$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b264a8c-788f-4473-b1b8-67e1173f8a94.roa File: 6b264a8c-788f-4473-b1b8-67e1173f8a94.roa (raw, json) Hash identifier: OQvoUQt+BtDnLW37gaN0X+SzvuWHzREOzKM9m+1xtVY= Subject key identifier: 38:59:E6:B4:25:54:74:3C:EA:0D:FC:7E:B1:BC:B5:BF:5C:88:63:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1DAFEF10A3588C109929843D26F68805C2DC21D8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b264a8c-788f-4473-b1b8-67e1173f8a94.roa Signing time: Wed 13 Aug 2025 00:11:02 +0000 ROA not before: Wed 13 Aug 2025 00:11:02 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f01:4850::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:af:ef:10:a3:58:8c:10:99:29:84:3d:26:f6:88:05:c2:dc:21:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:11:02 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=edfa4e19c1fcfe6a4d2b1f7e8a6e5ed194d94681b85080535e160344a9b0d621, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d7:5f:b8:4a:44:17:ac:df:f6:ee:c6:6c:c4: 03:9b:08:2d:39:47:3c:0b:47:dc:1c:20:45:3a:4e: 1d:11:4a:93:38:99:28:ca:10:ca:40:5a:7b:03:3e: 2e:09:65:ec:bd:6a:c9:9d:f0:a6:01:6d:a8:fb:e4: 84:d5:39:87:ac:e3:be:c5:04:3d:6d:a9:5f:5e:32: 78:1b:05:b9:ce:cd:5d:41:ba:7c:e4:b7:93:67:2e: 89:db:35:86:a5:f9:f3:0e:98:10:c3:c8:f6:05:9b: 3e:e2:d7:6c:c0:27:db:1a:4b:12:c3:29:bf:73:de: 54:7f:ec:85:03:01:a9:a0:03:f1:8a:75:50:c1:aa: b6:7f:87:57:a8:e1:18:a8:b3:ea:29:62:df:e7:43: e6:b8:81:2f:4f:c2:2b:2b:48:88:55:22:d5:cc:9f: 9c:80:d2:4f:64:72:0c:74:cc:5a:b1:8f:26:bb:d2: f3:7e:d4:1e:87:22:9b:2b:b6:56:be:b0:bc:7b:ab: 1b:14:96:34:70:2b:ec:3e:ed:1c:15:cf:a1:08:85: 61:8c:7f:c5:e7:bf:46:a4:5f:a7:38:00:33:ff:80: d4:75:35:93:f9:9b:c0:95:19:18:af:4d:72:33:eb: 97:35:91:66:95:c8:0e:8a:d7:e1:dd:a0:bb:64:01: af:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:59:E6:B4:25:54:74:3C:EA:0D:FC:7E:B1:BC:B5:BF:5C:88:63:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6b264a8c-788f-4473-b1b8-67e1173f8a94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:4850::/47 Signature Algorithm: sha256WithRSAEncryption a5:17:d4:0f:51:57:4d:ff:e9:65:ec:39:27:f9:5a:36:67:27: dd:01:0f:6c:3c:d2:98:c0:32:b3:d4:e8:43:0a:f5:35:29:1c: aa:9e:db:f7:db:46:2e:3a:7e:29:f8:d3:f0:a2:dc:a4:78:14: a1:4e:6e:aa:e6:23:bb:7d:ab:59:26:b7:52:ea:43:7a:21:a8: 54:e1:c4:08:ad:f7:ec:c2:8d:c3:34:fb:85:c3:14:99:59:d5: 92:76:95:ea:4a:e5:c1:50:b7:8e:cf:3c:a9:42:9d:16:e4:4a: 40:4b:fd:6c:3b:11:c0:b5:ef:60:bf:50:97:16:b1:ed:8f:c7: f4:18:af:e0:d1:93:8e:6d:fd:1a:cd:bb:0a:34:3e:c8:31:ed: d9:53:2f:67:63:64:47:31:4d:28:b3:4a:7a:b9:2b:85:db:f5: bb:20:14:76:d4:21:d5:0d:ec:86:29:0b:50:08:9f:09:18:6c: 63:05:ef:fa:e7:bc:08:c9:bc:57:a8:a2:bc:0b:f1:50:0a:21: 99:c7:d0:d3:f2:3a:94:46:9c:ad:8d:d1:25:1d:08:45:00:ac: 0c:30:66:4c:12:c7:d1:07:36:95:c9:11:a6:6e:49:96:96:18: 88:d8:d4:9b:22:88:95:78:80:9a:99:74:44:35:fe:88:d3:97: d1:66:9d:55 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHa/vEKNYjBCZKYQ9JvaIBcLcIdgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMTAyWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGZhNGUxOWMxZmNmZTZhNGQyYjFmN2U4YTZlNWVkMTk0 ZDk0NjgxYjg1MDgwNTM1ZTE2MDM0NGE5YjBkNjIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDq11+4SkQXrN/27sZsxAObCC05RzwLR9wcIEU6Th0RSpM4 mSjKEMpAWnsDPi4JZey9asmd8KYBbaj75ITVOYes477FBD1tqV9eMngbBbnOzV1B unzkt5NnLonbNYal+fMOmBDDyPYFmz7i12zAJ9saSxLDKb9z3lR/7IUDAamgA/GK dVDBqrZ/h1eo4Rios+opYt/nQ+a4gS9PwisrSIhVItXMn5yA0k9kcgx0zFqxjya7 0vN+1B6HIpsrtla+sLx7qxsUljRwK+w+7RwVz6EIhWGMf8Xnv0akX6c4ADP/gNR1 NZP5m8CVGRivTXIz65c1kWaVyA6K1+HdoLtkAa/hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOFnmtCVUdDzqDfx+sby1v1yIY2UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZiMjY0YThjLTc4OGYtNDQ3My1iMWI4LTY3ZTExNzNmOGE5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSFAwDQYJKoZIhvcNAQELBQADggEBAKUX1A9RV03/6WXsOSf5WjZn J90BD2w80pjAMrPU6EMK9TUpHKqe2/fbRi46fin40/Ci3KR4FKFObqrmI7t9q1km t1LqQ3ohqFThxAit9+zCjcM0+4XDFJlZ1ZJ2lepK5cFQt47PPKlCnRbkSkBL/Ww7 EcC172C/UJcWse2Px/QYr+DRk45t/RrNuwo0Psgx7dlTL2djZEcxTSizSnq5K4Xb 9bsgFHbUIdUN7IYpC1AInwkYbGMF7/rnvAjJvFeoorwL8VAKIZnH0NPyOpRGnK2N 0SUdCEUArAwwZkwSx9EHNpXJEaZuSZaWGIjY1JsiiJV4gJqZdEQ1/ojTl9FmnVU= -----END CERTIFICATE-----Generated at Sat Aug 23 06:48:07 2025 by rpki-client