$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e6a02e-627a-43f7-826e-9ed87668d73d.roa File: 21e6a02e-627a-43f7-826e-9ed87668d73d.roa (raw, json) Hash identifier: Zz5PEwfdXXj8OKjodUrnoEjJWaPoQ/L79vJE0S99b6A= Subject key identifier: A1:BC:0E:CC:D6:8C:4A:D8:94:37:F0:6D:BA:70:69:32:B4:44:2C:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 537D523829219F909F5FF9939B251CBCFDF46AD5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e6a02e-627a-43f7-826e-9ed87668d73d.roa Signing time: Fri 15 Aug 2025 00:50:56 +0000 ROA not before: Fri 15 Aug 2025 00:50:56 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:7d:52:38:29:21:9f:90:9f:5f:f9:93:9b:25:1c:bc:fd:f4:6a:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:50:56 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=e1ec036d90139b5ef461f72e022e57c66c522a886001ad391711a520012e0357, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:f4:c7:e7:fd:0f:e2:8a:11:b9:5e:c6:2f:fa: f7:e0:9d:46:25:09:a1:27:06:3f:09:66:9a:61:01: ec:ab:15:11:34:8c:26:f6:dc:9f:3c:49:91:c6:62: f6:82:e3:ed:e4:2c:4d:37:bb:2f:14:91:05:c4:31: 2c:95:81:3a:25:5b:05:65:b0:60:21:7a:ad:af:d6: 57:e2:8a:a2:bd:a0:ed:ed:e1:32:ea:f3:0f:b5:f2: cd:4c:78:17:dc:80:e4:38:37:e1:a5:23:c6:e3:0d: 16:20:a2:76:04:6e:20:21:bd:aa:41:68:d2:af:9d: fd:07:cb:d7:f2:a4:e5:a2:42:a5:15:3e:f6:4a:b1: 54:50:0e:71:63:fe:4b:6c:ca:b8:da:b1:57:bb:02: 6a:0c:df:75:34:c5:87:ac:0c:3f:cd:c7:19:71:d0: 11:6a:1e:74:47:fe:96:7a:bf:4f:4b:cc:45:13:1d: c8:f2:26:03:f5:7b:8c:bb:b4:c5:af:a7:db:34:ab: 7f:a3:7a:80:85:25:45:7f:94:cb:21:0b:ff:8c:6b: 7a:5a:1c:fb:e9:85:0a:f2:80:7d:60:6f:ed:33:b0: ea:31:c8:39:6e:6d:9f:a3:7d:48:10:48:2d:32:12: 3f:88:28:eb:11:96:30:5e:02:2e:5b:12:ae:e1:7c: 6f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BC:0E:CC:D6:8C:4A:D8:94:37:F0:6D:BA:70:69:32:B4:44:2C:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21e6a02e-627a-43f7-826e-9ed87668d73d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3::/32 Signature Algorithm: sha256WithRSAEncryption 8a:db:9c:34:2b:72:da:71:cb:84:4e:29:ff:90:d8:15:39:18: 5b:b0:f7:1f:e8:70:ce:dd:20:82:c2:73:a0:45:5d:f5:db:65: 5a:87:f4:ed:4d:25:82:8c:3a:16:73:f7:66:81:87:7d:f7:f0: b2:ac:2c:10:9e:cb:d2:21:84:ac:c3:2c:08:94:85:ef:1f:55: 00:a4:0f:77:fc:9f:9f:0a:6f:8a:19:80:98:12:34:11:db:1e: fd:0a:ec:57:f2:60:c4:1e:aa:9a:67:93:a4:96:d8:cc:a0:59: 1d:5d:1c:49:e7:fe:33:42:d1:cb:2e:56:86:61:e3:ba:e7:0d: 40:5f:70:f5:4a:13:f6:6f:8c:68:ba:79:2b:7c:3d:6a:00:70: ac:1d:1c:04:de:27:29:be:12:6c:89:e4:3f:80:87:3e:dd:e5: 7f:41:83:77:92:11:d5:e9:31:33:f6:0a:13:bc:d9:0d:54:c2: 36:db:22:f9:6d:b7:a4:88:87:77:49:ba:3d:28:d3:d9:71:d0: 90:76:59:d6:76:ff:b7:25:0e:84:9a:5a:bb:8e:1a:f5:5c:46: 20:5b:59:57:79:ec:0b:13:df:b4:eb:00:c6:22:38:2d:68:cd: f5:15:79:bc:8c:5c:35:7b:72:3e:c5:79:07:87:e2:62:83:cb: 9b:e7:16:b1 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUU31SOCkhn5CfX/mTmyUcvP30atUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDA1MDU2WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWVjMDM2ZDkwMTM5YjVlZjQ2MWY3MmUwMjJlNTdjNjZj NTIyYTg4NjAwMWFkMzkxNzExYTUyMDAxMmUwMzU3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCh9Mfn/Q/iihG5XsYv+vfgnUYlCaEnBj8JZpphAeyrFRE0 jCb23J88SZHGYvaC4+3kLE03uy8UkQXEMSyVgTolWwVlsGAheq2v1lfiiqK9oO3t 4TLq8w+18s1MeBfcgOQ4N+GlI8bjDRYgonYEbiAhvapBaNKvnf0Hy9fypOWiQqUV PvZKsVRQDnFj/ktsyrjasVe7AmoM33U0xYesDD/Nxxlx0BFqHnRH/pZ6v09LzEUT HcjyJgP1e4y7tMWvp9s0q3+jeoCFJUV/lMshC/+Ma3paHPvphQrygH1gb+0zsOox yDlubZ+jfUgQSC0yEj+IKOsRljBeAi5bEq7hfG/pAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUobwOzNaMStiUN/BtunBpMrRELOQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxZTZhMDJlLTYyN2EtNDNmNy04MjZlLTllZDg3NjY4ZDczZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB/zMA0GCSqGSIb3DQEBCwUAA4IBAQCK25w0K3LaccuETin/kNgVORhb sPcf6HDO3SCCwnOgRV3122Vah/TtTSWCjDoWc/dmgYd99/CyrCwQnsvSIYSswywI lIXvH1UApA93/J+fCm+KGYCYEjQR2x79CuxX8mDEHqqaZ5OkltjMoFkdXRxJ5/4z QtHLLlaGYeO65w1AX3D1ShP2b4xounkrfD1qAHCsHRwE3icpvhJsieQ/gIc+3eV/ QYN3khHV6TEz9goTvNkNVMI22yL5bbekiId3Sbo9KNPZcdCQdlnWdv+3JQ6Emlq7 jhr1XEYgW1lXeewLE9+06wDGIjgtaM31FXm8jFw1e3I+xXkHh+Jig8ub5xax -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:32 2025 by rpki-client