$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2f9d226-eaf1-484a-a4df-4eaefc245485.roa File: c2f9d226-eaf1-484a-a4df-4eaefc245485.roa (raw, json) Hash identifier: WaE9/Teo9xInoGg1ngw52YDqURtZRLJcTeoukubcTCI= Subject key identifier: C9:31:16:F8:64:FF:2B:8D:E9:C6:45:05:F0:FC:3E:FA:25:F9:67:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A57BDB4CC4F4CFEC1C01E8AE1AD392B2C5BA530 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2f9d226-eaf1-484a-a4df-4eaefc245485.roa Signing time: Tue 08 Jul 2025 16:11:05 +0000 ROA not before: Tue 08 Jul 2025 16:11:05 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:80c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:57:bd:b4:cc:4f:4c:fe:c1:c0:1e:8a:e1:ad:39:2b:2c:5b:a5:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 16:11:05 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=d3d7da78421f96b1a6ca8721faee48c4486e5361ace1046e5a5d673bb45014e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:24:d0:16:49:d2:6e:e9:ab:ae:cf:a3:03:13: c6:4a:4a:06:01:d6:e5:24:32:2e:76:e5:45:d4:35: 03:85:a2:af:61:02:5e:a3:82:2f:81:23:e9:9e:fb: 02:28:e5:15:77:45:ae:f8:ca:a2:98:8d:97:a0:e2: 16:da:02:18:85:40:a4:72:f4:e8:19:97:a3:60:79: 6d:61:f8:c8:a2:81:96:c5:06:e2:ec:36:03:81:ef: a6:ad:f1:cc:7c:4d:10:08:b6:8a:28:4e:af:df:0f: c3:7e:a9:9c:3e:24:d9:2c:5a:1f:e2:52:ba:a5:66: a7:e6:5c:ba:fa:59:ea:fe:ff:09:99:72:a5:14:03: 79:99:d7:7c:8f:9a:b1:72:de:eb:a9:09:6a:dd:81: 7f:e2:94:8e:65:68:10:72:c7:33:df:a7:17:cb:cf: f3:dc:5d:48:1c:b0:98:ab:6a:b4:d9:a3:bb:6a:22: 0c:83:f5:66:47:c1:ef:0e:e7:73:32:d9:bb:de:dc: 96:29:6d:3b:5c:3c:cf:20:b0:f3:a5:5b:bd:aa:1e: 6e:9d:50:06:a7:30:7c:59:af:31:4c:4a:2e:a9:58: 7e:25:1b:f8:1b:ee:28:cb:64:c0:17:6a:1d:85:7a: 8e:2a:85:e4:99:8f:d6:d9:70:fa:f3:ed:ca:c2:68: 1d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:31:16:F8:64:FF:2B:8D:E9:C6:45:05:F0:FC:3E:FA:25:F9:67:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2f9d226-eaf1-484a-a4df-4eaefc245485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:80c0::/46 Signature Algorithm: sha256WithRSAEncryption 6e:af:02:1a:7d:b1:94:32:f0:25:c6:09:fc:57:90:b5:40:aa: 0b:1a:c0:8b:2b:e5:24:5a:55:58:7a:be:f1:6c:4c:0b:41:e8: c1:73:24:17:9f:19:e0:5e:fc:ab:38:26:e9:9f:c1:0a:32:f0: 78:96:2a:41:b8:fd:76:14:8b:41:e9:2d:be:1b:57:7a:aa:1d: 07:3e:42:f9:a8:8a:40:ed:5d:e5:34:c5:5e:ef:2e:6c:92:af: 1b:3e:3a:2c:4c:06:ad:2d:56:34:8b:05:39:ca:1c:dd:0e:86: 89:85:97:ad:d7:2c:c9:91:9f:8b:ec:9e:95:d5:cd:43:5f:04: f4:4f:48:f1:cb:5a:01:cd:5d:db:db:b4:b9:e0:1f:4f:9e:0d: 8e:27:4e:00:b0:11:03:65:3f:fc:a4:ea:bb:cd:f3:be:7c:b5: 10:f8:97:4a:73:f4:63:53:eb:61:d9:16:4b:65:b4:dc:5d:9a: 9f:42:c8:94:d5:ab:10:19:36:22:ea:77:d9:e9:9c:88:df:8f: 46:95:f5:b7:c3:f1:d7:9b:19:1b:3b:91:15:36:58:0c:0b:7d: 0b:6a:b5:08:63:4f:03:23:e5:2e:fd:0a:65:cd:7c:bf:65:fc: 33:02:ed:db:08:41:ee:28:8f:e2:00:b2:84:3e:94:2d:37:30: 20:8a:ea:52 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCle9tMxPTP7BwB6K4a05KyxbpTAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTYxMTA1WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkM2Q3ZGE3ODQyMWY5NmIxYTZjYTg3MjFmYWVlNDhjNDQ4 NmU1MzYxYWNlMTA0NmU1YTVkNjczYmI0NTAxNGUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9JNAWSdJu6auuz6MDE8ZKSgYB1uUkMi525UXUNQOFoq9h Al6jgi+BI+me+wIo5RV3Ra74yqKYjZeg4hbaAhiFQKRy9OgZl6NgeW1h+MiigZbF BuLsNgOB76at8cx8TRAItoooTq/fD8N+qZw+JNksWh/iUrqlZqfmXLr6Wer+/wmZ cqUUA3mZ13yPmrFy3uupCWrdgX/ilI5laBByxzPfpxfLz/PcXUgcsJirarTZo7tq IgyD9WZHwe8O53My2bve3JYpbTtcPM8gsPOlW72qHm6dUAanMHxZrzFMSi6pWH4l G/gb7ijLZMAXah2Feo4qheSZj9bZcPrz7crCaB3vAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyTEW+GT/K43pxkUF8Pw++iX5Zy8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyZjlkMjI2LWVhZjEtNDg0YS1hNGRmLTRlYWVmYzI0NTQ4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7gMAwDQYJKoZIhvcNAQELBQADggEBAG6vAhp9sZQy8CXGCfxXkLVA qgsawIsr5SRaVVh6vvFsTAtB6MFzJBefGeBe/Ks4JumfwQoy8HiWKkG4/XYUi0Hp Lb4bV3qqHQc+QvmoikDtXeU0xV7vLmySrxs+OixMBq0tVjSLBTnKHN0OhomFl63X LMmRn4vsnpXVzUNfBPRPSPHLWgHNXdvbtLngH0+eDY4nTgCwEQNlP/yk6rvN8758 tRD4l0pz9GNT62HZFktltNxdmp9CyJTVqxAZNiLqd9npnIjfj0aV9bfD8debGRs7 kRU2WAwLfQtqtQhjTwMj5S79CmXNfL9l/DMC7dsIQe4oj+IAsoQ+lC03MCCK6lI= -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:04 2025 by rpki-client