$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ae4f4ea-aac8-4c81-8e1c-ed7b02b24e6f.roa File: 8ae4f4ea-aac8-4c81-8e1c-ed7b02b24e6f.roa (raw, json) Hash identifier: fQX38Djf6qEwBrIDCwMeu5x/whIwrRL9oS/+T/fvuHE= Subject key identifier: 6C:BD:87:8E:C6:A9:5B:BD:A5:4F:72:FB:F0:51:10:43:ED:FC:8C:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58D710D1BDC3E2987B35EB065BE1D300DC373B96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ae4f4ea-aac8-4c81-8e1c-ed7b02b24e6f.roa Signing time: Mon 21 Jul 2025 16:01:11 +0000 ROA not before: Mon 21 Jul 2025 16:01:11 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f30::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d7:10:d1:bd:c3:e2:98:7b:35:eb:06:5b:e1:d3:00:dc:37:3b:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 16:01:11 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=1f3c8f361d228bdeda4fdbde300912f643aa2b75babf66abf2f11c87f7af20c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:2a:36:49:79:43:37:e1:97:bb:70:48:af: f3:a1:0f:0a:b2:1b:8f:21:c0:41:7f:cc:fc:6b:7a: 3a:f1:ac:8d:0b:b6:a5:d6:30:c5:4e:42:3b:a6:5f: 33:e6:f6:17:ba:85:e5:5c:4c:ae:52:7e:df:c2:7f: d6:ed:61:ea:15:82:2a:3a:e9:db:06:d7:40:3f:35: 9e:63:48:ab:cc:79:7e:06:77:3b:91:64:c6:ca:0e: 00:df:d9:ae:6f:d3:32:6f:03:89:12:20:2b:88:ee: e9:b2:8d:a4:ee:4f:73:4b:b3:63:69:f8:48:0c:8d: 66:2b:f3:67:b7:36:bd:75:e7:6d:b8:84:f9:4a:15: cd:7a:07:d0:30:63:0a:26:3b:e5:ee:e7:e1:fc:22: 4c:d8:6b:00:2f:cd:75:c5:d7:e5:dd:6c:a7:c2:e6: 92:c1:02:db:4d:b2:88:d3:b0:d4:6d:5c:75:a2:4b: e0:ab:af:ec:c6:bf:c0:5b:58:27:11:bc:8a:b6:98: c4:64:2d:b1:c8:dd:b2:f0:05:4b:44:60:f7:4a:c9: 2e:66:cc:22:fa:43:89:6d:61:f6:23:bb:11:4e:d0: 97:ce:a5:22:51:3c:0a:f7:0b:ff:c7:46:29:08:8b: 7b:e5:66:31:27:54:3c:49:d6:4c:ec:84:d8:4e:76: d1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:BD:87:8E:C6:A9:5B:BD:A5:4F:72:FB:F0:51:10:43:ED:FC:8C:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ae4f4ea-aac8-4c81-8e1c-ed7b02b24e6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f30::/32 Signature Algorithm: sha256WithRSAEncryption 37:d5:53:0b:10:7c:62:79:cb:f1:96:c6:cd:a1:ab:5b:92:e3: 4a:1b:aa:ff:61:c8:1c:74:5f:fa:b6:ec:ba:fc:ec:23:ef:05: 87:d7:c0:30:f8:e0:2c:d8:44:14:c5:39:fc:e4:0b:2f:a5:ae: 8a:9f:fa:ac:c6:95:41:47:49:df:cc:a8:f7:d1:1e:01:5d:55: 70:ea:84:25:18:85:b9:32:cc:5a:6f:b5:8b:7a:74:36:c5:6a: 5e:69:79:0a:34:06:a0:b5:7c:3d:53:85:96:c6:40:45:31:b4: 32:63:92:f5:a6:82:25:ee:c0:bb:17:3d:38:02:81:e5:aa:65: 2d:33:e8:46:43:af:61:fc:ea:1b:0b:fc:0f:82:55:d9:98:c4: 59:40:fd:b5:31:5d:c6:77:2a:5f:e3:0c:a3:18:31:2d:99:6c: 2d:fa:33:5b:8f:b5:83:ee:88:44:7b:79:5b:f2:9b:d0:ae:48: 5d:13:e4:51:da:c4:de:78:cb:57:58:3d:29:e7:0d:f3:f8:f9: a1:3b:89:a5:41:59:e2:fe:c0:66:e7:13:3d:e4:59:e8:38:63: 4c:e2:25:b4:f6:85:32:b1:92:9e:a1:a4:1a:b6:b3:6a:a8:8f: c0:01:c7:9a:76:18:48:b2:3d:3d:24:21:2c:ee:19:48:ea:55: b9:47:e5:da -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUWNcQ0b3D4ph7NesGW+HTANw3O5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTYwMTExWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjNjOGYzNjFkMjI4YmRlZGE0ZmRiZGUzMDA5MTJmNjQz YWEyYjc1YmFiZjY2YWJmMmYxMWM4N2Y3YWYyMGMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7Rio2SXlDN+GXu3BIr/OhDwqyG48hwEF/zPxrejrxrI0L tqXWMMVOQjumXzPm9he6heVcTK5Sft/Cf9btYeoVgio66dsG10A/NZ5jSKvMeX4G dzuRZMbKDgDf2a5v0zJvA4kSICuI7umyjaTuT3NLs2Np+EgMjWYr82e3Nr115224 hPlKFc16B9AwYwomO+Xu5+H8IkzYawAvzXXF1+XdbKfC5pLBAttNsojTsNRtXHWi S+Crr+zGv8BbWCcRvIq2mMRkLbHI3bLwBUtEYPdKyS5mzCL6Q4ltYfYjuxFO0JfO pSJRPAr3C//HRikIi3vlZjEnVDxJ1kzshNhOdtEzAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUbL2HjsapW72lT3L78FEQQ+38jAQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhZTRmNGVhLWFhYzgtNGM4MS04ZTFjLWVkN2IwMmIyNGU2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB8wMA0GCSqGSIb3DQEBCwUAA4IBAQA31VMLEHxiecvxlsbNoatbkuNK G6r/YcgcdF/6tuy6/Owj7wWH18Aw+OAs2EQUxTn85Asvpa6Kn/qsxpVBR0nfzKj3 0R4BXVVw6oQlGIW5Msxab7WLenQ2xWpeaXkKNAagtXw9U4WWxkBFMbQyY5L1poIl 7sC7Fz04AoHlqmUtM+hGQ69h/OobC/wPglXZmMRZQP21MV3Gdypf4wyjGDEtmWwt +jNbj7WD7ohEe3lb8pvQrkhdE+RR2sTeeMtXWD0p5w3z+PmhO4mlQVni/sBm5xM9 5FnoOGNM4iW09oUysZKeoaQatrNqqI/AAceadhhIsj09JCEs7hlI6lW5R+Xa -----END CERTIFICATE-----Generated at Mon Jul 21 18:04:43 2025 by rpki-client