$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/355eabfb-2870-47f8-af1a-edd8cbb23311.roa File: 355eabfb-2870-47f8-af1a-edd8cbb23311.roa (raw, json) Hash identifier: RElUMwsaSjEiOmkR8L7W+vh6Aii3088oktVRYXLx4zo= Subject key identifier: 95:18:34:E5:5B:4D:C8:2C:83:AB:14:4A:56:DD:D2:A5:B1:BD:FC:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CBDD0D3CB7F19C40186292B302254D8AF477780 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/355eabfb-2870-47f8-af1a-edd8cbb23311.roa Signing time: Fri 29 Aug 2025 16:21:59 +0000 ROA not before: Fri 29 Aug 2025 16:21:59 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f23:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:bd:d0:d3:cb:7f:19:c4:01:86:29:2b:30:22:54:d8:af:47:77:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:21:59 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=b79c7e463713299569b308e4749d598f9dec1272d2dd1b8e535823ead1869863, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:76:1b:d1:fa:6e:c5:9f:73:8e:15:35:46:d7: e8:57:c1:7b:f0:7e:f0:25:6e:a6:05:58:6a:7f:f9: a8:0c:21:55:d3:f0:5d:b2:69:ea:3d:22:dd:ff:d6: 88:ce:35:32:d5:d3:49:1a:ba:de:33:cf:e0:66:83: 2d:2e:48:df:be:5b:5c:fa:4c:2f:75:52:a3:9e:22: 4a:94:7f:1e:a2:52:75:ee:31:e4:91:79:df:43:66: 85:bd:58:8c:1d:c9:22:16:83:49:d9:47:cc:54:30: 04:0a:48:06:3c:e9:4a:2a:10:5e:2e:f6:fe:7f:58: a4:b6:4e:12:b9:97:12:bf:3e:37:7a:ad:6c:1b:ed: de:1e:f6:cb:97:cf:bf:6e:fa:01:03:9d:e9:6e:fc: 7e:f5:37:86:e7:de:0f:80:d6:0d:53:1e:cc:c0:e4: 2a:ea:60:3f:93:7e:a3:49:16:60:f0:88:fc:2a:9a: 09:83:8c:79:cf:3c:a6:98:be:ed:75:c3:88:19:bc: 87:5b:18:c0:ed:8b:cd:0c:04:68:bc:70:03:24:e9: 5b:cc:a5:4f:db:12:f4:5f:40:80:fd:b5:e1:10:fd: 30:1e:99:b7:31:07:fd:e7:47:78:f2:78:06:a8:f6: 03:ec:b8:5e:50:cc:a8:25:4b:db:67:1a:51:41:ff: 7b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:18:34:E5:5B:4D:C8:2C:83:AB:14:4A:56:DD:D2:A5:B1:BD:FC:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/355eabfb-2870-47f8-af1a-edd8cbb23311.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f23:8000::/36 Signature Algorithm: sha256WithRSAEncryption 02:f4:42:84:b6:eb:61:fc:c6:92:de:b0:4d:24:eb:4a:c5:76: 45:df:08:13:b8:d3:da:79:93:e6:21:11:4e:8d:e1:a1:3b:88: 63:32:2e:3c:bb:cc:ef:ec:49:44:a4:b4:39:b5:a2:5f:6b:d5: c6:49:8b:1f:e6:05:03:ff:ce:29:d3:ac:95:5d:e7:11:c1:6f: 71:47:3a:ae:7a:ae:89:ed:df:a5:d2:3b:1e:02:f3:4b:76:42: 45:a4:b0:c8:d8:28:d8:b4:f6:89:ce:24:4f:71:22:85:57:38: 6b:f8:54:92:73:3d:6e:57:5c:4a:18:22:7c:17:cd:1e:3b:c9: d9:7e:69:c1:fe:d3:85:48:23:62:71:e1:a2:11:0a:93:b9:fb: bb:af:5e:95:36:f4:c3:c2:df:b4:d7:12:3d:c3:1a:79:7a:69: f0:c8:4f:77:08:3f:a8:57:17:9c:79:11:f8:a0:bc:00:cc:92: 29:ef:41:5f:cd:91:42:11:e6:7c:c4:7a:90:c1:a0:64:83:1d: 10:46:5f:37:b7:73:06:c5:dc:9d:10:99:d2:b0:2b:60:82:73: 87:04:06:77:67:ed:c6:44:fe:c3:aa:03:0a:6a:d5:7c:70:d8: 9f:a3:49:f4:5f:53:ea:86:53:a2:47:4d:0d:95:7a:89:64:8a: d1:0b:1e:c7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPL3Q08t/GcQBhikrMCJU2K9Hd4AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYyMTU5WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzljN2U0NjM3MTMyOTk1NjliMzA4ZTQ3NDlkNTk4Zjlk ZWMxMjcyZDJkZDFiOGU1MzU4MjNlYWQxODY5ODYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4dhvR+m7Fn3OOFTVG1+hXwXvwfvAlbqYFWGp/+agMIVXT 8F2yaeo9It3/1ojONTLV00kaut4zz+Bmgy0uSN++W1z6TC91UqOeIkqUfx6iUnXu MeSRed9DZoW9WIwdySIWg0nZR8xUMAQKSAY86UoqEF4u9v5/WKS2ThK5lxK/Pjd6 rWwb7d4e9suXz79u+gEDnelu/H71N4bn3g+A1g1THszA5CrqYD+TfqNJFmDwiPwq mgmDjHnPPKaYvu11w4gZvIdbGMDti80MBGi8cAMk6VvMpU/bEvRfQID9teEQ/TAe mbcxB/3nR3jyeAao9gPsuF5QzKglS9tnGlFB/3sLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUlRg05VtNyCyDqxRKVt3SpbG9/O0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1NWVhYmZiLTI4NzAtNDdmOC1hZjFhLWVkZDhjYmIyMzMxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8jgDANBgkqhkiG9w0BAQsFAAOCAQEAAvRChLbrYfzGkt6wTSTrSsV2 Rd8IE7jT2nmT5iERTo3hoTuIYzIuPLvM7+xJRKS0ObWiX2vVxkmLH+YFA//OKdOs lV3nEcFvcUc6rnquie3fpdI7HgLzS3ZCRaSwyNgo2LT2ic4kT3EihVc4a/hUknM9 bldcShgifBfNHjvJ2X5pwf7ThUgjYnHhohEKk7n7u69elTb0w8LftNcSPcMaeXpp 8MhPdwg/qFcXnHkR+KC8AMySKe9BX82RQhHmfMR6kMGgZIMdEEZfN7dzBsXcnRCZ 0rArYIJzhwQGd2ftxkT+w6oDCmrVfHDYn6NJ9F9T6oZTokdNDZV6iWSK0Qsexw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:06:05 2025 by rpki-client