$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a12ecf2-0a22-45c0-a0b1-06f01158cf0e.roa File: 0a12ecf2-0a22-45c0-a0b1-06f01158cf0e.roa (raw, json) Hash identifier: MW2ROZgSJLfWz+bMhsXe1/2qxm6+9pB+G/hHufHXzkQ= Subject key identifier: AD:8E:43:6A:B4:D8:88:26:67:47:A8:AE:6C:0E:93:AB:1F:0E:0E:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3743E3DAC9D06EAD0ADAA53B47EAAAC4310CF51A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a12ecf2-0a22-45c0-a0b1-06f01158cf0e.roa Signing time: Thu 18 Sep 2025 20:07:12 +0000 ROA not before: Thu 18 Sep 2025 20:07:12 +0000 ROA not after: Thu 23 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:43:e3:da:c9:d0:6e:ad:0a:da:a5:3b:47:ea:aa:c4:31:0c:f5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 18 20:07:12 2025 GMT Not After : Oct 23 23:59:59 2025 GMT Subject: serialNumber=c64db6862d161a239fe1bb4e0544ba8d6ec38f23b9d94b3b14d9ecdc0a967103, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:7e:3a:65:a3:33:37:f4:e4:20:9e:f7:cb:df: a3:41:2d:b5:d4:e4:6d:94:77:a8:03:de:28:47:9f: 2b:1d:a4:1f:32:87:71:cc:e0:94:36:fc:96:2a:a5: 6e:fa:26:41:c7:6d:8f:5f:f5:a8:cb:9c:3e:03:f6: 4e:7c:4b:cf:9f:c0:51:a3:b6:09:37:fc:7d:9c:63: 56:98:69:f7:1a:4a:1b:63:c9:12:2d:60:37:41:a8: f6:1a:b5:d8:8f:65:9e:7f:6a:be:ce:c8:15:86:f0: e7:f9:b6:89:50:0e:b7:01:74:3f:89:b2:23:54:2f: 9b:83:eb:f5:59:27:59:d6:5c:df:76:19:a8:b7:19: 0a:8f:b0:8d:17:f6:68:f6:fd:1f:84:d1:dc:1a:98: 47:cb:f1:25:8e:bf:41:16:1c:99:f6:18:50:d2:0f: 53:7d:14:6c:6e:80:03:6a:9c:e5:90:9d:91:7d:e8: f7:f1:52:8c:88:26:0a:36:03:b0:10:99:e0:43:25: 22:30:61:c6:59:98:3e:2e:4a:26:22:3c:1c:23:8f: ad:a2:6b:23:04:e1:79:04:ca:1b:c9:55:bf:85:a5: 52:a1:f8:5e:a5:17:c9:63:75:8b:f0:ab:b0:7a:f9: 8e:7a:60:24:c5:c5:dc:6a:94:ae:e0:59:6e:10:57: ee:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8E:43:6A:B4:D8:88:26:67:47:A8:AE:6C:0E:93:AB:1F:0E:0E:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a12ecf2-0a22-45c0-a0b1-06f01158cf0e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01::/32 Signature Algorithm: sha256WithRSAEncryption 40:b4:4e:9f:1b:8c:b7:37:75:ee:10:67:76:4a:7e:0b:a2:da: e8:f0:50:eb:e3:6a:85:7a:bc:74:d2:4a:98:4e:32:1b:37:39: 7e:69:99:42:4e:3e:e1:3f:af:78:f0:cb:26:89:80:55:62:7b: 4a:06:1f:04:07:c1:ca:16:fb:7b:d2:ee:30:f2:32:b3:5b:b9: 96:d3:80:04:2a:8f:7d:41:3f:24:0b:28:f0:9c:f2:6b:d6:e1: ad:3d:59:36:bf:2a:c2:04:56:0e:19:43:aa:ba:0b:02:b0:a9: be:72:5e:e3:e9:38:3f:3f:3b:44:1d:e4:e4:07:97:dc:01:60: 7e:67:3c:81:34:08:0f:f1:07:04:81:45:70:6b:e8:79:5c:fe: 68:80:8e:a9:d8:c2:35:64:6f:59:f8:78:64:49:7e:f0:c2:14: cd:d2:b3:70:78:e7:45:a6:81:72:14:e4:6d:bc:90:75:f8:b0: 2e:30:93:b6:cc:91:e1:0e:51:e3:32:ac:48:b6:3c:e9:82:3b: 3d:78:b5:e4:66:4b:a9:41:28:51:a0:cc:01:5a:0f:77:c7:35: 06:df:34:39:a7:6f:bf:0b:42:23:57:20:a2:17:a1:c3:21:9e: de:79:f4:9d:83:77:77:bc:85:00:b4:e5:2c:2e:7d:ab:48:86: 27:89:88:4e -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUN0Pj2snQbq0K2qU7R+qqxDEM9RowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTE4MjAwNzEyWhcNMjUxMDIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjRkYjY4NjJkMTYxYTIzOWZlMWJiNGUwNTQ0YmE4ZDZl YzM4ZjIzYjlkOTRiM2IxNGQ5ZWNkYzBhOTY3MTAzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtfjplozM39OQgnvfL36NBLbXU5G2Ud6gD3ihHnysdpB8y h3HM4JQ2/JYqpW76JkHHbY9f9ajLnD4D9k58S8+fwFGjtgk3/H2cY1aYafcaShtj yRItYDdBqPYatdiPZZ5/ar7OyBWG8Of5tolQDrcBdD+JsiNUL5uD6/VZJ1nWXN92 Gai3GQqPsI0X9mj2/R+E0dwamEfL8SWOv0EWHJn2GFDSD1N9FGxugANqnOWQnZF9 6PfxUoyIJgo2A7AQmeBDJSIwYcZZmD4uSiYiPBwjj62iayME4XkEyhvJVb+FpVKh +F6lF8ljdYvwq7B6+Y56YCTFxdxqlK7gWW4QV+6/AgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUrY5DarTYiCZnR6iubA6Tqx8ODnEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhMTJlY2YyLTBhMjItNDVjMC1hMGIxLTA2ZjAxMTU4Y2YwZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB8BMA0GCSqGSIb3DQEBCwUAA4IBAQBAtE6fG4y3N3XuEGd2Sn4Lotro 8FDr42qFerx00kqYTjIbNzl+aZlCTj7hP6948MsmiYBVYntKBh8EB8HKFvt70u4w 8jKzW7mW04AEKo99QT8kCyjwnPJr1uGtPVk2vyrCBFYOGUOqugsCsKm+cl7j6Tg/ PztEHeTkB5fcAWB+ZzyBNAgP8QcEgUVwa+h5XP5ogI6p2MI1ZG9Z+HhkSX7wwhTN 0rNweOdFpoFyFORtvJB1+LAuMJO2zJHhDlHjMqxItjzpgjs9eLXkZkupQShRoMwB Wg93xzUG3zQ5p2+/C0IjVyCiF6HDIZ7eefSdg3d3vIUAtOUsLn2rSIYniYhO -----END CERTIFICATE-----Generated at Fri Sep 19 03:17:42 2025 by rpki-client