$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2605e5f-34b7-4bbc-a379-c2626958ef3a.roa File: a2605e5f-34b7-4bbc-a379-c2626958ef3a.roa (raw, json) Hash identifier: sk9f4m52V7rGaPOtN+vBwY5tH69Urkaf0WSBKXnSjVc= Subject key identifier: DF:04:8C:8A:B7:87:0B:72:AD:41:43:45:C3:F5:B2:DE:1D:BF:4C:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6385B77FD12CE4CBA832471982B97B6846463B8B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2605e5f-34b7-4bbc-a379-c2626958ef3a.roa Signing time: Tue 08 Jul 2025 16:40:31 +0000 ROA not before: Tue 08 Jul 2025 16:40:31 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f15::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:85:b7:7f:d1:2c:e4:cb:a8:32:47:19:82:b9:7b:68:46:46:3b:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:40:31 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=305760e042c35dd66eee6983b88e4d321b559e4e17d72b94598e0acf37cec013, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e4:ef:74:0c:1b:c8:51:a3:fe:9e:14:8b:ac: c6:38:7d:7d:d2:d7:ef:a2:43:18:00:4e:cf:3f:8c: 30:a4:39:f7:e1:96:fa:e5:8f:28:d6:a4:df:c5:7a: 1d:81:5a:9c:0f:fd:62:4b:5b:d4:93:a1:18:76:87: ec:ea:bf:44:99:11:cc:c7:c8:1c:b6:a0:cf:7b:c8: 4b:a4:a3:90:38:e5:3c:bb:a3:a8:78:a8:3e:ee:13: ad:89:fc:8c:64:d6:4f:7e:7a:a4:6d:39:13:48:fb: e0:f9:f1:f2:52:68:eb:9e:13:ec:ec:46:56:7e:b2: fa:b9:d4:75:32:b1:14:53:30:8e:94:2d:ca:c2:0d: f3:5c:a3:fc:1e:f9:90:be:97:2b:9b:08:7c:94:bf: df:21:50:1a:40:1c:32:90:63:80:37:1a:ee:64:de: 2e:e8:11:2f:b6:2b:94:8f:30:d0:0e:4b:29:dd:83: 83:eb:3b:14:b0:58:33:3a:a4:ef:76:90:39:81:fd: 2b:b7:0d:13:10:29:95:cc:2c:f4:6b:e8:5a:9c:0b: 68:6a:b0:51:e4:ea:a9:23:cc:5e:93:78:44:e1:93: b2:cb:0d:26:82:56:b7:28:7b:69:f7:9d:fc:f3:c4: 13:16:f9:d6:70:c8:7f:6a:c6:4e:2c:23:b1:7a:fa: 83:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:04:8C:8A:B7:87:0B:72:AD:41:43:45:C3:F5:B2:DE:1D:BF:4C:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2605e5f-34b7-4bbc-a379-c2626958ef3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15::/38 Signature Algorithm: sha256WithRSAEncryption 16:bc:75:67:ef:00:6e:d1:4c:e8:ae:79:39:a5:c3:a9:9b:9e: da:4e:8e:66:64:46:13:01:ae:e0:06:2d:99:cc:eb:a0:ac:f6: 17:98:c4:14:ab:f7:3c:09:f7:d8:74:d3:48:ea:37:74:bb:54: 39:c7:e4:fc:13:55:2c:df:25:9a:91:33:9e:01:84:73:c5:fb: 85:1c:d1:94:73:39:13:36:4a:46:65:8d:bc:1e:ca:41:7a:54: 57:50:8c:a6:5c:e6:63:fe:48:53:df:ab:ad:1f:8b:1b:76:e8: f7:4a:d9:c2:6a:68:e5:19:1b:6d:77:70:cc:b6:ba:b5:2e:49: 2c:61:d1:b5:2d:3d:f2:8a:4a:8c:7c:ac:44:e4:6c:e4:0a:c9: 6e:b2:ac:7b:b4:4d:85:d4:4f:99:1c:93:5c:e0:b3:66:67:c6: 0d:d1:2c:e5:7b:84:43:83:39:f7:b7:75:1f:80:e1:a1:68:14: 75:d4:a7:6c:6e:e9:2c:bb:20:16:bd:c9:5f:1d:f8:bc:ea:ae: ef:0d:67:72:fe:f2:48:89:dd:48:18:59:4b:b9:76:f7:da:e9: 45:42:ff:bb:b3:cd:02:96:c5:be:26:23:f1:4e:5d:e9:69:a1: a2:d5:5f:88:a8:bf:20:93:ad:e3:9b:c2:38:0e:68:4f:4a:11: e2:6f:63:ee -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUY4W3f9Es5MuoMkcZgrl7aEZGO4swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTY0MDMxWhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDU3NjBlMDQyYzM1ZGQ2NmVlZTY5ODNiODhlNGQzMjFi NTU5ZTRlMTdkNzJiOTQ1OThlMGFjZjM3Y2VjMDEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZ5O90DBvIUaP+nhSLrMY4fX3S1++iQxgATs8/jDCkOffh lvrljyjWpN/Feh2BWpwP/WJLW9SToRh2h+zqv0SZEczHyBy2oM97yEuko5A45Ty7 o6h4qD7uE62J/Ixk1k9+eqRtORNI++D58fJSaOueE+zsRlZ+svq51HUysRRTMI6U LcrCDfNco/we+ZC+lyubCHyUv98hUBpAHDKQY4A3Gu5k3i7oES+2K5SPMNAOSynd g4PrOxSwWDM6pO92kDmB/Su3DRMQKZXMLPRr6FqcC2hqsFHk6qkjzF6TeEThk7LL DSaCVrcoe2n3nfzzxBMW+dZwyH9qxk4sI7F6+oNnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3wSMireHC3KtQUNFw/Wy3h2/TAkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNjA1ZTVmLTM0YjctNGJiYy1hMzc5LWMyNjI2OTU4ZWYzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8VADANBgkqhkiG9w0BAQsFAAOCAQEAFrx1Z+8AbtFM6K55OaXDqZue 2k6OZmRGEwGu4AYtmczroKz2F5jEFKv3PAn32HTTSOo3dLtUOcfk/BNVLN8lmpEz ngGEc8X7hRzRlHM5EzZKRmWNvB7KQXpUV1CMplzmY/5IU9+rrR+LG3bo90rZwmpo 5RkbbXdwzLa6tS5JLGHRtS098opKjHysRORs5ArJbrKse7RNhdRPmRyTXOCzZmfG DdEs5XuEQ4M597d1H4DhoWgUddSnbG7pLLsgFr3JXx34vOqu7w1ncv7ySIndSBhZ S7l299rpRUL/u7PNApbFviYj8U5d6WmhotVfiKi/IJOt45vCOA5oT0oR4m9j7g== -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:32 2025 by rpki-client