$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa File: d21d2b11-198a-4187-babe-5e898f2a1576.roa (raw, json) Hash identifier: KymemtVcJo7MKwfrXAp7lB8ys3VyIbqzTqLLCECVg/E= Subject key identifier: D7:D9:80:BF:0E:36:88:8C:B4:71:EE:DE:3E:AB:F4:C4:01:A1:B7:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7E52270237B5EFD2ACB4A63F3A78B23ADCFED857 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa Signing time: Wed 13 Aug 2025 00:20:20 +0000 ROA not before: Wed 13 Aug 2025 00:20:20 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:52:27:02:37:b5:ef:d2:ac:b4:a6:3f:3a:78:b2:3a:dc:fe:d8:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:20:20 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=f54a5f693e18a807edac4af69c311ad47f096f71b71c8831ddcd1f74e7df843e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b2:4d:3f:88:b8:ca:7a:17:f8:f5:6f:74:c5: 72:27:86:2e:cd:fd:a7:88:f5:f8:0c:bf:58:fb:6f: b1:5d:84:81:9c:17:19:8f:4c:51:b6:b7:83:57:8b: b6:96:c8:6e:e2:86:49:23:47:ee:4f:5e:f4:e0:c3: b1:9b:97:fb:e2:b1:91:59:9a:8f:6e:ab:37:37:76: 45:a3:de:bb:8e:37:4c:72:ea:d1:c7:22:ca:85:d0: 0b:2a:34:1a:c7:23:ac:e3:a7:19:b1:ce:99:f1:5c: c1:b6:78:42:2e:84:46:8f:0d:58:05:a5:d2:a1:64: cc:39:05:63:ef:6b:3f:53:c3:60:00:8b:6e:bf:38: 37:9d:70:43:68:21:f0:3b:bc:41:eb:5c:1c:80:f2: 05:3d:b7:84:fb:7d:5a:82:67:1d:cd:93:cc:46:a2: cc:25:f5:5b:f3:82:51:ba:38:95:fb:98:52:93:90: 71:3e:16:21:8d:2c:d6:28:06:3a:cc:c9:96:8a:6c: d5:f9:a8:5d:d1:5a:ea:76:dc:c8:ac:dc:56:dd:36: 48:37:b8:5e:32:84:4a:3d:89:db:a7:7d:db:cd:e0: e5:1a:fc:a2:25:4e:07:24:d8:e9:4d:bd:67:16:77: 5e:03:32:04:ae:8b:b4:20:a0:f5:56:c3:56:84:cc: c7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D9:80:BF:0E:36:88:8C:B4:71:EE:DE:3E:AB:F4:C4:01:A1:B7:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d21d2b11-198a-4187-babe-5e898f2a1576.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:8000::/39 Signature Algorithm: sha256WithRSAEncryption d3:21:4d:fa:99:3d:ab:08:c8:32:d2:2b:a5:c3:47:88:b0:f9: 5a:1f:b2:2f:9d:48:4f:cf:a2:b0:44:7a:59:a7:c3:34:ef:32: 31:db:e0:d3:1f:b6:06:62:58:1c:c4:c4:b6:9d:ee:8f:a3:fe: 20:5c:d3:ba:b8:da:4d:17:91:98:f7:a7:de:73:53:fc:4a:f8: 20:54:7b:8d:71:c8:9a:00:af:f4:f7:34:84:65:d5:9f:29:a3: 9e:f2:0a:99:82:c8:d0:18:dd:a4:2a:0f:0f:c7:74:74:c7:99: 4c:c7:66:83:79:04:92:79:7a:54:a2:52:57:0d:e4:a2:5f:ce: ce:f9:0d:2a:17:5c:03:e7:16:71:52:b8:44:f7:9a:ec:83:77: 5f:57:17:44:0c:c0:13:f0:72:ec:ef:43:d8:3d:43:76:2b:9e: f8:84:5f:d9:77:fc:ad:7f:32:e6:e1:a4:39:09:86:da:22:8d: 99:35:c0:ce:c5:e0:53:23:cc:88:b7:05:f0:1a:de:fb:13:c3: fc:7f:cf:3d:d6:01:79:52:79:c6:91:ef:0b:a6:02:40:ca:d2: fe:24:7e:95:44:9e:f0:ed:f1:c1:4b:fc:d9:71:13:54:e1:9d: ff:19:1f:e0:8e:7c:ac:62:c5:8e:dd:a4:22:04:93:82:5a:96: 07:76:ad:3a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUflInAje179KstKY/OniyOtz+2FcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAyMDIwWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTRhNWY2OTNlMThhODA3ZWRhYzRhZjY5YzMxMWFkNDdm MDk2ZjcxYjcxYzg4MzFkZGNkMWY3NGU3ZGY4NDNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxsk0/iLjKehf49W90xXInhi7N/aeI9fgMv1j7b7FdhIGc FxmPTFG2t4NXi7aWyG7ihkkjR+5PXvTgw7Gbl/visZFZmo9uqzc3dkWj3ruON0xy 6tHHIsqF0AsqNBrHI6zjpxmxzpnxXMG2eEIuhEaPDVgFpdKhZMw5BWPvaz9Tw2AA i26/ODedcENoIfA7vEHrXByA8gU9t4T7fVqCZx3Nk8xGoswl9VvzglG6OJX7mFKT kHE+FiGNLNYoBjrMyZaKbNX5qF3RWup23Mis3FbdNkg3uF4yhEo9idunfdvN4OUa /KIlTgck2OlNvWcWd14DMgSui7QgoPVWw1aEzMfFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU19mAvw42iIy0ce7ePqv0xAGht0swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyMWQyYjExLTE5OGEtNDE4Ny1iYWJlLTVlODk4ZjJhMTU3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+ggDANBgkqhkiG9w0BAQsFAAOCAQEA0yFN+pk9qwjIMtIrpcNHiLD5 Wh+yL51IT8+isER6WafDNO8yMdvg0x+2BmJYHMTEtp3uj6P+IFzTurjaTReRmPen 3nNT/Er4IFR7jXHImgCv9Pc0hGXVnymjnvIKmYLI0BjdpCoPD8d0dMeZTMdmg3kE knl6VKJSVw3kol/OzvkNKhdcA+cWcVK4RPea7IN3X1cXRAzAE/By7O9D2D1Ddiue +IRf2Xf8rX8y5uGkOQmG2iKNmTXAzsXgUyPMiLcF8Bre+xPD/H/PPdYBeVJ5xpHv C6YCQMrS/iR+lUSe8O3xwUv82XETVOGd/xkf4I58rGLFjt2kIgSTglqWB3atOg== -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:27 2025 by rpki-client