$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa File: 298f7a82-24b8-4c48-8005-46f4c30ff875.roa (raw, json) Hash identifier: WALms3GbcbTvm15UL7jeW7woshaFRDJt9ZoiRumVeMI= Subject key identifier: 1E:87:46:DF:4E:37:6B:9E:D8:A3:54:66:A2:39:4C:22:87:03:C7:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E94EE3D00119C694731F05A63F27C022ACD7E11 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa Signing time: Wed 13 Aug 2025 00:11:45 +0000 ROA not before: Wed 13 Aug 2025 00:11:45 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fa0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:94:ee:3d:00:11:9c:69:47:31:f0:5a:63:f2:7c:02:2a:cd:7e:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:11:45 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=c73c5cddda58be32d2195093023455282efdccff53b1325dd983e3b6b754aa76, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:73:2c:dd:f9:1b:e8:e1:6a:8c:bc:56:fa:7f: a4:2d:fc:0b:fe:a6:56:55:5a:45:81:3b:f3:f9:98: 88:7c:d4:76:83:62:f2:f8:1a:49:dc:fb:a4:52:ec: ec:4c:b0:21:36:70:d1:11:21:c3:57:52:1a:a4:ca: 7d:e2:00:8e:aa:6d:2b:44:2e:6a:57:0e:1d:12:77: 96:7b:25:1c:a0:7b:ed:55:cd:1e:c3:e9:83:81:53: 30:d1:4f:9d:d8:0d:94:a6:c4:cf:c4:c4:14:10:09: 47:ad:94:45:d3:ad:18:97:f0:c3:aa:50:b0:ae:2f: 44:5b:23:72:d3:09:7d:5b:a5:25:85:7a:00:45:ef: f2:31:6e:e4:2b:37:be:57:89:8a:a9:7e:17:dc:e2: 5f:22:3d:20:1b:6b:1b:85:9f:fb:cb:40:b3:22:4c: 19:4b:61:f7:07:85:43:1b:8f:13:e5:c0:a2:13:56: 63:d5:86:2f:0b:bb:e4:29:da:29:69:f0:8a:ba:cc: 92:45:e3:4c:88:b7:f9:56:5a:62:30:a2:74:10:07: f6:7a:8e:6b:e9:80:25:5b:c8:8a:5f:6a:4a:7a:ea: a8:df:c1:5b:dc:90:86:78:5a:1a:43:46:a7:02:d5: ea:a8:2a:23:6a:b8:b8:9d:85:8c:a4:bb:45:82:bd: d1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:87:46:DF:4E:37:6B:9E:D8:A3:54:66:A2:39:4C:22:87:03:C7:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/298f7a82-24b8-4c48-8005-46f4c30ff875.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:5000::/40 Signature Algorithm: sha256WithRSAEncryption d1:8a:10:6b:7d:67:7c:ab:2f:66:8d:65:d0:52:fe:c1:29:c4: bc:93:cb:ee:ea:e6:cc:34:a0:c4:a2:a6:90:20:95:d2:58:ac: 1f:69:05:93:83:16:30:83:2b:c4:b8:2e:92:5b:48:1b:6a:38: 8f:13:c1:d2:30:89:e5:e4:9a:c0:d9:71:e5:ef:a7:ab:97:3c: a5:cc:f4:d0:41:3e:9c:16:69:04:b4:85:11:78:75:36:e1:f9: f8:d8:37:16:1e:c4:b2:05:40:89:d0:b4:39:33:5b:28:5c:8b: c5:53:c5:2b:e2:78:f6:b3:c6:34:f4:b1:19:f2:ec:e6:9b:27: 09:03:d0:c3:4a:0f:b8:b2:67:c7:c3:fd:a6:2a:e4:7c:d6:99: 1d:ed:f4:d0:9c:f0:6c:e7:11:d0:27:b9:6b:af:63:2b:1f:65: 39:dd:f0:95:d1:2b:8c:ab:5c:1e:2f:37:54:c8:2c:49:e3:f2: a4:f3:7a:27:ae:30:a3:2c:93:8f:35:4a:e0:15:96:a2:3b:42: 36:a8:a5:09:43:9a:28:ee:7a:8c:f8:56:4f:dd:6d:a6:e2:1c: ba:0a:38:1c:bf:7d:04:2d:ad:18:9a:5c:4a:6b:c4:4f:40:7c: a0:da:53:df:38:72:75:a5:20:9c:70:f9:d4:be:b4:50:db:6a: 68:42:dd:d4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDpTuPQARnGlHMfBaY/J8AirNfhEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMTQ1WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzNjNWNkZGRhNThiZTMyZDIxOTUwOTMwMjM0NTUyODJl ZmRjY2ZmNTNiMTMyNWRkOTgzZTNiNmI3NTRhYTc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCucyzd+Rvo4WqMvFb6f6Qt/Av+plZVWkWBO/P5mIh81HaD YvL4Gknc+6RS7OxMsCE2cNERIcNXUhqkyn3iAI6qbStELmpXDh0Sd5Z7JRyge+1V zR7D6YOBUzDRT53YDZSmxM/ExBQQCUetlEXTrRiX8MOqULCuL0RbI3LTCX1bpSWF egBF7/IxbuQrN75XiYqpfhfc4l8iPSAbaxuFn/vLQLMiTBlLYfcHhUMbjxPlwKIT VmPVhi8Lu+Qp2ilp8Iq6zJJF40yIt/lWWmIwonQQB/Z6jmvpgCVbyIpfakp66qjf wVvckIZ4WhpDRqcC1eqoKiNquLidhYyku0WCvdEzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHodG3043a57Yo1RmojlMIocDx/0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI5OGY3YTgyLTI0YjgtNGM0OC04MDA1LTQ2ZjRjMzBmZjg3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gUDANBgkqhkiG9w0BAQsFAAOCAQEA0YoQa31nfKsvZo1l0FL+wSnE vJPL7urmzDSgxKKmkCCV0lisH2kFk4MWMIMrxLgukltIG2o4jxPB0jCJ5eSawNlx 5e+nq5c8pcz00EE+nBZpBLSFEXh1NuH5+Ng3Fh7EsgVAidC0OTNbKFyLxVPFK+J4 9rPGNPSxGfLs5psnCQPQw0oPuLJnx8P9pirkfNaZHe300JzwbOcR0Ce5a69jKx9l Od3wldErjKtcHi83VMgsSePypPN6J64woyyTjzVK4BWWojtCNqilCUOaKO56jPhW T91tpuIcugo4HL99BC2tGJpcSmvET0B8oNpT3zhydaUgnHD51L60UNtqaELd1A== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:50 2025 by rpki-client