$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa File: 0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa (raw, json) Hash identifier: nlUAf0tNdplJ4+YwTx+M/yULCay06WE9RoWPKY0dY+w= Subject key identifier: F6:8B:10:15:6A:72:4F:37:37:D7:D7:9E:E1:DE:15:E7:49:39:B2:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 395459FC95D2ADBEF3E32BEF54B8CAA5A158AAF1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa Signing time: Mon 01 Sep 2025 15:30:53 +0000 ROA not before: Mon 01 Sep 2025 15:30:53 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f2a:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:54:59:fc:95:d2:ad:be:f3:e3:2b:ef:54:b8:ca:a5:a1:58:aa:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:30:53 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=af92f566ebc4e25f79b74650ae5f114f1f42859f4777a1761358d502fe253b6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:79:e0:ec:22:f5:4f:d3:e7:28:85:36:9b:ab: e1:d6:8a:0f:04:2d:3f:28:b4:32:b9:8a:15:87:44: 09:51:de:47:ea:38:d6:1c:9f:2d:ee:af:84:ea:dd: 66:db:e9:b7:3f:12:11:60:91:99:5f:fe:b6:e5:77: 27:13:22:c2:54:9a:88:b5:b7:a0:02:5f:54:99:2b: 48:18:ce:74:5f:e8:1c:c3:b4:e7:34:20:2c:ae:fd: 5d:97:f8:d4:32:19:f0:a6:e9:29:16:cd:b8:78:c4: e0:d3:81:5f:6a:e5:27:97:60:97:45:a7:2e:f5:30: 54:99:ea:3a:3d:75:e6:df:2c:ad:48:87:89:75:c9: 13:6c:61:81:82:20:94:c5:e6:1c:04:0e:f9:a2:79: 2c:88:a7:8a:92:d4:bd:dc:60:78:d9:6d:de:bc:8b: 14:56:e4:00:86:31:da:87:17:7a:c1:6a:b6:f6:75: f2:e4:85:d8:15:1f:de:55:39:50:06:5e:54:ed:d1: e2:41:7a:8c:eb:63:9c:2e:7f:2d:ed:54:95:a0:78: 34:21:da:38:50:89:4a:5e:e6:42:98:d1:38:8e:af: e3:fc:fb:fc:13:03:0e:68:d0:db:6d:e2:26:7c:c0: 16:e9:98:51:e7:14:4d:ee:4c:cf:a5:b3:8c:7f:d6: d1:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:8B:10:15:6A:72:4F:37:37:D7:D7:9E:E1:DE:15:E7:49:39:B2:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cf50ad6-9442-4597-8c89-e5beb52d50eb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2a:c800::/37 Signature Algorithm: sha256WithRSAEncryption 3c:da:5e:15:1c:82:93:8f:32:0f:9a:32:ec:7b:81:10:ee:72: 9b:b3:5f:f3:c6:db:f0:7f:11:3d:19:6b:03:93:83:04:04:97: 0c:31:cf:d6:c9:14:2f:41:a4:26:2b:e5:81:f8:30:74:3c:16: 61:63:3e:20:c9:af:52:81:6b:9d:27:7e:2d:19:d9:66:2f:32: 04:56:68:42:d5:0d:d1:36:ff:2a:85:c8:e8:01:b6:a7:cc:7a: 73:19:7b:b1:54:68:79:5b:e0:7d:c9:8f:a4:1e:62:60:5d:ff: 01:90:67:fb:d9:b9:e7:72:b1:0c:02:ee:60:86:0f:d6:10:a1: 88:86:18:ee:58:b7:fb:0a:11:27:8e:9d:cd:65:57:7a:74:fb: 33:d3:92:19:9a:42:da:5f:8a:57:3e:10:1a:18:6c:cb:e0:e7: b2:f9:99:aa:20:ac:e7:46:86:3e:9e:26:a0:ce:06:a9:77:a5: 4d:ad:cc:b5:5b:51:47:d7:cb:d4:63:f2:d9:1d:d0:8f:b9:b3: 13:d0:03:99:04:63:41:03:36:8d:02:e5:88:0e:d4:70:ab:f3: 82:6a:08:bf:79:d0:ff:1c:1c:32:13:d3:d0:5b:60:00:31:4c: 97:0a:e8:f1:4b:fd:1b:a2:51:56:14:09:5e:b9:39:51:ab:01: 22:fd:fb:59 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOVRZ/JXSrb7z4yvvVLjKpaFYqvEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUzMDUzWhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjkyZjU2NmViYzRlMjVmNzliNzQ2NTBhZTVmMTE0ZjFm NDI4NTlmNDc3N2ExNzYxMzU4ZDUwMmZlMjUzYjZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCleeDsIvVP0+cohTabq+HWig8ELT8otDK5ihWHRAlR3kfq ONYcny3ur4Tq3Wbb6bc/EhFgkZlf/rbldycTIsJUmoi1t6ACX1SZK0gYznRf6BzD tOc0ICyu/V2X+NQyGfCm6SkWzbh4xODTgV9q5SeXYJdFpy71MFSZ6jo9debfLK1I h4l1yRNsYYGCIJTF5hwEDvmieSyIp4qS1L3cYHjZbd68ixRW5ACGMdqHF3rBarb2 dfLkhdgVH95VOVAGXlTt0eJBeozrY5wufy3tVJWgeDQh2jhQiUpe5kKY0TiOr+P8 +/wTAw5o0Ntt4iZ8wBbpmFHnFE3uTM+ls4x/1tG9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9osQFWpyTzc319ee4d4V50k5sjUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjZjUwYWQ2LTk0NDItNDU5Ny04Yzg5LWU1YmViNTJkNTBlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8qyDANBgkqhkiG9w0BAQsFAAOCAQEAPNpeFRyCk48yD5oy7HuBEO5y m7Nf88bb8H8RPRlrA5ODBASXDDHP1skUL0GkJivlgfgwdDwWYWM+IMmvUoFrnSd+ LRnZZi8yBFZoQtUN0Tb/KoXI6AG2p8x6cxl7sVRoeVvgfcmPpB5iYF3/AZBn+9m5 53KxDALuYIYP1hChiIYY7li3+woRJ46dzWVXenT7M9OSGZpC2l+KVz4QGhhsy+Dn svmZqiCs50aGPp4moM4GqXelTa3MtVtRR9fL1GPy2R3Qj7mzE9ADmQRjQQM2jQLl iA7UcKvzgmoIv3nQ/xwcMhPT0FtgADFMlwro8Uv9G6JRVhQJXrk5UasBIv37WQ== -----END CERTIFICATE-----Generated at Sat Sep 6 16:46:21 2025 by rpki-client