$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dcb9cce0-b5c2-407f-b820-856473d780ac.roa File: dcb9cce0-b5c2-407f-b820-856473d780ac.roa (raw, json) Hash identifier: 7PaPe7hr5XNBi85lOwl1O8MKGZsbxtlJ/UCL2Sgw0II= Subject key identifier: BA:66:D8:1A:0F:6F:E1:C6:BC:F9:3F:06:93:13:6D:D1:E5:66:A9:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0ACFC60638FD667C6AFC05D8AF3CA5505A28BA7E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dcb9cce0-b5c2-407f-b820-856473d780ac.roa Signing time: Mon 21 Jul 2025 15:41:50 +0000 ROA not before: Mon 21 Jul 2025 15:41:50 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:8050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:cf:c6:06:38:fd:66:7c:6a:fc:05:d8:af:3c:a5:50:5a:28:ba:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 15:41:50 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=2d6c8688269b6aae145bae1ad7cc15918342916336800aad8d1d7438f90cd892, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:09:a3:49:24:e9:7b:da:a8:6e:00:6e:5d: 9c:9f:b2:6a:fc:a0:79:5e:b7:75:5f:aa:70:20:89: 58:d3:98:5d:03:9c:c6:09:1c:fc:b6:a9:a7:70:49: 63:39:0c:b5:b8:f1:eb:93:4a:31:51:f1:b9:d9:c9: 7d:24:8b:45:ea:cd:66:6d:d8:8b:93:86:2a:bf:73: 90:77:82:f4:72:ff:cf:05:10:19:a6:e2:f8:a1:79: 4b:03:68:a7:63:a4:7a:72:80:bf:24:e2:5b:a0:e9: 0c:8c:79:18:a1:d7:71:12:6a:07:93:03:c5:c6:4b: da:a9:ca:9d:b1:f8:33:97:db:26:90:24:36:49:c3: d0:47:e5:49:40:4f:4d:1e:23:74:a5:9d:64:30:97: 7a:9a:4e:34:2d:61:53:e9:5c:52:01:36:6d:a1:91: eb:93:89:36:59:63:02:bf:00:e1:ff:d4:03:94:5d: 6c:76:d1:fb:04:a7:ed:90:cb:d3:eb:3f:68:b5:4e: f1:bb:a8:08:3f:65:29:9f:f7:77:af:37:5a:50:88: ee:f8:7e:49:ff:da:4e:a1:00:57:b8:62:a3:36:be: f4:d1:4e:8c:cd:c2:be:f9:4d:b8:2f:fc:b9:9e:08: a6:b7:26:42:33:14:a5:a9:c0:58:0f:f2:1d:47:cb: 72:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:66:D8:1A:0F:6F:E1:C6:BC:F9:3F:06:93:13:6D:D1:E5:66:A9:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dcb9cce0-b5c2-407f-b820-856473d780ac.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8050::/48 Signature Algorithm: sha256WithRSAEncryption 5f:01:ca:43:05:e3:28:72:2f:d2:16:3a:ce:07:ad:7b:36:1b: 6e:ed:f3:2f:91:01:0d:d5:d4:07:d5:9a:e7:c1:56:86:4b:df: 89:fc:82:37:fa:c6:e5:ae:62:3f:b0:2d:79:f5:5b:df:a1:91: 81:26:bc:01:cf:4a:b1:77:4c:f0:94:ed:03:86:c4:4f:58:79: 49:85:1c:de:b5:bf:3f:c9:7a:d8:6e:63:c7:a3:81:65:2a:01: bf:b4:13:89:2e:cd:99:0b:a0:bd:1e:9f:4e:95:d3:4b:f7:0a: f0:11:43:ab:82:1c:7b:17:ed:40:b7:1f:06:89:af:25:22:d1: 7c:fa:57:3c:c9:4d:75:87:ea:5f:66:ad:1c:cf:64:2e:a1:fa: 3e:7f:fc:cc:87:c0:46:be:d9:77:e4:f1:fd:38:5f:3d:09:14: 86:f3:99:b9:cf:c5:1b:e9:f8:43:7e:51:ea:89:f1:b8:94:e4: 28:d0:2b:4d:e0:94:21:4e:7f:29:9b:38:b5:a9:7d:54:c3:c3: 01:bc:a5:95:0b:c7:1d:1c:a6:d5:60:79:00:25:6c:7e:a6:ac: 41:ed:ee:11:44:3c:a2:4b:6a:38:46:c5:cf:5c:cf:60:d1:ba: f5:0a:13:b1:3a:52:b9:36:40:17:4a:ff:b9:19:87:14:e4:68: 7e:d8:6e:88 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCs/GBjj9Znxq/AXYrzylUFooun4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTU0MTUwWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDZjODY4ODI2OWI2YWFlMTQ1YmFlMWFkN2NjMTU5MTgz NDI5MTYzMzY4MDBhYWQ4ZDFkNzQzOGY5MGNkODkyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+mAmjSSTpe9qobgBuXZyfsmr8oHlet3VfqnAgiVjTmF0D nMYJHPy2qadwSWM5DLW48euTSjFR8bnZyX0ki0XqzWZt2IuThiq/c5B3gvRy/88F EBmm4viheUsDaKdjpHpygL8k4lug6QyMeRih13ESageTA8XGS9qpyp2x+DOX2yaQ JDZJw9BH5UlAT00eI3SlnWQwl3qaTjQtYVPpXFIBNm2hkeuTiTZZYwK/AOH/1AOU XWx20fsEp+2Qy9PrP2i1TvG7qAg/ZSmf93evN1pQiO74fkn/2k6hAFe4YqM2vvTR TozNwr75Tbgv/LmeCKa3JkIzFKWpwFgP8h1Hy3LDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUumbYGg9v4ca8+T8GkxNt0eVmqQUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjYjljY2UwLWI1YzItNDA3Zi1iODIwLTg1NjQ3M2Q3ODBhYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ygFAwDQYJKoZIhvcNAQELBQADggEBAF8BykMF4yhyL9IWOs4HrXs2 G27t8y+RAQ3V1AfVmufBVoZL34n8gjf6xuWuYj+wLXn1W9+hkYEmvAHPSrF3TPCU 7QOGxE9YeUmFHN61vz/JethuY8ejgWUqAb+0E4kuzZkLoL0en06V00v3CvARQ6uC HHsX7UC3HwaJryUi0Xz6VzzJTXWH6l9mrRzPZC6h+j5//MyHwEa+2Xfk8f04Xz0J FIbzmbnPxRvp+EN+UeqJ8biU5CjQK03glCFOfymbOLWpfVTDwwG8pZULxx0cptVg eQAlbH6mrEHt7hFEPKJLajhGxc9cz2DRuvUKE7E6Urk2QBdK/7kZhxTkaH7Ybog= -----END CERTIFICATE-----Generated at Sat Aug 9 10:42:56 2025 by rpki-client