$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd906910-9723-4237-bf78-c0a7b047bc6a.roa File: bd906910-9723-4237-bf78-c0a7b047bc6a.roa (raw, json) Hash identifier: sRsirPq8zx3plaVx8P3tLDk4yNT41tz66tYoQAgK0vw= Subject key identifier: 3A:71:8F:FD:73:35:48:8F:8F:6F:47:D8:BA:EB:FB:94:FD:A9:7C:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0324BA6A6431C2811BB05DD388224D6B9C76375A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd906910-9723-4237-bf78-c0a7b047bc6a.roa Signing time: Wed 30 Jul 2025 19:07:15 +0000 ROA not before: Wed 30 Jul 2025 19:07:15 +0000 ROA not after: Wed 03 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:4000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:24:ba:6a:64:31:c2:81:1b:b0:5d:d3:88:22:4d:6b:9c:76:37:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 30 19:07:15 2025 GMT Not After : Sep 3 23:59:59 2025 GMT Subject: serialNumber=fe99a8595827878cf738b640d17240109d49fce09ea6aaf9fc8e4471f2461cbb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f0:45:c6:7c:60:99:c3:05:37:4a:34:cb:6e: a8:29:ff:00:32:12:9b:13:ba:a8:55:bf:ca:25:cc: e5:ee:b9:d3:30:fd:97:de:cd:56:f3:51:6d:6c:80: 75:1c:ea:29:21:bc:9d:6b:2e:64:fc:0b:6b:46:2a: d5:83:ff:62:64:9e:50:47:88:15:e5:37:dd:f1:af: 93:39:0d:d1:0c:ce:46:15:14:74:8d:09:10:8a:9d: d0:4c:60:10:72:ec:7d:1c:03:7a:b4:5f:9f:77:c2: 6c:00:b3:75:d6:f9:ed:05:ad:f3:6a:75:86:1f:50: 29:40:f2:bd:ab:26:20:7b:41:75:0b:c7:1b:53:0c: a9:eb:35:68:d4:54:82:56:34:c9:b8:96:e3:08:4b: ab:6e:12:cd:ca:dd:4d:2c:30:c7:fd:40:46:e9:15: 7b:4b:40:ef:cf:08:cf:5b:28:12:12:07:20:5d:43: 71:0d:4c:ce:1e:9f:28:e3:44:90:42:7f:00:46:4a: f4:af:66:24:bb:d4:48:9c:60:f2:19:1d:39:22:8e: 33:cc:e4:75:36:71:ff:f6:59:7a:d9:1a:ab:29:80: af:fd:6d:fc:a9:96:83:cb:8a:88:d3:7e:e7:38:d0: 62:86:39:f6:9c:d0:11:ba:c2:13:7f:84:cb:73:79: 29:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:71:8F:FD:73:35:48:8F:8F:6F:47:D8:BA:EB:FB:94:FD:A9:7C:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd906910-9723-4237-bf78-c0a7b047bc6a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:4000::/39 Signature Algorithm: sha256WithRSAEncryption 77:92:22:8e:5d:87:ed:7e:57:cd:c6:69:bb:2b:65:e2:6f:92: 52:b1:a6:d0:90:c0:95:a9:96:99:c8:12:d1:e1:db:ab:95:39: 23:51:cb:a9:3b:c7:85:7b:51:7a:35:e1:aa:2d:0b:ff:d5:4c: 74:eb:2a:80:d8:bc:2c:f3:32:ee:05:4f:9f:9b:08:b2:df:a3: 46:ec:60:ab:d6:8e:b6:e3:b3:62:91:b2:a2:db:f7:b8:10:45: 2f:d3:cf:cf:50:1c:b3:66:ef:32:b6:ed:9b:8b:9d:cb:af:22: 3a:ae:25:83:36:23:54:71:ed:00:85:de:10:f1:76:40:c5:42: 42:ed:c5:08:e4:a2:61:d2:ee:f5:f2:f9:db:49:bc:fa:c4:e3: 82:a6:06:9f:30:ce:18:ce:26:1f:77:ec:0d:b5:fc:cc:be:7e: 9e:ac:33:8e:6f:fc:58:d6:3a:17:4c:6e:34:69:4a:d3:f2:22: 8c:3c:80:37:da:75:1f:a0:17:82:ab:a9:a0:c5:6e:11:56:b1: 61:f5:73:fc:2f:24:44:31:f9:1f:c5:ea:ca:82:60:1a:49:ed: 3f:a4:4c:6b:32:89:4d:53:12:e2:ab:21:54:9a:5d:af:cb:1b: 8d:69:22:22:bc:9d:4f:91:5b:e3:ab:05:0b:09:91:f6:b6:2b: 61:86:d7:df -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAyS6amQxwoEbsF3TiCJNa5x2N1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzMwMTkwNzE1WhcNMjUwOTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTk5YTg1OTU4Mjc4NzhjZjczOGI2NDBkMTcyNDAxMDlk NDlmY2UwOWVhNmFhZjlmYzhlNDQ3MWYyNDYxY2JiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDO8EXGfGCZwwU3SjTLbqgp/wAyEpsTuqhVv8olzOXuudMw /ZfezVbzUW1sgHUc6ikhvJ1rLmT8C2tGKtWD/2JknlBHiBXlN93xr5M5DdEMzkYV FHSNCRCKndBMYBBy7H0cA3q0X593wmwAs3XW+e0FrfNqdYYfUClA8r2rJiB7QXUL xxtTDKnrNWjUVIJWNMm4luMIS6tuEs3K3U0sMMf9QEbpFXtLQO/PCM9bKBISByBd Q3ENTM4enyjjRJBCfwBGSvSvZiS71EicYPIZHTkijjPM5HU2cf/2WXrZGqspgK/9 bfyploPLiojTfuc40GKGOfac0BG6whN/hMtzeSmPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUOnGP/XM1SI+Pb0fYuuv7lP2pfFYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkOTA2OTEwLTk3MjMtNDIzNy1iZjc4LWMwYTdiMDQ3YmM2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB9pQDANBgkqhkiG9w0BAQsFAAOCAQEAd5Iijl2H7X5XzcZpuytl4m+S UrGm0JDAlamWmcgS0eHbq5U5I1HLqTvHhXtRejXhqi0L/9VMdOsqgNi8LPMy7gVP n5sIst+jRuxgq9aOtuOzYpGyotv3uBBFL9PPz1Acs2bvMrbtm4udy68iOq4lgzYj VHHtAIXeEPF2QMVCQu3FCOSiYdLu9fL520m8+sTjgqYGnzDOGM4mH3fsDbX8zL5+ nqwzjm/8WNY6F0xuNGlK0/IijDyAN9p1H6AXgqupoMVuEVaxYfVz/C8kRDH5H8Xq yoJgGkntP6RMazKJTVMS4qshVJpdr8sbjWkiIrydT5Fb46sFCwmR9rYrYYbX3w== -----END CERTIFICATE-----Generated at Wed Aug 6 06:04:51 2025 by rpki-client