$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4adba974-018c-4b87-bad4-37870bafff6a.roa File: 4adba974-018c-4b87-bad4-37870bafff6a.roa (raw, json) Hash identifier: 5707c1oKmpZiaSHvGfwvijhp1rEbe2ILblydl8lY0H8= Subject key identifier: D4:86:EF:0D:D9:06:A5:6C:19:F5:B7:E6:EF:FA:2B:D0:B5:EF:EB:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3728E01784D1C79FF812D95751E073B6BE3CF697 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4adba974-018c-4b87-bad4-37870bafff6a.roa Signing time: Mon 07 Jul 2025 18:10:24 +0000 ROA not before: Mon 07 Jul 2025 18:10:24 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:28:e0:17:84:d1:c7:9f:f8:12:d9:57:51:e0:73:b6:be:3c:f6:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 18:10:24 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=f4ea81c1acb831c6b690231cb8a2918ac9fc180ac8b098971be75d26271d1dec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:ca:52:f3:37:ee:ce:4f:05:22:dc:4f:ce:6a: a6:4b:df:03:96:48:51:6d:92:8b:92:fb:c6:70:df: fe:ce:9f:52:ce:9b:bc:0f:0e:8c:83:42:ee:d0:9e: fb:16:81:07:11:37:7b:49:a1:8d:09:73:ec:9c:d0: b8:1d:06:4b:f5:25:11:17:0f:8f:e7:2a:07:59:5a: 61:fc:5d:a3:83:a1:ac:fb:8d:ea:ba:f7:25:88:e8: ec:03:ca:06:d9:9a:4f:7a:fb:00:a5:24:e6:70:0c: 64:d1:d8:98:7d:78:72:97:28:a0:9d:e2:5d:f2:c7: b8:5d:eb:29:25:a9:17:d7:91:ba:a8:5c:cf:c5:d2: 73:35:35:49:59:20:1b:ae:f6:33:ab:27:58:08:18: 26:57:06:49:79:f5:48:c0:34:f1:be:4e:5f:22:cf: 65:d1:a6:5f:d6:5a:c7:a6:a6:42:60:c5:dd:03:59: 14:4d:d4:ef:b8:50:f6:a7:b2:d4:d2:cf:54:e8:d0: c2:d3:eb:9b:ab:1f:91:83:32:e0:06:a3:df:fa:2a: eb:7f:70:4e:da:ae:cc:d2:5e:53:3a:24:59:89:ef: 86:ac:92:1b:e3:56:2f:aa:0b:c5:46:36:2f:18:5a: 81:4a:68:c4:25:5c:b2:51:74:8a:55:7f:30:ef:34: b7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:86:EF:0D:D9:06:A5:6C:19:F5:B7:E6:EF:FA:2B:D0:B5:EF:EB:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4adba974-018c-4b87-bad4-37870bafff6a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:e080::/48 Signature Algorithm: sha256WithRSAEncryption 2e:5e:26:c0:e2:6d:98:f1:29:16:44:d3:0a:18:2d:4a:30:67: 4e:8e:6b:e6:f8:79:49:ef:57:6a:4c:b7:9b:8b:ea:86:45:8b: c6:3b:dd:37:ab:2d:c1:c5:f1:05:7f:c1:ef:3d:e4:56:1b:0e: 5c:bc:9a:ed:3a:18:65:1c:b7:f4:a7:20:46:d0:e3:b3:a9:fe: f0:99:62:43:64:b5:5b:26:ed:55:62:b2:42:dd:3c:3f:24:aa: 22:aa:03:1e:99:10:f6:7f:f3:37:9e:a5:6b:4a:52:93:79:f6: fc:d3:76:97:4f:8a:6c:80:29:88:d6:b2:61:10:34:5d:5b:39: c6:5b:5d:6c:df:84:2a:4f:eb:60:35:da:0b:21:50:f8:b8:14: 4a:f7:eb:3d:17:8b:9f:13:f6:92:5f:39:ed:1f:4b:f1:85:75: 39:21:76:d5:6d:fb:a6:75:88:91:6a:31:d5:16:40:a6:de:40: ce:26:47:ee:55:ed:4b:42:6c:d1:87:b7:d1:84:fc:14:24:ee: 45:61:0b:bf:41:72:3e:bb:27:61:50:75:12:3d:f1:b5:87:f3: df:59:7c:6d:4f:90:e9:82:a9:21:21:24:ae:2b:ac:0b:b0:f6: 0b:ca:12:4b:27:8a:15:38:88:e2:1f:83:71:3a:d2:0b:7a:60: 2c:1b:01:86 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNyjgF4TRx5/4EtlXUeBztr489pcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTgxMDI0WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNGVhODFjMWFjYjgzMWM2YjY5MDIzMWNiOGEyOTE4YWM5 ZmMxODBhYzhiMDk4OTcxYmU3NWQyNjI3MWQxZGVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFylLzN+7OTwUi3E/OaqZL3wOWSFFtkouS+8Zw3/7On1LO m7wPDoyDQu7QnvsWgQcRN3tJoY0Jc+yc0LgdBkv1JREXD4/nKgdZWmH8XaODoaz7 jeq69yWI6OwDygbZmk96+wClJOZwDGTR2Jh9eHKXKKCd4l3yx7hd6yklqRfXkbqo XM/F0nM1NUlZIBuu9jOrJ1gIGCZXBkl59UjANPG+Tl8iz2XRpl/WWsempkJgxd0D WRRN1O+4UPanstTSz1To0MLT65urH5GDMuAGo9/6Kut/cE7arszSXlM6JFmJ74as khvjVi+qC8VGNi8YWoFKaMQlXLJRdIpVfzDvNLdRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1IbvDdkGpWwZ9bfm7/or0LXv62kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhZGJhOTc0LTAxOGMtNGI4Ny1iYWQ0LTM3ODcwYmFmZmY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//4IAwDQYJKoZIhvcNAQELBQADggEBAC5eJsDibZjxKRZE0woYLUow Z06Oa+b4eUnvV2pMt5uL6oZFi8Y73TerLcHF8QV/we895FYbDly8mu06GGUct/Sn IEbQ47Op/vCZYkNktVsm7VViskLdPD8kqiKqAx6ZEPZ/8zeepWtKUpN59vzTdpdP imyAKYjWsmEQNF1bOcZbXWzfhCpP62A12gshUPi4FEr36z0Xi58T9pJfOe0fS/GF dTkhdtVt+6Z1iJFqMdUWQKbeQM4mR+5V7UtCbNGHt9GE/BQk7kVhC79Bcj67J2FQ dRI98bWH899ZfG1PkOmCqSEhJK4rrAuw9gvKEksnihU4iOIfg3E60gt6YCwbAYY= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:11 2025 by rpki-client