$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0bfd803-ff17-4146-a35b-8824d41bfca6.roa File: f0bfd803-ff17-4146-a35b-8824d41bfca6.roa (raw, json) Hash identifier: TyB0t/evthQyamw4K2bRVCQ+fO3P236cvkmUn3yLrLw= Subject key identifier: 9A:51:C8:25:7F:CC:99:E3:B1:A2:ED:FF:53:6E:F8:90:03:63:BF:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 625D7507108AEC72EFC14E3A261BA988B1B54A82 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0bfd803-ff17-4146-a35b-8824d41bfca6.roa Signing time: Tue 08 Jul 2025 15:21:25 +0000 ROA not before: Tue 08 Jul 2025 15:21:25 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f69:6040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:5d:75:07:10:8a:ec:72:ef:c1:4e:3a:26:1b:a9:88:b1:b5:4a:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:21:25 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=af9d71e8f66e740889484fb5bc8648b50238c48ed6885fe5dd15e03e121de4ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:39:97:24:fd:6d:d2:2d:29:be:99:f3:9c:86: 71:69:09:c9:67:ba:3a:82:73:f2:87:02:57:ea:79: 5a:70:7e:28:77:27:6c:cd:e6:82:43:f5:a5:81:c2: 6b:3c:2a:4d:4a:5a:e1:13:08:c1:8d:b7:cb:fe:89: 66:f1:95:b9:cd:13:72:22:67:ad:36:aa:01:09:3c: 0b:fa:75:ee:01:1b:ba:08:85:db:d4:9f:c3:b5:42: f1:57:b3:e6:4d:a5:29:84:83:58:b8:89:4c:f1:84: 77:ce:da:7f:c0:05:22:01:5f:ab:ca:96:7a:8b:d1: 17:f1:0f:95:3c:f9:d0:bc:5e:19:45:a8:84:86:13: 9e:69:e7:9c:1b:c9:c4:a3:e1:f9:a2:35:48:70:6f: 8a:30:69:61:05:6a:39:00:84:81:8a:19:2f:99:bc: e3:c0:d6:74:4d:bc:ac:7b:cf:26:0b:72:f1:5d:f0: 07:df:9d:e0:69:60:82:bd:7a:77:76:db:b9:ca:54: 21:03:98:a3:42:a5:d5:ee:eb:ff:6d:d4:7f:b8:bb: a1:83:33:a9:a6:f4:b0:9c:b7:6a:14:e3:df:c4:59: de:68:76:87:a1:94:f1:81:a1:c0:35:69:7c:45:24: 1b:e5:e0:8a:7d:92:9f:d2:28:3d:2a:fb:61:90:06: ee:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:51:C8:25:7F:CC:99:E3:B1:A2:ED:FF:53:6E:F8:90:03:63:BF:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0bfd803-ff17-4146-a35b-8824d41bfca6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f69:6040::/46 Signature Algorithm: sha256WithRSAEncryption 4c:76:96:b3:54:0c:42:87:fa:ae:da:a9:e6:93:7d:c0:40:25: 42:fe:ea:93:6e:2f:f4:9d:4f:2b:34:a1:88:07:fb:a1:61:d1: 39:2b:5f:13:38:93:1d:ea:e8:73:45:e9:92:ca:63:b6:ae:a4: a7:81:ce:73:85:5e:38:be:2d:9a:c8:75:a6:9b:ab:45:d7:6f: 49:25:90:90:da:0c:22:38:dd:09:89:15:9f:ad:e4:fb:47:11: c8:7d:97:b3:ea:5d:21:59:9a:ff:6c:55:cc:7f:c0:46:cf:7d: 2a:e1:fd:c2:32:05:c2:9a:fa:c8:0c:d3:91:16:f8:70:ac:b0: f7:1c:48:84:31:09:9b:c5:ed:f8:52:2d:ee:7d:ab:4f:bc:53: 3a:91:3f:dd:5f:c3:bd:8c:72:f9:5b:ab:fb:d6:c2:8b:78:97: c0:5f:1a:f4:71:96:05:e6:23:d8:10:51:9a:66:1c:4a:e7:06: fd:59:ec:50:65:55:cb:24:3b:f8:70:8e:f5:32:7e:b4:fa:f7: a0:f5:58:47:8d:c4:02:b7:af:e1:6e:af:16:51:06:94:04:45: 8f:d5:ed:bb:87:98:e7:45:9b:40:43:5b:5c:b5:07:bf:34:ce: 13:d8:cd:04:a8:2f:a0:23:99:ae:1a:6d:6c:aa:3c:a1:e4:46: f2:ce:5d:9a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYl11BxCK7HLvwU46JhupiLG1SoIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTUyMTI1WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjlkNzFlOGY2NmU3NDA4ODk0ODRmYjViYzg2NDhiNTAy MzhjNDhlZDY4ODVmZTVkZDE1ZTAzZTEyMWRlNGZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCOZck/W3SLSm+mfOchnFpCclnujqCc/KHAlfqeVpwfih3 J2zN5oJD9aWBwms8Kk1KWuETCMGNt8v+iWbxlbnNE3IiZ602qgEJPAv6de4BG7oI hdvUn8O1QvFXs+ZNpSmEg1i4iUzxhHfO2n/ABSIBX6vKlnqL0RfxD5U8+dC8XhlF qISGE55p55wbycSj4fmiNUhwb4owaWEFajkAhIGKGS+ZvOPA1nRNvKx7zyYLcvFd 8AffneBpYIK9end227nKVCEDmKNCpdXu6/9t1H+4u6GDM6mm9LCct2oU49/EWd5o doehlPGBocA1aXxFJBvl4Ip9kp/SKD0q+2GQBu4PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmlHIJX/MmeOxou3/U274kANjv7kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwYmZkODAzLWZmMTctNDE0Ni1hMzViLTg4MjRkNDFiZmNhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB9pYEAwDQYJKoZIhvcNAQELBQADggEBAEx2lrNUDEKH+q7aqeaTfcBA JUL+6pNuL/SdTys0oYgH+6Fh0TkrXxM4kx3q6HNF6ZLKY7aupKeBznOFXji+LZrI daabq0XXb0klkJDaDCI43QmJFZ+t5PtHEch9l7PqXSFZmv9sVcx/wEbPfSrh/cIy BcKa+sgM05EW+HCssPccSIQxCZvF7fhSLe59q0+8UzqRP91fw72Mcvlbq/vWwot4 l8BfGvRxlgXmI9gQUZpmHErnBv1Z7FBlVcskO/hwjvUyfrT696D1WEeNxAK3r+Fu rxZRBpQERY/V7buHmOdFm0BDW1y1B780zhPYzQSoL6Ajma4abWyqPKHkRvLOXZo= -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:47 2025 by rpki-client