$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c01053e6-0dae-4eff-bece-22ed72ddb780.roa File: c01053e6-0dae-4eff-bece-22ed72ddb780.roa (raw, json) Hash identifier: 74vGCdu8QPwN4wy92tWpKxjE3lbUOAak2kFwdwj8tSI= Subject key identifier: 7F:AC:EA:47:83:60:FC:5E:04:08:82:03:6B:B3:00:E3:F5:AC:9C:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 512B9A228DA730F21C5E79F3AEFD69A40096FCB8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c01053e6-0dae-4eff-bece-22ed72ddb780.roa Signing time: Sat 19 Jul 2025 00:10:27 +0000 ROA not before: Sat 19 Jul 2025 00:10:27 +0000 ROA not after: Sat 23 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:80d0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2b:9a:22:8d:a7:30:f2:1c:5e:79:f3:ae:fd:69:a4:00:96:fc:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 19 00:10:27 2025 GMT Not After : Aug 23 23:59:59 2025 GMT Subject: serialNumber=9fd53e1a6d58afd33ddd812c841f78d948f58e101882ed30b6aa01a03af48b33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c9:f1:bf:9e:c8:e3:0f:0a:d5:9a:34:a3:6f: 27:a2:20:93:78:d3:51:6a:36:25:3a:35:bc:d5:d4: 2f:05:46:d5:04:e2:5e:a0:60:ff:17:18:ce:27:87: 45:42:ea:19:b1:ab:ab:62:24:85:38:57:28:18:21: f3:bb:f4:69:07:e3:2f:07:23:bf:2a:69:a9:04:93: 94:4c:99:ac:a5:77:05:56:6c:34:4b:1d:e4:ac:f0: 82:69:15:ee:c0:6c:ec:c9:1d:cf:29:e1:62:61:89: db:a5:97:59:46:9d:37:c0:d7:35:87:38:06:80:17: be:69:c5:12:c7:fe:00:f3:80:38:dd:b7:ba:5a:a5: ad:b2:50:6d:a1:4f:ef:27:12:f3:e4:f2:1e:db:14: 25:d5:c4:61:c1:9d:97:3c:d2:56:c0:4a:6f:4f:59: 19:b2:75:93:42:e2:43:f2:2f:95:29:77:e2:9a:5a: 5f:73:71:03:7a:52:ac:a5:fc:b3:fe:bb:de:3b:2f: 57:97:71:67:f1:ca:26:af:57:8a:03:96:8a:28:c7: 2f:d8:99:46:1e:4c:e2:6b:28:f2:57:85:6e:0c:a5: 68:63:95:67:4e:3f:bc:50:d9:fb:e5:bb:db:57:bb: 9b:95:74:39:4c:0e:86:e0:79:c6:36:da:7f:51:9c: ab:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:AC:EA:47:83:60:FC:5E:04:08:82:03:6B:B3:00:E3:F5:AC:9C:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c01053e6-0dae-4eff-bece-22ed72ddb780.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:80d0::/48 Signature Algorithm: sha256WithRSAEncryption 1c:f5:ea:fd:fb:c0:83:32:be:88:1a:2f:ed:27:e0:2f:db:3d: 16:37:fd:a3:8f:47:14:93:05:6b:0a:6b:c5:fd:34:51:02:44: 27:57:ee:15:3e:c7:fa:ee:cd:cb:a2:dd:3a:4d:2e:8b:2c:3c: b4:ac:2d:1b:76:9e:fc:cf:d5:18:87:00:53:a5:96:22:d3:11: 51:91:2c:de:b8:08:52:a6:fb:09:98:e9:95:72:83:1f:59:0c: 4f:82:ed:94:83:fe:87:ae:c6:ef:44:33:20:27:c5:2f:f6:29: 99:a1:2d:15:84:e8:85:5f:24:e4:2c:55:68:e8:9f:a9:b3:1e: 07:26:7d:bf:8b:ee:60:0f:bb:42:f7:c5:cd:77:a7:f9:96:68: c4:d7:39:ba:e9:81:7b:c0:4c:18:90:6d:a9:a1:5a:69:ca:0a: a5:4b:1d:da:f6:92:46:fd:5c:b6:9b:cd:41:63:27:ca:b7:89: 65:12:d7:38:6a:7f:80:03:35:a9:6e:96:a4:1f:01:4b:a6:9c: 60:7e:df:5c:74:8f:43:1d:5a:94:7d:38:72:57:77:14:35:ad: 07:f5:62:2c:d4:95:66:00:7f:f9:5e:66:3b:ca:ba:55:66:77: 26:bd:77:e5:67:3d:b5:72:84:7a:b7:a1:55:74:d5:21:c2:f0: f6:69:47:00 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUSuaIo2nMPIcXnnzrv1ppACW/LgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE5MDAxMDI3WhcNMjUwODIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmQ1M2UxYTZkNThhZmQzM2RkZDgxMmM4NDFmNzhkOTQ4 ZjU4ZTEwMTg4MmVkMzBiNmFhMDFhMDNhZjQ4YjMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpyfG/nsjjDwrVmjSjbyeiIJN401FqNiU6NbzV1C8FRtUE 4l6gYP8XGM4nh0VC6hmxq6tiJIU4VygYIfO79GkH4y8HI78qaakEk5RMmayldwVW bDRLHeSs8IJpFe7AbOzJHc8p4WJhidull1lGnTfA1zWHOAaAF75pxRLH/gDzgDjd t7papa2yUG2hT+8nEvPk8h7bFCXVxGHBnZc80lbASm9PWRmydZNC4kPyL5Upd+Ka Wl9zcQN6Uqyl/LP+u947L1eXcWfxyiavV4oDloooxy/YmUYeTOJrKPJXhW4MpWhj lWdOP7xQ2fvlu9tXu5uVdDlMDobgecY22n9RnKvJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf6zqR4Ng/F4ECIIDa7MA4/WsnMAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwMTA1M2U2LTBkYWUtNGVmZi1iZWNlLTIyZWQ3MmRkYjc4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gNAwDQYJKoZIhvcNAQELBQADggEBABz16v37wIMyvogaL+0n4C/b PRY3/aOPRxSTBWsKa8X9NFECRCdX7hU+x/ruzcui3TpNLossPLSsLRt2nvzP1RiH AFOlliLTEVGRLN64CFKm+wmY6ZVygx9ZDE+C7ZSD/oeuxu9EMyAnxS/2KZmhLRWE 6IVfJOQsVWjon6mzHgcmfb+L7mAPu0L3xc13p/mWaMTXObrpgXvATBiQbamhWmnK CqVLHdr2kkb9XLabzUFjJ8q3iWUS1zhqf4ADNalulqQfAUumnGB+31x0j0MdWpR9 OHJXdxQ1rQf1YizUlWYAf/leZjvKulVmdya9d+VnPbVyhHq3oVV01SHC8PZpRwA= -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:44 2025 by rpki-client