$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/073eb97d-e872-4ff0-ad8a-a334146b45e0.roa File: 073eb97d-e872-4ff0-ad8a-a334146b45e0.roa (raw, json) Hash identifier: lI4HwTqMY8TaWXCl/Kv0LH9d01VzrHRXH5D1hCNjFMw= Subject key identifier: 47:7A:E4:EB:29:0B:3F:67:B9:E4:75:7C:07:6F:2A:A8:41:1D:0D:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B9BE44DA006C73EE724738FB71AF8841AFA0A2E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/073eb97d-e872-4ff0-ad8a-a334146b45e0.roa Signing time: Wed 13 Aug 2025 00:11:05 +0000 ROA not before: Wed 13 Aug 2025 00:11:05 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff9:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:9b:e4:4d:a0:06:c7:3e:e7:24:73:8f:b7:1a:f8:84:1a:fa:0a:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:11:05 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=bae86933c0272fa49ba3405853b2ca8e9494d913a631e81f91903fb34dd77610, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:60:7d:75:13:66:2f:31:55:d2:06:90:de:c9: 22:fe:7d:4f:3e:5f:46:da:61:18:c0:49:3f:39:14: e3:3d:db:f1:c1:c3:4c:95:86:bd:89:65:3d:bb:66: 34:a9:6d:a5:5f:a7:9a:88:20:1b:01:f7:25:dd:99: f3:66:b2:da:c1:71:2b:52:e8:82:aa:8e:88:87:3f: 2d:42:24:9c:01:23:bd:d1:29:78:47:85:fe:e2:18: 72:24:fa:7e:41:f9:bd:b8:da:9b:05:5f:11:52:61: 84:d0:01:c3:67:41:68:a1:1d:2e:e1:12:dd:7a:50: 33:3a:84:a5:2c:d7:b6:63:f2:49:49:c4:19:d6:22: c1:90:02:6a:32:7b:30:4b:1d:07:80:47:1b:5e:12: eb:36:ce:3b:b7:f5:b9:22:27:86:3c:27:51:e8:fa: b2:aa:83:74:92:55:dc:ea:d1:5d:f4:b1:4b:5a:66: f0:4a:f4:e7:0d:11:a0:de:d2:96:1a:28:98:15:44: ae:40:0d:0b:dd:ad:0e:2a:f6:f1:d4:40:bc:1f:89: 5b:2e:e6:06:51:b2:a8:e7:4a:f0:ae:1c:45:88:e0: f1:be:67:e8:1c:92:a1:5f:68:7e:9e:db:50:9f:9f: 94:7d:d7:e4:08:76:4e:13:29:e7:e8:ba:c9:53:cf: 02:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:7A:E4:EB:29:0B:3F:67:B9:E4:75:7C:07:6F:2A:A8:41:1D:0D:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/073eb97d-e872-4ff0-ad8a-a334146b45e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:2000::/40 Signature Algorithm: sha256WithRSAEncryption 3f:53:e0:a7:7c:db:d3:c6:63:74:8e:54:14:a1:6c:0c:60:07: 7c:ea:a1:29:68:ac:fe:68:74:96:7e:3d:0a:80:55:63:aa:62: 42:43:0f:f5:11:f5:4e:eb:89:a7:b4:22:47:9f:8c:58:0f:90: d7:7a:44:00:db:f6:7b:7e:60:bd:00:27:d5:70:ba:b3:a8:07: b6:6f:3c:6f:58:20:37:9b:3a:09:5c:d3:f6:09:4b:ef:d4:dc: 19:14:51:e1:51:1e:50:2d:82:2c:2d:1a:0a:ed:a3:d2:79:8f: 31:fb:48:51:61:d3:52:f8:8f:a2:c2:9a:7a:05:4e:32:33:54: ad:b7:2f:aa:82:80:18:36:2b:2e:a9:05:b1:f1:2a:df:6b:ff: 88:53:8f:fe:cf:cb:34:9a:61:59:43:2e:e3:f1:a2:43:ee:9c: 96:ca:13:e9:e8:f1:ab:81:1d:e3:7b:af:ef:f0:27:d9:a6:3f: cc:b9:ef:b7:4a:8a:c0:31:45:7e:8e:63:5b:07:02:1e:bc:ec: a2:72:60:39:c2:a2:ef:65:14:98:b6:9c:c0:2f:ce:d3:68:7b: b4:b0:07:a2:8f:2c:db:07:54:48:97:ae:f8:81:26:b5:61:0b: 2f:a8:60:b3:38:bc:f6:73:e1:21:ad:8f:14:30:27:a2:22:8a: ba:fd:32:a6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUe5vkTaAGxz7nJHOPtxr4hBr6Ci4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMTA1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWU4NjkzM2MwMjcyZmE0OWJhMzQwNTg1M2IyY2E4ZTk0 OTRkOTEzYTYzMWU4MWY5MTkwM2ZiMzRkZDc3NjEwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClYH11E2YvMVXSBpDeySL+fU8+X0baYRjAST85FOM92/HB w0yVhr2JZT27ZjSpbaVfp5qIIBsB9yXdmfNmstrBcStS6IKqjoiHPy1CJJwBI73R KXhHhf7iGHIk+n5B+b242psFXxFSYYTQAcNnQWihHS7hEt16UDM6hKUs17Zj8klJ xBnWIsGQAmoyezBLHQeARxteEus2zju39bkiJ4Y8J1Ho+rKqg3SSVdzq0V30sUta ZvBK9OcNEaDe0pYaKJgVRK5ADQvdrQ4q9vHUQLwfiVsu5gZRsqjnSvCuHEWI4PG+ Z+gckqFfaH6e21Cfn5R91+QIdk4TKefouslTzwLLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUR3rk6ykLP2e55HV8B28qqEEdDQ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3M2ViOTdkLWU4NzItNGZmMC1hZDhhLWEzMzQxNDZiNDVlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/5IDANBgkqhkiG9w0BAQsFAAOCAQEAP1Pgp3zb08ZjdI5UFKFsDGAH fOqhKWis/mh0ln49CoBVY6piQkMP9RH1TuuJp7QiR5+MWA+Q13pEANv2e35gvQAn 1XC6s6gHtm88b1ggN5s6CVzT9glL79TcGRRR4VEeUC2CLC0aCu2j0nmPMftIUWHT UviPosKaegVOMjNUrbcvqoKAGDYrLqkFsfEq32v/iFOP/s/LNJphWUMu4/GiQ+6c lsoT6ejxq4Ed43uv7/An2aY/zLnvt0qKwDFFfo5jWwcCHrzsonJgOcKi72UUmLac wC/O02h7tLAHoo8s2wdUSJeu+IEmtWELL6hgszi89nPhIa2PFDAnoiKKuv0ypg== -----END CERTIFICATE-----Generated at Sat Aug 23 06:41:52 2025 by rpki-client