$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fe31bb9-5ace-471f-93b7-d1915959f61a.roa File: 0fe31bb9-5ace-471f-93b7-d1915959f61a.roa (raw, json) Hash identifier: myjfjrW4WeKP8QrezZ5jsA9rXR+85kKszhQgf/86Pnc= Subject key identifier: ED:43:FB:E6:D0:C1:0B:D3:32:35:A6:B0:70:57:9C:50:39:B9:39:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A3608C76EEF321B62B9F77B8F4ED415BBBE3652 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fe31bb9-5ace-471f-93b7-d1915959f61a.roa Signing time: Tue 26 Aug 2025 15:41:11 +0000 ROA not before: Tue 26 Aug 2025 15:41:11 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f61:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:36:08:c7:6e:ef:32:1b:62:b9:f7:7b:8f:4e:d4:15:bb:be:36:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:41:11 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=8471daaa3f4617d5a288e9e67423a94762e7f2642e6b2a832128d8ecbd94fb48, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ed:4c:ac:c5:be:ba:21:51:67:a8:af:d2:e9: 28:b6:f0:2a:ba:47:05:44:d1:a5:2b:41:1d:f8:d1: 80:d0:94:c2:20:0d:cf:3a:e2:66:1c:df:43:59:7f: 18:d1:49:b8:a0:c9:a1:81:93:75:2c:5c:3b:c9:33: 22:5a:74:49:a3:32:04:85:d6:b2:ca:0a:90:07:4f: 42:2d:75:44:6e:8f:6d:c8:dd:42:6b:3d:67:20:96: ff:9b:21:e2:45:ee:b9:8f:95:86:de:7c:d5:f2:7e: d9:46:b3:5d:f5:c4:19:c5:04:f3:bd:51:78:de:78: 1e:a7:2d:b6:66:ac:8e:26:5b:ee:e1:c2:62:a1:ec: ef:36:43:67:b6:df:e8:d3:f9:f4:a3:95:47:b5:a8: ae:d8:dd:a9:87:fe:a6:c1:d2:65:a6:84:e4:12:08: 8d:d2:82:84:8c:5a:a8:a3:d7:b2:de:be:ee:eb:5a: 3f:0f:aa:15:1c:4c:2c:2a:2a:25:8c:ee:23:6d:b9: 56:10:dc:4b:1f:2c:b9:b2:c7:81:c7:a3:b3:f7:14: af:ea:7b:36:dc:78:c9:65:60:4c:b1:2a:86:33:1a: 0c:cd:d9:20:76:0f:74:bd:3d:0d:87:a7:4c:6b:b8: f8:ad:42:26:8d:55:d5:50:7b:18:c3:d5:8c:17:dd: e4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:43:FB:E6:D0:C1:0B:D3:32:35:A6:B0:70:57:9C:50:39:B9:39:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0fe31bb9-5ace-471f-93b7-d1915959f61a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:80c0::/48 Signature Algorithm: sha256WithRSAEncryption af:97:01:c7:7b:31:84:62:16:c6:f6:b6:17:1a:fd:c8:ea:d1: 48:6e:2e:18:8d:c0:cd:e1:ee:e8:86:73:f4:56:fa:aa:d7:b1: c4:59:5c:58:79:f2:07:b9:e0:c8:25:78:45:fa:11:7e:6c:ad: 3b:68:83:c0:e0:15:19:b6:92:48:01:27:8e:2b:24:48:15:dd: 51:74:51:c7:76:05:76:32:26:9d:ea:3c:8d:35:bd:04:d3:69: 27:4f:b0:20:1f:f3:f8:1c:97:94:28:41:6e:95:d3:34:6d:51: 90:59:de:ac:6a:11:70:b8:22:98:7e:e5:9c:f1:04:52:6d:b2: 2b:5d:2a:c6:6c:43:74:76:95:fc:af:5c:01:78:b6:aa:eb:3b: a1:19:2f:fa:f3:91:e9:a0:8b:4f:0a:0f:25:4d:e5:9d:54:48: b5:46:09:07:c6:3f:ca:b0:75:04:4b:02:c3:dc:4b:d0:ab:9e: 36:46:db:25:70:f1:4a:79:d0:80:b8:65:35:37:ac:b6:15:7a: 1c:4a:0d:cd:a0:78:01:b6:31:79:6b:3d:0a:5e:e9:55:75:5f: a5:70:23:94:fa:a6:ac:2f:02:85:0a:bb:f0:83:ab:84:5b:82: 1c:29:40:45:c4:81:73:32:10:90:1c:b5:16:0d:fd:2c:c9:eb: 30:ba:f0:3b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCjYIx27vMhtiufd7j07UFbu+NlIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTU0MTExWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDcxZGFhYTNmNDYxN2Q1YTI4OGU5ZTY3NDIzYTk0NzYy ZTdmMjY0MmU2YjJhODMyMTI4ZDhlY2JkOTRmYjQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC47Uysxb66IVFnqK/S6Si28Cq6RwVE0aUrQR340YDQlMIg Dc864mYc30NZfxjRSbigyaGBk3UsXDvJMyJadEmjMgSF1rLKCpAHT0ItdURuj23I 3UJrPWcglv+bIeJF7rmPlYbefNXyftlGs131xBnFBPO9UXjeeB6nLbZmrI4mW+7h wmKh7O82Q2e23+jT+fSjlUe1qK7Y3amH/qbB0mWmhOQSCI3SgoSMWqij17Levu7r Wj8PqhUcTCwqKiWM7iNtuVYQ3EsfLLmyx4HHo7P3FK/qezbceMllYEyxKoYzGgzN 2SB2D3S9PQ2Hp0xruPitQiaNVdVQexjD1YwX3eRxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU7UP75tDBC9MyNaawcFecUDm5ORwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmZTMxYmI5LTVhY2UtNDcxZi05M2I3LWQxOTE1OTU5ZjYxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hgMAwDQYJKoZIhvcNAQELBQADggEBAK+XAcd7MYRiFsb2thca/cjq 0UhuLhiNwM3h7uiGc/RW+qrXscRZXFh58ge54MgleEX6EX5srTtog8DgFRm2kkgB J44rJEgV3VF0Ucd2BXYyJp3qPI01vQTTaSdPsCAf8/gcl5QoQW6V0zRtUZBZ3qxq EXC4Iph+5ZzxBFJtsitdKsZsQ3R2lfyvXAF4tqrrO6EZL/rzkemgi08KDyVN5Z1U SLVGCQfGP8qwdQRLAsPcS9CrnjZG2yVw8Up50IC4ZTU3rLYVehxKDc2geAG2MXlr PQpe6VV1X6VwI5T6pqwvAoUKu/CDq4RbghwpQEXEgXMyEJActRYN/SzJ6zC68Ds= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:56 2025 by rpki-client