$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa File: 0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa (raw, json) Hash identifier: S1kSG8Z2H/0Gezqjbyw/otwYm2kB0wC+hYimdXn9qWw= Subject key identifier: A8:E4:BD:8D:F5:9F:18:EF:8F:05:3E:4B:93:96:38:54:18:BB:F6:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AF2EFC2F21EBC9F403A1DE719A8955F07FC8299 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa Signing time: Mon 01 Sep 2025 15:21:27 +0000 ROA not before: Mon 01 Sep 2025 15:21:27 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:f2:ef:c2:f2:1e:bc:9f:40:3a:1d:e7:19:a8:95:5f:07:fc:82:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:21:27 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=7d9d5bba608f3ea3dd753856f04d884e1e850aad7bd1ecd158b04bb7253caff4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:93:89:68:3e:f7:e2:ea:3e:9e:5d:ae:1a:d0: ce:02:17:6a:a3:dd:60:a1:a8:1b:7c:bd:f0:e9:fa: 0c:13:c1:f8:76:7f:03:b6:4a:4a:67:9b:02:fb:34: 92:33:48:99:49:65:dd:2b:43:5b:3a:5a:d9:1e:1b: 50:2f:37:59:f1:34:cd:92:e8:0d:9c:95:74:aa:0b: 1a:5f:4d:70:08:b6:6f:b5:cf:e9:cb:75:c8:13:cb: bf:2b:82:d8:0d:71:06:e8:f5:ff:1c:d6:c6:6a:7b: e1:5b:3d:5d:f9:28:b6:6f:38:81:9e:74:c8:5c:af: 05:16:c5:d6:d0:71:4a:d6:ce:59:80:fe:79:4c:be: ec:d0:3f:83:4b:2d:f5:a0:bd:3c:af:b0:41:79:40: 5a:f0:80:fa:b0:1b:7b:7e:88:04:9e:3f:b0:a5:82: 02:48:70:fc:52:cf:92:71:38:ad:4b:2c:a7:f1:1b: ae:59:64:53:0b:1c:29:1e:0a:28:6b:b1:6f:13:27: 33:44:da:9b:b1:f3:c4:c6:aa:4e:90:b6:a7:e1:43: cc:71:54:3d:cb:5d:06:88:05:6e:ef:81:f2:eb:57: ae:a8:c3:73:da:34:a1:ec:bf:05:ad:37:0c:34:ff: e6:cc:19:59:7a:2e:d8:40:28:b3:21:4f:c3:99:48: e5:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:E4:BD:8D:F5:9F:18:EF:8F:05:3E:4B:93:96:38:54:18:BB:F6:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:1000::/40 Signature Algorithm: sha256WithRSAEncryption 1d:ef:19:d4:e8:93:38:9b:75:c8:d5:5c:16:6c:75:c0:49:fa: 72:19:47:e9:44:35:ac:23:50:28:22:75:0d:19:a6:2a:e9:91: d3:1f:35:e6:5f:80:a5:b2:51:0e:17:0e:e4:1e:e1:7c:80:b1: 02:c4:76:dc:1b:56:fc:74:84:1f:84:fa:37:94:35:71:aa:89: ed:bd:da:4b:82:bb:d7:ca:fd:d1:9f:d3:9a:86:d7:b3:32:77: 8b:0d:11:f9:c7:ce:44:da:90:b5:7f:bb:25:20:09:2e:f7:16: 63:db:64:e1:89:5e:f3:08:be:52:0e:86:2f:5a:76:ef:3b:6a: 7d:12:e0:7f:5c:e7:87:43:1d:e1:8f:9f:d7:05:68:d8:dc:20: ff:36:94:06:eb:16:98:45:5a:fa:6f:7d:26:02:d2:bb:3c:7a: cf:84:6a:a0:21:cc:ae:bc:5e:85:20:7a:92:2c:d9:94:b2:96: 17:c1:b5:1b:dc:0b:cb:e2:e0:25:8e:93:2e:24:9c:3e:cf:55: 58:0f:9d:df:b2:48:e3:a1:54:21:a4:fe:0d:9b:ad:9b:0b:27: d3:e1:32:17:2f:e6:fb:94:cb:17:e1:22:dc:bd:c5:3d:82:0d: a8:3d:ae:e2:dd:1c:d2:f9:83:6f:39:94:4a:10:56:29:55:7c: f4:28:94:be -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOvLvwvIevJ9AOh3nGaiVXwf8gpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUyMTI3WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDlkNWJiYTYwOGYzZWEzZGQ3NTM4NTZmMDRkODg0ZTFl ODUwYWFkN2JkMWVjZDE1OGIwNGJiNzI1M2NhZmY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrk4loPvfi6j6eXa4a0M4CF2qj3WChqBt8vfDp+gwTwfh2 fwO2SkpnmwL7NJIzSJlJZd0rQ1s6WtkeG1AvN1nxNM2S6A2clXSqCxpfTXAItm+1 z+nLdcgTy78rgtgNcQbo9f8c1sZqe+FbPV35KLZvOIGedMhcrwUWxdbQcUrWzlmA /nlMvuzQP4NLLfWgvTyvsEF5QFrwgPqwG3t+iASeP7ClggJIcPxSz5JxOK1LLKfx G65ZZFMLHCkeCihrsW8TJzNE2pux88TGqk6QtqfhQ8xxVD3LXQaIBW7vgfLrV66o w3PaNKHsvwWtNww0/+bMGVl6LthAKLMhT8OZSOVrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUqOS9jfWfGO+PBT5Lk5Y4VBi79rEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiYTJjYmUzLWJjOGMtNDU2Ni05Y2Y5LWY1ZjliZmQ1MTgyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vEDANBgkqhkiG9w0BAQsFAAOCAQEAHe8Z1OiTOJt1yNVcFmx1wEn6 chlH6UQ1rCNQKCJ1DRmmKumR0x815l+ApbJRDhcO5B7hfICxAsR23BtW/HSEH4T6 N5Q1caqJ7b3aS4K718r90Z/TmobXszJ3iw0R+cfORNqQtX+7JSAJLvcWY9tk4Yle 8wi+Ug6GL1p27ztqfRLgf1znh0Md4Y+f1wVo2Nwg/zaUBusWmEVa+m99JgLSuzx6 z4RqoCHMrrxehSB6kizZlLKWF8G1G9wLy+LgJY6TLiScPs9VWA+d37JI46FUIaT+ DZutmwsn0+EyFy/m+5TLF+Ei3L3FPYINqD2u4t0c0vmDbzmUShBWKVV89CiUvg== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:29 2025 by rpki-client