$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb4c38ee-7dc9-4045-ad81-060fd7e9d6b0.roa File: bb4c38ee-7dc9-4045-ad81-060fd7e9d6b0.roa (raw, json) Hash identifier: uj5me5YZeNYU70oeif//gl+pQRLOr7ZY5IH5YaAVV8U= Subject key identifier: 28:77:BE:B5:FB:65:8B:4B:47:D8:6D:61:1B:47:49:61:23:AF:DE:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14474DDFBB8585B42301A5CC28C83E50DB79A1B7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb4c38ee-7dc9-4045-ad81-060fd7e9d6b0.roa Signing time: Mon 18 Aug 2025 15:32:36 +0000 ROA not before: Mon 18 Aug 2025 15:32:36 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:4120::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:47:4d:df:bb:85:85:b4:23:01:a5:cc:28:c8:3e:50:db:79:a1:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:32:36 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=8694e431cf8fa99ada99b4808187f8689911021565a3dcece42d186793dae5d6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:98:71:47:66:79:75:17:36:02:67:5c:73:63: 29:6e:c7:75:ea:b3:47:0c:4f:34:c1:a8:f0:b0:b2: d1:53:0a:f7:c3:52:96:40:35:1c:7d:c7:6a:19:da: 49:2e:0a:c9:27:7d:86:85:4a:b4:11:d2:03:6d:7f: 7e:11:83:35:2a:92:6c:d3:59:5b:77:b7:e5:eb:a0: 08:4d:52:f7:fe:29:47:8d:a9:a5:75:a1:82:a8:13: 8f:97:1d:17:ea:69:f5:4a:21:fc:ac:ec:70:57:26: 67:8d:cf:67:9b:4f:64:e1:50:3c:d8:15:f2:71:f8: d3:9f:6a:01:d4:bf:8d:7a:2e:1d:b2:c1:e9:76:ec: ab:55:d9:d1:18:24:d5:22:98:b1:4d:cb:62:f1:c1: df:dd:1f:25:e6:f2:ce:fb:62:59:56:e3:da:34:22: fe:10:cc:c0:84:81:64:bc:2d:4a:79:eb:43:8b:1d: 4c:27:6d:22:d8:61:31:b1:4d:15:3d:07:0c:b9:bd: 89:38:d3:c7:6e:52:2b:6e:34:21:db:ae:71:de:2a: 3c:b6:0e:f4:67:4a:30:5d:b2:9f:9e:0b:0f:42:f2: 1e:d7:72:bc:02:69:0b:3a:21:3b:36:b7:e4:a9:0b: 6f:6a:63:c6:8d:45:5e:d0:14:aa:e0:35:4c:d2:bf: 09:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:77:BE:B5:FB:65:8B:4B:47:D8:6D:61:1B:47:49:61:23:AF:DE:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb4c38ee-7dc9-4045-ad81-060fd7e9d6b0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:4120::/48 Signature Algorithm: sha256WithRSAEncryption 6a:4f:7a:61:d3:bd:70:52:7f:ca:d0:d6:98:1a:5e:4f:0b:54: 61:2f:0f:0e:49:ee:ba:0c:ab:e5:1c:36:6c:11:42:ad:c0:d0: c5:a3:d7:54:b9:6d:87:07:56:2f:10:67:f6:ea:a9:4a:d7:99: 5b:a0:93:6f:08:76:7a:df:bf:da:6d:bb:5a:da:b6:5a:26:cc: af:5f:66:8f:c5:da:ca:09:f9:4b:86:80:c2:7e:20:3d:9e:cd: 4c:fb:87:c3:48:59:bc:8a:8d:29:9a:7e:7c:56:8f:8c:a0:b2: 45:2b:ae:b1:b9:21:7d:9f:f8:09:cc:58:7f:75:46:66:2b:4d: c3:80:94:35:7b:67:4b:3a:5d:ad:74:35:f0:2d:34:2f:0b:3e: 46:59:5d:65:2d:9d:77:47:fa:1f:52:42:1b:33:11:1f:7b:05: 7b:75:ee:71:b0:fe:05:d3:ad:b5:b1:67:7b:3a:12:bf:fb:11: 8c:7a:f3:aa:99:20:7b:54:29:26:f6:8a:71:0d:45:82:14:c3: 2e:8e:06:22:61:70:0a:91:46:ef:c0:70:a2:94:61:6d:25:fe: 9e:07:8a:c6:5d:f2:83:18:2c:69:52:fd:c6:df:4a:fd:e5:37: 6f:de:af:a5:cd:ee:01:96:68:c8:3d:33:52:fb:5f:2d:79:cf: cc:f9:ca:a7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFEdN37uFhbQjAaXMKMg+UNt5obcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUzMjM2WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4Njk0ZTQzMWNmOGZhOTlhZGE5OWI0ODA4MTg3Zjg2ODk5 MTEwMjE1NjVhM2RjZWNlNDJkMTg2NzkzZGFlNWQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChmHFHZnl1FzYCZ1xzYylux3Xqs0cMTzTBqPCwstFTCvfD UpZANRx9x2oZ2kkuCsknfYaFSrQR0gNtf34RgzUqkmzTWVt3t+XroAhNUvf+KUeN qaV1oYKoE4+XHRfqafVKIfys7HBXJmeNz2ebT2ThUDzYFfJx+NOfagHUv416Lh2y wel27KtV2dEYJNUimLFNy2Lxwd/dHyXm8s77YllW49o0Iv4QzMCEgWS8LUp560OL HUwnbSLYYTGxTRU9Bwy5vYk408duUituNCHbrnHeKjy2DvRnSjBdsp+eCw9C8h7X crwCaQs6ITs2t+SpC29qY8aNRV7QFKrgNUzSvwnTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKHe+tftli0tH2G1hG0dJYSOv3ocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiNGMzOGVlLTdkYzktNDA0NS1hZDgxLTA2MGZkN2U5ZDZiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQSAwDQYJKoZIhvcNAQELBQADggEBAGpPemHTvXBSf8rQ1pgaXk8L VGEvDw5J7roMq+UcNmwRQq3A0MWj11S5bYcHVi8QZ/bqqUrXmVugk28Idnrfv9pt u1ratlomzK9fZo/F2soJ+UuGgMJ+ID2ezUz7h8NIWbyKjSmafnxWj4ygskUrrrG5 IX2f+AnMWH91RmYrTcOAlDV7Z0s6Xa10NfAtNC8LPkZZXWUtnXdH+h9SQhszER97 BXt17nGw/gXTrbWxZ3s6Er/7EYx686qZIHtUKSb2inENRYIUwy6OBiJhcAqRRu/A cKKUYW0l/p4HisZd8oMYLGlS/cbfSv3lN2/er6XN7gGWaMg9M1L7Xy15z8z5yqc= -----END CERTIFICATE-----Generated at Sat Aug 23 08:17:44 2025 by rpki-client