$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa File: a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa (raw, json) Hash identifier: JXGXr/DJq2/IzmAqVDmWHQ3chdqpKzVkIOodw5mHO7c= Subject key identifier: CB:83:16:02:CC:EC:E1:C9:14:8B:5B:F2:57:8C:A1:05:15:6A:06:D5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E1C77F2424C4A333F83A305E2E3F670511B50D4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa Signing time: Wed 13 Aug 2025 00:10:29 +0000 ROA not before: Wed 13 Aug 2025 00:10:29 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8188::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:1c:77:f2:42:4c:4a:33:3f:83:a3:05:e2:e3:f6:70:51:1b:50:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:10:29 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=9927cbe44f25b27db3dc24d2e5d518bfa069c1e3b165d2d62359f191abf7e444, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ab:b3:b1:a6:d0:7b:1c:d9:15:2f:a4:44:4e: 16:85:cc:4b:5a:fd:a5:07:1e:66:6e:85:4b:49:53: 56:64:a8:12:6b:97:c6:00:84:67:1e:c4:9b:33:23: 18:43:92:be:91:2b:08:49:1b:5a:4d:5f:d4:94:79: d7:6e:bd:3b:27:e1:75:e5:01:63:c0:f2:ef:5d:ad: 8d:5b:93:f4:3b:ad:f6:f9:45:bf:39:36:e2:2a:b2: c8:f1:c3:1b:be:ec:59:ef:c1:d4:2f:91:b8:5e:ad: ad:ea:42:5b:a6:2e:cc:16:85:d4:c1:21:00:18:fa: f3:90:67:84:c1:a8:3a:08:01:24:d1:f9:ec:ae:37: 8e:eb:09:51:a9:1e:51:ca:ca:a2:28:3c:03:2a:93: f7:af:4d:62:79:6a:5c:f3:3d:be:39:50:90:89:0a: ff:6a:41:a6:d6:a1:89:9a:b0:3a:b4:28:78:ac:36: 03:68:2c:82:c3:f9:a5:d4:4a:a5:a2:0c:b7:06:3d: 39:28:05:81:ed:63:08:23:84:6d:94:72:63:2e:ed: cc:7d:54:16:ad:77:74:5f:fd:33:1b:b2:36:1d:d8: d7:2d:6e:31:44:0e:ab:f1:ef:0d:df:be:f7:91:6d: 50:49:00:ad:24:f7:c2:0d:ee:36:26:e0:0a:7a:bf: 51:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:83:16:02:CC:EC:E1:C9:14:8B:5B:F2:57:8C:A1:05:15:6A:06:D5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a240dc64-65f0-461a-ad6a-8c137b9d8aba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8188::/48 Signature Algorithm: sha256WithRSAEncryption 2c:91:a6:68:6e:37:da:bc:1a:7e:39:61:e7:73:9b:3a:f3:14: 01:56:31:3b:9c:e0:3b:64:72:71:02:4e:5e:8e:dd:13:bb:66: cc:65:cb:04:dc:9a:e5:b1:5d:3f:4f:9b:35:65:89:b7:b0:3a: fc:06:7c:9a:8b:68:44:57:22:9b:d8:d2:fc:5d:ab:89:b7:fb: 40:45:e1:c9:c1:ba:98:54:31:2c:a3:b1:bc:a1:b7:e2:3e:6d: 7c:2e:0c:9f:dc:94:ca:b6:f7:c9:0a:b7:f5:6d:8c:53:22:05: a9:da:f0:b7:9e:72:a5:00:a0:05:c5:1b:6d:8e:3e:39:f9:94: 41:78:c2:9d:0c:46:68:a0:6d:3a:0a:e9:60:ce:b0:73:e1:fa: c6:f0:7f:a9:c3:26:ce:81:fe:4e:2f:ed:07:6c:5c:66:1f:47: f8:e5:cf:4d:9a:76:99:5b:74:75:f7:af:bd:8e:e7:2c:1e:7a: 85:7d:b8:60:87:fa:23:d3:1f:86:de:a3:cc:9e:88:60:79:98: 10:30:09:28:3c:e6:54:85:16:9e:ca:14:09:27:c5:6d:df:d7: 20:22:22:28:fc:bb:8b:3b:e0:86:c7:cd:6c:6b:d7:5b:51:86: b7:68:81:c6:b8:70:bc:0b:57:53:62:20:5f:04:4e:43:df:59: f2:41:02:20 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfhx38kJMSjM/g6MF4uP2cFEbUNQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMDI5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTI3Y2JlNDRmMjViMjdkYjNkYzI0ZDJlNWQ1MThiZmEw NjljMWUzYjE2NWQyZDYyMzU5ZjE5MWFiZjdlNDQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcq7OxptB7HNkVL6REThaFzEta/aUHHmZuhUtJU1ZkqBJr l8YAhGcexJszIxhDkr6RKwhJG1pNX9SUedduvTsn4XXlAWPA8u9drY1bk/Q7rfb5 Rb85NuIqssjxwxu+7FnvwdQvkbhera3qQlumLswWhdTBIQAY+vOQZ4TBqDoIASTR +eyuN47rCVGpHlHKyqIoPAMqk/evTWJ5alzzPb45UJCJCv9qQabWoYmasDq0KHis NgNoLILD+aXUSqWiDLcGPTkoBYHtYwgjhG2UcmMu7cx9VBatd3Rf/TMbsjYd2Nct bjFEDqvx7w3fvveRbVBJAK0k98IN7jYm4Ap6v1EbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUy4MWAszs4ckUi1vyV4yhBRVqBtUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNDBkYzY0LTY1ZjAtNDYxYS1hZDZhLThjMTM3YjlkOGFiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gYgwDQYJKoZIhvcNAQELBQADggEBACyRpmhuN9q8Gn45Yedzmzrz FAFWMTuc4DtkcnECTl6O3RO7ZsxlywTcmuWxXT9PmzVlibewOvwGfJqLaERXIpvY 0vxdq4m3+0BF4cnBuphUMSyjsbyht+I+bXwuDJ/clMq298kKt/VtjFMiBana8Lee cqUAoAXFG22OPjn5lEF4wp0MRmigbToK6WDOsHPh+sbwf6nDJs6B/k4v7QdsXGYf R/jlz02adplbdHX3r72O5yweeoV9uGCH+iPTH4beo8yeiGB5mBAwCSg85lSFFp7K FAknxW3f1yAiIij8u4s74IbHzWxr11tRhrdogca4cLwLV1NiIF8ETkPfWfJBAiA= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:11 2025 by rpki-client