$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa File: de2acc05-058e-454c-bf61-f70e34b6d2ff.roa (raw, json) Hash identifier: W0riTvRZ8191TaSNHvtnPJhKuG+ydxuBCyFwzEwGG3E= Subject key identifier: 6A:FC:36:66:FF:19:CD:02:E9:80:78:05:3A:62:BA:AE:73:AF:E2:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 318D4A44B86F684766F991AAE6E0C332FB937A93 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa Signing time: Sat 26 Jul 2025 00:12:22 +0000 ROA not before: Sat 26 Jul 2025 00:12:22 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:4000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:8d:4a:44:b8:6f:68:47:66:f9:91:aa:e6:e0:c3:32:fb:93:7a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:12:22 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=d85cb5adb09d1ea4c91dd853edbf49e0f33e9ac5f183660250b58cee6729650a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:d3:57:41:af:ff:75:d0:22:0a:be:8e:05:43: 14:cc:1c:85:1a:09:c6:b7:69:c1:64:40:dd:d1:49: 10:d9:f4:10:f3:8c:13:d5:90:27:05:55:e8:02:2c: 5a:9f:4b:ae:1f:45:82:0c:eb:68:62:7e:a5:ea:84: dc:a7:76:6a:41:44:14:53:2f:15:4c:04:e6:93:70: 47:72:07:c9:d6:f5:2f:fe:dc:21:5c:2a:82:54:79: a1:ae:9b:f7:ae:d6:ce:d2:3a:8c:32:cd:53:44:62: d7:76:50:6b:06:07:e4:0c:44:b8:39:fc:23:8a:16: 27:97:09:a4:37:61:ae:97:33:e6:16:af:c6:15:a4: 13:aa:e1:ff:13:37:d7:31:2b:8b:a1:b1:8f:a3:2d: ae:99:3d:ec:c5:a8:0f:f1:de:69:31:5a:26:fe:d4: 4c:1e:4e:be:b0:25:eb:36:67:44:69:9e:0d:2d:fc: ce:d2:b4:db:4a:e3:6b:78:76:97:c1:67:2e:b2:ec: 82:39:db:d1:ae:47:cf:27:d3:6c:b2:29:fc:b3:42: 97:ac:16:62:19:94:49:2d:10:92:75:6b:c7:4d:9e: 1b:c9:1b:cd:de:a2:da:72:fa:9a:18:90:40:1c:ad: 11:62:af:e3:93:38:26:e5:a4:7b:3a:3e:63:b0:91: 3a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:FC:36:66:FF:19:CD:02:E9:80:78:05:3A:62:BA:AE:73:AF:E2:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de2acc05-058e-454c-bf61-f70e34b6d2ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:4000::/39 Signature Algorithm: sha256WithRSAEncryption 0d:fd:dd:f9:77:dc:2c:a9:27:0a:9d:b0:89:c6:f7:bf:98:bc: bc:7c:a9:46:2a:61:ae:ff:6a:d5:43:a7:99:fa:89:71:88:1a: 9c:5b:da:61:9e:55:8d:2d:8d:29:6c:0b:68:ce:ad:23:e4:53: e2:59:69:bb:da:16:36:ad:7c:57:39:66:67:d3:17:e0:ce:86: 7b:28:1d:7b:2b:67:a9:44:bf:8b:7f:c4:95:ca:f0:7a:78:24: cb:78:ac:c9:66:99:0b:82:a1:50:f6:21:66:06:25:5c:46:6f: 75:cb:8f:86:44:e6:96:22:1f:ff:cf:24:b1:d5:f8:25:bd:c2: a5:db:bb:41:3b:67:13:e1:e1:44:c2:2f:9f:16:46:84:04:73: c9:dc:e3:f6:87:fe:8c:12:5a:fb:8b:14:4e:d4:80:f6:02:17: 23:1a:75:bd:63:54:e3:f0:e8:62:7f:9d:6c:3b:01:25:6f:76: 4a:6e:c6:1e:e7:6c:4b:61:e0:15:99:60:64:9f:7f:53:f7:4c: c7:f6:e3:2c:65:73:ba:c1:47:6d:3c:f4:d4:a1:aa:a9:f4:a7: f2:45:0a:82:d6:f8:95:ec:46:f2:d0:25:8e:e4:5a:08:a2:f8: 43:d6:5a:2f:e2:aa:8c:e7:1d:79:2c:97:ca:de:cb:6b:d2:f9: 4b:d0:52:ce -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMY1KRLhvaEdm+ZGq5uDDMvuTepMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMjIyWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkODVjYjVhZGIwOWQxZWE0YzkxZGQ4NTNlZGJmNDllMGYz M2U5YWM1ZjE4MzY2MDI1MGI1OGNlZTY3Mjk2NTBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDL01dBr/910CIKvo4FQxTMHIUaCca3acFkQN3RSRDZ9BDz jBPVkCcFVegCLFqfS64fRYIM62hifqXqhNyndmpBRBRTLxVMBOaTcEdyB8nW9S/+ 3CFcKoJUeaGum/eu1s7SOowyzVNEYtd2UGsGB+QMRLg5/COKFieXCaQ3Ya6XM+YW r8YVpBOq4f8TN9cxK4uhsY+jLa6ZPezFqA/x3mkxWib+1EweTr6wJes2Z0Rpng0t /M7StNtK42t4dpfBZy6y7II529GuR88n02yyKfyzQpesFmIZlEktEJJ1a8dNnhvJ G83eotpy+poYkEAcrRFir+OTOCblpHs6PmOwkTpzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUavw2Zv8ZzQLpgHgFOmK6rnOv4qQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlMmFjYzA1LTA1OGUtNDU0Yy1iZjYxLWY3MGUzNGI2ZDJmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/2QDANBgkqhkiG9w0BAQsFAAOCAQEADf3d+XfcLKknCp2wicb3v5i8 vHypRiphrv9q1UOnmfqJcYganFvaYZ5VjS2NKWwLaM6tI+RT4llpu9oWNq18Vzlm Z9MX4M6GeygdeytnqUS/i3/Elcrwengky3isyWaZC4KhUPYhZgYlXEZvdcuPhkTm liIf/88ksdX4Jb3Cpdu7QTtnE+HhRMIvnxZGhARzydzj9of+jBJa+4sUTtSA9gIX Ixp1vWNU4/DoYn+dbDsBJW92Sm7GHudsS2HgFZlgZJ9/U/dMx/bjLGVzusFHbTz0 1KGqqfSn8kUKgtb4lexG8tAljuRaCKL4Q9ZaL+KqjOcdeSyXyt7La9L5S9BSzg== -----END CERTIFICATE-----Generated at Tue Aug 5 16:48:04 2025 by rpki-client