$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/713ada64-003f-4d7e-9ca8-19853d2f9d0e.roa File: 713ada64-003f-4d7e-9ca8-19853d2f9d0e.roa (raw, json) Hash identifier: hSs5CUiykDM7HfT6lXy/0zSp8W+PJLF1qcJFUFzAFf4= Subject key identifier: 50:CE:62:1B:36:AF:94:B6:8B:49:F0:67:A3:D1:F9:BE:F7:45:7E:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 685954FBE58F723B20257F71FD3CBEE8FF10F0AF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/713ada64-003f-4d7e-9ca8-19853d2f9d0e.roa Signing time: Tue 05 Aug 2025 00:20:15 +0000 ROA not before: Tue 05 Aug 2025 00:20:15 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f20:c000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:59:54:fb:e5:8f:72:3b:20:25:7f:71:fd:3c:be:e8:ff:10:f0:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:20:15 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=bf0a40ee70b02dfe130f8bf5700312bf4630824462a0e28efcfcb4aa980d3011, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3f:9d:65:3f:da:ef:f8:b8:5c:6a:bd:2a:b4: fb:d2:d9:21:14:e9:8f:b5:07:7a:15:ae:db:7c:9b: 38:bd:bb:9e:35:64:44:05:83:c4:8e:e7:e5:fe:ee: df:63:7d:03:31:d1:75:11:a8:a4:34:50:b7:54:38: ba:e9:b5:96:43:c0:51:cb:96:c9:eb:85:0b:70:17: 23:a0:f9:a1:19:b2:5b:b6:2b:80:63:81:ab:68:e0: ec:e4:31:4e:af:0d:32:15:a8:5b:56:0f:19:5e:52: b1:ca:14:d1:ff:c1:96:03:a7:ab:99:3a:5e:51:cf: 0b:a3:e7:72:56:83:f5:4f:79:29:da:fb:94:34:ff: 63:cb:1f:53:ae:38:86:9d:4d:92:63:27:8a:25:c1: 01:6d:ad:06:03:c4:cd:5d:74:1a:e5:e2:c8:b8:d7: e3:f6:ae:21:57:a4:4f:4a:52:27:d2:76:1c:1a:31: 3f:09:4e:66:ef:90:5c:e6:16:c7:4f:50:ec:65:19: 34:16:48:dd:38:c6:15:97:dd:ef:7c:9a:52:59:0e: d3:a9:4f:1a:b8:fa:0e:03:a7:4e:e9:e6:17:46:54: f7:7c:aa:e7:43:4e:1b:8f:cc:14:11:8e:3b:e2:79: f4:9e:16:d3:46:71:3b:a7:05:19:bf:d1:c8:49:16: b1:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:CE:62:1B:36:AF:94:B6:8B:49:F0:67:A3:D1:F9:BE:F7:45:7E:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/713ada64-003f-4d7e-9ca8-19853d2f9d0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f20:c000::/36 Signature Algorithm: sha256WithRSAEncryption 9c:cc:f6:93:fd:59:62:a8:cf:fa:46:37:b0:0d:13:47:4c:19: 1f:3c:55:da:fe:c0:ea:6c:23:55:07:24:b0:99:14:c3:3d:6c: 59:5d:ad:91:77:d2:d5:9c:d2:ad:32:bb:9e:cb:e0:3c:57:f8: d7:69:3d:d0:a3:dd:02:1a:27:74:13:df:1b:69:ba:c2:38:79: d6:a7:6f:d7:86:5b:f2:51:72:77:4e:2b:73:0a:f5:af:22:4f: 87:84:8d:1c:9a:51:ee:8a:82:a2:c7:03:40:dc:94:fe:58:77: 79:09:37:d0:35:b9:22:bc:4c:d4:48:a1:1e:01:45:5b:b5:85: 0d:ec:53:b7:6c:cb:e0:28:4d:9d:b7:13:e7:02:b6:1a:76:db: c8:df:98:27:24:8e:f5:8f:22:74:cf:48:4a:51:f2:dd:a1:b6: df:6f:85:f0:fa:77:78:be:1d:36:78:f5:1e:1d:6c:d3:a7:5e: 12:59:66:a3:26:18:8c:f6:c3:f4:fa:3f:fc:1f:a3:32:6a:0b: 9e:2c:44:1d:33:1f:3a:a4:30:09:79:68:ba:49:bd:1f:0b:39: bb:15:3f:16:5c:d0:c2:3f:66:63:59:a6:25:55:d2:ed:59:2a: 9d:39:ed:92:f5:9b:8d:e8:9d:06:75:18:de:99:04:ba:14:16: ff:b2:34:ed -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaFlU++WPcjsgJX9x/Ty+6P8Q8K8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAyMDE1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjBhNDBlZTcwYjAyZGZlMTMwZjhiZjU3MDAzMTJiZjQ2 MzA4MjQ0NjJhMGUyOGVmY2ZjYjRhYTk4MGQzMDExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0P51lP9rv+Lhcar0qtPvS2SEU6Y+1B3oVrtt8mzi9u541 ZEQFg8SO5+X+7t9jfQMx0XURqKQ0ULdUOLrptZZDwFHLlsnrhQtwFyOg+aEZslu2 K4Bjgato4OzkMU6vDTIVqFtWDxleUrHKFNH/wZYDp6uZOl5Rzwuj53JWg/VPeSna +5Q0/2PLH1OuOIadTZJjJ4olwQFtrQYDxM1ddBrl4si41+P2riFXpE9KUifSdhwa MT8JTmbvkFzmFsdPUOxlGTQWSN04xhWX3e98mlJZDtOpTxq4+g4Dp07p5hdGVPd8 qudDThuPzBQRjjviefSeFtNGcTunBRm/0chJFrEdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUUM5iGzavlLaLSfBno9H5vvdFfpgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcxM2FkYTY0LTAwM2YtNGQ3ZS05Y2E4LTE5ODUzZDJmOWQwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8gwDANBgkqhkiG9w0BAQsFAAOCAQEAnMz2k/1ZYqjP+kY3sA0TR0wZ HzxV2v7A6mwjVQcksJkUwz1sWV2tkXfS1ZzSrTK7nsvgPFf412k90KPdAhondBPf G2m6wjh51qdv14Zb8lFyd04rcwr1ryJPh4SNHJpR7oqCoscDQNyU/lh3eQk30DW5 IrxM1EihHgFFW7WFDexTt2zL4ChNnbcT5wK2GnbbyN+YJySO9Y8idM9ISlHy3aG2 32+F8Pp3eL4dNnj1Hh1s06deEllmoyYYjPbD9Po//B+jMmoLnixEHTMfOqQwCXlo ukm9Hws5uxU/FlzQwj9mY1mmJVXS7VkqnTntkvWbjeidBnUY3pkEuhQW/7I07Q== -----END CERTIFICATE-----Generated at Sat Aug 23 10:14:11 2025 by rpki-client