$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2b7e42-54f7-4dec-b1b3-7e823b6dc53c.roa File: 0a2b7e42-54f7-4dec-b1b3-7e823b6dc53c.roa (raw, json) Hash identifier: HcnQYN6N8/7cbhUaEAjy/mfbte47qQF92Er8A/W9PWQ= Subject key identifier: D4:4C:8D:1D:0F:44:03:3C:10:17:D4:57:88:A7:31:5C:0F:C2:48:41 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70AEF992714EB5039A013AF4DDE4F9D901F549D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2b7e42-54f7-4dec-b1b3-7e823b6dc53c.roa Signing time: Mon 25 Aug 2025 17:07:11 +0000 ROA not before: Mon 25 Aug 2025 17:07:11 +0000 ROA not after: Mon 29 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fec:d400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:ae:f9:92:71:4e:b5:03:9a:01:3a:f4:dd:e4:f9:d9:01:f5:49:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 25 17:07:11 2025 GMT Not After : Sep 29 23:59:59 2025 GMT Subject: serialNumber=5da8ecfe436b09b43019545fd7fb90080c47fb8bff7527a3c3a3b23e08eaedc8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:16:b2:a0:6a:c1:a2:fe:20:83:15:00:15:5f: 31:32:6e:dc:68:07:fc:a6:b4:2d:ec:92:50:f0:13: 7f:80:e2:36:87:19:e6:ce:e7:da:60:90:b4:2b:6c: ff:93:96:6c:3d:78:78:14:de:e5:52:d6:e9:75:43: bb:9e:57:3a:ea:89:d2:60:23:99:dc:95:11:47:2a: 6d:2a:88:ef:b8:fe:a2:7c:01:7e:17:3c:b8:68:f4: 00:76:f9:2f:65:c2:a6:19:fb:d4:2c:7d:47:52:e5: fc:b3:26:16:3d:55:02:66:0d:cb:02:44:de:95:aa: ce:c5:79:33:06:50:45:45:93:46:22:fb:9e:15:95: db:65:6b:e5:09:52:36:e0:1e:30:a9:4f:a1:8f:e7: 44:3c:55:56:a4:eb:e1:6e:c6:52:c6:2e:80:5c:f6: 6c:20:34:01:2e:fc:10:e3:9e:ef:76:27:7e:70:86: 8d:49:4e:c8:ee:7f:1a:01:99:b4:20:09:2c:90:8a: 9b:56:a3:aa:ac:f2:eb:a8:10:8e:5e:34:2f:6f:d1: ac:17:bd:2a:c6:a6:00:00:4c:80:2b:c1:49:27:1f: 86:f2:90:df:19:22:f9:17:e1:a3:35:be:3a:31:bd: bb:2a:0d:d1:c6:29:3a:e7:7d:13:17:70:db:09:1d: 56:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:4C:8D:1D:0F:44:03:3C:10:17:D4:57:88:A7:31:5C:0F:C2:48:41 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a2b7e42-54f7-4dec-b1b3-7e823b6dc53c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:d400::/48 Signature Algorithm: sha256WithRSAEncryption 57:ff:84:a9:cd:b5:2e:f4:e3:30:ed:1f:a6:31:25:90:fe:4a: 34:b9:c6:b8:63:d9:b2:46:00:26:3b:6a:72:33:f6:0b:4f:34: e7:32:f0:13:34:02:21:3d:69:dd:33:40:98:4c:90:60:99:18: cd:6e:47:90:98:62:43:62:b6:86:68:50:57:25:46:e0:53:83: c7:10:e3:8f:53:51:c1:09:7a:3b:7e:84:e3:8f:db:5a:e3:69: 67:1e:af:38:9a:44:be:41:bd:03:51:48:27:bc:f3:6c:35:9d: cf:e4:e9:b2:83:e9:c8:38:8d:21:16:1c:22:ba:4a:8b:2e:83: e4:ef:da:9a:ed:4b:83:9b:50:2c:70:f3:0e:a9:0d:c9:31:95: 1f:2b:20:8d:a2:9b:6b:73:41:06:aa:d4:0a:71:c2:f3:75:fa: c4:e4:85:71:35:63:b9:e5:b9:fd:04:37:2b:c3:e2:4e:5d:c0: 74:82:29:a1:aa:09:a4:1c:81:9f:7c:75:fc:88:32:7d:79:8f: a2:28:54:63:5a:f8:da:a2:04:4d:4e:5e:88:02:55:40:69:89: 51:4f:43:84:cd:85:dc:c1:6a:dc:87:f2:52:04:71:9b:ab:38: 97:59:e5:70:a7:43:78:cc:b0:ab:d6:af:64:c8:d8:7c:d6:dc: af:24:ea:04 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcK75knFOtQOaATr03eT52QH1SdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI1MTcwNzExWhcNMjUwOTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGE4ZWNmZTQzNmIwOWI0MzAxOTU0NWZkN2ZiOTAwODBj NDdmYjhiZmY3NTI3YTNjM2EzYjIzZTA4ZWFlZGM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/FrKgasGi/iCDFQAVXzEybtxoB/ymtC3sklDwE3+A4jaH GebO59pgkLQrbP+Tlmw9eHgU3uVS1ul1Q7ueVzrqidJgI5nclRFHKm0qiO+4/qJ8 AX4XPLho9AB2+S9lwqYZ+9QsfUdS5fyzJhY9VQJmDcsCRN6Vqs7FeTMGUEVFk0Yi +54Vldtla+UJUjbgHjCpT6GP50Q8VVak6+FuxlLGLoBc9mwgNAEu/BDjnu92J35w ho1JTsjufxoBmbQgCSyQiptWo6qs8uuoEI5eNC9v0awXvSrGpgAATIArwUknH4by kN8ZIvkX4aM1vjoxvbsqDdHGKTrnfRMXcNsJHVZLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1EyNHQ9EAzwQF9RXiKcxXA/CSEEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhMmI3ZTQyLTU0ZjctNGRlYy1iMWIzLTdlODIzYjZkYzUzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/s1AAwDQYJKoZIhvcNAQELBQADggEBAFf/hKnNtS704zDtH6YxJZD+ SjS5xrhj2bJGACY7anIz9gtPNOcy8BM0AiE9ad0zQJhMkGCZGM1uR5CYYkNitoZo UFclRuBTg8cQ449TUcEJejt+hOOP21rjaWcerziaRL5BvQNRSCe882w1nc/k6bKD 6cg4jSEWHCK6Sosug+Tv2prtS4ObUCxw8w6pDckxlR8rII2im2tzQQaq1ApxwvN1 +sTkhXE1Y7nluf0ENyvD4k5dwHSCKaGqCaQcgZ98dfyIMn15j6IoVGNa+NqiBE1O XogCVUBpiVFPQ4TNhdzBatyH8lIEcZurOJdZ5XCnQ3jMsKvWr2TI2HzW3K8k6gQ= -----END CERTIFICATE-----Generated at Sat Sep 6 14:09:00 2025 by rpki-client