B0:6E:9B:95:38:1F:D6:8F:46:4A:CB:C1:96:0D:53:D6:CE:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd2952bd-ccae-41d1-a73e-254ac17830cd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1f:4000::/37 Signature Algorithm: sha256WithRSAEncryption ce:27:ef:bc:99:f1:a8:ff:71:77:4e:32:8b:ec:d8:fb:2e:6b: 8b:68:7d:60:23:be:86:b7:06:f9:17:63:3b:50:70:a3:0a:6f: 66:5d:f8:54:85:d1:db:a2:83:14:66:e4:e6:43:bc:74:14:68: f9:42:9f:17:67:51:b2:b8:cc:bb:b7:5e:d9:b3:a7:87:30:2f: f9:ce:17:93:e5:73:6b:23:e9:5b:94:79:6d:e1:53:69:29:60: 5e:cb:e1:53:47:a9:30:be:f4:f8:ae:45:ad:d4:8f:af:2f:97: 42:d0:cd:1e:09:b7:0b:a1:0c:51:2f:2f:09:92:4c:de:8c:1e: 74:73:bf:8f:5c:4c:9a:e6:24:62:6f:90:f5:7a:59:77:0f:77: 3e:c7:88:35:08:4a:05:5a:61:6d:5e:4c:30:60:99:ac:d0:a8: d3:50:3d:0f:43:d5:07:fb:47:d6:33:cc:4d:6a:81:77:e0:01: bd:08:ca:ae:eb:eb:ae:6a:77:3e:dc:55:9f:49:94:19:40:70: f3:e7:3f:86:17:fe:cd:c5:bb:92:32:91:41:e2:d8:e3:fb:3e: 96:2a:c5:c5:72:83:ed:fb:88:42:ed:85:6e:ae:71:b4:e5:fd: 28:e1:a0:21:a6:3a:45:07:f1:ff:3f:99:52:c8:a1:82:f6:64: ce:e9:23:2a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSB7e18z0VlX6fEjez1vzcLD8IrQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTY0MDIzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDZjOWQxNzlmOWUzODAxMzc4MzZkNjEzZTEyMDY2NmNm NjRmNDE2NDczZDdmODBhYzA2YWQyOWY3OTkyNWFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEh+AUr6Z/BfJegcpE1ShJi7xN7ElOybFdXPc9SWQ1TEH2 9pt5xc3fx6pZ4KAbJUFaAi9wH2GABRc1pHA4d/4tpsyWB8mnh4miAoxgAIc7ttAt X0NIOYYfRPY5xB+IkUPzfRfN1ZMJ53JkPNAtMsl/w98oXaf4qXUHAYcUu4GoAABW cWA/TnOElkDDKGJehsvOwnModg+es/6wi1DveSbL4E+rw+kIE90m0TEN+OuEwpVt j+dyVzoHRujMgfYJX+ZsbAV4b8Sj+2DaByGpNjBcWeggmw/TlRvnNe3P2VHQHZpJ h+fesqBB0dgUraAp+xMXydn/z5LYf+VywBV4Dm6VAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUsT+wbpuVOB/Wj0ZKy8GWDVPWzu8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkMjk1MmJkLWNjYWUtNDFkMS1hNzNlLTI1NGFjMTc4MzBjZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8fQDANBgkqhkiG9w0BAQsFAAOCAQEAzifvvJnxqP9xd04yi+zY+y5r i2h9YCO+hrcG+RdjO1BwowpvZl34VIXR26KDFGbk5kO8dBRo+UKfF2dRsrjMu7de 2bOnhzAv+c4Xk+VzayPpW5R5beFTaSlgXsvhU0epML70+K5FrdSPry+XQtDNHgm3 C6EMUS8vCZJM3owedHO/j1xMmuYkYm+Q9XpZdw93PseINQhKBVphbV5MMGCZrNCo 01A9D0PVB/tH1jPMTWqBd+ABvQjKruvrrmp3PtxVn0mUGUBw8+c/hhf+zcW7kjKR QeLY4/s+lirFxXKD7fuIQu2Fbq5xtOX9KOGgIaY6RQfx/z+ZUsihgvZkzukjKg== -----END CERTIFICATE-----Generated at Fri Aug 8 12:58:12 2025 by rpki-client