$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d7a322b-9790-4bc8-bd49-493feaff35d5.roa File: 7d7a322b-9790-4bc8-bd49-493feaff35d5.roa (raw, json) Hash identifier: uSTJlyU60IEE1rujvEnfjFH9OF2BWR8fOeLCCrbUois= Subject key identifier: E0:5A:8C:C1:49:EB:40:10:DF:6A:61:8B:F0:AC:C3:58:5A:87:1D:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EC53B17FA28981D2B7F335088484C1606C021C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d7a322b-9790-4bc8-bd49-493feaff35d5.roa Signing time: Tue 12 Aug 2025 00:22:10 +0000 ROA not before: Tue 12 Aug 2025 00:22:10 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:c5:3b:17:fa:28:98:1d:2b:7f:33:50:88:48:4c:16:06:c0:21:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:22:10 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=e90ce40acb5d935435cfb651f472d623b84eeabdb25139e460dc16a4b251b745, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:be:04:dc:b7:bf:bb:bc:21:e3:92:6c:c2:10: ad:8f:ec:02:2a:5c:e7:7d:18:4b:96:ae:83:ca:0b: 17:11:25:4e:68:43:e3:6c:04:6a:b9:8f:3c:13:2a: fb:9e:0d:09:b2:23:24:b9:41:c4:63:2c:e6:f1:28: 1d:8f:9f:54:bd:33:da:85:42:ab:f0:b0:24:ae:04: 9a:64:a1:de:87:b2:e0:58:e5:b9:1f:3b:9e:85:03: 71:28:2a:63:2e:74:a0:2e:79:4b:6f:6b:00:79:ba: 62:bb:36:f3:64:de:ff:ef:ed:a2:41:47:2a:8c:a2: 38:2f:dd:11:69:d9:32:f0:51:87:d6:32:59:41:ad: 11:57:4c:fb:15:09:97:18:ca:43:88:32:d8:fd:5e: 6d:2c:06:9a:3e:5c:56:01:af:2e:0c:46:59:6e:de: 52:0d:be:88:4c:43:96:65:ca:ef:a9:ff:07:5e:bb: f5:30:11:e0:b7:bf:66:77:f9:48:a6:e6:30:49:69: e4:98:eb:30:d4:09:e5:ae:a2:81:58:e5:71:f2:2a: 94:97:35:3a:15:63:32:8d:b6:3a:7b:d5:c5:8c:26: 6f:08:ea:35:e9:12:31:be:dc:ce:28:89:1d:06:8f: 1f:de:93:44:70:38:6b:06:52:b8:d2:8e:7b:8d:f1: 92:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:5A:8C:C1:49:EB:40:10:DF:6A:61:8B:F0:AC:C3:58:5A:87:1D:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7d7a322b-9790-4bc8-bd49-493feaff35d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:8000::/39 Signature Algorithm: sha256WithRSAEncryption ce:9e:c8:0c:de:b4:6f:47:04:7b:93:4c:f6:c4:91:44:27:2b: 49:6c:e8:2a:93:6a:fc:84:c6:bc:bb:da:66:9c:95:c1:97:f8: 41:a2:c6:bc:5b:2d:eb:82:59:a8:5b:bd:6b:27:fd:5f:ec:eb: 6f:3b:f5:50:0c:3b:bd:b1:f8:c0:8d:75:44:c5:07:fd:94:b9: 4b:79:c2:4a:66:36:00:fb:a7:25:cf:ae:ab:9a:e2:b9:d0:bd: 15:83:e0:31:a4:00:52:aa:66:38:fe:ff:f3:a9:b1:4b:92:ad: 92:7d:2d:3d:6c:b9:d5:c7:53:56:17:61:01:6b:93:fe:92:9b: 11:b5:59:6b:34:7d:af:7e:b7:db:bb:85:61:a5:b7:46:c8:d8: 45:5c:25:97:e3:4e:d7:37:a2:fa:38:09:f8:77:95:cc:66:88: c0:16:a1:80:61:c4:d1:6c:97:ad:7f:53:f5:17:4b:7d:34:79: fd:76:2c:bb:51:05:a4:d5:58:03:ed:2f:21:13:0e:50:27:08: 16:49:07:b8:f6:ed:95:cd:16:76:14:36:12:38:ce:83:1b:f7: 76:d5:89:bd:20:07:6d:ac:7f:5f:97:67:bd:30:20:3b:33:c6: 05:88:e0:26:32:96:85:af:66:91:07:07:b3:41:a4:f2:14:af: 1e:6a:ee:f7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfsU7F/oomB0rfzNQiEhMFgbAIcYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAyMjEwWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTBjZTQwYWNiNWQ5MzU0MzVjZmI2NTFmNDcyZDYyM2I4 NGVlYWJkYjI1MTM5ZTQ2MGRjMTZhNGIyNTFiNzQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/vgTct7+7vCHjkmzCEK2P7AIqXOd9GEuWroPKCxcRJU5o Q+NsBGq5jzwTKvueDQmyIyS5QcRjLObxKB2Pn1S9M9qFQqvwsCSuBJpkod6HsuBY 5bkfO56FA3EoKmMudKAueUtvawB5umK7NvNk3v/v7aJBRyqMojgv3RFp2TLwUYfW MllBrRFXTPsVCZcYykOIMtj9Xm0sBpo+XFYBry4MRllu3lINvohMQ5Zlyu+p/wde u/UwEeC3v2Z3+Uim5jBJaeSY6zDUCeWuooFY5XHyKpSXNToVYzKNtjp71cWMJm8I 6jXpEjG+3M4oiR0Gjx/ek0RwOGsGUrjSjnuN8ZIXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4FqMwUnrQBDfamGL8KzDWFqHHRIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdkN2EzMjJiLTk3OTAtNGJjOC1iZDQ5LTQ5M2ZlYWZmMzVkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/4gDANBgkqhkiG9w0BAQsFAAOCAQEAzp7IDN60b0cEe5NM9sSRRCcr SWzoKpNq/ITGvLvaZpyVwZf4QaLGvFst64JZqFu9ayf9X+zrbzv1UAw7vbH4wI11 RMUH/ZS5S3nCSmY2APunJc+uq5riudC9FYPgMaQAUqpmOP7/86mxS5Ktkn0tPWy5 1cdTVhdhAWuT/pKbEbVZazR9r36327uFYaW3RsjYRVwll+NO1zei+jgJ+HeVzGaI wBahgGHE0WyXrX9T9RdLfTR5/XYsu1EFpNVYA+0vIRMOUCcIFkkHuPbtlc0WdhQ2 EjjOgxv3dtWJvSAHbax/X5dnvTAgOzPGBYjgJjKWha9mkQcHs0Gk8hSvHmru9w== -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:56 2025 by rpki-client