$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a005ca1-9152-4910-a152-3b30476e109b.roa File: 6a005ca1-9152-4910-a152-3b30476e109b.roa (raw, json) Hash identifier: dnRDxBJFwBeNC6+1mS80CNKrDK1Km5WRXK2+JljJxVw= Subject key identifier: FA:01:0A:EE:1F:D0:5D:82:10:3C:F2:93:85:62:26:8A:C0:33:D8:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5AE3D9F707EFFD32791FBA88CC11EAB257458A3A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a005ca1-9152-4910-a152-3b30476e109b.roa Signing time: Fri 01 Aug 2025 16:02:04 +0000 ROA not before: Fri 01 Aug 2025 16:02:04 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:80b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:e3:d9:f7:07:ef:fd:32:79:1f:ba:88:cc:11:ea:b2:57:45:8a:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 16:02:04 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=2ee7a9d65b88b25293d301fe9fc33206025a6422e4932b590259cd11cace8e26, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:0f:5b:c4:5b:32:05:72:99:00:81:be:b9: 2a:5c:ef:ec:61:f5:1a:fe:cb:a5:92:3e:06:7f:88: 96:42:5b:1f:dd:10:e6:36:55:2f:ee:e9:34:bf:ce: a5:f2:e7:7a:f1:38:82:c0:84:81:26:9e:16:d9:11: c5:d1:90:20:19:e2:89:e3:27:af:31:ef:ca:3b:90: 5c:08:d2:f0:aa:52:04:7a:41:c1:49:44:02:71:a1: 81:a7:60:93:6c:13:0c:7d:93:cf:80:6a:47:6c:19: ee:24:ec:b6:c5:f3:83:4d:83:98:5f:d9:9e:d5:63: cb:9b:ce:84:5c:a9:38:66:b9:ff:d4:00:7c:68:98: 8a:c4:a2:38:70:42:a6:bd:2b:f1:61:0d:2a:32:e2: c0:7e:7a:5d:99:d7:c9:7a:4a:ba:d7:48:49:bc:a4: 9e:00:98:1d:8f:cb:6f:64:0f:12:59:7a:ff:fc:70: 9d:14:db:13:b8:8e:83:b6:ef:0a:f4:f0:02:35:34: db:61:a5:47:ea:bc:1e:45:b9:f1:a0:95:cb:f4:2f: 8c:81:18:73:39:fa:3d:47:c0:19:c4:8e:2b:50:83: 28:27:86:72:a2:7e:0e:32:65:6a:16:59:5f:31:9a: 36:8d:6b:80:82:38:f1:3f:b8:50:92:18:cd:13:5c: 4e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:01:0A:EE:1F:D0:5D:82:10:3C:F2:93:85:62:26:8A:C0:33:D8:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a005ca1-9152-4910-a152-3b30476e109b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:80b0::/48 Signature Algorithm: sha256WithRSAEncryption 97:fa:c1:0a:06:ef:bb:26:7f:73:a7:58:bb:14:60:36:ab:ea: 88:04:d9:2f:8e:e6:e5:f7:a4:a7:7d:ab:46:8a:72:24:2c:d9: 19:7a:c6:e7:26:14:75:cf:3e:af:bc:79:3a:c6:3b:ea:92:53: 10:c3:4c:4e:88:9d:36:51:f7:8e:da:80:f7:82:4d:9a:b3:2d: 68:cd:b6:d7:3f:6a:48:54:7a:3b:65:3c:31:d2:c5:8d:37:cb: 2d:c4:8b:36:02:79:9e:e3:f4:1b:b6:c8:32:fd:23:83:ff:94: f5:1f:cd:ec:b9:9c:30:f3:4c:01:ed:de:5d:92:62:33:e0:0b: 32:df:2d:9f:f4:98:d3:e7:4a:3a:9d:e8:12:f4:63:03:e2:7b: a4:2b:ab:7a:d6:d5:63:03:95:2a:14:68:59:c0:90:b8:1e:96: 82:f1:5f:9c:66:5e:ea:a0:a7:99:74:f9:de:e1:4d:e3:43:cf: 55:fc:80:c8:de:4f:15:81:84:25:b6:1c:b5:87:af:0b:5a:29: 30:19:77:9c:8f:f2:1d:00:c0:e8:e2:15:84:87:7d:a5:ae:82: 87:69:8f:f7:a5:9d:7e:97:4e:1b:f6:7c:9b:81:4e:5e:8a:d1: eb:68:d6:c6:cf:80:7b:2d:a3:15:f5:2f:27:0b:d4:ae:d2:ec: 25:e0:5b:9c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWuPZ9wfv/TJ5H7qIzBHqsldFijowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTYwMjA0WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZWU3YTlkNjViODhiMjUyOTNkMzAxZmU5ZmMzMzIwNjAy NWE2NDIyZTQ5MzJiNTkwMjU5Y2QxMWNhY2U4ZTI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3wA9bxFsyBXKZAIG+uSpc7+xh9Rr+y6WSPgZ/iJZCWx/d EOY2VS/u6TS/zqXy53rxOILAhIEmnhbZEcXRkCAZ4onjJ68x78o7kFwI0vCqUgR6 QcFJRAJxoYGnYJNsEwx9k8+AakdsGe4k7LbF84NNg5hf2Z7VY8ubzoRcqThmuf/U AHxomIrEojhwQqa9K/FhDSoy4sB+el2Z18l6SrrXSEm8pJ4AmB2Py29kDxJZev/8 cJ0U2xO4joO27wr08AI1NNthpUfqvB5FufGglcv0L4yBGHM5+j1HwBnEjitQgygn hnKifg4yZWoWWV8xmjaNa4CCOPE/uFCSGM0TXE4XAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+gEK7h/QXYIQPPKThWImisAz2KowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhMDA1Y2ExLTkxNTItNDkxMC1hMTUyLTNiMzA0NzZlMTA5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gLAwDQYJKoZIhvcNAQELBQADggEBAJf6wQoG77smf3OnWLsUYDar 6ogE2S+O5uX3pKd9q0aKciQs2Rl6xucmFHXPPq+8eTrGO+qSUxDDTE6InTZR947a gPeCTZqzLWjNttc/akhUejtlPDHSxY03yy3EizYCeZ7j9Bu2yDL9I4P/lPUfzey5 nDDzTAHt3l2SYjPgCzLfLZ/0mNPnSjqd6BL0YwPie6Qrq3rW1WMDlSoUaFnAkLge loLxX5xmXuqgp5l0+d7hTeNDz1X8gMjeTxWBhCW2HLWHrwtaKTAZd5yP8h0AwOji FYSHfaWugodpj/elnX6XThv2fJuBTl6K0eto1sbPgHstoxX1LycL1K7S7CXgW5w= -----END CERTIFICATE-----Generated at Sat Aug 23 08:33:11 2025 by rpki-client