$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc7bce23-cfca-4423-8d6a-5955a467c4d1.roa File: dc7bce23-cfca-4423-8d6a-5955a467c4d1.roa (raw, json) Hash identifier: GbwFN54ISwwWDQzuZh3nC7soyEXtfdoJv5smVuomDlw= Subject key identifier: 7F:96:99:8F:54:1E:D6:A4:5F:FC:34:48:C2:D6:75:80:68:48:4D:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 196D11319E9134E1F79700B9B7EFD15C52EEC2B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc7bce23-cfca-4423-8d6a-5955a467c4d1.roa Signing time: Mon 25 Aug 2025 16:52:22 +0000 ROA not before: Mon 25 Aug 2025 16:52:22 +0000 ROA not after: Mon 29 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fec:4800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:6d:11:31:9e:91:34:e1:f7:97:00:b9:b7:ef:d1:5c:52:ee:c2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 25 16:52:22 2025 GMT Not After : Sep 29 23:59:59 2025 GMT Subject: serialNumber=a2c52e75d0c764385b77620b5164f3d8a4c7e5da7cc8c462f2ef0e83bcb19a72, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e6:56:c1:43:5f:b5:d9:92:fe:08:c6:7e:1b: ee:a8:41:6c:da:ee:ee:ec:2b:76:cd:70:12:09:93: 3a:9a:63:7c:7b:5f:ba:5d:af:bf:fd:e6:fa:8b:ed: 91:c1:41:fa:ce:c5:62:98:4a:cf:0f:4e:a0:df:ef: 2a:69:4d:b0:0f:e3:f3:57:4c:9a:46:4b:4c:6e:22: 40:2a:5b:21:d4:3b:34:3d:77:a6:94:ee:55:5d:a8: 92:43:f8:e9:b9:66:3f:c7:06:f7:ad:24:9b:48:c5: 7f:a5:cc:94:b3:f6:b5:84:df:aa:17:62:d1:fe:c2: 94:6b:3a:db:d5:b2:a1:25:d5:98:19:51:4e:69:1e: a8:1b:ce:72:d0:09:be:2b:21:51:71:d5:fe:3a:5b: b9:15:33:33:dc:94:f0:4c:be:2d:ae:7c:db:49:8e: 29:94:7d:3f:c0:27:e0:24:cc:01:51:71:dc:5d:15: 9d:0b:5e:13:65:40:e9:f5:db:7e:ab:e5:b3:40:73: ec:1c:a8:a3:54:99:cf:ba:14:09:ca:8b:2d:81:8a: 63:2d:93:a4:7e:73:72:09:c2:2a:be:49:df:a9:47: 5a:d1:36:6e:21:55:c6:16:44:e3:0d:72:f3:5f:46: 96:c7:d7:d7:8f:0e:eb:0d:6f:6d:4d:33:c6:71:fc: 7a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:96:99:8F:54:1E:D6:A4:5F:FC:34:48:C2:D6:75:80:68:48:4D:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc7bce23-cfca-4423-8d6a-5955a467c4d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:4800::/48 Signature Algorithm: sha256WithRSAEncryption d0:a5:2e:f2:8c:38:e4:32:ab:4e:a2:45:6b:03:7a:7a:9d:d9: 59:be:27:46:ae:bb:e4:83:28:24:52:13:9a:4f:9d:4e:ce:ba: 78:c4:1e:ad:f7:fa:6f:b2:d1:97:01:b9:c1:42:68:39:98:1e: c9:9c:02:41:15:ef:72:0e:fe:b8:8f:8c:67:b4:4e:16:86:f5: 79:67:ca:3a:47:5e:ba:8b:7a:a9:8a:b5:d6:9d:cf:b5:a4:6c: ba:62:91:93:ff:d7:16:ff:c7:ee:5e:7d:31:da:4f:c1:40:de: 03:73:52:32:c6:59:50:01:4c:d1:bf:97:42:0d:d0:af:92:a5: 28:58:c3:5c:cc:95:ca:07:59:cd:01:af:17:46:80:99:95:eb: 73:d3:e5:0a:35:85:7f:ba:ed:10:0c:b3:5b:c7:aa:3b:fd:28: ff:26:3c:b2:35:d8:34:46:87:fa:75:6b:22:58:05:50:22:62: 35:0a:3e:a6:5a:b7:80:e5:dc:d4:35:ed:50:76:5a:7e:db:83: 9f:06:1f:23:d0:2f:07:6e:31:6c:1a:c2:67:27:e3:54:d7:4d: a1:8a:9a:db:bf:39:cb:92:f1:8e:8f:0e:81:a8:3a:a5:17:70: d8:05:80:b1:58:4a:49:18:ab:3b:03:e5:54:aa:9c:7b:4e:f9: 39:d7:cc:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGW0RMZ6RNOH3lwC5t+/RXFLuwrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI1MTY1MjIyWhcNMjUwOTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMmM1MmU3NWQwYzc2NDM4NWI3NzYyMGI1MTY0ZjNkOGE0 YzdlNWRhN2NjOGM0NjJmMmVmMGU4M2JjYjE5YTcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDI5lbBQ1+12ZL+CMZ+G+6oQWza7u7sK3bNcBIJkzqaY3x7 X7pdr7/95vqL7ZHBQfrOxWKYSs8PTqDf7yppTbAP4/NXTJpGS0xuIkAqWyHUOzQ9 d6aU7lVdqJJD+Om5Zj/HBvetJJtIxX+lzJSz9rWE36oXYtH+wpRrOtvVsqEl1ZgZ UU5pHqgbznLQCb4rIVFx1f46W7kVMzPclPBMvi2ufNtJjimUfT/AJ+AkzAFRcdxd FZ0LXhNlQOn1236r5bNAc+wcqKNUmc+6FAnKiy2BimMtk6R+c3IJwiq+Sd+pR1rR Nm4hVcYWROMNcvNfRpbH19ePDusNb21NM8Zx/HqpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUf5aZj1Qe1qRf/DRIwtZ1gGhITXowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjN2JjZTIzLWNmY2EtNDQyMy04ZDZhLTU5NTVhNDY3YzRkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/sSAAwDQYJKoZIhvcNAQELBQADggEBANClLvKMOOQyq06iRWsDenqd 2Vm+J0auu+SDKCRSE5pPnU7OunjEHq33+m+y0ZcBucFCaDmYHsmcAkEV73IO/riP jGe0ThaG9XlnyjpHXrqLeqmKtdadz7WkbLpikZP/1xb/x+5efTHaT8FA3gNzUjLG WVABTNG/l0IN0K+SpShYw1zMlcoHWc0BrxdGgJmV63PT5Qo1hX+67RAMs1vHqjv9 KP8mPLI12DRGh/p1ayJYBVAiYjUKPqZat4Dl3NQ17VB2Wn7bg58GHyPQLwduMWwa wmcn41TXTaGKmtu/OcuS8Y6PDoGoOqUXcNgFgLFYSkkYqzsD5VSqnHtO+TnXzKs= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:08 2025 by rpki-client