$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa File: 1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa (raw, json) Hash identifier: N8WwkNWsyD8TjB/KVGSkUBBVn40AJSCKeFsV5DSzQb4= Subject key identifier: 5D:20:F2:4C:5E:12:3C:1C:9E:CD:9A:0C:74:1A:C4:80:E8:35:E3:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31A35944A813CD9274352BF08C2BE45EE0DB974F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa Signing time: Tue 12 Aug 2025 00:21:06 +0000 ROA not before: Tue 12 Aug 2025 00:21:06 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffe:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:a3:59:44:a8:13:cd:92:74:35:2b:f0:8c:2b:e4:5e:e0:db:97:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:21:06 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=3e15e4f942d0c3e053aaf3e985ae8eff91c1bd56c9f31c38cd61a90802be50f5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b8:0c:cd:f7:36:f9:db:5d:71:a1:86:57:db: 21:e9:12:f1:11:32:d5:a4:02:8f:d4:2c:bb:b3:d0: e9:a0:aa:ed:f0:4c:02:54:70:5e:5e:66:5f:9f:60: 7e:11:69:4f:9f:25:88:9d:26:80:ad:cd:11:94:37: c3:96:28:86:44:4e:9b:7b:37:0b:2a:78:cd:cf:62: 3d:18:f2:ba:12:58:af:2a:9f:a7:3b:e8:e9:a8:21: 48:45:0d:8f:9c:6f:5c:3d:ec:fa:6e:6f:04:1b:31: 64:de:97:2b:0e:a2:b9:20:cc:81:e2:ca:4e:dc:b7: 95:cb:f0:f6:b4:dc:31:1d:64:c7:a5:da:48:e0:57: 1f:f7:37:f5:6b:73:dc:3c:86:b8:ea:60:ab:54:4b: 3b:6e:c2:69:13:48:62:aa:aa:c2:af:63:ec:bb:1f: 77:0f:03:41:76:a3:4f:c1:ae:06:b1:6f:73:a3:46: b8:2f:16:16:27:9a:52:50:9f:9e:8c:6f:aa:ee:bd: bf:5e:46:5d:f1:4a:ec:ba:32:6c:64:e4:28:36:70: a9:a4:53:4b:e3:b2:77:92:44:cb:e3:b8:3a:be:e5: 94:f8:72:34:a8:4e:e7:d9:f5:f1:d7:d3:d9:63:45: 0b:b2:48:83:bf:fa:3e:ec:ef:55:2c:c0:74:04:70: 30:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:20:F2:4C:5E:12:3C:1C:9E:CD:9A:0C:74:1A:C4:80:E8:35:E3:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1792b0fe-6ab1-4af8-85fb-db70dc085b32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffe:8000::/39 Signature Algorithm: sha256WithRSAEncryption cd:25:89:61:6d:07:f6:a6:83:4b:70:fc:53:d0:7a:29:81:d1: b3:02:54:76:b6:5f:9d:e3:0f:d6:2f:c3:e2:81:27:4d:06:a1: c4:bd:4b:f7:cd:09:9e:cd:7d:67:77:75:00:ee:42:7a:fe:fd: 2e:40:29:ff:92:30:2a:99:ef:c9:f0:16:3a:82:2d:63:1c:f4: a1:eb:93:e1:f1:b9:7a:a2:76:bc:fa:5e:d7:70:e3:6c:bf:91: 04:ec:ad:d0:49:d9:1d:78:f5:ee:ef:d1:36:6a:4a:71:5c:2c: 31:6a:61:bb:9c:f6:b7:c1:3d:6e:37:e6:10:d7:25:55:18:74: 98:75:99:44:7d:cc:45:82:9f:67:36:80:48:89:d4:49:fa:41: 3c:cf:e1:ab:4b:c8:5c:d9:31:85:47:5a:ad:b4:b8:fe:f6:d1: 95:95:73:5e:2e:9e:f5:fa:74:04:29:74:13:07:11:52:b1:96: 17:34:d5:6a:bf:e2:20:b8:70:f6:06:3b:23:b5:b9:39:0b:42: c6:5a:67:66:35:ce:73:73:13:40:a9:25:bb:d5:f7:64:ee:e0: 03:06:98:77:d4:0d:cc:85:3e:b5:31:63:2d:80:70:e6:ae:1d: c5:e6:fe:e6:91:15:5e:0e:c3:cc:94:42:50:3e:65:31:2d:ca: dc:24:f0:b3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMaNZRKgTzZJ0NSvwjCvkXuDbl08wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAyMTA2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTE1ZTRmOTQyZDBjM2UwNTNhYWYzZTk4NWFlOGVmZjkx YzFiZDU2YzlmMzFjMzhjZDYxYTkwODAyYmU1MGY1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2uAzN9zb5211xoYZX2yHpEvERMtWkAo/ULLuz0Omgqu3w TAJUcF5eZl+fYH4RaU+fJYidJoCtzRGUN8OWKIZETpt7NwsqeM3PYj0Y8roSWK8q n6c76OmoIUhFDY+cb1w97PpubwQbMWTelysOorkgzIHiyk7ct5XL8Pa03DEdZMel 2kjgVx/3N/Vrc9w8hrjqYKtUSztuwmkTSGKqqsKvY+y7H3cPA0F2o0/Brgaxb3Oj RrgvFhYnmlJQn56Mb6ruvb9eRl3xSuy6Mmxk5Cg2cKmkU0vjsneSRMvjuDq+5ZT4 cjSoTufZ9fHX09ljRQuySIO/+j7s71UswHQEcDBZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXSDyTF4SPByezZoMdBrEgOg14wcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3OTJiMGZlLTZhYjEtNGFmOC04NWZiLWRiNzBkYzA4NWIzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/+gDANBgkqhkiG9w0BAQsFAAOCAQEAzSWJYW0H9qaDS3D8U9B6KYHR swJUdrZfneMP1i/D4oEnTQahxL1L980Jns19Z3d1AO5Cev79LkAp/5IwKpnvyfAW OoItYxz0oeuT4fG5eqJ2vPpe13DjbL+RBOyt0EnZHXj17u/RNmpKcVwsMWphu5z2 t8E9bjfmENclVRh0mHWZRH3MRYKfZzaASInUSfpBPM/hq0vIXNkxhUdarbS4/vbR lZVzXi6e9fp0BCl0EwcRUrGWFzTVar/iILhw9gY7I7W5OQtCxlpnZjXOc3MTQKkl u9X3ZO7gAwaYd9QNzIU+tTFjLYBw5q4dxeb+5pEVXg7DzJRCUD5lMS3K3CTwsw== -----END CERTIFICATE-----Generated at Wed Aug 20 10:39:13 2025 by rpki-client