$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6daca87-48c5-4a75-8da6-fb81094e9851.roa File: d6daca87-48c5-4a75-8da6-fb81094e9851.roa (raw, json) Hash identifier: SwC84zfxKMAcLc3LFtwdH4CxecMqO+O+8vCjJ2JBSXU= Subject key identifier: 1B:78:FE:3A:0D:AC:A2:2C:D6:11:35:1C:CB:EB:4F:EF:7D:73:94:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FA63158DF8121605B7B3BB3BFF030048A92812D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6daca87-48c5-4a75-8da6-fb81094e9851.roa Signing time: Wed 30 Jul 2025 19:07:18 +0000 ROA not before: Wed 30 Jul 2025 19:07:18 +0000 ROA not after: Wed 03 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff7:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a6:31:58:df:81:21:60:5b:7b:3b:b3:bf:f0:30:04:8a:92:81:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 30 19:07:18 2025 GMT Not After : Sep 3 23:59:59 2025 GMT Subject: serialNumber=9526de2e17a633bcd4647dbb7e01bf2c42399e05661b7fba205667601b310672, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:21:c6:a5:74:7d:6c:48:82:99:d6:44:1b:19: 85:54:51:1a:a4:52:84:bb:f6:08:79:4c:09:e9:38: 2e:20:58:d3:a0:4e:ec:26:0f:f0:e0:20:83:7d:61: fa:c0:95:bf:4f:b1:d6:17:65:99:f3:b2:38:da:a7: ee:d4:f8:45:72:35:f0:c0:6d:35:4b:fe:f9:28:5a: 60:3c:47:6f:43:69:42:1d:79:05:e3:f7:88:31:6f: 56:a2:98:d3:04:f3:fd:39:ce:2f:d2:ed:d4:ee:a1: cf:c4:1d:18:2b:36:75:b6:26:05:7c:92:8d:99:38: 05:7a:b8:3b:20:db:8c:e3:e8:45:cf:1f:9c:e1:e9: f2:42:19:3e:a6:41:86:b3:e1:0b:12:94:0a:04:e4: ae:24:be:58:45:6d:c9:6b:3d:5e:5a:69:3d:e3:71: e1:eb:4b:b1:12:0a:2f:6c:c5:59:6c:c7:5b:78:ac: 40:36:b6:36:00:96:16:e8:ef:7d:94:19:a9:b6:ec: 83:c4:a3:11:8e:95:b1:1c:92:d7:4e:4b:1c:d8:63: 31:14:6f:46:16:64:07:fa:e2:bc:f4:5a:e9:2f:4d: f9:e2:fc:91:a9:32:7f:05:88:42:c9:c4:3a:c2:08: 01:fc:b3:76:ab:ed:c3:cb:78:e2:24:d7:2c:a9:16: ea:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:78:FE:3A:0D:AC:A2:2C:D6:11:35:1C:CB:EB:4F:EF:7D:73:94:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d6daca87-48c5-4a75-8da6-fb81094e9851.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7:8000::/39 Signature Algorithm: sha256WithRSAEncryption bc:c6:9f:5c:83:00:98:01:23:4a:bb:69:63:18:f0:43:65:fc: 3e:ca:02:60:7b:0c:09:46:2b:1a:47:76:e0:4d:e6:25:9b:33: b1:99:09:45:34:39:65:1f:48:eb:36:b9:d9:2f:41:06:4f:c5: d0:46:17:28:ac:5d:d5:2d:1b:10:ca:9f:b4:dd:77:9f:68:9c: 0f:1f:19:36:f8:2b:d4:36:18:ec:e9:3e:11:86:c9:43:1a:e5: a0:8c:f4:e6:e8:3c:01:7a:ec:fd:2f:6d:74:13:c9:dd:91:3b: 1c:0e:09:53:35:7f:13:ff:d4:e5:46:c0:3a:ad:0d:4a:06:08: 35:d2:68:ff:f1:21:68:cc:73:c7:59:fd:04:f2:af:9f:76:e6: 98:a0:5f:f8:32:6e:48:94:d5:c8:bb:5f:b2:16:5b:2f:9a:b7: dd:74:96:36:06:e4:8e:f3:f7:dc:ca:18:0c:ec:36:a8:c6:43: 32:ee:2c:64:93:57:d4:af:66:ba:40:01:30:f8:5e:f4:a9:39: c8:ee:fe:66:91:59:63:15:cb:2b:b6:66:0c:e2:c2:f8:fb:61: c2:05:e0:d0:55:9e:90:56:b2:32:df:43:41:be:ac:8c:da:65: 5d:ca:40:c4:c7:e7:45:c0:7a:14:4d:f0:21:fb:a6:b3:c6:c5: 69:5b:7d:00 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUT6YxWN+BIWBbezuzv/AwBIqSgS0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzMwMTkwNzE4WhcNMjUwOTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTI2ZGUyZTE3YTYzM2JjZDQ2NDdkYmI3ZTAxYmYyYzQy Mzk5ZTA1NjYxYjdmYmEyMDU2Njc2MDFiMzEwNjcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMIcaldH1sSIKZ1kQbGYVUURqkUoS79gh5TAnpOC4gWNOg TuwmD/DgIIN9YfrAlb9PsdYXZZnzsjjap+7U+EVyNfDAbTVL/vkoWmA8R29DaUId eQXj94gxb1aimNME8/05zi/S7dTuoc/EHRgrNnW2JgV8ko2ZOAV6uDsg24zj6EXP H5zh6fJCGT6mQYaz4QsSlAoE5K4kvlhFbclrPV5aaT3jceHrS7ESCi9sxVlsx1t4 rEA2tjYAlhbo732UGam27IPEoxGOlbEcktdOSxzYYzEUb0YWZAf64rz0WukvTfni /JGpMn8FiELJxDrCCAH8s3ar7cPLeOIk1yypFuo7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUG3j+Og2soizWETUcy+tP731zlAIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q2ZGFjYTg3LTQ4YzUtNGE3NS04ZGE2LWZiODEwOTRlOTg1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/3gDANBgkqhkiG9w0BAQsFAAOCAQEAvMafXIMAmAEjSrtpYxjwQ2X8 PsoCYHsMCUYrGkd24E3mJZszsZkJRTQ5ZR9I6za52S9BBk/F0EYXKKxd1S0bEMqf tN13n2icDx8ZNvgr1DYY7Ok+EYbJQxrloIz05ug8AXrs/S9tdBPJ3ZE7HA4JUzV/ E//U5UbAOq0NSgYINdJo//EhaMxzx1n9BPKvn3bmmKBf+DJuSJTVyLtfshZbL5q3 3XSWNgbkjvP33MoYDOw2qMZDMu4sZJNX1K9mukABMPhe9Kk5yO7+ZpFZYxXLK7Zm DOLC+PthwgXg0FWekFayMt9DQb6sjNplXcpAxMfnRcB6FE3wIfums8bFaVt9AA== -----END CERTIFICATE-----Generated at Wed Aug 6 09:40:18 2025 by rpki-client