$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa File: 1ea431c8-e4df-4671-a74c-024b16849a0d.roa (raw, json) Hash identifier: kk1QyZW6hdxagUQyJeQLWHIGpFAPjxtUlY/L5LXF9Do= Subject key identifier: F6:F3:73:B0:75:C0:E6:72:83:1F:A2:4C:27:06:2C:0D:09:C5:06:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 081E63689292A3F71C3BF5D39F2A7AA09B96D95F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa Signing time: Fri 29 Aug 2025 15:21:29 +0000 ROA not before: Fri 29 Aug 2025 15:21:29 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb9:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:1e:63:68:92:92:a3:f7:1c:3b:f5:d3:9f:2a:7a:a0:9b:96:d9:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:21:29 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=962ec6d74bd9ba97dacb01a7afd458f86f1b575cecb93ceda7a3785848e04aec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1c:1b:ef:03:86:5a:19:ab:29:76:40:59:aa: ac:3e:80:bf:90:40:67:32:76:d9:b1:96:2d:77:e9: 6e:a2:da:f0:37:f6:01:b0:6e:0b:16:43:98:ea:7e: ee:b2:52:ad:0a:75:e6:3c:6c:16:39:fb:b8:93:df: e8:30:8e:e9:f9:88:fe:b7:03:81:d8:b4:f6:08:90: a9:75:1c:df:47:da:f5:f6:54:ac:06:02:71:11:d5: 5c:ff:7f:0f:9c:1f:4c:5d:1e:e9:15:cf:4b:70:d1: f6:cc:ca:ff:08:22:4c:39:d1:5b:19:89:61:5a:98: fe:37:00:10:f4:22:86:35:eb:fc:68:d7:be:e8:cc: 34:b9:7c:43:b4:0d:1b:8f:2e:8d:8f:a6:4e:70:0a: 4d:01:8e:f8:26:1b:2c:1c:aa:b4:b9:69:a4:46:ed: af:56:2d:c9:3b:85:f5:94:70:d2:6f:dc:fd:58:df: bd:07:14:26:c9:09:58:52:a6:80:4e:eb:c1:5f:7c: a4:f7:7b:f2:fe:27:9c:65:b0:42:db:56:da:7c:9f: 67:53:30:e1:92:20:a0:b1:f8:7a:a6:aa:7d:a2:ed: 5d:05:b3:6d:cd:d2:42:99:07:1a:93:63:48:69:57: 78:b0:79:a3:50:0b:af:df:2a:b4:ea:50:20:42:04: e5:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F3:73:B0:75:C0:E6:72:83:1F:A2:4C:27:06:2C:0D:09:C5:06:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ea431c8-e4df-4671-a74c-024b16849a0d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:8000::/39 Signature Algorithm: sha256WithRSAEncryption bf:9f:4a:39:7e:e1:13:2b:c1:4d:43:a7:78:72:31:c3:a6:81: 90:00:d1:f4:b2:77:67:ee:ef:05:70:26:5c:36:46:64:41:d8: a0:3b:1b:d3:99:97:41:ea:7d:73:8d:ee:b4:76:fe:23:a7:78: 80:db:d6:8a:ad:1d:ee:c6:5f:53:1f:f4:8b:21:59:4e:d7:8f: 11:92:28:cc:2b:d9:56:2f:24:5a:5f:45:ec:e8:51:cd:4a:ac: a1:24:e9:83:0d:ee:34:14:70:d7:8c:da:c4:b5:1f:2d:26:f0: d1:7d:52:fc:5e:29:f5:bd:80:0a:08:dc:1c:f9:93:f9:1f:6d: 99:69:c4:d7:33:0e:4f:f8:db:37:76:a8:24:1e:86:dc:7c:06: 53:ff:0b:ba:dd:6f:4c:e3:3f:f7:9d:31:0e:80:33:f4:e3:65: fb:8f:a6:94:3b:a0:ec:96:db:27:3a:c5:c5:ad:4d:fd:e5:56: c0:d1:71:e5:43:d4:7d:52:69:a9:7a:63:c2:d8:b6:8a:de:e7: ee:6d:9b:cc:9f:35:5d:66:8f:0b:13:2c:00:28:de:8b:79:1a: 65:d7:01:a3:49:74:79:6c:dc:1c:02:c0:00:90:18:e6:8a:a4: 92:43:18:34:b3:1e:f9:4e:bf:60:6c:b3:39:ed:63:1e:21:88: e8:65:2f:97 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCB5jaJKSo/ccO/XTnyp6oJuW2V8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUyMTI5WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NjJlYzZkNzRiZDliYTk3ZGFjYjAxYTdhZmQ0NThmODZm MWI1NzVjZWNiOTNjZWRhN2EzNzg1ODQ4ZTA0YWVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvHBvvA4ZaGaspdkBZqqw+gL+QQGcydtmxli136W6i2vA3 9gGwbgsWQ5jqfu6yUq0KdeY8bBY5+7iT3+gwjun5iP63A4HYtPYIkKl1HN9H2vX2 VKwGAnER1Vz/fw+cH0xdHukVz0tw0fbMyv8IIkw50VsZiWFamP43ABD0IoY16/xo 177ozDS5fEO0DRuPLo2Ppk5wCk0BjvgmGywcqrS5aaRG7a9WLck7hfWUcNJv3P1Y 370HFCbJCVhSpoBO68FffKT3e/L+J5xlsELbVtp8n2dTMOGSIKCx+Hqmqn2i7V0F s23N0kKZBxqTY0hpV3iweaNQC6/fKrTqUCBCBOVnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9vNzsHXA5nKDH6JMJwYsDQnFBh4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlYTQzMWM4LWU0ZGYtNDY3MS1hNzRjLTAyNGIxNjg0OWEwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+5gDANBgkqhkiG9w0BAQsFAAOCAQEAv59KOX7hEyvBTUOneHIxw6aB kADR9LJ3Z+7vBXAmXDZGZEHYoDsb05mXQep9c43utHb+I6d4gNvWiq0d7sZfUx/0 iyFZTtePEZIozCvZVi8kWl9F7OhRzUqsoSTpgw3uNBRw14zaxLUfLSbw0X1S/F4p 9b2ACgjcHPmT+R9tmWnE1zMOT/jbN3aoJB6G3HwGU/8Lut1vTOM/950xDoAz9ONl +4+mlDug7JbbJzrFxa1N/eVWwNFx5UPUfVJpqXpjwti2it7n7m2bzJ81XWaPCxMs ACjei3kaZdcBo0l0eWzcHALAAJAY5oqkkkMYNLMe+U6/YGyzOe1jHiGI6GUvlw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:28 2025 by rpki-client