$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6617ab69-c795-45fd-8e5a-6d3247c36652.roa File: 6617ab69-c795-45fd-8e5a-6d3247c36652.roa (raw, json) Hash identifier: sIm4DiSC0d+flZkAdX6iwmYn7nAxIpimEdQRG24dt1g= Subject key identifier: 56:24:62:B0:F5:A7:23:FF:60:0D:18:EB:47:35:ED:6F:16:62:53:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12D7A7F5AD548B1065FECE0EBD20D7E237F838E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6617ab69-c795-45fd-8e5a-6d3247c36652.roa Signing time: Mon 25 Aug 2025 16:53:57 +0000 ROA not before: Mon 25 Aug 2025 16:53:57 +0000 ROA not after: Mon 29 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fec:9400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:d7:a7:f5:ad:54:8b:10:65:fe:ce:0e:bd:20:d7:e2:37:f8:38:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 25 16:53:57 2025 GMT Not After : Sep 29 23:59:59 2025 GMT Subject: serialNumber=720a529d91c49c5e8504e27556ff6cd0a5885a154496f20c674f78cf90c7cf1e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c0:dd:56:e9:03:34:c1:07:09:91:3d:de:ea: 91:97:9d:d1:38:6c:fa:30:55:67:a8:fd:55:00:e2: 7b:5d:fe:cf:79:06:d8:3d:c0:82:52:a2:f4:41:07: 3f:68:34:45:90:92:99:c2:e6:2d:43:d5:1e:6e:48: fc:09:50:63:47:c3:95:dd:2b:06:96:1d:ed:85:3e: f9:36:ce:ed:d5:36:36:dd:29:c5:07:1d:b2:f9:67: 46:fc:c2:1c:ad:50:e6:e0:c5:88:0d:fc:fc:b4:d2: a2:84:92:c5:78:e9:3a:ab:4c:40:15:e6:c3:70:6b: cf:ae:fb:2e:03:56:07:87:21:bd:f5:f5:0e:6e:45: 32:a7:1e:74:e1:36:a1:a9:37:62:13:0c:22:62:ba: f2:3b:8a:79:bd:0b:af:2f:45:94:c0:a7:23:3c:87: f6:03:68:3f:24:eb:9b:d5:a5:f1:02:dd:cd:df:8a: d5:25:e8:ee:f6:69:80:4e:da:b7:c9:44:c7:b5:5c: 76:72:a8:5f:c4:ac:18:2e:b0:ad:68:2c:f2:dd:f6: 3c:b9:16:89:d0:cd:f8:c0:59:cf:bd:55:2a:5c:41: ba:2d:c4:31:88:e3:c8:e5:ec:c4:25:bc:07:2c:12: 81:a9:17:c6:d8:d7:13:aa:13:95:da:1e:6e:f0:29: 80:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:24:62:B0:F5:A7:23:FF:60:0D:18:EB:47:35:ED:6F:16:62:53:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6617ab69-c795-45fd-8e5a-6d3247c36652.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:9400::/48 Signature Algorithm: sha256WithRSAEncryption 5d:89:c6:ba:9e:2e:50:dd:78:ea:e1:06:da:c5:13:92:b5:48: 86:75:28:39:d7:f8:07:a2:f8:9e:1e:93:1a:53:8f:9a:16:2a: 29:5f:33:d6:94:41:7a:66:fe:a6:6b:68:58:44:65:69:f5:a2: 8b:85:85:02:fb:91:08:86:ca:eb:5a:ed:74:0f:0c:d6:ea:85: 46:22:25:a6:3a:8a:ad:d8:14:ee:d7:0d:6f:16:28:d5:71:47: 6d:0e:e1:60:c1:f1:44:e0:68:4b:d3:7b:f7:e5:44:d4:3b:97: 78:4a:4e:1b:75:b0:f9:e0:43:61:5b:ec:f2:47:71:ad:d0:68: 3f:13:6b:47:56:8e:6d:e8:ca:f1:17:05:ca:b1:78:85:b2:51: a9:15:8d:22:a4:36:84:0a:53:d7:e8:fb:cf:f5:98:f3:e4:ef: 8c:18:86:fc:e2:04:fd:cc:14:82:27:7a:5e:12:e8:b8:7c:2e: d9:1c:5d:de:19:c7:70:ef:dc:f9:bd:7d:4d:47:0e:8d:3f:d8: 0c:0b:2c:e1:d2:66:b4:ae:e9:b4:39:32:a2:eb:cd:20:c9:a1: d0:bc:7b:f0:73:ed:c3:df:b2:6b:27:21:dd:32:5e:6d:9f:8a: 5a:04:b0:1e:81:90:d3:c6:88:cb:ae:04:c1:a7:0b:58:ce:c8: e5:a6:f6:c2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEten9a1UixBl/s4OvSDX4jf4OOcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI1MTY1MzU3WhcNMjUwOTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjBhNTI5ZDkxYzQ5YzVlODUwNGUyNzU1NmZmNmNkMGE1 ODg1YTE1NDQ5NmYyMGM2NzRmNzhjZjkwYzdjZjFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/wN1W6QM0wQcJkT3e6pGXndE4bPowVWeo/VUA4ntd/s95 Btg9wIJSovRBBz9oNEWQkpnC5i1D1R5uSPwJUGNHw5XdKwaWHe2FPvk2zu3VNjbd KcUHHbL5Z0b8whytUObgxYgN/Py00qKEksV46TqrTEAV5sNwa8+u+y4DVgeHIb31 9Q5uRTKnHnThNqGpN2ITDCJiuvI7inm9C68vRZTApyM8h/YDaD8k65vVpfEC3c3f itUl6O72aYBO2rfJRMe1XHZyqF/ErBgusK1oLPLd9jy5FonQzfjAWc+9VSpcQbot xDGI48jl7MQlvAcsEoGpF8bY1xOqE5XaHm7wKYAJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUViRisPWnI/9gDRjrRzXtbxZiU2swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2MTdhYjY5LWM3OTUtNDVmZC04ZTVhLTZkMzI0N2MzNjY1Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/slAAwDQYJKoZIhvcNAQELBQADggEBAF2JxrqeLlDdeOrhBtrFE5K1 SIZ1KDnX+Aei+J4ekxpTj5oWKilfM9aUQXpm/qZraFhEZWn1oouFhQL7kQiGyuta 7XQPDNbqhUYiJaY6iq3YFO7XDW8WKNVxR20O4WDB8UTgaEvTe/flRNQ7l3hKTht1 sPngQ2Fb7PJHca3QaD8Ta0dWjm3oyvEXBcqxeIWyUakVjSKkNoQKU9fo+8/1mPPk 74wYhvziBP3MFIInel4S6Lh8LtkcXd4Zx3Dv3Pm9fU1HDo0/2AwLLOHSZrSu6bQ5 MqLrzSDJodC8e/Bz7cPfsmsnId0yXm2filoEsB6BkNPGiMuuBMGnC1jOyOWm9sI= -----END CERTIFICATE-----Generated at Sat Sep 6 16:49:58 2025 by rpki-client