$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa File: f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa (raw, json) Hash identifier: 7WbNI95EXAZyUg7vAqY25hTFyB3mZIiIXXGFKBvc/N4= Subject key identifier: FC:0D:46:FB:1B:6C:49:C2:63:B6:25:BF:3B:6A:79:EC:63:A4:E6:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A03B57A2D79DB2F92D05304AB2C65D06B7B2341 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa Signing time: Wed 23 Jul 2025 00:31:51 +0000 ROA not before: Wed 23 Jul 2025 00:31:51 +0000 ROA not after: Wed 27 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:81b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:03:b5:7a:2d:79:db:2f:92:d0:53:04:ab:2c:65:d0:6b:7b:23:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 23 00:31:51 2025 GMT Not After : Aug 27 23:59:59 2025 GMT Subject: serialNumber=6d9f48f283e0c98e9e38c493a8a68fd44358ef21eae35ab841cc48bfef7ac5ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a5:4a:40:b0:93:13:0c:72:a1:62:9c:2c:6d: 6f:f6:5a:29:ed:f4:db:46:51:30:ee:02:76:da:e5: d0:80:f7:75:d2:ea:f7:5e:3d:4d:4b:96:a4:1a:52: 8a:5c:6d:74:84:b5:58:74:18:7d:1f:22:bc:e9:40: 51:8d:74:e6:04:da:3c:26:dd:89:3a:2d:da:81:80: 26:3a:be:45:2b:7b:e0:15:12:bd:2b:6c:de:18:5f: 22:ca:f7:1b:1c:17:cf:53:72:a8:62:1c:f5:85:80: 36:dc:3d:6c:73:ed:59:82:c8:17:90:05:b8:f6:c9: 7e:76:53:db:f4:c6:c6:1f:38:4a:24:3c:7b:aa:c5: f4:87:da:22:5d:b9:66:89:3d:f2:37:8a:9d:01:f5: ad:ad:14:1f:fa:92:16:e4:44:d3:ef:da:42:88:16: fe:0d:54:88:5d:b1:ed:56:31:d3:61:a7:8c:cf:bc: 69:24:a4:e0:de:06:a3:11:57:c0:af:ea:3f:72:40: 30:11:98:3a:39:9a:1b:3f:ab:07:14:cc:69:e6:12: f6:1a:3d:14:ee:47:1d:d3:db:ae:25:34:2c:8f:79: 16:78:8c:df:4b:42:1c:e6:fb:a2:ff:fc:32:a6:f4: da:cf:76:79:e7:de:3e:49:76:25:12:f6:fa:d4:21: 64:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:0D:46:FB:1B:6C:49:C2:63:B6:25:BF:3B:6A:79:EC:63:A4:E6:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:81b0::/48 Signature Algorithm: sha256WithRSAEncryption 75:ed:95:83:42:d4:53:57:8c:33:f6:86:20:ff:a3:25:9b:dd: fd:df:85:75:ff:67:a5:55:da:5a:8d:dc:61:13:59:4d:b1:cc: 43:2e:f8:a8:48:b9:9e:a7:fa:b6:88:df:e8:01:b5:d8:97:0e: 96:ed:a5:5a:c0:a5:d6:17:e1:37:73:2f:8d:fb:ed:96:86:09: f0:4a:97:8f:43:74:d2:79:27:25:d1:1e:26:d6:6a:ef:a5:1a: 11:e1:f2:ea:53:d9:72:58:50:a7:a2:94:7c:41:c7:81:86:6d: 66:93:e6:d8:ad:3a:6a:27:42:24:a3:62:d5:c3:5e:5d:16:c9: b8:44:97:2d:1b:fb:55:3c:83:5a:9c:5b:3b:fb:f0:2f:1e:33: 6e:ac:2d:8e:23:57:8b:1c:c3:fa:be:8e:95:c9:37:a3:e4:58: d0:ae:4f:29:fd:44:7d:c0:8f:26:f1:73:2c:88:55:76:e1:82: b0:0a:00:93:8f:98:a7:a5:0a:b5:ad:4e:83:e9:d1:a2:56:d3: 3e:a6:6c:0b:62:17:c1:ee:88:22:d1:9f:dd:aa:7e:cc:ca:ae: 08:e5:33:c0:1c:5b:ce:dc:4f:14:ff:62:a2:03:bd:ba:ab:d0: 4d:14:cc:49:e2:27:54:72:f0:4b:43:15:1a:8a:f2:0c:f3:59: 8d:49:4c:49 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCgO1ei152y+S0FMEqyxl0Gt7I0EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIzMDAzMTUxWhcNMjUwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDlmNDhmMjgzZTBjOThlOWUzOGM0OTNhOGE2OGZkNDQz NThlZjIxZWFlMzVhYjg0MWNjNDhiZmVmN2FjNWFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCpUpAsJMTDHKhYpwsbW/2Wint9NtGUTDuAnba5dCA93XS 6vdePU1LlqQaUopcbXSEtVh0GH0fIrzpQFGNdOYE2jwm3Yk6LdqBgCY6vkUre+AV Er0rbN4YXyLK9xscF89TcqhiHPWFgDbcPWxz7VmCyBeQBbj2yX52U9v0xsYfOEok PHuqxfSH2iJduWaJPfI3ip0B9a2tFB/6khbkRNPv2kKIFv4NVIhdse1WMdNhp4zP vGkkpODeBqMRV8Cv6j9yQDARmDo5mhs/qwcUzGnmEvYaPRTuRx3T264lNCyPeRZ4 jN9LQhzm+6L//DKm9NrPdnnn3j5JdiUS9vrUIWSvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU/A1G+xtsScJjtiW/O2p57GOk5pwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxODllNWJlLTM3YTYtNDY3Mi05YTkyLWU4ZDIwNDFjOGIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gbAwDQYJKoZIhvcNAQELBQADggEBAHXtlYNC1FNXjDP2hiD/oyWb 3f3fhXX/Z6VV2lqN3GETWU2xzEMu+KhIuZ6n+raI3+gBtdiXDpbtpVrApdYX4Tdz L4377ZaGCfBKl49DdNJ5JyXRHibWau+lGhHh8upT2XJYUKeilHxBx4GGbWaT5tit OmonQiSjYtXDXl0WybhEly0b+1U8g1qcWzv78C8eM26sLY4jV4scw/q+jpXJN6Pk WNCuTyn9RH3AjybxcyyIVXbhgrAKAJOPmKelCrWtToPp0aJW0z6mbAtiF8HuiCLR n92qfszKrgjlM8AcW87cTxT/YqIDvbqr0E0UzEniJ1Ry8EtDFRqK8gzzWY1JTEk= -----END CERTIFICATE-----Generated at Thu Jul 31 01:09:02 2025 by rpki-client