$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8315ed5a-fca6-4bad-8857-5d7adaa65a25.roa File: 8315ed5a-fca6-4bad-8857-5d7adaa65a25.roa (raw, json) Hash identifier: Qy18XzrwDtrpjX5vlTp73DZ6OVOuVfJA/tzVX+AHN+E= Subject key identifier: AF:7C:63:FC:C5:31:42:85:94:78:71:18:26:5E:FF:4B:9F:10:81:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 447B0DAF63F52AAAD918C47BEC2C544410BAF8B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8315ed5a-fca6-4bad-8857-5d7adaa65a25.roa Signing time: Tue 08 Jul 2025 15:42:02 +0000 ROA not before: Tue 08 Jul 2025 15:42:02 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:e040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:7b:0d:af:63:f5:2a:aa:d9:18:c4:7b:ec:2c:54:44:10:ba:f8:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:42:02 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=243f85aae217482858738a95da8d428949c7611026e9e0b5e1569f834df9dc46, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e3:c2:b9:9b:05:3c:9d:f6:b2:e2:95:1b:fc: 69:c2:7a:b7:bf:95:ea:a2:18:bd:8c:04:c6:56:d7: 86:be:56:c1:24:76:c1:d7:f3:73:d9:75:82:45:f6: b3:9f:ca:54:88:d5:3d:f1:67:0d:0b:51:a9:c7:04: 22:33:ee:47:11:72:b7:20:71:b2:d9:48:bf:14:69: d7:33:d0:b6:d0:71:98:7e:10:00:98:a1:57:64:88: 7c:36:6d:ee:7f:47:d6:d1:ea:33:4b:5b:bd:62:8f: 50:5e:7a:5b:23:a3:75:ea:67:13:8f:70:b2:ec:03: 1e:48:bc:13:2d:c1:ec:cb:19:69:68:8f:15:64:78: 5e:e6:15:40:58:81:29:77:1c:57:76:f6:1f:2d:c3: de:c1:77:98:8d:80:fb:a0:7e:97:a9:be:af:82:86: c2:49:d9:0f:d5:30:cd:c5:12:cd:5a:e7:54:39:04: 0a:55:ed:45:16:4c:f5:d4:23:00:c0:3c:31:f1:ca: 20:c6:fa:da:8a:7d:df:d0:d4:65:44:b0:be:13:4a: 65:94:57:0f:a5:7b:18:0f:eb:f6:f3:7e:a6:5d:2e: 8c:70:37:cb:07:3b:d1:1b:2e:8d:e1:c4:26:8e:68: fe:05:af:92:3c:9c:e0:2f:33:72:d3:84:99:f6:82: 27:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:7C:63:FC:C5:31:42:85:94:78:71:18:26:5E:FF:4B:9F:10:81:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8315ed5a-fca6-4bad-8857-5d7adaa65a25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:e040::/46 Signature Algorithm: sha256WithRSAEncryption 81:3e:be:c2:c8:03:03:7a:1a:72:7d:dd:14:12:cb:cb:ee:51: 84:38:69:d7:62:a2:a2:ab:c1:0a:c1:cd:24:f4:5a:d4:5e:a2: 83:dc:f4:44:43:cb:35:fd:cc:d2:a4:0a:8e:61:40:10:e8:c0: d6:71:9e:a3:a0:3e:5a:8f:4b:29:c6:a4:fd:de:bd:6b:bb:a2: f7:36:b9:72:d9:83:80:72:7f:cb:93:2b:27:e8:f2:67:e3:a8: 67:ff:eb:4c:b1:93:c0:a2:89:01:be:a6:45:c9:18:87:8c:67: 88:bd:fd:13:fb:be:f2:bf:06:79:8e:a4:0d:d4:df:74:c5:84: f6:f2:21:a5:4a:41:fb:a1:8f:36:c6:76:4a:ee:12:c4:67:41: 22:a2:38:4f:0d:e7:dc:ad:76:9f:c5:f7:3f:f5:52:74:93:a2: d0:5d:78:6f:65:b7:e5:9c:bf:a0:26:9b:7c:b4:c8:c2:ff:15: 66:24:23:07:fa:2c:ae:55:3b:df:48:9b:89:d0:7e:7f:06:09: d5:c5:bd:b5:2f:df:99:b4:f3:42:f0:bf:fe:97:5f:41:8a:75: c3:c9:fa:89:fa:16:7b:40:81:fb:53:87:c2:91:5e:08:c1:c8: 6e:5d:b7:8e:d9:34:e4:aa:6f:25:69:ed:70:b1:e0:c2:02:11: be:e9:80:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURHsNr2P1KqrZGMR77CxURBC6+LMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTU0MjAyWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDNmODVhYWUyMTc0ODI4NTg3MzhhOTVkYThkNDI4OTQ5 Yzc2MTEwMjZlOWUwYjVlMTU2OWY4MzRkZjlkYzQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJ48K5mwU8nfay4pUb/GnCere/leqiGL2MBMZW14a+VsEk dsHX83PZdYJF9rOfylSI1T3xZw0LUanHBCIz7kcRcrcgcbLZSL8Uadcz0LbQcZh+ EACYoVdkiHw2be5/R9bR6jNLW71ij1Beelsjo3XqZxOPcLLsAx5IvBMtwezLGWlo jxVkeF7mFUBYgSl3HFd29h8tw97Bd5iNgPugfpepvq+ChsJJ2Q/VMM3FEs1a51Q5 BApV7UUWTPXUIwDAPDHxyiDG+tqKfd/Q1GVEsL4TSmWUVw+lexgP6/bzfqZdLoxw N8sHO9EbLo3hxCaOaP4Fr5I8nOAvM3LThJn2gifHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUr3xj/MUxQoWUeHEYJl7/S58QgdUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzMTVlZDVhLWZjYTYtNGJhZC04ODU3LTVkN2FkYWE2NWEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/74EAwDQYJKoZIhvcNAQELBQADggEBAIE+vsLIAwN6GnJ93RQSy8vu UYQ4addioqKrwQrBzST0WtReooPc9ERDyzX9zNKkCo5hQBDowNZxnqOgPlqPSynG pP3evWu7ovc2uXLZg4Byf8uTKyfo8mfjqGf/60yxk8CiiQG+pkXJGIeMZ4i9/RP7 vvK/BnmOpA3U33TFhPbyIaVKQfuhjzbGdkruEsRnQSKiOE8N59ytdp/F9z/1UnST otBdeG9lt+Wcv6Amm3y0yML/FWYkIwf6LK5VO99Im4nQfn8GCdXFvbUv35m080Lw v/6XX0GKdcPJ+on6FntAgftTh8KRXgjByG5dt47ZNOSqbyVp7XCx4MICEb7pgFE= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:36 2025 by rpki-client