$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/583193bf-59e4-450f-b717-73d6b6b59d9e.roa File: 583193bf-59e4-450f-b717-73d6b6b59d9e.roa (raw, json) Hash identifier: 3VzMVwFW7pt6lNGJlqutxsY7I01hf5noS1GbxHTWu0o= Subject key identifier: 56:BF:AC:E7:3A:09:4A:35:38:28:8F:44:35:D1:7A:10:A3:9D:D1:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2522C2FCEB620BE92158E496D4C2A683C79B6079 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/583193bf-59e4-450f-b717-73d6b6b59d9e.roa Signing time: Mon 04 Aug 2025 15:40:36 +0000 ROA not before: Mon 04 Aug 2025 15:40:36 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:4000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:22:c2:fc:eb:62:0b:e9:21:58:e4:96:d4:c2:a6:83:c7:9b:60:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:40:36 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=33d5dfdc3ef7a8178d538d94e904475d676472dbffff1fda37ffb166a0cc0abf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:91:a2:19:80:43:cd:14:6a:48:05:7c:20:35: 2e:0e:bd:39:30:24:b7:20:b0:1f:f2:c4:2b:b7:47: 6d:33:62:ec:a2:78:7b:be:cb:28:91:b8:12:f8:f0: 9f:27:66:4c:4d:19:80:4a:f0:a0:32:2c:fd:4c:9b: e6:f8:61:fb:6d:1e:24:6f:4d:d4:f2:6c:17:85:17: 6d:7a:c5:40:c1:01:17:73:07:31:98:fc:82:f0:ea: 02:70:36:a9:9d:3a:12:5a:54:1d:0d:c0:d1:78:81: 54:fc:09:29:02:67:c6:a2:a1:50:fd:77:72:44:31: ed:ad:06:6a:cd:e2:88:a6:86:8a:31:70:b3:d0:e6: 42:c3:5e:4c:50:dd:83:32:34:09:a6:7f:e7:7d:ad: 2e:94:a3:7e:49:6b:b2:19:f1:81:47:44:cc:5e:ee: a1:db:85:f3:59:13:e5:0b:2b:38:b0:28:3b:64:ba: 0f:a9:cc:05:6f:ae:1d:f2:52:f1:2a:ab:33:ba:39: 03:44:95:cb:d6:3d:bd:bc:a9:17:f5:6b:64:ec:f1: b9:c4:8f:7d:04:9e:2b:de:0b:c8:e0:31:f9:8f:a3: 71:64:01:03:dd:0c:25:e4:0a:fc:a0:d2:71:48:52: 37:5c:d1:c8:f2:b2:7e:06:f4:c2:25:44:79:59:7a: 8a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:BF:AC:E7:3A:09:4A:35:38:28:8F:44:35:D1:7A:10:A3:9D:D1:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/583193bf-59e4-450f-b717-73d6b6b59d9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:4000::/39 Signature Algorithm: sha256WithRSAEncryption 1c:48:b1:e5:99:7a:3e:3a:74:42:89:3d:a8:a8:58:f3:d1:4d: 21:9d:55:f3:16:b4:24:6c:76:f2:2e:2e:52:cf:ef:63:85:dc: 6c:8e:42:b1:6f:c6:0d:3f:83:de:8f:9f:38:aa:dc:66:1f:3e: d9:02:1f:f7:7e:91:e4:07:74:5b:b5:e6:f1:37:dc:e7:6b:09: 45:f5:19:7b:b6:40:10:39:b5:59:b7:1f:37:3d:71:5b:38:c0: 48:9f:f7:b8:90:f2:54:3d:4b:bb:b1:b0:62:d8:e6:06:a3:58: f3:d1:bb:f3:01:8d:4e:2e:75:f9:a3:7f:98:df:d9:ab:ef:eb: 12:92:ae:14:94:f1:4a:59:6c:9c:b7:97:bd:4b:79:7d:46:28: 75:34:f7:95:8f:b6:2c:8f:51:cc:28:9e:17:d4:3f:3d:b1:ca: 47:0b:02:5e:f8:7b:9a:73:07:1c:d2:7c:de:e4:02:2a:62:17: 91:6f:b7:79:2c:cd:4d:2d:04:82:a4:a0:ba:c3:80:27:ed:db: a6:70:bd:c3:91:57:80:90:84:3b:e8:72:61:96:8b:b8:9f:a3: b1:db:e9:63:8a:6e:30:ee:8f:8c:a3:6b:5c:ea:ef:e6:b8:9c: 9f:f9:1d:eb:1d:51:73:78:6a:7a:8d:da:6e:46:b8:03:b1:ab: e8:69:52:64 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJSLC/OtiC+khWOSW1MKmg8ebYHkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU0MDM2WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzM2Q1ZGZkYzNlZjdhODE3OGQ1MzhkOTRlOTA0NDc1ZDY3 NjQ3MmRiZmZmZjFmZGEzN2ZmYjE2NmEwY2MwYWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDkaIZgEPNFGpIBXwgNS4OvTkwJLcgsB/yxCu3R20zYuyi eHu+yyiRuBL48J8nZkxNGYBK8KAyLP1Mm+b4YfttHiRvTdTybBeFF216xUDBARdz BzGY/ILw6gJwNqmdOhJaVB0NwNF4gVT8CSkCZ8aioVD9d3JEMe2tBmrN4oimhoox cLPQ5kLDXkxQ3YMyNAmmf+d9rS6Uo35Ja7IZ8YFHRMxe7qHbhfNZE+ULKziwKDtk ug+pzAVvrh3yUvEqqzO6OQNElcvWPb28qRf1a2Ts8bnEj30EniveC8jgMfmPo3Fk AQPdDCXkCvyg0nFIUjdc0cjysn4G9MIlRHlZeorhAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUVr+s5zoJSjU4KI9ENdF6EKOd0bYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU4MzE5M2JmLTU5ZTQtNDUwZi1iNzE3LTczZDZiNmI1OWQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB9wQDANBgkqhkiG9w0BAQsFAAOCAQEAHEix5Zl6Pjp0Qok9qKhY89FN IZ1V8xa0JGx28i4uUs/vY4XcbI5CsW/GDT+D3o+fOKrcZh8+2QIf936R5Ad0W7Xm 8Tfc52sJRfUZe7ZAEDm1WbcfNz1xWzjASJ/3uJDyVD1Lu7GwYtjmBqNY89G78wGN Ti51+aN/mN/Zq+/rEpKuFJTxSllsnLeXvUt5fUYodTT3lY+2LI9RzCieF9Q/PbHK RwsCXvh7mnMHHNJ83uQCKmIXkW+3eSzNTS0EgqSgusOAJ+3bpnC9w5FXgJCEO+hy YZaLuJ+jsdvpY4puMO6PjKNrXOrv5ricn/kd6x1Rc3hqeo3abka4A7Gr6GlSZA== -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:37 2025 by rpki-client