$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd7b206c-0527-49d0-914a-fe7ee32411b1.roa File: bd7b206c-0527-49d0-914a-fe7ee32411b1.roa (raw, json) Hash identifier: kaSFgPQ7/ZKECh36kUptV05FPwHIKQoBvi4ageLt3qw= Subject key identifier: 76:2F:6B:64:2C:6A:2B:79:24:09:FA:FD:23:05:4F:AB:28:1A:AD:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 377C58A0DB32A57CFCCD59B41DFF040E5D15EE76 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd7b206c-0527-49d0-914a-fe7ee32411b1.roa Signing time: Fri 01 Aug 2025 15:41:11 +0000 ROA not before: Fri 01 Aug 2025 15:41:11 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffd:8066::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:7c:58:a0:db:32:a5:7c:fc:cd:59:b4:1d:ff:04:0e:5d:15:ee:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:41:11 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=737fdcf4e6900501e67c93f520882f2dfea0f3f7c05c7412ecb5be7fd96b90ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6c:50:f8:32:db:15:e7:af:f2:96:c6:9f:48: 81:c3:19:8d:20:b2:8c:aa:51:d0:24:9f:18:b2:72: 14:16:00:07:29:49:02:d5:53:3e:69:d2:5a:96:98: f1:34:a6:2f:23:e2:32:df:b0:c6:1a:6d:b7:65:5f: ca:7e:99:9e:53:de:4a:75:d4:de:b7:2b:a4:54:88: f6:8b:8f:c3:a8:5d:88:aa:54:94:40:03:29:55:bb: 24:a0:17:1c:96:2d:89:33:cd:ec:73:86:f9:7a:7f: b1:2a:86:ec:8a:27:45:94:54:a5:2c:f1:75:d4:a9: 10:91:c7:76:c0:fa:c2:2d:5b:99:4b:9f:2a:fb:bd: 76:7f:65:95:39:5a:4c:a2:f3:1f:49:65:d0:55:91: f8:81:de:23:9f:f3:4e:a9:89:c5:5b:1b:65:3f:45: 1d:33:d5:b0:f8:88:ec:df:25:c2:e7:4f:84:6d:4e: bd:b6:30:3e:37:04:49:d8:06:ed:4b:cd:b8:b4:e0: 0a:07:ba:b4:81:27:20:6b:02:1e:89:82:37:e3:bd: 6c:20:49:90:e1:09:e0:ef:e0:e9:9a:0c:6c:d5:a8: b3:36:3b:fb:96:ac:fc:d9:b9:93:e4:23:87:c9:1e: ee:3d:6a:20:d0:66:7a:e7:d0:cd:d6:47:4a:25:ea: 75:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:2F:6B:64:2C:6A:2B:79:24:09:FA:FD:23:05:4F:AB:28:1A:AD:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd7b206c-0527-49d0-914a-fe7ee32411b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8066::/48 Signature Algorithm: sha256WithRSAEncryption 14:2a:f6:86:2f:b2:1a:6f:65:d9:d5:4d:1e:82:89:d9:e1:ee: ab:78:97:1f:a6:78:c8:9f:4f:0d:57:95:8e:5f:98:4d:6b:8a: 5e:44:41:cd:50:0b:45:ab:9e:d0:b0:cc:ce:1e:b4:7c:1d:2a: 20:b0:ef:11:a9:78:37:8e:26:ab:c6:4e:ce:14:71:84:d0:41: a6:eb:38:cb:8f:38:51:d5:fe:72:c4:65:e1:9d:de:9b:ec:9a: fb:5a:ae:ed:f8:f6:bc:50:13:aa:f3:6f:3f:94:e7:d8:93:c2: 60:52:60:e9:28:8c:64:a2:20:89:26:63:e4:29:cd:97:0a:b2: 5c:a0:4f:70:80:8d:cf:72:2c:b3:4e:bf:b4:bc:63:2c:dd:61: 6d:92:e2:ae:fe:64:66:6b:18:7e:d8:0a:df:b4:33:8d:9f:99: 00:7d:13:c8:b7:8b:dc:33:eb:87:ea:96:59:2b:d4:cf:ab:e9: 2f:9a:1a:a9:13:a7:2d:82:8a:0e:e3:4c:ee:c7:29:5a:6d:65: 19:d4:54:5d:70:29:da:3b:4a:67:c3:07:1a:9c:2a:0a:44:da: 3a:3a:f9:39:bb:aa:1d:7b:c6:be:f7:a9:df:76:7b:27:09:45: 01:c5:16:d0:36:22:9d:9d:df:f5:55:94:22:ea:ec:93:44:8a: da:c0:fd:07 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN3xYoNsypXz8zVm0Hf8EDl0V7nYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTU0MTExWhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzdmZGNmNGU2OTAwNTAxZTY3YzkzZjUyMDg4MmYyZGZl YTBmM2Y3YzA1Yzc0MTJlY2I1YmU3ZmQ5NmI5MGJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7bFD4MtsV56/ylsafSIHDGY0gsoyqUdAknxiychQWAAcp SQLVUz5p0lqWmPE0pi8j4jLfsMYabbdlX8p+mZ5T3kp11N63K6RUiPaLj8OoXYiq VJRAAylVuySgFxyWLYkzzexzhvl6f7EqhuyKJ0WUVKUs8XXUqRCRx3bA+sItW5lL nyr7vXZ/ZZU5Wkyi8x9JZdBVkfiB3iOf806picVbG2U/RR0z1bD4iOzfJcLnT4Rt Tr22MD43BEnYBu1Lzbi04AoHurSBJyBrAh6JgjfjvWwgSZDhCeDv4OmaDGzVqLM2 O/uWrPzZuZPkI4fJHu49aiDQZnrn0M3WR0ol6nXBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUdi9rZCxqK3kkCfr9IwVPqygarb8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkN2IyMDZjLTA1MjctNDlkMC05MTRhLWZlN2VlMzI0MTFiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gGYwDQYJKoZIhvcNAQELBQADggEBABQq9oYvshpvZdnVTR6Cidnh 7qt4lx+meMifTw1XlY5fmE1ril5EQc1QC0WrntCwzM4etHwdKiCw7xGpeDeOJqvG Ts4UcYTQQabrOMuPOFHV/nLEZeGd3pvsmvtaru349rxQE6rzbz+U59iTwmBSYOko jGSiIIkmY+QpzZcKslygT3CAjc9yLLNOv7S8YyzdYW2S4q7+ZGZrGH7YCt+0M42f mQB9E8i3i9wz64fqllkr1M+r6S+aGqkTpy2Cig7jTO7HKVptZRnUVF1wKdo7SmfD BxqcKgpE2jo6+Tm7qh17xr73qd92eycJRQHFFtA2Ip2d3/VVlCLq7JNEitrA/Qc= -----END CERTIFICATE-----Generated at Fri Aug 8 10:15:15 2025 by rpki-client