$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa File: 2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa (raw, json) Hash identifier: V4cbjhEg8k4FHd94AdQuyaSkGZFsUcXwRtAgVnTv0zk= Subject key identifier: 38:1E:F2:C0:EA:E1:E4:9A:BB:87:1A:43:04:1E:EB:7D:28:AA:19:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C55619340DC1EDBBDAC628C571E0166BDB0C7D2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa Signing time: Tue 08 Jul 2025 15:22:14 +0000 ROA not before: Tue 08 Jul 2025 15:22:14 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:55:61:93:40:dc:1e:db:bd:ac:62:8c:57:1e:01:66:bd:b0:c7:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:22:14 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=27044a5c6a5910030de93c03b08e1665bac3d5eff7055ddf8f1a862acbf07400, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d0:57:42:e0:ad:66:a4:8c:42:dc:02:4b:57: e1:97:8a:69:9e:82:a7:a2:24:e8:f4:39:fb:64:57: 54:38:60:c7:f5:e0:ff:14:25:46:05:86:5f:e2:7a: 83:f9:4c:db:1a:42:f9:57:d8:21:f1:56:6d:bd:2a: 6d:08:67:dc:0b:60:81:d9:17:2a:26:73:21:86:5f: 76:76:69:28:1c:2d:e7:a4:78:cb:77:16:08:02:52: 29:c2:15:c4:96:29:3f:2a:a1:66:cd:4d:97:67:ec: bf:80:77:23:f2:3d:ea:16:4d:bd:37:54:19:81:9b: 9a:fc:a6:fc:9a:62:9e:8c:22:12:e7:41:b4:3a:85: 80:d6:68:a1:36:3c:0f:4b:d4:6d:66:83:fc:86:4e: be:ba:48:db:94:36:c4:49:f5:35:e2:9c:ba:c8:6b: 1c:21:95:0d:7e:02:9c:9a:f6:a6:e4:d8:75:e9:e2: 9c:55:32:ef:fa:e7:80:62:8e:b2:3a:c3:1d:b2:95: b5:46:51:eb:bd:39:3c:d5:74:b8:d2:f3:e0:2e:47: f7:7c:6a:f1:1b:58:aa:70:88:93:51:36:82:20:09: 30:fd:5b:45:a6:af:1f:d9:99:8c:34:a0:da:8a:62: 27:a3:99:b2:02:cc:3d:23:38:f3:42:7c:6a:be:ab: e1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:1E:F2:C0:EA:E1:E4:9A:BB:87:1A:43:04:1E:EB:7D:28:AA:19:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:3480::/48 Signature Algorithm: sha256WithRSAEncryption c6:3c:0a:94:43:0a:31:1f:3a:51:a2:cd:1f:07:90:a6:df:f1: c0:de:58:23:c5:40:c7:73:93:80:b8:00:99:e4:ec:2c:19:b8: 39:ff:4f:dc:30:f2:c5:e6:e4:65:98:f1:ac:32:c0:8d:bf:50: ed:e6:94:28:ef:f8:c8:2a:5f:a4:3b:6f:e0:76:28:ea:9d:41: cd:b5:41:b1:19:4b:bf:fc:b8:08:e9:c9:f9:85:8f:36:3e:75: 2c:95:59:53:70:6a:79:27:79:57:5c:0d:52:e0:78:ac:f7:0e: 71:6e:50:b7:26:92:95:e4:ec:e0:43:5b:d5:c9:73:7e:f4:f3: 14:64:06:82:ea:7c:58:e2:7f:83:a4:e6:25:71:c8:ff:18:a0: fa:d2:c6:d1:0e:7f:9f:20:07:93:29:ba:e9:8f:f4:cd:b4:f5: 6a:b5:30:9b:38:79:79:11:d8:d5:6b:35:6e:77:ae:2d:cd:a7: 3d:ba:50:9a:8d:da:00:99:15:b5:4b:4d:7c:bc:67:f9:df:4d: 8f:3c:ab:cd:de:47:9f:d5:46:9c:b1:2c:8c:57:e0:17:0b:fe: b8:d2:8b:6b:59:41:a8:de:28:26:78:e3:fd:53:a1:ae:47:4f: 05:33:9e:e9:72:94:72:b8:c5:4a:10:4f:74:27:55:fd:8d:fa: 8f:a6:7b:99 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbFVhk0DcHtu9rGKMVx4BZr2wx9IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUyMjE0WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzA0NGE1YzZhNTkxMDAzMGRlOTNjMDNiMDhlMTY2NWJh YzNkNWVmZjcwNTVkZGY4ZjFhODYyYWNiZjA3NDAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa0FdC4K1mpIxC3AJLV+GXimmegqeiJOj0OftkV1Q4YMf1 4P8UJUYFhl/ieoP5TNsaQvlX2CHxVm29Km0IZ9wLYIHZFyomcyGGX3Z2aSgcLeek eMt3FggCUinCFcSWKT8qoWbNTZdn7L+AdyPyPeoWTb03VBmBm5r8pvyaYp6MIhLn QbQ6hYDWaKE2PA9L1G1mg/yGTr66SNuUNsRJ9TXinLrIaxwhlQ1+Apya9qbk2HXp 4pxVMu/654BijrI6wx2ylbVGUeu9OTzVdLjS8+AuR/d8avEbWKpwiJNRNoIgCTD9 W0Wmrx/ZmYw0oNqKYiejmbICzD0jOPNCfGq+q+HLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOB7ywOrh5Jq7hxpDBB7rfSiqGdUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiMGUxMGMyLWI3ZTQtNDcxNS04M2Y3LWExMzQ1NjIyMWJiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yNIAwDQYJKoZIhvcNAQELBQADggEBAMY8CpRDCjEfOlGizR8HkKbf 8cDeWCPFQMdzk4C4AJnk7CwZuDn/T9ww8sXm5GWY8awywI2/UO3mlCjv+MgqX6Q7 b+B2KOqdQc21QbEZS7/8uAjpyfmFjzY+dSyVWVNwankneVdcDVLgeKz3DnFuULcm kpXk7OBDW9XJc3708xRkBoLqfFjif4Ok5iVxyP8YoPrSxtEOf58gB5MpuumP9M20 9Wq1MJs4eXkR2NVrNW53ri3Npz26UJqN2gCZFbVLTXy8Z/nfTY88q83eR5/VRpyx LIxX4BcL/rjSi2tZQajeKCZ44/1Toa5HTwUznulylHK4xUoQT3QnVf2N+o+me5k= -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:31 2025 by rpki-client