$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9d9efe-6bc4-4ce7-91fb-8b1e032d4ed4.roa File: 4d9d9efe-6bc4-4ce7-91fb-8b1e032d4ed4.roa (raw, json) Hash identifier: c6+Xl9am6oXHiOnVQBhdItMAjoelvYmQRnGrQWe092c= Subject key identifier: 3F:FB:F6:D6:C4:B2:56:A5:E6:CB:B7:EE:61:04:93:41:5C:32:88:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60CBEFC2130C39E3508EE11FD5F82974F617DE67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9d9efe-6bc4-4ce7-91fb-8b1e032d4ed4.roa Signing time: Tue 12 Aug 2025 00:21:16 +0000 ROA not before: Tue 12 Aug 2025 00:21:16 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:cb:ef:c2:13:0c:39:e3:50:8e:e1:1f:d5:f8:29:74:f6:17:de:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:21:16 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=c2f39392fedae6733b7ed43e4bb648bbc22132252888dea754baff87c9fa4921, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:f7:b5:20:03:78:8e:13:5d:51:51:63:09:dd: cc:0c:73:74:36:87:b8:e4:0c:e3:b1:d8:44:a8:b1: 0c:50:b7:c2:9b:a9:1c:05:af:f1:ac:e6:03:17:a1: d8:c3:aa:f2:e3:c8:6b:5c:bb:09:4b:e8:92:84:0a: 6e:1c:47:64:50:20:ff:c5:1e:91:d5:3a:4f:d4:6d: d0:db:89:82:45:e5:80:36:91:1b:cf:21:38:b8:74: a1:a1:f6:09:49:27:c9:46:db:1e:62:29:30:91:20: c6:6e:6a:e6:94:1d:c9:6e:bd:4b:82:22:e3:e9:e7: c2:7f:ab:5a:9e:1c:94:a5:43:1c:6b:0a:ff:88:af: 88:c8:62:27:5b:5d:f4:04:69:21:ba:b9:8b:33:03: 53:27:df:41:be:07:c3:51:de:d8:06:ec:14:31:54: d7:09:0b:b7:d3:57:d4:3c:b8:fc:b5:c5:97:e0:80: 39:2f:96:be:1f:c3:f0:30:7c:7d:ab:0e:c4:a8:38: 3f:71:bd:01:7b:f7:76:1f:06:2d:f0:cf:b6:0b:ed: 73:15:73:c1:9b:d3:9f:3e:ed:3d:28:7a:39:74:df: 1b:c7:78:b1:33:46:f7:b6:70:bb:11:4c:0d:0e:b8: c9:8f:0a:e2:ac:06:db:66:fd:ac:a9:fa:a4:9c:11: 6e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FB:F6:D6:C4:B2:56:A5:E6:CB:B7:EE:61:04:93:41:5C:32:88:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d9d9efe-6bc4-4ce7-91fb-8b1e032d4ed4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16:8000::/36 Signature Algorithm: sha256WithRSAEncryption 48:fa:eb:3c:1d:70:55:77:89:d4:96:0b:20:9f:53:b4:06:87: 42:45:2e:39:62:b8:43:88:7b:df:ee:d1:3d:f5:f8:32:ec:c2: 72:07:8b:81:1f:33:36:eb:e5:64:80:80:46:b9:f6:84:5f:26: c4:d2:49:a1:42:7b:c3:2e:2e:36:38:13:d8:f3:71:52:a3:ca: e8:77:7d:65:38:98:76:1a:c7:7c:77:e6:f5:33:30:b3:78:51: 76:47:e1:93:92:94:56:f2:c5:47:b1:07:30:79:2f:89:21:57: b9:68:b4:1f:3e:a5:33:b0:69:94:1b:b9:75:c2:cd:a1:3d:20: a4:f6:32:f6:c8:28:f1:22:1c:2e:fb:92:67:cb:a4:24:5f:98: ee:35:54:8b:cf:1d:78:9a:4d:cf:20:31:3f:4d:03:1c:80:63: 6b:20:ec:dc:d6:b8:68:8f:5f:ba:95:77:1f:8e:63:d5:9f:c8: e8:45:57:06:a0:27:13:08:18:64:53:56:49:da:68:e7:65:86: d9:d4:bb:9b:a5:70:d8:3c:46:ff:7f:d1:48:14:ea:b3:b7:7d: aa:04:71:3c:8f:45:88:95:b2:74:b2:10:1a:d0:d9:f3:15:43: 5c:ef:0c:5f:f1:fa:fa:ab:84:ba:79:d5:9f:bc:7d:7c:5f:bf: 05:ee:c5:94 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUYMvvwhMMOeNQjuEf1fgpdPYX3mcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAyMTE2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMmYzOTM5MmZlZGFlNjczM2I3ZWQ0M2U0YmI2NDhiYmMy MjEzMjI1Mjg4OGRlYTc1NGJhZmY4N2M5ZmE0OTIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDw97UgA3iOE11RUWMJ3cwMc3Q2h7jkDOOx2ESosQxQt8Kb qRwFr/Gs5gMXodjDqvLjyGtcuwlL6JKECm4cR2RQIP/FHpHVOk/UbdDbiYJF5YA2 kRvPITi4dKGh9glJJ8lG2x5iKTCRIMZuauaUHcluvUuCIuPp58J/q1qeHJSlQxxr Cv+Ir4jIYidbXfQEaSG6uYszA1Mn30G+B8NR3tgG7BQxVNcJC7fTV9Q8uPy1xZfg gDkvlr4fw/AwfH2rDsSoOD9xvQF793YfBi3wz7YL7XMVc8Gb058+7T0oejl03xvH eLEzRve2cLsRTA0OuMmPCuKsBttm/ayp+qScEW6VAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUP/v21sSyVqXmy7fuYQSTQVwyiHYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkOWQ5ZWZlLTZiYzQtNGNlNy05MWZiLThiMWUwMzJkNGVkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8WgDANBgkqhkiG9w0BAQsFAAOCAQEASPrrPB1wVXeJ1JYLIJ9TtAaH QkUuOWK4Q4h73+7RPfX4MuzCcgeLgR8zNuvlZICARrn2hF8mxNJJoUJ7wy4uNjgT 2PNxUqPK6Hd9ZTiYdhrHfHfm9TMws3hRdkfhk5KUVvLFR7EHMHkviSFXuWi0Hz6l M7BplBu5dcLNoT0gpPYy9sgo8SIcLvuSZ8ukJF+Y7jVUi88deJpNzyAxP00DHIBj ayDs3Na4aI9fupV3H45j1Z/I6EVXBqAnEwgYZFNWSdpo52WG2dS7m6Vw2DxG/3/R SBTqs7d9qgRxPI9FiJWydLIQGtDZ8xVDXO8MX/H6+quEunnVn7x9fF+/Be7FlA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:58 2025 by rpki-client