$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4d32ff3-a127-4080-a68b-176b3e75ad32.roa File: c4d32ff3-a127-4080-a68b-176b3e75ad32.roa (raw, json) Hash identifier: NdmtSysIL2sRbWoHL6+118L3l/qUIvyea7yHkqo2M4E= Subject key identifier: 96:19:07:FB:25:17:F8:90:AE:11:E4:5F:8D:31:A3:83:3E:21:09:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 500CBCE0DFADD6CA78A3D48DCE33F4FD8390BE76 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4d32ff3-a127-4080-a68b-176b3e75ad32.roa Signing time: Fri 01 Aug 2025 15:30:17 +0000 ROA not before: Fri 01 Aug 2025 15:30:17 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ffd:803f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:0c:bc:e0:df:ad:d6:ca:78:a3:d4:8d:ce:33:f4:fd:83:90:be:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:30:17 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=dc2a29e7edf65d3e383d8ab4179a2b3621e34298ec86e392ebae2402e29a8dda, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:dd:67:01:16:4d:0a:37:32:c2:6a:81:fe:35: 9f:a9:74:34:ee:29:e4:88:95:df:d8:e4:64:18:9a: c7:3b:da:68:58:f3:13:fb:69:ed:2f:3f:d1:7e:99: c8:7c:fa:3f:00:1b:44:6f:07:15:ab:de:23:3c:ed: e9:2b:93:99:8a:2e:df:50:93:2a:d8:0e:fe:6e:df: 8e:4d:12:4e:7a:98:f9:c8:f9:4e:ce:49:6b:8a:0e: 67:8c:02:bc:20:94:b6:1e:55:09:e8:2c:41:87:e8: 04:3b:42:60:76:b0:5e:56:85:54:75:5d:2e:c0:f6: 74:d2:7c:59:8f:59:f7:53:c5:ae:da:c8:4d:01:3a: 18:c3:db:67:79:ab:64:0f:c2:e7:94:ee:6c:ed:21: f1:dc:39:c0:69:c1:ff:1d:e2:6f:34:e7:ca:d5:81: 61:6b:1c:f9:26:50:7b:5d:4f:0b:6c:2c:e6:9c:a0: 2a:fd:48:43:ac:5c:bc:c2:ae:27:9a:84:a8:2c:c9: f7:38:8a:22:21:e3:3f:de:74:ab:af:bb:b2:0f:7d: 29:b0:1f:24:ce:4e:f3:a6:99:7b:55:8b:37:77:8d: 20:9b:11:de:70:5b:48:bb:1c:15:d5:ae:86:e4:3e: ad:aa:69:a6:aa:a0:e9:80:dc:66:e8:6e:67:d1:a1: 22:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:19:07:FB:25:17:F8:90:AE:11:E4:5F:8D:31:A3:83:3E:21:09:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4d32ff3-a127-4080-a68b-176b3e75ad32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:803f::/48 Signature Algorithm: sha256WithRSAEncryption 9a:73:62:67:76:cc:25:b4:56:bd:79:f0:88:da:d2:8a:0f:ca: ff:7f:ce:34:ef:b4:dd:3d:62:90:f5:dc:58:84:11:0b:44:d7: 0c:42:db:02:f1:e6:0d:b3:0b:54:69:b4:b2:be:9c:84:cd:5f: 96:be:49:e3:86:5d:91:ce:a5:08:50:30:28:bf:18:eb:b0:d9: 82:47:08:c0:73:f1:25:94:0b:4f:ea:c3:d2:1d:82:08:e8:6d: 8b:cf:fb:f8:ef:1e:fa:f5:93:e3:1e:0b:9c:bf:6a:06:fa:33: b0:f7:ca:43:df:00:a0:b6:05:f1:f8:7a:eb:c6:d7:51:0c:80: 77:f6:c5:8f:bc:40:d1:9d:94:c0:0b:44:3d:a0:af:b1:e2:13: 34:3c:aa:3d:a8:3d:1c:04:1c:31:2b:85:ec:a1:0c:14:2c:ec: 77:32:f1:6b:f2:72:89:a8:ae:70:60:1c:14:63:ea:3b:28:5a: 82:2f:4c:23:23:0c:8c:4f:91:b8:9b:c2:36:1c:f4:89:f8:32: ab:fe:54:f9:ca:5e:bd:f8:64:04:93:e0:c7:8f:0f:48:38:33: 79:8d:e1:20:d1:50:65:29:56:96:78:e3:76:05:a2:4c:80:cb: b1:ed:25:53:13:a9:5d:fb:7b:24:bf:42:50:f4:af:95:27:8a: b3:16:17:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUAy84N+t1sp4o9SNzjP0/YOQvnYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUzMDE3WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzJhMjllN2VkZjY1ZDNlMzgzZDhhYjQxNzlhMmIzNjIx ZTM0Mjk4ZWM4NmUzOTJlYmFlMjQwMmUyOWE4ZGRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP3WcBFk0KNzLCaoH+NZ+pdDTuKeSIld/Y5GQYmsc72mhY 8xP7ae0vP9F+mch8+j8AG0RvBxWr3iM87ekrk5mKLt9QkyrYDv5u345NEk56mPnI +U7OSWuKDmeMArwglLYeVQnoLEGH6AQ7QmB2sF5WhVR1XS7A9nTSfFmPWfdTxa7a yE0BOhjD22d5q2QPwueU7mztIfHcOcBpwf8d4m8058rVgWFrHPkmUHtdTwtsLOac oCr9SEOsXLzCrieahKgsyfc4iiIh4z/edKuvu7IPfSmwHyTOTvOmmXtVizd3jSCb Ed5wW0i7HBXVrobkPq2qaaaqoOmA3GbobmfRoSIpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlhkH+yUX+JCuEeRfjTGjgz4hCSEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0ZDMyZmYzLWExMjctNDA4MC1hNjhiLTE3NmIzZTc1YWQzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gD8wDQYJKoZIhvcNAQELBQADggEBAJpzYmd2zCW0Vr158Ija0ooP yv9/zjTvtN09YpD13FiEEQtE1wxC2wLx5g2zC1RptLK+nITNX5a+SeOGXZHOpQhQ MCi/GOuw2YJHCMBz8SWUC0/qw9IdggjobYvP+/jvHvr1k+MeC5y/agb6M7D3ykPf AKC2BfH4euvG11EMgHf2xY+8QNGdlMALRD2gr7HiEzQ8qj2oPRwEHDErheyhDBQs 7Hcy8WvycomornBgHBRj6jsoWoIvTCMjDIxPkbibwjYc9In4Mqv+VPnKXr34ZAST 4MePD0g4M3mN4SDRUGUpVpZ443YFokyAy7HtJVMTqV37eyS/QlD0r5UnirMWF4E= -----END CERTIFICATE-----Generated at Mon Aug 4 14:54:46 2025 by rpki-client