$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6d20c73-e796-4efb-9469-1066893d0818.roa File: c6d20c73-e796-4efb-9469-1066893d0818.roa (raw, json) Hash identifier: ZHN+EOoosa0Gauj9rDIgm0LsXfv2wzH5SLDaT5Oy0Yo= Subject key identifier: 89:F5:0C:8E:B1:44:35:3F:0B:EF:EE:CE:71:49:2C:9F:26:62:36:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A7DEB19CD9BDE543EB9E574235C7D6A92753B68 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6d20c73-e796-4efb-9469-1066893d0818.roa Signing time: Wed 13 Aug 2025 00:20:30 +0000 ROA not before: Wed 13 Aug 2025 00:20:30 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f24::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7d:eb:19:cd:9b:de:54:3e:b9:e5:74:23:5c:7d:6a:92:75:3b:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:20:30 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=0a5e141bf940532f0393bda06da7849eabc35257639ee2b7699e27318173ab12, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ce:71:37:66:28:0d:c6:dc:61:c4:ef:c5:62: 99:b8:48:48:2e:9b:c6:48:2e:1c:72:6a:67:5c:8d: 31:41:21:5b:c5:79:a4:57:82:e3:a1:ef:4b:da:86: c1:49:bb:10:6e:4a:49:58:77:09:16:e2:2e:c5:e0: 2e:51:8d:6b:3e:ee:29:d3:44:e3:b6:61:6f:67:a3: e2:57:56:cf:2e:e1:f7:d0:1a:e1:bb:72:b6:aa:8e: 9b:7b:bc:be:14:6a:d8:79:55:94:00:94:b3:64:e7: 5c:3b:11:ab:ed:7f:16:ca:54:87:03:44:13:cd:ff: 8b:45:4d:11:91:20:ac:16:b6:1a:33:27:a9:55:30: df:8b:55:11:14:f6:1f:7d:14:c8:9a:8a:40:83:92: ca:9e:13:85:e5:65:a4:1b:91:b2:5c:27:0d:e6:ee: 08:68:6b:70:b2:a1:8f:5d:d7:77:6b:72:6a:03:05: 21:25:69:95:4e:ff:dd:d4:17:42:77:f7:5f:d8:d8: 0c:46:76:1b:c1:15:da:ab:b8:87:49:e8:40:b9:5c: c3:52:9f:9b:07:c0:27:11:7a:90:0c:a3:35:c8:c8: 04:02:a1:97:af:07:63:96:d8:8d:0a:7d:f7:26:0e: 0e:74:76:29:ea:68:74:5b:8c:59:fb:56:b9:25:d6: 54:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:F5:0C:8E:B1:44:35:3F:0B:EF:EE:CE:71:49:2C:9F:26:62:36:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c6d20c73-e796-4efb-9469-1066893d0818.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f24::/36 Signature Algorithm: sha256WithRSAEncryption 2b:50:d6:0f:fe:4a:6c:f5:ee:2c:59:37:2d:46:99:5c:44:72: 9a:21:24:8c:cb:9d:76:b6:dc:a6:e8:69:c6:e1:fa:ed:74:77: db:7e:5b:d0:62:d3:f5:cd:28:de:c8:0d:c2:a8:ec:e1:2a:7b: 1d:61:3f:f4:bd:b1:3f:2a:dd:ef:4a:01:6a:57:6b:06:c9:2c: 6a:77:6d:75:ea:c6:6d:cb:34:c9:89:d5:4b:0e:2f:84:15:c0: 20:9e:b3:58:ca:17:70:1f:61:51:c6:66:7e:63:95:ea:57:5a: 2c:bb:a0:76:3f:df:ad:36:33:d1:78:83:b3:0b:bd:b4:3b:57: fd:6d:5f:72:89:0e:5e:87:4e:5e:2f:b1:0c:dc:e4:f2:1e:a9: 9a:43:5f:8c:bc:e2:0a:af:d7:59:35:83:aa:6e:75:c9:01:41: 74:45:92:b7:fc:b5:a7:18:b6:b4:89:e5:81:4d:bf:4d:a4:59: 2b:68:8c:d8:60:09:cd:f7:af:fc:ad:32:35:7b:b7:c8:d2:50: 3a:b3:da:6c:8b:a1:da:82:83:48:34:bc:c9:df:78:6c:88:14: 72:6a:a3:51:86:aa:40:d7:27:08:3f:eb:d5:c0:18:f1:5f:26: 39:e0:5e:6f:06:92:17:80:96:b1:bf:4d:dc:c9:f1:27:55:04: fb:33:b7:22 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSn3rGc2b3lQ+ueV0I1x9apJ1O2gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAyMDMwWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTVlMTQxYmY5NDA1MzJmMDM5M2JkYTA2ZGE3ODQ5ZWFi YzM1MjU3NjM5ZWUyYjc2OTllMjczMTgxNzNhYjEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRznE3ZigNxtxhxO/FYpm4SEgum8ZILhxyamdcjTFBIVvF eaRXguOh70vahsFJuxBuSklYdwkW4i7F4C5RjWs+7inTROO2YW9no+JXVs8u4ffQ GuG7craqjpt7vL4Uath5VZQAlLNk51w7EavtfxbKVIcDRBPN/4tFTRGRIKwWthoz J6lVMN+LVREU9h99FMiaikCDksqeE4XlZaQbkbJcJw3m7ghoa3CyoY9d13drcmoD BSElaZVO/93UF0J391/Y2AxGdhvBFdqruIdJ6EC5XMNSn5sHwCcRepAMozXIyAQC oZevB2OW2I0KffcmDg50dinqaHRbjFn7Vrkl1lT5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUifUMjrFENT8L7+7OcUksnyZiNvAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M2ZDIwYzczLWU3OTYtNGVmYi05NDY5LTEwNjY4OTNkMDgxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8kADANBgkqhkiG9w0BAQsFAAOCAQEAK1DWD/5KbPXuLFk3LUaZXERy miEkjMuddrbcpuhpxuH67XR3235b0GLT9c0o3sgNwqjs4Sp7HWE/9L2xPyrd70oB aldrBsksandtderGbcs0yYnVSw4vhBXAIJ6zWMoXcB9hUcZmfmOV6ldaLLugdj/f rTYz0XiDswu9tDtX/W1fcokOXodOXi+xDNzk8h6pmkNfjLziCq/XWTWDqm51yQFB dEWSt/y1pxi2tInlgU2/TaRZK2iM2GAJzfev/K0yNXu3yNJQOrPabIuh2oKDSDS8 yd94bIgUcmqjUYaqQNcnCD/r1cAY8V8mOeBebwaSF4CWsb9N3MnxJ1UE+zO3Ig== -----END CERTIFICATE-----Generated at Sat Aug 23 09:09:44 2025 by rpki-client