$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11922458-95a1-49eb-ab5f-e50a3e748405.roa File: 11922458-95a1-49eb-ab5f-e50a3e748405.roa (raw, json) Hash identifier: 8In/2b2WLIMk0ei3XNXAorRZIzFmxSCEfyb3IVC/GWo= Subject key identifier: E6:89:B8:39:BF:3B:A9:5F:41:EF:23:54:FF:72:08:4E:EB:9D:82:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1396CE4ADC9985C5F09EE0CCC5B6373F548C9675 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11922458-95a1-49eb-ab5f-e50a3e748405.roa Signing time: Fri 29 Aug 2025 16:10:52 +0000 ROA not before: Fri 29 Aug 2025 16:10:52 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f15:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:96:ce:4a:dc:99:85:c5:f0:9e:e0:cc:c5:b6:37:3f:54:8c:96:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:10:52 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=99da63470e8166f2748f45a9ff1b0da5087086b3dc303cbc1b2f34f723033bfe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3d:45:c8:79:79:1e:4c:f2:54:b5:d5:df:a3: af:2e:e8:e8:96:bc:e6:1b:68:da:bc:a3:7e:49:c9: 1d:db:74:93:be:66:47:d8:90:d2:19:16:a2:46:bc: 32:87:a2:c9:b0:ea:60:1f:87:41:be:5e:05:3d:b6: 75:c1:01:b2:67:a0:2f:07:52:08:fc:f5:95:f3:10: d2:2d:cc:bf:dd:11:30:95:8c:6d:0f:67:84:a0:fc: 5b:b5:4a:fb:0d:f3:dc:76:a0:a7:b2:f4:32:34:ab: 90:9d:bd:87:ed:5b:5e:f1:3e:e2:f4:56:4f:93:9b: e7:0d:2c:da:17:32:2e:33:6b:c7:62:a8:7c:21:c4: ed:c1:f5:f9:cf:c4:d8:c2:9a:a4:dd:89:22:34:dd: b5:b7:e6:71:b2:89:30:4b:83:e8:31:bf:ed:a0:06: ab:8b:9a:19:76:06:fc:ee:fd:7d:4f:88:23:91:01: cd:c8:4e:57:c5:2c:47:7f:5f:75:4a:20:71:38:ed: f4:43:6c:a2:3a:50:76:84:71:a3:95:e9:1e:e6:9a: 69:86:fa:68:9d:08:4f:f8:f2:87:91:e5:cc:5e:f4: 87:0b:8b:34:32:20:8d:aa:24:d1:21:ba:6a:b7:27: fc:fd:46:8d:a5:b3:10:fa:75:1b:db:49:79:ee:9c: d0:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:89:B8:39:BF:3B:A9:5F:41:EF:23:54:FF:72:08:4E:EB:9D:82:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11922458-95a1-49eb-ab5f-e50a3e748405.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15:8000::/36 Signature Algorithm: sha256WithRSAEncryption c0:17:9e:a0:17:11:2e:d8:2b:50:54:d0:1c:48:32:68:d6:bb: 76:e7:73:3a:e5:28:13:f7:f2:b4:9a:70:3b:97:54:8f:88:15: 3c:0a:27:c0:36:e9:20:a3:84:a9:7b:f0:1d:70:85:e4:97:69: e4:8c:a9:f7:fc:e7:1f:06:6f:1b:d0:14:dc:36:b7:ab:ef:fe: de:64:25:b4:90:07:7d:37:42:e4:63:f7:5b:c4:eb:62:b3:14: 0f:95:bc:b7:c6:86:e4:20:92:c1:41:11:f5:34:6b:d0:4c:f2: e9:9e:57:fc:05:25:13:c9:57:b6:b6:88:6f:4f:40:06:5b:51: b0:c1:c6:e2:d4:69:8b:07:e9:fa:61:dc:fc:25:64:fb:1d:4c: 2d:0e:e2:d5:d4:03:f9:40:c9:c1:01:3e:b7:fc:61:94:d5:1b: fa:ad:28:96:61:07:f3:1e:bc:38:43:e9:fe:e3:3b:a5:06:37: a9:e7:a2:74:e3:58:6d:fa:af:54:51:06:b3:fc:c6:4b:05:b6: 1e:25:f0:83:0d:8b:b8:87:52:f7:a9:92:eb:41:83:c9:3b:24: d8:5f:85:34:87:30:39:90:38:9d:f6:40:d2:4f:b3:ef:41:15: f2:ee:7d:8c:6d:04:b7:fe:26:f1:6d:1a:c5:d6:f0:6a:e7:71: 89:46:8d:f5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUE5bOStyZhcXwnuDMxbY3P1SMlnUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYxMDUyWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWRhNjM0NzBlODE2NmYyNzQ4ZjQ1YTlmZjFiMGRhNTA4 NzA4NmIzZGMzMDNjYmMxYjJmMzRmNzIzMDMzYmZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDkPUXIeXkeTPJUtdXfo68u6OiWvOYbaNq8o35JyR3bdJO+ ZkfYkNIZFqJGvDKHosmw6mAfh0G+XgU9tnXBAbJnoC8HUgj89ZXzENItzL/dETCV jG0PZ4Sg/Fu1SvsN89x2oKey9DI0q5CdvYftW17xPuL0Vk+Tm+cNLNoXMi4za8di qHwhxO3B9fnPxNjCmqTdiSI03bW35nGyiTBLg+gxv+2gBquLmhl2Bvzu/X1PiCOR Ac3ITlfFLEd/X3VKIHE47fRDbKI6UHaEcaOV6R7mmmmG+midCE/48oeR5cxe9IcL izQyII2qJNEhumq3J/z9Ro2lsxD6dRvbSXnunNDLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5om4Ob87qV9B7yNU/3IITuudguUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExOTIyNDU4LTk1YTEtNDllYi1hYjVmLWU1MGEzZTc0ODQwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8VgDANBgkqhkiG9w0BAQsFAAOCAQEAwBeeoBcRLtgrUFTQHEgyaNa7 dudzOuUoE/fytJpwO5dUj4gVPAonwDbpIKOEqXvwHXCF5Jdp5Iyp9/znHwZvG9AU 3Da3q+/+3mQltJAHfTdC5GP3W8TrYrMUD5W8t8aG5CCSwUER9TRr0Ezy6Z5X/AUl E8lXtraIb09ABltRsMHG4tRpiwfp+mHc/CVk+x1MLQ7i1dQD+UDJwQE+t/xhlNUb +q0olmEH8x68OEPp/uM7pQY3qeeidONYbfqvVFEGs/zGSwW2HiXwgw2LuIdS96mS 60GDyTsk2F+FNIcwOZA4nfZA0k+z70EV8u59jG0Et/4m8W0axdbwaudxiUaN9Q== -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:39 2025 by rpki-client