$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ee35005-270a-4d69-a5d7-f6e6594e105b.roa File: 2ee35005-270a-4d69-a5d7-f6e6594e105b.roa (raw, json) Hash identifier: nD+V9ILIFEwLjkao5H/XPPN7WjI5lCHrI1xrAyZjyFc= Subject key identifier: FB:4D:41:4F:BB:F1:52:F5:F1:C9:8E:3E:47:1F:FA:53:99:69:0C:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1914469BAA350598C8F0F0C8E9F3F0C41FD3EE4A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ee35005-270a-4d69-a5d7-f6e6594e105b.roa Signing time: Tue 26 Aug 2025 15:31:28 +0000 ROA not before: Tue 26 Aug 2025 15:31:28 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:14:46:9b:aa:35:05:98:c8:f0:f0:c8:e9:f3:f0:c4:1f:d3:ee:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:31:28 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=a7d64f3e105d2847dcc58f6b161df7eb5982378de3a30b506094652c294f4f9e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:02:b2:c8:b8:47:f2:f7:c2:98:de:a1:85:ba: 60:28:b2:58:6f:93:9f:10:34:53:2d:85:01:8c:41: 52:9b:6d:f9:ce:b1:cf:28:83:a5:b5:32:1a:5e:f4: a9:f4:08:9d:cb:c7:af:fc:97:65:5d:f4:28:c4:07: e5:5f:0b:d5:70:02:a2:75:80:d7:10:8d:63:37:0b: 56:1c:22:d0:50:11:df:53:3f:66:44:31:39:f0:d9: 0f:d0:d8:b4:80:91:ec:7f:83:19:9d:49:8b:d9:cd: 2c:f9:32:8f:bb:39:7b:bd:a8:f3:63:ff:9f:97:d7: 11:d2:aa:1c:d1:76:57:7b:15:7f:b6:06:c4:ea:7f: e5:e6:2c:c2:00:bf:c2:03:40:a7:88:b3:e3:7c:cb: 94:90:91:8b:dc:93:09:34:88:32:a8:4a:b9:d0:0c: 71:f0:9c:9e:50:b3:d9:5f:36:c5:09:69:ec:9a:8e: f5:ae:c2:06:fe:5d:61:28:b1:cf:52:6f:3a:c1:c9: 02:f9:88:0e:d4:e1:a1:1b:ba:c1:ec:02:69:c6:ce: bc:39:d7:91:3b:47:da:68:03:9f:0c:2c:76:8f:d5: 52:fa:1a:d2:47:57:d6:55:94:78:71:68:82:c5:80: 1d:70:18:29:5d:f2:59:79:a1:91:c9:65:84:1e:6e: 47:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4D:41:4F:BB:F1:52:F5:F1:C9:8E:3E:47:1F:FA:53:99:69:0C:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ee35005-270a-4d69-a5d7-f6e6594e105b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:5000::/40 Signature Algorithm: sha256WithRSAEncryption 12:a3:fc:a3:4d:1b:ce:10:d1:a3:71:db:ec:04:02:eb:44:d2: 1f:05:a9:51:39:00:27:d6:0d:55:10:a3:b9:18:e7:41:b2:57: 42:ca:ca:67:35:04:f2:3d:26:42:c0:b9:b9:8b:59:bb:88:dd: ca:b7:b8:7f:2b:e4:c0:63:2d:a0:80:bc:13:d1:19:4e:a6:84: ca:f7:c9:35:2d:4c:64:a8:37:05:8b:a1:21:4f:d4:d5:cb:03: cb:c6:52:8d:e4:fb:7f:6e:68:0e:ca:a7:5f:6f:4d:e0:6f:06: 7e:58:4c:2c:b1:c3:e7:38:9b:09:8b:77:be:6e:20:48:b7:da: 77:27:e1:9d:80:00:b9:ba:6f:d0:31:94:0e:bb:4a:d8:3e:87: 64:84:2b:69:57:15:de:da:9c:6b:e1:46:58:41:43:e2:0a:da: 95:e9:cd:cf:b8:dd:13:fc:3f:42:fb:b3:50:88:f0:74:a3:fc: 89:d2:14:bd:af:96:61:a5:34:fe:e4:f0:60:b8:00:a9:47:86: 1b:08:5a:5f:3c:c2:c4:23:3b:ec:aa:a8:60:4d:2b:17:5b:1f: 85:34:06:a6:7f:e7:fe:8f:7b:10:79:53:78:be:64:bb:1a:68: a8:e2:c7:17:11:a1:ea:2d:9d:e4:4c:a3:8e:6f:07:5f:07:7c: 9b:7f:17:ac -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGRRGm6o1BZjI8PDI6fPwxB/T7kowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTUzMTI4WhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhN2Q2NGYzZTEwNWQyODQ3ZGNjNThmNmIxNjFkZjdlYjU5 ODIzNzhkZTNhMzBiNTA2MDk0NjUyYzI5NGY0ZjllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClArLIuEfy98KY3qGFumAoslhvk58QNFMthQGMQVKbbfnO sc8og6W1Mhpe9Kn0CJ3Lx6/8l2Vd9CjEB+VfC9VwAqJ1gNcQjWM3C1YcItBQEd9T P2ZEMTnw2Q/Q2LSAkex/gxmdSYvZzSz5Mo+7OXu9qPNj/5+X1xHSqhzRdld7FX+2 BsTqf+XmLMIAv8IDQKeIs+N8y5SQkYvckwk0iDKoSrnQDHHwnJ5Qs9lfNsUJaeya jvWuwgb+XWEosc9SbzrByQL5iA7U4aEbusHsAmnGzrw515E7R9poA58MLHaP1VL6 GtJHV9ZVlHhxaILFgB1wGCld8ll5oZHJZYQebkcfAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+01BT7vxUvXxyY4+Rx/6U5lpDMwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZTM1MDA1LTI3MGEtNGQ2OS1hNWQ3LWY2ZTY1OTRlMTA1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB84UDANBgkqhkiG9w0BAQsFAAOCAQEAEqP8o00bzhDRo3Hb7AQC60TS HwWpUTkAJ9YNVRCjuRjnQbJXQsrKZzUE8j0mQsC5uYtZu4jdyre4fyvkwGMtoIC8 E9EZTqaEyvfJNS1MZKg3BYuhIU/U1csDy8ZSjeT7f25oDsqnX29N4G8GflhMLLHD 5zibCYt3vm4gSLfadyfhnYAAubpv0DGUDrtK2D6HZIQraVcV3tqca+FGWEFD4gra lenNz7jdE/w/QvuzUIjwdKP8idIUva+WYaU0/uTwYLgAqUeGGwhaXzzCxCM77Kqo YE0rF1sfhTQGpn/n/o97EHlTeL5kuxpoqOLHFxGh6i2d5Eyjjm8HXwd8m38XrA== -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:08 2025 by rpki-client