$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa File: 5752ffaa-9565-4fe4-90d6-617594e92fe1.roa (raw, json) Hash identifier: 5IzA2N6R6cZRrNcfmlKrv5Yei9UpD+W2JztiDLXO4+0= Subject key identifier: BB:24:E6:2A:93:71:F0:CC:74:C9:F4:15:52:7A:D6:6C:A7:25:EA:01 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01F86DBEB2C020FBC2F5D827E261DF8AFD3CBF58 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa Signing time: Wed 13 Aug 2025 00:20:14 +0000 ROA not before: Wed 13 Aug 2025 00:20:14 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:f8:6d:be:b2:c0:20:fb:c2:f5:d8:27:e2:61:df:8a:fd:3c:bf:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:20:14 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=06c08256c544f459546c21c21e0afcce2ca055fb8a3d929f01e27822a0fa8f21, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f2:0d:08:84:66:6f:b6:07:82:61:9e:ef:fe: d8:f6:50:98:1a:d1:12:ac:5c:97:b0:36:df:20:6b: 31:8e:18:39:f8:64:46:3d:19:8a:bb:fb:ad:48:7e: 27:e0:da:63:76:09:cf:a3:7c:97:6e:b9:15:6b:9f: 2f:00:fd:7a:93:82:11:59:b8:30:c5:cd:87:2c:3f: b2:4f:e1:e2:58:e5:b4:bd:48:32:57:f4:e7:0a:6e: 60:61:90:7c:02:f4:2e:ec:8d:61:ff:42:2e:2f:29: 60:df:90:72:cf:2d:22:df:25:c6:f3:f6:c9:4e:94: ab:15:7b:66:44:14:bf:fe:59:48:fe:07:73:12:07: 74:18:de:6d:c3:a1:99:6c:6e:82:54:93:f8:10:8c: 71:e4:52:7c:75:27:09:8b:4e:e4:67:7c:0a:62:97: 57:99:f8:75:1d:0f:8b:d3:b7:c2:27:d7:93:04:14: 9a:ab:af:90:44:bd:2c:d2:80:92:51:39:20:e1:40: fb:8d:e5:a7:92:26:68:61:e3:c5:e4:ed:49:5a:74: 55:df:d0:fe:5c:a8:71:03:b1:cc:d7:c0:78:5c:93: 13:f3:b0:7a:bc:71:d3:6d:82:71:af:42:2c:3b:4e: 39:a0:e6:81:67:86:c6:8c:84:d6:e3:17:6b:14:b1: 30:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:24:E6:2A:93:71:F0:CC:74:C9:F4:15:52:7A:D6:6C:A7:25:EA:01 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:c000::/40 Signature Algorithm: sha256WithRSAEncryption 65:3f:fb:93:7b:c0:a8:a1:89:91:8a:1c:62:87:0d:c3:8b:3e: ad:fe:e6:f9:95:3f:50:60:cf:d8:6d:c7:6c:13:b6:df:04:c1: d2:3c:d8:42:0f:12:ee:a1:2e:8d:15:c4:dc:00:6e:b1:02:48: fb:34:75:7a:88:52:f5:fe:5f:2d:80:25:c6:8b:3e:af:14:48: a9:21:df:16:77:65:87:c8:25:f9:a6:74:eb:67:55:4c:eb:d1: 72:67:8f:2f:b6:8c:47:87:8d:c5:91:57:a0:64:f0:f8:bf:3d: 59:e9:26:2d:09:1b:08:56:73:13:03:27:be:e4:27:53:21:c6: ab:2f:52:f5:62:f6:ce:ae:44:f4:43:10:b4:71:2e:3f:1c:29: cc:4e:58:5d:a9:06:1c:d8:50:26:e3:16:78:8f:1a:87:69:15: 47:d5:48:01:06:82:4e:ff:c5:4b:e9:15:52:55:15:1c:44:d3: de:74:df:da:6e:11:85:c9:13:df:e8:64:27:9f:00:d8:cb:01: 6e:57:37:39:26:09:be:56:76:b1:35:59:fc:e4:4e:57:91:96: 3b:27:ee:77:77:08:48:a2:db:42:02:f0:3d:c5:b4:5b:57:b6: d9:c1:e4:7a:74:e0:53:d2:9f:3e:ef:2c:06:a0:29:ee:50:be: 03:6f:b7:14 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAfhtvrLAIPvC9dgn4mHfiv08v1gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAyMDE0WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmMwODI1NmM1NDRmNDU5NTQ2YzIxYzIxZTBhZmNjZTJj YTA1NWZiOGEzZDkyOWYwMWUyNzgyMmEwZmE4ZjIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn8g0IhGZvtgeCYZ7v/tj2UJga0RKsXJewNt8gazGOGDn4 ZEY9GYq7+61Ififg2mN2Cc+jfJduuRVrny8A/XqTghFZuDDFzYcsP7JP4eJY5bS9 SDJX9OcKbmBhkHwC9C7sjWH/Qi4vKWDfkHLPLSLfJcbz9slOlKsVe2ZEFL/+WUj+ B3MSB3QY3m3DoZlsboJUk/gQjHHkUnx1JwmLTuRnfApil1eZ+HUdD4vTt8In15ME FJqrr5BEvSzSgJJROSDhQPuN5aeSJmhh48Xk7UladFXf0P5cqHEDsczXwHhckxPz sHq8cdNtgnGvQiw7Tjmg5oFnhsaMhNbjF2sUsTC1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUuyTmKpNx8Mx0yfQVUnrWbKcl6gEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NTJmZmFhLTk1NjUtNGZlNC05MGQ2LTYxNzU5NGU5MmZlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4wDANBgkqhkiG9w0BAQsFAAOCAQEAZT/7k3vAqKGJkYocYocNw4s+ rf7m+ZU/UGDP2G3HbBO23wTB0jzYQg8S7qEujRXE3ABusQJI+zR1eohS9f5fLYAl xos+rxRIqSHfFndlh8gl+aZ062dVTOvRcmePL7aMR4eNxZFXoGTw+L89WekmLQkb CFZzEwMnvuQnUyHGqy9S9WL2zq5E9EMQtHEuPxwpzE5YXakGHNhQJuMWeI8ah2kV R9VIAQaCTv/FS+kVUlUVHETT3nTf2m4RhckT3+hkJ58A2MsBblc3OSYJvlZ2sTVZ /OROV5GWOyfud3cISKLbQgLwPcW0W1e22cHkenTgU9KfPu8sBqAp7lC+A2+3FA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:18 2025 by rpki-client