$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa File: 43963ea9-c865-4cb5-b075-eea3df535429.roa (raw, json) Hash identifier: O62St54ZOSibZ57hErVTf18YRfEmT+L28Lsu4TH75mo= Subject key identifier: DC:CD:22:70:10:21:57:C1:D1:BA:35:FE:31:4C:12:C6:C4:1F:5A:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E030CA52079C7A5447E821D67990DCA1AF423A5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa Signing time: Tue 12 Aug 2025 00:10:26 +0000 ROA not before: Tue 12 Aug 2025 00:10:26 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:83d2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:03:0c:a5:20:79:c7:a5:44:7e:82:1d:67:99:0d:ca:1a:f4:23:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:10:26 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=eafbedee0a910b856a4734afe42e47a206a0008aab10c850f8107ad682200a31, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:58:12:e6:7e:6c:6c:2f:75:ef:cc:f3:da:5f: b8:ef:a1:e1:8a:97:53:3b:3d:96:b2:0b:46:5f:92: 2b:c6:26:f6:9b:e3:6c:ff:26:b0:2b:79:a9:34:15: 49:93:54:6f:04:45:a9:05:3e:48:95:fe:1f:43:61: 68:77:eb:7d:c0:30:9d:8c:91:a0:93:91:bb:dc:35: 89:9c:34:96:7d:c8:43:8d:c0:36:ec:a8:b1:1e:48: c3:09:ff:b3:57:18:f5:d3:d7:87:15:af:e2:b1:36: 04:43:82:b9:42:26:c5:8a:e0:26:93:9c:ca:c0:16: 33:28:e2:23:49:6c:1b:79:4c:41:1f:86:68:85:e3: b9:c1:7f:30:3c:59:83:d9:7d:f4:21:92:d7:7d:2a: a7:c1:69:47:29:7b:8c:ab:80:77:81:d9:eb:25:65: 43:f6:73:bc:db:71:5a:10:6c:02:9f:15:a8:eb:68: 0d:7b:f4:87:dc:00:6a:f8:e6:07:c1:3d:0e:5c:1f: d3:2e:c9:ca:ce:eb:9b:54:d6:e8:a4:ee:b3:cb:73: 81:76:0e:0c:04:9c:91:f8:69:e4:23:53:44:67:3c: 24:c8:95:c0:d9:6f:1c:e7:13:a0:e7:c2:33:5f:70: 09:91:80:f4:eb:f2:4e:71:b7:8d:9a:1e:64:d3:79: bd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:CD:22:70:10:21:57:C1:D1:BA:35:FE:31:4C:12:C6:C4:1F:5A:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43963ea9-c865-4cb5-b075-eea3df535429.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:83d2::/48 Signature Algorithm: sha256WithRSAEncryption 1a:eb:35:2d:54:37:8c:70:93:ec:2c:4e:22:7b:88:71:ad:20: b3:a8:5d:14:ad:6d:9b:3f:66:a4:45:6e:56:97:7c:a4:2d:0e: ac:6a:d3:67:b9:02:30:9f:ce:d5:b1:a6:03:45:58:31:99:46: f8:7e:10:53:1b:c1:8e:6e:2e:cd:3d:5a:6e:9f:b9:8b:4b:53: 11:d3:b5:2c:29:38:51:ce:81:f8:d0:e7:19:04:33:c3:15:5a: a4:0c:4b:71:74:5c:1f:ca:22:6f:e7:be:7a:25:20:71:52:93: d9:a9:4b:48:50:ae:6c:b7:ab:db:db:1c:41:fd:77:7e:e2:32: 98:f9:c0:e5:3f:cd:19:a4:25:a3:47:12:b8:56:48:b6:1b:07: 42:f6:2a:eb:82:47:b2:e3:b3:bd:19:54:45:cf:f9:18:01:72: 50:1b:72:5e:5b:d3:eb:60:8f:bb:85:9d:38:fd:b9:07:59:2c: be:be:e0:be:9f:5f:ae:6e:2f:7e:36:97:62:83:55:1a:19:1f: ab:6e:cd:10:83:bd:98:b9:0d:5c:b6:7b:d9:ba:dc:3a:44:0e: 1f:a1:4b:2a:5e:eb:1b:c8:a7:87:9a:a8:02:c2:f0:b4:51:9e: 0a:81:50:fa:97:15:43:f2:52:df:54:8d:20:d1:87:57:40:56: 23:13:0e:7d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULgMMpSB5x6VEfoIdZ5kNyhr0I6UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMDI2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYWZiZWRlZTBhOTEwYjg1NmE0NzM0YWZlNDJlNDdhMjA2 YTAwMDhhYWIxMGM4NTBmODEwN2FkNjgyMjAwYTMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD6WBLmfmxsL3XvzPPaX7jvoeGKl1M7PZayC0ZfkivGJvab 42z/JrAreak0FUmTVG8ERakFPkiV/h9DYWh3633AMJ2MkaCTkbvcNYmcNJZ9yEON wDbsqLEeSMMJ/7NXGPXT14cVr+KxNgRDgrlCJsWK4CaTnMrAFjMo4iNJbBt5TEEf hmiF47nBfzA8WYPZffQhktd9KqfBaUcpe4yrgHeB2eslZUP2c7zbcVoQbAKfFajr aA179IfcAGr45gfBPQ5cH9MuycrO65tU1uik7rPLc4F2DgwEnJH4aeQjU0RnPCTI lcDZbxznE6DnwjNfcAmRgPTr8k5xt42aHmTTeb3NAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3M0icBAhV8HRujX+MUwSxsQfWl0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTYzZWE5LWM4NjUtNGNiNS1iMDc1LWVlYTNkZjUzNTQyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9g9IwDQYJKoZIhvcNAQELBQADggEBABrrNS1UN4xwk+wsTiJ7iHGt ILOoXRStbZs/ZqRFblaXfKQtDqxq02e5AjCfztWxpgNFWDGZRvh+EFMbwY5uLs09 Wm6fuYtLUxHTtSwpOFHOgfjQ5xkEM8MVWqQMS3F0XB/KIm/nvnolIHFSk9mpS0hQ rmy3q9vbHEH9d37iMpj5wOU/zRmkJaNHErhWSLYbB0L2KuuCR7Ljs70ZVEXP+RgB clAbcl5b0+tgj7uFnTj9uQdZLL6+4L6fX65uL342l2KDVRoZH6tuzRCDvZi5DVy2 e9m63DpEDh+hSype6xvIp4eaqALC8LRRngqBUPqXFUPyUt9UjSDRh1dAViMTDn0= -----END CERTIFICATE-----Generated at Wed Aug 20 13:19:28 2025 by rpki-client