$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa File: bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa (raw, json) Hash identifier: A8P2VROQB5Msd0qYw2mFwuH+yeEEkkNz4b8SG2nANO8= Subject key identifier: 06:01:0B:50:94:64:CA:1E:35:2B:B1:33:B3:09:DF:EA:ED:B0:08:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C5147C35B75055A1FABBD096C1AA3011886C1F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa Signing time: Mon 04 Aug 2025 16:51:21 +0000 ROA not before: Mon 04 Aug 2025 16:51:21 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1d:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:51:47:c3:5b:75:05:5a:1f:ab:bd:09:6c:1a:a3:01:18:86:c1:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:51:21 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=a8ccda90a68389110a03377e7265d5be11bc377f958b518068012a5df2468638, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ea:08:10:4e:e9:98:e7:25:e1:04:a0:fd:69: 23:6b:cc:35:0b:8d:f0:1d:fd:bd:59:73:65:b6:ad: 5e:73:d0:53:fa:20:4d:2b:7b:6e:3d:24:27:71:5f: b4:e0:88:ed:8e:96:02:aa:7f:72:92:82:96:9c:6f: d5:e5:f2:b7:d8:c8:76:aa:70:be:5c:7c:cf:89:29: da:7a:2f:d1:bb:a2:6c:f3:32:cb:c4:b8:85:6b:ea: 11:77:81:5d:bb:aa:25:89:f7:0b:97:23:0f:a6:d5: 25:5e:d4:2a:8a:a8:4f:6b:07:71:4f:ab:37:37:eb: ba:a4:5f:d4:24:b4:7e:02:bd:86:64:02:6a:55:4f: 12:af:c3:bd:0d:e0:e7:ae:04:9e:59:f7:57:09:06: 03:06:13:64:18:96:81:f9:bb:5f:5c:d1:50:6a:8e: 2a:98:d3:5a:d5:c7:07:9c:dd:1f:62:95:76:43:47: b4:9d:19:d4:9e:7a:b3:e5:0a:d5:27:a8:8c:65:d8: 39:47:20:f0:54:13:3b:28:db:d6:c5:8d:b8:96:cf: cb:77:4a:6a:81:86:90:4d:ab:71:de:45:fe:cf:ea: 22:8a:2b:33:5f:5b:b5:ba:0c:ba:2b:92:b1:d6:bd: f7:c6:c1:c5:a3:64:73:79:80:b3:af:0f:0d:3f:cd: d2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:01:0B:50:94:64:CA:1E:35:2B:B1:33:B3:09:DF:EA:ED:B0:08:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5a2529-8e78-4ebf-be85-0c8ced5067f1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1d:4000::/37 Signature Algorithm: sha256WithRSAEncryption 8e:ef:53:a3:1c:5f:6a:45:65:2c:f3:87:b0:05:d8:5e:1f:7f: 73:e6:ff:dd:d8:9f:d8:8d:39:7c:1f:63:31:63:c0:47:a9:ef: ca:6f:39:96:60:4c:0d:c3:63:b8:9d:00:bb:44:12:59:ea:3b: 71:89:e7:95:19:b1:66:8a:ef:c2:f2:73:cf:ea:2e:a6:f5:3d: bf:40:a0:1c:f7:50:c6:84:e7:13:fd:6d:f6:63:07:e5:90:62: d4:fa:0d:f6:e2:0e:a1:bd:0f:e5:39:48:00:b9:93:b9:80:60: 01:ac:6a:86:64:6a:93:b4:cc:48:6e:98:23:eb:6c:20:3e:ab: ac:b7:6d:91:b8:8d:0f:77:4e:88:10:7d:c1:b9:14:66:ae:2c: 87:0e:02:de:b7:4b:0d:9c:e8:57:1c:eb:f3:74:33:58:e7:63: 08:00:0d:cd:c4:bb:96:2e:57:02:c0:ad:c9:73:c8:bf:70:fe: 1f:e8:0e:41:55:a0:31:e7:c5:d4:a3:bb:9a:ec:4d:1a:45:4f: e5:a2:32:c1:6c:0d:8e:0b:2c:b5:8c:cd:74:9f:3d:47:fa:56: 6f:44:b2:01:5b:ec:6b:aa:7d:c1:89:14:a6:3e:75:88:60:49: fc:81:35:d3:6f:45:14:a3:6d:43:20:58:09:73:15:e7:e1:b7: da:5c:07:fb -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHFFHw1t1BVofq70JbBqjARiGwfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTY1MTIxWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGNjZGE5MGE2ODM4OTExMGEwMzM3N2U3MjY1ZDViZTEx YmMzNzdmOTU4YjUxODA2ODAxMmE1ZGYyNDY4NjM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC46ggQTumY5yXhBKD9aSNrzDULjfAd/b1Zc2W2rV5z0FP6 IE0re249JCdxX7TgiO2OlgKqf3KSgpacb9Xl8rfYyHaqcL5cfM+JKdp6L9G7omzz MsvEuIVr6hF3gV27qiWJ9wuXIw+m1SVe1CqKqE9rB3FPqzc367qkX9QktH4CvYZk AmpVTxKvw70N4OeuBJ5Z91cJBgMGE2QYloH5u19c0VBqjiqY01rVxwec3R9ilXZD R7SdGdSeerPlCtUnqIxl2DlHIPBUEzso29bFjbiWz8t3SmqBhpBNq3HeRf7P6iKK KzNfW7W6DLorkrHWvffGwcWjZHN5gLOvDw0/zdKrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBgELUJRkyh41K7Ezswnf6u2wCJMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmNWEyNTI5LThlNzgtNGViZi1iZTg1LTBjOGNlZDUwNjdmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8dQDANBgkqhkiG9w0BAQsFAAOCAQEAju9ToxxfakVlLPOHsAXYXh9/ c+b/3dif2I05fB9jMWPAR6nvym85lmBMDcNjuJ0Au0QSWeo7cYnnlRmxZorvwvJz z+oupvU9v0CgHPdQxoTnE/1t9mMH5ZBi1PoN9uIOob0P5TlIALmTuYBgAaxqhmRq k7TMSG6YI+tsID6rrLdtkbiND3dOiBB9wbkUZq4shw4C3rdLDZzoVxzr83QzWOdj CAANzcS7li5XAsCtyXPIv3D+H+gOQVWgMefF1KO7muxNGkVP5aIywWwNjgsstYzN dJ89R/pWb0SyAVvsa6p9wYkUpj51iGBJ/IE1029FFKNtQyBYCXMV5+G32lwH+w== -----END CERTIFICATE-----Generated at Sat Aug 9 01:02:09 2025 by rpki-client