$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17403c26-dfc9-4063-8d3e-9c868da268b1.roa File: 17403c26-dfc9-4063-8d3e-9c868da268b1.roa (raw, json) Hash identifier: Y2Utyf9dJThqn6koQ2rWATrGfOAMafdQhRRMl5xtEMM= Subject key identifier: 67:BD:C6:E7:1E:42:D9:21:D4:09:DB:7F:67:D9:ED:BA:EB:95:20:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 273D2462A214CE4DBB735E533B7C55C1E4CF5BDF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17403c26-dfc9-4063-8d3e-9c868da268b1.roa Signing time: Wed 20 Aug 2025 00:11:13 +0000 ROA not before: Wed 20 Aug 2025 00:11:13 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:a400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3d:24:62:a2:14:ce:4d:bb:73:5e:53:3b:7c:55:c1:e4:cf:5b:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 20 00:11:13 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=330d8301f440b9be61a8af77b14ab014e5651d6790d4eecae3a330f937939068, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b4:5b:75:1a:35:8f:37:16:fb:d8:87:8a:68: 48:c7:a8:1e:e8:5f:2d:ba:e0:5c:bb:0e:b5:1f:93: 4c:66:83:74:5d:ef:1c:dd:ac:c0:94:60:45:c0:52: cf:21:b6:f0:2e:56:0e:1e:bb:9a:8a:25:14:00:7a: 24:00:e2:e3:91:51:ce:5a:db:ec:1e:28:11:cc:18: 8e:d6:62:39:11:f7:49:94:6c:ea:d1:e8:cc:8b:65: 5f:85:e2:fa:d4:94:18:84:64:6b:20:6c:79:5f:76: 49:8e:5b:26:fb:2a:a0:4b:ba:4d:21:28:8e:e7:10: 72:0d:eb:57:46:c3:69:72:4e:1d:7d:79:6a:62:57: 0e:d3:9c:e7:61:c3:71:60:f5:e8:03:b4:96:fc:f9: a8:9d:f9:d9:78:08:4c:2f:2f:6e:fa:10:e2:32:cc: a8:13:80:3f:80:ef:7e:65:15:60:95:bd:71:30:f9: 7c:ce:0a:d8:4b:01:53:3b:87:1d:1c:47:fe:0f:58: b2:38:a8:bd:6d:fb:63:53:d7:36:fe:8e:e5:9c:cc: 87:62:fc:e7:91:ab:81:5e:69:01:22:96:4f:60:14: 80:56:65:92:d4:8f:03:d9:9a:65:2a:87:75:14:fa: 16:db:8a:16:a2:b7:75:95:45:a2:24:8e:3e:c6:54: e7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:BD:C6:E7:1E:42:D9:21:D4:09:DB:7F:67:D9:ED:BA:EB:95:20:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17403c26-dfc9-4063-8d3e-9c868da268b1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:a400::/48 Signature Algorithm: sha256WithRSAEncryption 97:c3:69:38:30:4e:45:b6:3b:56:67:00:9e:22:ac:52:82:e9: 1b:64:6d:4b:e8:ab:c5:b9:6b:4e:7a:65:a7:be:03:a6:62:a1: b8:b4:a4:7e:3f:08:16:61:bd:27:25:83:91:9f:90:a1:a8:e7: b6:aa:d8:6d:6d:58:b9:45:25:c5:3e:11:bd:94:16:48:2f:c9: 91:18:33:e2:39:4e:c6:dd:f5:59:f3:36:f7:9c:ae:d6:ae:00: 20:78:cb:b0:8f:a6:06:6c:ff:70:61:ee:4e:21:5d:c5:81:d5: cc:6a:46:0d:be:f7:87:f8:22:14:11:69:e7:24:39:96:b7:32: f5:fa:60:f1:97:a6:18:8e:28:15:01:b3:ef:11:c3:0f:7c:19: 14:7e:8b:e1:e9:ac:93:9e:f5:60:61:f0:10:77:23:d8:86:69: d0:02:bb:cd:6f:78:bd:75:49:16:1a:bc:bf:59:fd:e7:b8:0d: 1f:94:80:16:31:a6:c6:c4:d5:8b:14:98:d9:54:9c:75:e2:fe: 83:49:f7:e6:c3:09:be:ae:03:f0:ac:82:08:7e:6c:b7:f8:9e: af:1d:b2:82:89:60:98:b6:3c:cf:ec:f9:44:15:75:f1:04:1d: c1:a5:4c:bd:66:0c:e2:a6:50:29:34:bd:55:01:33:f7:12:6a: d6:a9:4f:66 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUJz0kYqIUzk27c15TO3xVweTPW98wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODIwMDAxMTEzWhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzBkODMwMWY0NDBiOWJlNjFhOGFmNzdiMTRhYjAxNGU1 NjUxZDY3OTBkNGVlY2FlM2EzMzBmOTM3OTM5MDY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDItFt1GjWPNxb72IeKaEjHqB7oXy264Fy7DrUfk0xmg3Rd 7xzdrMCUYEXAUs8htvAuVg4eu5qKJRQAeiQA4uORUc5a2+weKBHMGI7WYjkR90mU bOrR6MyLZV+F4vrUlBiEZGsgbHlfdkmOWyb7KqBLuk0hKI7nEHIN61dGw2lyTh19 eWpiVw7TnOdhw3Fg9egDtJb8+aid+dl4CEwvL276EOIyzKgTgD+A735lFWCVvXEw +XzOCthLAVM7hx0cR/4PWLI4qL1t+2NT1zb+juWczIdi/OeRq4FeaQEilk9gFIBW ZZLUjwPZmmUqh3UU+hbbihait3WVRaIkjj7GVOd/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZ73G5x5C2SHUCdt/Z9ntuuuVILcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3NDAzYzI2LWRmYzktNDA2My04ZDNlLTljODY4ZGEyNjhiMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/2pAAwDQYJKoZIhvcNAQELBQADggEBAJfDaTgwTkW2O1ZnAJ4irFKC 6RtkbUvoq8W5a056Zae+A6Ziobi0pH4/CBZhvSclg5GfkKGo57aq2G1tWLlFJcU+ Eb2UFkgvyZEYM+I5Tsbd9VnzNvecrtauACB4y7CPpgZs/3Bh7k4hXcWB1cxqRg2+ 94f4IhQRaeckOZa3MvX6YPGXphiOKBUBs+8Rww98GRR+i+HprJOe9WBh8BB3I9iG adACu81veL11SRYavL9Z/ee4DR+UgBYxpsbE1YsUmNlUnHXi/oNJ9+bDCb6uA/Cs ggh+bLf4nq8dsoKJYJi2PM/s+UQVdfEEHcGlTL1mDOKmUCk0vVUBM/cSatapT2Y= -----END CERTIFICATE-----Generated at Sat Aug 23 06:49:52 2025 by rpki-client