$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa File: 1a6e493f-275f-4a84-b751-a3051f88db2b.roa (raw, json) Hash identifier: GguRdy/Yp9zR5Xy+tNDmn9N5ZiTqlOdtXO/eF7XWLTw= Subject key identifier: 2F:F9:7C:B9:7D:16:54:03:83:0A:9C:E0:0A:A3:2C:92:49:07:6F:89 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2285181B8A65FA55D85E7FDDD9FD07634E14C9B5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa Signing time: Tue 12 Aug 2025 00:11:03 +0000 ROA not before: Tue 12 Aug 2025 00:11:03 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:85:18:1b:8a:65:fa:55:d8:5e:7f:dd:d9:fd:07:63:4e:14:c9:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:11:03 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=410e903cc50feab23187d0f089e5babc4d2578a3d24bd08e3779531926245282, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:63:d8:4f:94:14:09:d5:69:d8:45:f7:ee:ff: 23:95:0f:cd:82:48:36:5a:29:b9:6a:80:92:03:76: 12:71:b3:55:e1:91:90:9e:8e:e7:64:ae:d3:26:02: 52:9f:94:a2:5f:df:ab:18:e4:5c:28:e2:b2:60:2f: 34:ec:1c:49:7f:8d:83:8f:17:86:e2:f3:8e:39:aa: 7c:bb:25:06:f3:98:0c:9e:3f:fa:06:53:3a:20:56: 89:9f:ad:1c:76:80:80:af:03:4a:e0:9c:f2:33:e8: 51:0d:97:70:1e:6d:ef:70:87:78:8b:1e:77:a9:53: c7:bc:a5:a7:21:87:ef:14:58:cf:7f:f6:b7:a1:ef: 4f:98:df:2a:ed:5b:33:43:dd:e5:b0:00:70:d0:ab: e5:68:6c:08:a5:cf:1f:11:9d:36:c1:1d:5c:26:2b: aa:96:81:5d:73:fc:7c:79:a9:18:74:53:82:23:b8: 09:c3:c0:9d:f1:32:2c:3b:5d:16:4c:bb:5c:91:70: 09:b7:fb:a8:18:e9:e5:85:e6:67:64:e8:04:35:25: 3c:c0:62:4c:f2:33:2f:33:f8:f3:65:60:b0:bb:81: 9f:87:35:d8:82:d5:67:5a:b2:c1:1d:3d:01:d4:25: 47:d5:94:9b:14:ca:eb:16:7a:32:18:b7:18:fe:27: 50:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:F9:7C:B9:7D:16:54:03:83:0A:9C:E0:0A:A3:2C:92:49:07:6F:89 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a6e493f-275f-4a84-b751-a3051f88db2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:2000::/40 Signature Algorithm: sha256WithRSAEncryption 7a:0a:aa:f2:a2:be:a0:bb:f9:b4:2e:f3:76:2c:2f:6f:76:37: f7:b7:27:2c:ad:c8:09:76:0e:60:fa:a1:0d:e5:53:ff:23:bf: c4:e9:9c:d4:36:22:ff:e3:de:06:24:92:99:76:e5:5d:22:74: 03:c3:b6:46:09:b6:77:35:08:7e:e0:59:b3:c5:bd:d3:58:f0: 04:58:49:a3:b4:9e:26:da:07:ac:f2:45:b8:1c:3d:f3:6f:00: 22:6d:dd:db:43:38:37:a3:e1:3f:46:81:6b:54:f8:90:df:19: 35:cd:59:e3:8e:c4:12:65:40:99:b1:8a:3b:65:af:14:cc:a6: f7:7b:c0:66:cc:b9:7a:54:c8:47:43:92:56:42:a9:9a:79:75: e9:f2:43:0f:22:05:2e:1f:c2:3e:09:af:95:61:b5:b6:65:9d: 42:ad:6b:86:b6:7f:ff:2d:d5:1e:a8:4d:8c:0b:1b:e7:20:f1: 17:67:d9:7c:e1:79:87:d8:0a:4f:a4:9e:d9:9d:68:cc:ac:c3: 26:5f:72:39:ca:c3:f2:de:75:72:6d:41:70:6d:b8:93:2d:c3: 45:5d:58:bf:47:ee:6f:e5:32:77:e0:bd:04:61:57:69:06:2b: be:85:2b:c2:2f:09:e2:4e:fc:af:55:05:54:7b:75:bb:85:4b: 42:a7:81:79 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIoUYG4pl+lXYXn/d2f0HY04UybUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMTAzWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTBlOTAzY2M1MGZlYWIyMzE4N2QwZjA4OWU1YmFiYzRk MjU3OGEzZDI0YmQwOGUzNzc5NTMxOTI2MjQ1MjgyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvY9hPlBQJ1WnYRffu/yOVD82CSDZaKblqgJIDdhJxs1Xh kZCejudkrtMmAlKflKJf36sY5Fwo4rJgLzTsHEl/jYOPF4bi8445qny7JQbzmAye P/oGUzogVomfrRx2gICvA0rgnPIz6FENl3Aebe9wh3iLHnepU8e8pachh+8UWM9/ 9reh70+Y3yrtWzND3eWwAHDQq+VobAilzx8RnTbBHVwmK6qWgV1z/Hx5qRh0U4Ij uAnDwJ3xMiw7XRZMu1yRcAm3+6gY6eWF5mdk6AQ1JTzAYkzyMy8z+PNlYLC7gZ+H NdiC1WdassEdPQHUJUfVlJsUyusWejIYtxj+J1DzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUL/l8uX0WVAODCpzgCqMskkkHb4kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhNmU0OTNmLTI3NWYtNGE4NC1iNzUxLWEzMDUxZjg4ZGIyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gIDANBgkqhkiG9w0BAQsFAAOCAQEAegqq8qK+oLv5tC7zdiwvb3Y3 97cnLK3ICXYOYPqhDeVT/yO/xOmc1DYi/+PeBiSSmXblXSJ0A8O2Rgm2dzUIfuBZ s8W901jwBFhJo7SeJtoHrPJFuBw9828AIm3d20M4N6PhP0aBa1T4kN8ZNc1Z447E EmVAmbGKO2WvFMym93vAZsy5elTIR0OSVkKpmnl16fJDDyIFLh/CPgmvlWG1tmWd Qq1rhrZ//y3VHqhNjAsb5yDxF2fZfOF5h9gKT6Se2Z1ozKzDJl9yOcrD8t51cm1B cG24ky3DRV1Yv0fub+Uyd+C9BGFXaQYrvoUrwi8J4k78r1UFVHt1u4VLQqeBeQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:08 2025 by rpki-client