$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3070339a-26b7-42fb-aa24-853f76e9020a.roa File: 3070339a-26b7-42fb-aa24-853f76e9020a.roa (raw, json) Hash identifier: nxFlgSZEDasJ+tD0dyQm9qLA7kntbayCDAWCj0BWaK0= Subject key identifier: CE:D9:14:92:82:90:47:44:B8:7F:64:6D:5A:0A:F2:B4:68:DE:CB:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EB0E5584EC180107AEBA7E821821B325C4AB179 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3070339a-26b7-42fb-aa24-853f76e9020a.roa Signing time: Fri 29 Aug 2025 15:21:27 +0000 ROA not before: Fri 29 Aug 2025 15:21:27 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:b0:e5:58:4e:c1:80:10:7a:eb:a7:e8:21:82:1b:32:5c:4a:b1:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:21:27 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=dedc807d0cde32d59f5bd59aa9da443daf1c3ffb1c218d90a01255c22c5b0548, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:69:30:0c:00:96:5e:c9:74:38:95:ba:c5:16: f2:fd:9b:23:9d:06:93:bb:2f:85:6f:c1:64:29:a2: 0b:70:99:16:a1:32:23:0b:bd:e1:da:e0:7d:57:28: 0c:04:af:74:22:34:06:a2:36:c7:ff:f3:01:de:59: 8b:ef:b5:ea:03:18:77:1d:cc:e0:d9:67:ea:f3:4b: bf:cb:67:e3:8c:2f:e3:31:ac:f9:d8:95:ac:af:43: 9f:f2:49:64:c5:69:f6:d6:e7:bc:e8:b8:6e:ab:37: d6:ac:50:bd:3d:d1:28:96:e3:6e:22:4f:16:8f:fb: b8:a0:5e:b6:bb:69:1f:f2:79:46:5c:64:1a:8f:16: 65:4c:8b:3e:54:5e:06:2a:15:b7:d7:7b:33:65:d7: b2:69:d7:56:b2:ef:c2:16:57:38:e6:43:7f:fe:b7: 5d:8b:cc:b0:ee:a8:d7:c8:99:cc:70:c9:a8:56:b6: f1:7e:83:1d:1b:20:b4:8a:9a:5d:6e:da:4d:50:3b: f2:d8:6f:d4:a2:b8:8e:8d:f6:95:48:ec:b6:d1:c5: 17:49:af:05:ba:d3:83:75:5b:4f:34:13:f6:59:92: a0:8a:33:92:9d:9c:d6:a7:ad:f1:2a:aa:48:14:55: ef:bf:de:a4:a5:83:bc:af:c0:38:f5:e4:cb:da:b3: 89:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D9:14:92:82:90:47:44:B8:7F:64:6D:5A:0A:F2:B4:68:DE:CB:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3070339a-26b7-42fb-aa24-853f76e9020a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32::/32 Signature Algorithm: sha256WithRSAEncryption d5:77:ea:76:1b:1b:5d:3c:dd:eb:cd:ff:bf:3f:c2:67:11:65: 38:d0:8b:db:54:3f:a0:e6:79:30:9b:b3:e6:05:ee:bb:cc:e5: 81:67:aa:51:b5:d3:e3:fa:9d:f8:5a:74:da:76:0b:ef:b0:fb: 05:d1:d3:ce:6e:6a:8a:65:8a:b5:18:1f:d1:5f:4a:e9:4a:44: 52:0b:ce:9f:a8:f0:c9:c9:ff:e2:b4:4a:ef:e6:ba:79:82:91: 56:0a:d9:62:e0:92:94:ba:61:f1:76:9f:7e:2a:0c:9b:44:c8: 9c:4f:b1:eb:5d:a3:e7:bb:74:22:5c:b1:cd:4b:a0:1a:11:b3: cd:5a:d5:87:a0:c6:f4:09:32:83:55:a6:92:d7:6f:01:c7:be: 5d:15:55:16:98:62:02:8a:76:31:4a:0e:83:2b:9a:8f:b3:2c: c2:87:f3:87:fc:d5:71:5e:3a:8a:a0:d2:49:79:e2:dc:45:17: 0c:84:75:78:33:62:4e:8a:3a:68:a6:74:c5:e8:cf:07:8e:0a: 83:8f:5f:94:41:88:04:20:08:f9:35:ba:c5:31:a8:ec:cc:60: 1f:f7:66:0d:9a:87:6d:d8:8d:55:0a:2d:36:84:f6:49:19:99: 78:6b:ad:25:1b:b8:10:8e:c5:0c:f8:f9:9c:21:b6:aa:60:8d: 9f:36:89:a2 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUfrDlWE7BgBB666foIYIbMlxKsXkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUyMTI3WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWRjODA3ZDBjZGUzMmQ1OWY1YmQ1OWFhOWRhNDQzZGFm MWMzZmZiMWMyMThkOTBhMDEyNTVjMjJjNWIwNTQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFaTAMAJZeyXQ4lbrFFvL9myOdBpO7L4VvwWQpogtwmRah MiMLveHa4H1XKAwEr3QiNAaiNsf/8wHeWYvvteoDGHcdzODZZ+rzS7/LZ+OML+Mx rPnYlayvQ5/ySWTFafbW57zouG6rN9asUL090SiW424iTxaP+7igXra7aR/yeUZc ZBqPFmVMiz5UXgYqFbfXezNl17Jp11ay78IWVzjmQ3/+t12LzLDuqNfImcxwyahW tvF+gx0bILSKml1u2k1QO/LYb9SiuI6N9pVI7LbRxRdJrwW604N1W080E/ZZkqCK M5KdnNanrfEqqkgUVe+/3qSlg7yvwDj15Mvas4mNAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUztkUkoKQR0S4f2RtWgrytGjeyxIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwNzAzMzlhLTI2YjctNDJmYi1hYTI0LTg1M2Y3NmU5MDIwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB8yMA0GCSqGSIb3DQEBCwUAA4IBAQDVd+p2GxtdPN3rzf+/P8JnEWU4 0IvbVD+g5nkwm7PmBe67zOWBZ6pRtdPj+p34WnTadgvvsPsF0dPObmqKZYq1GB/R X0rpSkRSC86fqPDJyf/itErv5rp5gpFWCtli4JKUumHxdp9+KgybRMicT7HrXaPn u3QiXLHNS6AaEbPNWtWHoMb0CTKDVaaS128Bx75dFVUWmGICinYxSg6DK5qPsyzC h/OH/NVxXjqKoNJJeeLcRRcMhHV4M2JOijpopnTF6M8HjgqDj1+UQYgEIAj5NbrF MajszGAf92YNmodt2I1VCi02hPZJGZl4a60lG7gQjsUM+PmcIbaqYI2fNomi -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:18 2025 by rpki-client