$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40224638-a28e-4f61-9972-f1bcb7774c46.roa File: 40224638-a28e-4f61-9972-f1bcb7774c46.roa (raw, json) Hash identifier: oHbOYUzZ9Q2eqyHM8l4CFglZ56sMHMC1XXh9lbJ5pU8= Subject key identifier: F8:67:20:40:4C:EA:8B:C9:35:DD:11:16:8F:02:35:57:44:CF:D5:39 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0435ED2367C345457BB133AF2BE426855910CA0F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40224638-a28e-4f61-9972-f1bcb7774c46.roa Signing time: Mon 25 Aug 2025 16:51:59 +0000 ROA not before: Mon 25 Aug 2025 16:51:59 +0000 ROA not after: Mon 29 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fa0:2c00::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:35:ed:23:67:c3:45:45:7b:b1:33:af:2b:e4:26:85:59:10:ca:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 25 16:51:59 2025 GMT Not After : Sep 29 23:59:59 2025 GMT Subject: serialNumber=e03cbe320bd2542af3434ec3df69498d04868253973c5a61a75579d934edb1fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6d:96:32:46:ef:e0:08:72:2c:28:a5:3f:8d: 08:a7:fb:80:a9:25:dd:53:7f:cc:c0:ce:ad:8a:b1: 54:7b:28:74:23:f2:b5:93:8e:b6:6f:69:75:91:42: b5:80:bb:7a:53:b2:38:ad:8d:99:91:5a:a4:eb:8b: 4a:ee:e1:3a:be:a1:a7:4c:3f:80:a8:a1:f4:50:90: da:63:1e:71:ca:47:9f:eb:86:7d:c9:3a:1a:ae:a5: e7:f2:80:f1:59:ee:a6:53:f6:ed:97:3c:12:ff:f9: a3:40:b0:45:ff:7f:55:33:56:12:10:d7:4f:8c:13: df:0f:0f:02:8a:56:18:ea:05:e9:23:de:45:25:d4: e2:fc:38:b8:99:d8:13:6a:0a:cf:f5:df:b3:3a:4c: 1c:69:06:20:6d:93:3e:d2:8c:7d:f5:9e:08:db:48: 1c:ea:bc:dd:2f:32:b7:9a:07:a1:b0:82:e4:21:a9: 9d:95:31:51:77:ca:52:10:f2:f8:3d:27:83:13:04: 2d:b7:9f:18:1c:9e:9d:bb:ef:da:92:a0:1d:4a:e8: ba:a9:08:69:63:05:b2:24:1f:e6:6b:2f:43:63:3b: 64:9b:89:c6:86:73:04:24:42:4f:4a:90:29:22:a2: 7a:4d:a5:59:c6:b3:25:96:6f:24:f6:e1:17:e3:06: 34:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:67:20:40:4C:EA:8B:C9:35:DD:11:16:8F:02:35:57:44:CF:D5:39 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40224638-a28e-4f61-9972-f1bcb7774c46.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fa0:2c00::/40 Signature Algorithm: sha256WithRSAEncryption 65:75:33:f3:80:54:d1:b8:da:82:5d:86:4b:ca:9f:87:a7:57: 40:81:b2:9a:66:2e:b0:fc:28:0b:9a:2b:3d:f9:b2:44:ea:4b: 08:40:2b:3b:ca:77:79:aa:b7:e8:33:7d:42:5f:1b:b7:ca:45: 7b:f6:99:fe:21:c3:6f:87:96:5a:3b:b1:e2:fc:c3:34:37:9c: ee:24:87:76:88:e6:9b:fa:cc:d9:73:07:bf:ed:2d:39:c1:c5: 18:de:01:df:64:2b:b9:df:87:ea:5c:68:c6:a7:98:51:51:a3: 2e:cf:b0:bd:3f:09:fc:09:f2:c9:ff:56:3e:85:86:2a:66:de: 22:c5:af:76:52:48:9f:e3:97:09:0b:97:1e:ba:0a:6c:3f:b1: 98:8f:79:4f:20:d6:5e:73:52:18:de:c8:84:06:85:55:cd:93: 70:78:e4:8b:a7:09:33:35:ed:26:b6:f1:89:c8:3a:51:c0:31: 34:f8:f8:14:7d:1d:33:54:43:1d:0b:b9:9a:41:74:d4:16:7d: 4d:4c:1a:18:cb:7c:2e:47:84:f7:a1:49:45:34:00:85:5f:b8: ec:f9:30:37:db:34:20:30:55:6a:9d:f5:28:b7:78:6e:96:a8: ab:8b:c8:5b:51:ab:f6:15:7b:7a:c4:17:67:8b:1d:99:fe:f0: 75:85:9d:b1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBDXtI2fDRUV7sTOvK+QmhVkQyg8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI1MTY1MTU5WhcNMjUwOTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDNjYmUzMjBiZDI1NDJhZjM0MzRlYzNkZjY5NDk4ZDA0 ODY4MjUzOTczYzVhNjFhNzU1NzlkOTM0ZWRiMWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCibZYyRu/gCHIsKKU/jQin+4CpJd1Tf8zAzq2KsVR7KHQj 8rWTjrZvaXWRQrWAu3pTsjitjZmRWqTri0ru4Tq+oadMP4CoofRQkNpjHnHKR5/r hn3JOhqupefygPFZ7qZT9u2XPBL/+aNAsEX/f1UzVhIQ10+ME98PDwKKVhjqBekj 3kUl1OL8OLiZ2BNqCs/137M6TBxpBiBtkz7SjH31ngjbSBzqvN0vMreaB6GwguQh qZ2VMVF3ylIQ8vg9J4MTBC23nxgcnp2779qSoB1K6LqpCGljBbIkH+ZrL0NjO2Sb icaGcwQkQk9KkCkionpNpVnGsyWWbyT24RfjBjQZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+GcgQEzqi8k13REWjwI1V0TP1TkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwMjI0NjM4LWEyOGUtNGY2MS05OTcyLWYxYmNiNzc3NGM0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+gLDANBgkqhkiG9w0BAQsFAAOCAQEAZXUz84BU0bjagl2GS8qfh6dX QIGymmYusPwoC5orPfmyROpLCEArO8p3eaq36DN9Ql8bt8pFe/aZ/iHDb4eWWjux 4vzDNDec7iSHdojmm/rM2XMHv+0tOcHFGN4B32Qrud+H6lxoxqeYUVGjLs+wvT8J /Anyyf9WPoWGKmbeIsWvdlJIn+OXCQuXHroKbD+xmI95TyDWXnNSGN7IhAaFVc2T cHjki6cJMzXtJrbxicg6UcAxNPj4FH0dM1RDHQu5mkF01BZ9TUwaGMt8LkeE96FJ RTQAhV+47PkwN9s0IDBVap31KLd4bpaoq4vIW1Gr9hV7esQXZ4sdmf7wdYWdsQ== -----END CERTIFICATE-----Generated at Sat Sep 6 14:11:29 2025 by rpki-client