$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa File: c0ba95f7-f662-491c-8d5f-68532e494cdd.roa (raw, json) Hash identifier: 6LT5nNTaovZS8LNqKlSeZQ341qhfJGd8sjanIuJoC8k= Subject key identifier: 0F:DD:D5:13:56:99:13:B0:A2:E2:76:D8:C8:4E:06:E2:31:0B:DA:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 675FA5806D607013E12ABF251FC8337DE5ABE4FD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa Signing time: Mon 04 Aug 2025 16:40:51 +0000 ROA not before: Mon 04 Aug 2025 16:40:51 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:5f:a5:80:6d:60:70:13:e1:2a:bf:25:1f:c8:33:7d:e5:ab:e4:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:40:51 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=02814b455353f30402ac1ed553fdd93f0933a186fd64eff1d7a6ca8340292891, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e4:54:19:fc:f8:5b:67:c9:65:38:60:24:4e: 7e:3f:64:fc:d4:0e:c2:7a:91:33:60:62:fa:05:96: 4c:86:c9:a4:a6:d0:4d:eb:41:e7:26:6a:60:83:62: c7:f1:36:1e:f7:0f:9f:5d:ce:54:59:6e:98:f5:77: 7d:2e:03:eb:94:a6:f5:59:94:9e:83:ef:63:6d:5b: 47:48:e9:45:e5:1e:5f:f1:b7:91:1f:42:33:27:de: ea:7a:3f:35:d1:19:4e:f0:2c:8b:b1:df:49:f5:70: 9f:e3:ba:7d:0e:ab:72:2b:cc:fb:18:6e:ea:95:8c: b4:53:56:7c:0d:08:79:93:27:4b:f0:d0:15:7b:ee: 74:a7:6b:a5:f1:6e:cb:ac:36:72:d1:01:97:ec:aa: 8e:79:8e:e3:b9:ba:01:d1:39:15:54:87:30:82:bd: 60:c4:43:ae:dc:46:de:20:35:10:60:98:73:7d:a9: af:55:e5:04:76:25:34:4a:14:87:8c:e6:6c:67:79: 95:56:a3:92:86:a0:9b:d2:a2:a0:7a:d7:2b:86:bc: ee:02:9f:16:fc:cf:2f:85:3b:f8:05:91:0e:2e:6e: 7a:89:ae:1b:15:61:42:b5:82:39:c2:64:57:53:2f: f2:03:4b:30:85:57:e8:08:27:5d:c5:93:b9:2b:d4: bf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:DD:D5:13:56:99:13:B0:A2:E2:76:D8:C8:4E:06:E2:31:0B:DA:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4000::/36 Signature Algorithm: sha256WithRSAEncryption 2d:55:04:5c:31:b9:80:6b:e9:2e:dd:2b:03:2e:e2:68:31:af: fd:f2:c6:83:e5:8d:b0:d7:10:96:f2:da:8e:26:46:da:a7:79: 13:b4:4b:0e:f0:dc:2d:fe:60:9b:ec:ae:67:2e:58:20:db:2b: 66:4f:eb:2f:e2:6b:4b:79:a9:21:ae:9b:90:8a:f5:5b:34:32: 50:61:71:38:92:0b:cb:e2:45:16:9d:9f:58:e0:b5:85:3b:28: b7:96:7f:2e:70:8b:57:1d:b2:33:e5:75:ac:71:d8:84:5f:d4: 78:91:25:25:53:a0:82:7d:75:c1:3a:44:aa:03:b4:e0:61:2f: af:26:50:86:15:40:cf:58:ef:48:81:78:41:2a:d1:e8:ab:56: bb:3a:68:18:a0:fa:a8:04:0e:eb:48:97:f4:66:57:94:95:70: 1f:64:e1:90:ae:2e:1d:7b:6b:69:61:0b:fb:49:be:81:75:57: ff:41:9e:24:61:d8:db:be:c9:bc:1b:f2:aa:c0:64:32:c9:00: 26:22:06:b3:6e:2f:10:a2:aa:ef:e7:9d:cb:e2:86:3a:ac:19: ab:f2:04:25:87:c0:34:cf:86:ca:0e:94:eb:a8:46:7b:b4:e0: a6:cd:a7:a7:80:68:48:98:4a:66:27:88:86:46:22:51:cb:d6: 89:33:fb:57 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZ1+lgG1gcBPhKr8lH8gzfeWr5P0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTY0MDUxWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjgxNGI0NTUzNTNmMzA0MDJhYzFlZDU1M2ZkZDkzZjA5 MzNhMTg2ZmQ2NGVmZjFkN2E2Y2E4MzQwMjkyODkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw5FQZ/PhbZ8llOGAkTn4/ZPzUDsJ6kTNgYvoFlkyGyaSm 0E3rQecmamCDYsfxNh73D59dzlRZbpj1d30uA+uUpvVZlJ6D72NtW0dI6UXlHl/x t5EfQjMn3up6PzXRGU7wLIux30n1cJ/jun0Oq3IrzPsYbuqVjLRTVnwNCHmTJ0vw 0BV77nSna6XxbsusNnLRAZfsqo55juO5ugHRORVUhzCCvWDEQ67cRt4gNRBgmHN9 qa9V5QR2JTRKFIeM5mxneZVWo5KGoJvSoqB61yuGvO4Cnxb8zy+FO/gFkQ4ubnqJ rhsVYUK1gjnCZFdTL/IDSzCFV+gIJ13Fk7kr1L99AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUD93VE1aZE7Ci4nbYyE4G4jEL2tYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwYmE5NWY3LWY2NjItNDkxYy04ZDVmLTY4NTMyZTQ5NGNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8XQDANBgkqhkiG9w0BAQsFAAOCAQEALVUEXDG5gGvpLt0rAy7iaDGv /fLGg+WNsNcQlvLajiZG2qd5E7RLDvDcLf5gm+yuZy5YINsrZk/rL+JrS3mpIa6b kIr1WzQyUGFxOJILy+JFFp2fWOC1hTsot5Z/LnCLVx2yM+V1rHHYhF/UeJElJVOg gn11wTpEqgO04GEvryZQhhVAz1jvSIF4QSrR6KtWuzpoGKD6qAQO60iX9GZXlJVw H2ThkK4uHXtraWEL+0m+gXVX/0GeJGHY277JvBvyqsBkMskAJiIGs24vEKKq7+ed y+KGOqwZq/IEJYfANM+Gyg6U66hGe7Tgps2np4BoSJhKZieIhkYiUcvWiTP7Vw== -----END CERTIFICATE-----Generated at Wed Aug 6 07:56:05 2025 by rpki-client