$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa File: c222f035-1c02-4052-94b2-4fc3e0405321.roa (raw, json) Hash identifier: SP60krBI9lbytWcxUDAW7EHJWH24fwg5pxDwzxG0UVE= Subject key identifier: D6:4B:F0:8E:80:BB:C5:D2:86:24:9F:B3:8F:04:9C:59:24:DA:95:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38B4C168D65C4F51BBF50B9C1495A06E1FD0F326 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa Signing time: Mon 04 Aug 2025 17:20:32 +0000 ROA not before: Mon 04 Aug 2025 17:20:32 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f20:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b4:c1:68:d6:5c:4f:51:bb:f5:0b:9c:14:95:a0:6e:1f:d0:f3:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 17:20:32 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=9abaad742888c8583f9945aa4c992c94797fe1da39441a68d389bedae235be4a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:68:2a:61:c2:cf:43:d9:4b:3a:1b:27:1c:f1: 41:fb:68:65:49:c2:0f:95:0e:27:ac:29:f5:96:0f: 9f:01:23:a1:aa:70:bb:64:56:dd:4a:55:a8:9d:e3: 67:b7:de:cd:2c:80:25:64:6c:55:5b:43:5e:da:24: ed:61:fc:f0:b7:32:e8:2f:a9:77:e7:76:dc:38:15: 96:dd:83:c7:d8:1c:c1:47:54:40:a9:58:c5:c5:67: 97:13:8b:b5:fd:f1:bf:04:14:56:29:9f:66:aa:f2: 3e:75:21:49:83:67:44:7e:e9:c2:50:72:14:b1:de: ab:a4:36:b5:98:9e:65:4d:3d:f6:68:05:22:2e:10: 82:b4:b8:9f:ad:af:19:5c:02:d0:fb:e9:91:3a:90: 63:5e:b2:60:5d:ad:e2:d5:c1:8e:ae:7b:61:21:57: 5c:bb:77:c7:95:05:05:c4:ae:ac:04:3c:dd:77:ea: 1f:70:da:96:b4:0b:2a:1b:e8:3d:b4:b6:27:2b:2a: e9:24:af:74:3b:7f:f3:f4:e8:d7:b0:ab:98:a9:1a: d5:c1:67:07:74:cc:00:5b:b8:cb:63:fc:09:9b:c6: 0e:8c:d7:58:6c:bb:fa:d6:ae:a9:d6:a4:ba:7f:e0: b3:e5:b0:87:2e:d9:b0:4c:4f:be:98:90:74:76:40: 80:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:4B:F0:8E:80:BB:C5:D2:86:24:9F:B3:8F:04:9C:59:24:DA:95:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c222f035-1c02-4052-94b2-4fc3e0405321.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f20:8000::/36 Signature Algorithm: sha256WithRSAEncryption 59:5d:0c:ea:31:8b:3f:14:eb:06:11:98:6f:1a:ac:e0:db:e4: 3a:ab:d8:b7:c8:95:22:06:f6:91:12:7e:4e:83:aa:09:00:34: 77:b0:7f:5d:9b:ef:b0:88:37:97:75:f1:39:88:43:c7:4a:ed: 5d:9d:e9:c7:16:fe:b4:0b:25:8a:f6:24:13:d9:f3:68:74:61: af:9d:bf:14:6d:cf:b1:14:0a:dd:a2:2d:ef:ef:d8:a0:20:48: 39:9c:6b:08:18:6f:5d:81:c1:ff:de:3a:d5:9c:58:11:a6:8f: c0:bf:3a:05:92:29:0d:d0:8c:20:54:37:58:33:d6:c5:e8:5d: 4f:c9:59:a8:63:36:04:26:0b:51:2b:f9:84:cb:e5:a2:34:34: 66:49:e2:81:a3:16:3c:2a:97:12:1e:07:2e:aa:f3:cc:8f:f9: 43:d9:9c:01:6c:fc:64:19:14:e4:a0:d6:33:24:0f:92:43:23: d3:f3:f6:f4:c7:d1:e2:0d:16:79:a2:71:4a:36:40:38:df:8f: 70:67:82:10:59:ab:eb:13:d2:2f:c5:19:03:f2:dd:c4:ba:29: f5:75:f6:c0:db:a8:d3:d1:33:83:51:fd:3b:35:6c:cc:e0:6b: 18:86:49:d5:4b:3a:8d:b7:d0:21:21:55:13:56:37:fb:94:08: f9:45:e8:0a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOLTBaNZcT1G79QucFJWgbh/Q8yYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTcyMDMyWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWJhYWQ3NDI4ODhjODU4M2Y5OTQ1YWE0Yzk5MmM5NDc5 N2ZlMWRhMzk0NDFhNjhkMzg5YmVkYWUyMzViZTRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkaCphws9D2Us6Gycc8UH7aGVJwg+VDiesKfWWD58BI6Gq cLtkVt1KVaid42e33s0sgCVkbFVbQ17aJO1h/PC3MugvqXfndtw4FZbdg8fYHMFH VECpWMXFZ5cTi7X98b8EFFYpn2aq8j51IUmDZ0R+6cJQchSx3qukNrWYnmVNPfZo BSIuEIK0uJ+trxlcAtD76ZE6kGNesmBdreLVwY6ue2EhV1y7d8eVBQXErqwEPN13 6h9w2pa0Cyob6D20ticrKukkr3Q7f/P06Newq5ipGtXBZwd0zABbuMtj/Ambxg6M 11hsu/rWrqnWpLp/4LPlsIcu2bBMT76YkHR2QIC9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1kvwjoC7xdKGJJ+zjwScWSTalSkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMjJmMDM1LTFjMDItNDA1Mi05NGIyLTRmYzNlMDQwNTMyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8ggDANBgkqhkiG9w0BAQsFAAOCAQEAWV0M6jGLPxTrBhGYbxqs4Nvk OqvYt8iVIgb2kRJ+ToOqCQA0d7B/XZvvsIg3l3XxOYhDx0rtXZ3pxxb+tAslivYk E9nzaHRhr52/FG3PsRQK3aIt7+/YoCBIOZxrCBhvXYHB/9461ZxYEaaPwL86BZIp DdCMIFQ3WDPWxehdT8lZqGM2BCYLUSv5hMvlojQ0ZknigaMWPCqXEh4HLqrzzI/5 Q9mcAWz8ZBkU5KDWMyQPkkMj0/P29MfR4g0WeaJxSjZAON+PcGeCEFmr6xPSL8UZ A/LdxLop9XX2wNuo09Ezg1H9OzVszOBrGIZJ1Us6jbfQISFVE1Y3+5QI+UXoCg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:30 2025 by rpki-client