$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/db1da63c-2a68-4ace-b196-5ef2574e6754.roa File: db1da63c-2a68-4ace-b196-5ef2574e6754.roa (raw, json) Hash identifier: zKgaOivi0T26Ixr/RgetUnlHXX9tbA2NmEziVxwTykw= Subject key identifier: 03:B1:82:30:3C:2D:1F:05:6D:09:AF:8B:E0:68:C6:55:E9:80:96:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0276046E67561E9E7435605F927B2E0FC85560F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/db1da63c-2a68-4ace-b196-5ef2574e6754.roa Signing time: Fri 01 Aug 2025 16:51:54 +0000 ROA not before: Fri 01 Aug 2025 16:51:54 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f00:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:76:04:6e:67:56:1e:9e:74:35:60:5f:92:7b:2e:0f:c8:55:60:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:51:54 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=855016832674501ed29beb139caa00526794effb49a633bdeb9813c267f4bc45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:cf:71:27:69:ba:fb:ee:c2:08:8a:6f:1e:f2: f8:c4:1f:96:a5:a8:6f:81:f2:cb:a8:d4:1f:06:eb: 20:eb:21:23:4f:72:9a:b7:b5:84:98:2c:8f:51:d0: e6:7d:fd:d6:a4:0e:99:2e:93:da:8c:eb:86:da:7e: 94:48:73:f5:52:aa:e4:0a:55:cb:c6:dd:81:2a:99: 05:78:8d:87:d9:e1:67:f0:20:c8:9c:e4:e4:3f:f1: 94:04:a1:00:a2:b8:5f:7b:ba:66:a9:a8:af:94:45: fc:b8:57:69:a4:f7:9c:77:de:54:ea:d1:b6:10:63: a2:b6:30:38:f1:ed:c5:aa:9e:31:f6:e6:c6:ce:e4: 62:a8:0d:0c:dd:22:8b:d0:d7:27:86:df:29:c3:89: 88:e5:12:f0:8d:1c:aa:45:cb:1f:de:1a:a5:f9:9b: 32:f4:67:73:a2:8d:51:95:32:3b:1b:9c:14:38:3b: 01:e8:09:84:35:38:38:3a:9f:c3:08:f1:97:76:26: c1:f4:d2:1d:4d:87:73:f8:a6:ac:3a:d9:bf:92:7b: bb:7c:58:41:a3:f7:49:46:29:53:c1:4f:f5:e4:ad: a6:c3:44:88:15:94:9d:b9:9a:a7:4d:cc:04:4f:31: 4c:50:a8:f0:95:3f:e2:a7:2e:c1:6e:3a:71:9d:70: 27:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B1:82:30:3C:2D:1F:05:6D:09:AF:8B:E0:68:C6:55:E9:80:96:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/db1da63c-2a68-4ace-b196-5ef2574e6754.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:5000::/40 Signature Algorithm: sha256WithRSAEncryption 4c:fc:db:3e:a3:8f:8d:1f:1a:73:ac:4f:29:df:3b:c4:7d:69: 01:9d:04:6f:54:09:e3:2a:3b:6c:57:57:7d:3a:8f:84:3d:41: bc:52:f6:5f:58:0d:af:db:57:8b:25:65:b6:fc:fc:f7:85:ec: ea:3b:91:79:eb:40:e5:96:44:bb:26:cc:16:b2:de:f2:f8:10: 0e:0b:c4:88:fc:27:8b:fe:50:a2:a2:b1:d1:12:55:7b:fc:78: 86:4f:ad:6b:88:aa:e1:89:0b:a7:53:a8:fc:ae:03:55:74:83: 93:84:bf:fe:68:59:21:e8:03:01:66:67:a9:55:82:c6:5f:e5: bd:db:f5:fe:b7:49:b6:8d:96:a2:3e:76:d9:b1:35:97:66:49: d0:ae:c8:c9:dd:76:fc:21:95:0b:73:95:8f:11:c2:aa:72:96: f2:b5:39:44:4a:a4:e0:46:04:5f:f0:f7:d6:ef:c5:6e:be:d9: 49:39:c9:02:76:7e:7a:de:89:7f:26:52:97:15:aa:21:0b:80: ec:e4:13:b2:5a:e8:00:75:9f:5f:28:2f:71:6c:49:2c:d2:2b: d3:fa:a6:aa:0c:89:7b:61:5a:9a:b4:f1:6e:36:f9:ff:39:89: 27:7b:7c:d1:e8:15:6f:d7:41:7d:40:22:00:66:55:b7:53:9c: ea:65:06:d3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAnYEbmdWHp50NWBfknsuD8hVYPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTY1MTU0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTUwMTY4MzI2NzQ1MDFlZDI5YmViMTM5Y2FhMDA1MjY3 OTRlZmZiNDlhNjMzYmRlYjk4MTNjMjY3ZjRiYzQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIz3Enabr77sIIim8e8vjEH5alqG+B8suo1B8G6yDrISNP cpq3tYSYLI9R0OZ9/dakDpkuk9qM64bafpRIc/VSquQKVcvG3YEqmQV4jYfZ4Wfw IMic5OQ/8ZQEoQCiuF97umapqK+URfy4V2mk95x33lTq0bYQY6K2MDjx7cWqnjH2 5sbO5GKoDQzdIovQ1yeG3ynDiYjlEvCNHKpFyx/eGqX5mzL0Z3OijVGVMjsbnBQ4 OwHoCYQ1ODg6n8MI8Zd2JsH00h1Nh3P4pqw62b+Se7t8WEGj90lGKVPBT/XkrabD RIgVlJ25mqdNzARPMUxQqPCVP+KnLsFuOnGdcCdPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUA7GCMDwtHwVtCa+L4GjGVemAluAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiMWRhNjNjLTJhNjgtNGFjZS1iMTk2LTVlZjI1NzRlNjc1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8AUDANBgkqhkiG9w0BAQsFAAOCAQEATPzbPqOPjR8ac6xPKd87xH1p AZ0Eb1QJ4yo7bFdXfTqPhD1BvFL2X1gNr9tXiyVltvz894Xs6juReetA5ZZEuybM FrLe8vgQDgvEiPwni/5QoqKx0RJVe/x4hk+ta4iq4YkLp1Oo/K4DVXSDk4S//mhZ IegDAWZnqVWCxl/lvdv1/rdJto2Woj522bE1l2ZJ0K7Iyd12/CGVC3OVjxHCqnKW 8rU5REqk4EYEX/D31u/Fbr7ZSTnJAnZ+et6JfyZSlxWqIQuA7OQTslroAHWfXygv cWxJLNIr0/qmqgyJe2FamrTxbjb5/zmJJ3t80egVb9dBfUAiAGZVt1Oc6mUG0w== -----END CERTIFICATE-----Generated at Wed Aug 6 13:07:29 2025 by rpki-client