$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5da3c1c2-2ef0-4ade-8296-ffac8f2e088b.roa File: 5da3c1c2-2ef0-4ade-8296-ffac8f2e088b.roa (raw, json) Hash identifier: eafveNMXvV4oDvJ0KeqD84Bu4stI4mPUj1/VfUmA87k= Subject key identifier: B9:5D:FA:AC:4C:9D:4B:9C:D8:C7:D5:00:49:C9:D9:4E:92:DC:5A:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C9A9457EA2D176C7C277A8662927BEB1A87C6AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5da3c1c2-2ef0-4ade-8296-ffac8f2e088b.roa Signing time: Sat 06 Sep 2025 00:10:27 +0000 ROA not before: Sat 06 Sep 2025 00:10:27 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:831b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:9a:94:57:ea:2d:17:6c:7c:27:7a:86:62:92:7b:eb:1a:87:c6:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:10:27 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=c914be557ecb9f07ffecf3c8d028baed4ad6140208576f71478bbc130d6a7ef2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ec:e8:91:ba:02:18:81:0b:51:67:5b:31:41: 90:31:24:f3:1b:21:70:42:df:10:66:43:24:55:33: 4b:d9:2d:94:85:4f:cc:66:23:e3:44:05:01:89:5b: be:f2:50:59:1f:aa:2a:17:d5:21:3a:4e:99:1e:d5: 38:56:b0:d2:dc:10:c0:65:f7:49:00:22:e0:e3:c1: 08:9c:79:fd:53:db:3c:b1:c5:e9:1a:14:15:bc:b2: 17:3b:7f:5d:07:48:8c:3a:2a:f8:ab:fb:61:a1:55: b9:72:a5:44:6b:4b:b5:94:a7:af:0d:41:b2:d6:7b: 90:f3:3d:00:00:d8:de:1b:48:50:5e:cf:4f:33:46: d8:a7:88:4a:92:57:7d:d9:c8:49:9f:4c:ea:33:96: 13:de:78:2c:f2:0d:41:d0:63:c3:e1:c6:e6:cf:54: 9d:78:bc:ec:d0:18:12:c8:36:c3:f8:6d:ad:30:03: 9b:e4:0b:d3:4b:c7:5c:7c:84:66:08:58:2c:c4:4f: 32:a0:f7:b8:59:aa:54:94:e6:21:1e:d1:c3:da:a3: 69:b2:cd:29:51:6b:02:63:9c:b3:6c:a6:b1:f5:fe: fe:cc:99:5b:86:85:2e:0b:34:5f:31:94:2b:ea:e6: ac:a7:31:25:15:ee:9f:4f:b9:eb:c0:33:de:11:6e: 84:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:5D:FA:AC:4C:9D:4B:9C:D8:C7:D5:00:49:C9:D9:4E:92:DC:5A:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5da3c1c2-2ef0-4ade-8296-ffac8f2e088b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:831b::/48 Signature Algorithm: sha256WithRSAEncryption bf:2c:7d:cd:bd:66:6c:dd:30:d1:20:d8:10:df:15:4c:33:18: 0b:1f:3a:49:0f:6a:3b:92:d2:ed:28:51:78:e2:90:0a:d8:95: 33:76:11:f1:de:11:30:de:f3:96:f1:80:35:d1:13:78:45:79: 4c:16:2a:e5:1a:98:fa:32:f9:2a:a5:03:90:3a:b6:f5:ec:17: dc:41:22:84:04:3a:e8:b4:ef:7e:f6:e2:0e:59:3e:a9:d7:7e: 2d:8a:9f:88:fe:17:cf:d9:ce:5f:1f:9e:98:ba:da:19:0e:70: 24:e1:80:0f:a0:21:7f:fe:19:62:fc:a2:64:d2:b8:58:3d:13: e3:a6:80:4f:54:a0:99:ae:6f:19:d6:2e:42:6d:87:fc:4e:8a: fb:d1:e8:2f:6b:9c:a3:00:a8:b4:b4:a6:18:03:d2:ea:ed:bf: 49:6a:86:9d:5c:75:65:34:b4:8e:c7:88:1f:ea:18:e6:10:ad: 2d:9a:26:14:32:c9:f5:c6:07:4b:97:be:2c:ee:e7:a2:dc:09: 77:a4:f0:01:1c:81:28:cf:4f:c0:97:f7:96:b2:f0:7a:5c:59: 84:63:30:90:f8:c2:fa:64:44:7c:1b:2b:8b:d3:10:f6:df:f2: 79:e8:59:2a:c0:55:3d:3f:99:6b:48:bc:fe:ac:cb:62:1e:a0: bd:04:bc:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDJqUV+otF2x8J3qGYpJ76xqHxqwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAxMDI3WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjOTE0YmU1NTdlY2I5ZjA3ZmZlY2YzYzhkMDI4YmFlZDRh ZDYxNDAyMDg1NzZmNzE0NzhiYmMxMzBkNmE3ZWYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt7OiRugIYgQtRZ1sxQZAxJPMbIXBC3xBmQyRVM0vZLZSF T8xmI+NEBQGJW77yUFkfqioX1SE6Tpke1ThWsNLcEMBl90kAIuDjwQicef1T2zyx xekaFBW8shc7f10HSIw6Kvir+2GhVblypURrS7WUp68NQbLWe5DzPQAA2N4bSFBe z08zRtiniEqSV33ZyEmfTOozlhPeeCzyDUHQY8PhxubPVJ14vOzQGBLINsP4ba0w A5vkC9NLx1x8hGYIWCzETzKg97hZqlSU5iEe0cPao2myzSlRawJjnLNsprH1/v7M mVuGhS4LNF8xlCvq5qynMSUV7p9PuevAM94RboQ5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuV36rEydS5zYx9UAScnZTpLcWukwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkYTNjMWMyLTJlZjAtNGFkZS04Mjk2LWZmYWM4ZjJlMDg4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gxswDQYJKoZIhvcNAQELBQADggEBAL8sfc29ZmzdMNEg2BDfFUwz GAsfOkkPajuS0u0oUXjikArYlTN2EfHeETDe85bxgDXRE3hFeUwWKuUamPoy+Sql A5A6tvXsF9xBIoQEOui073724g5ZPqnXfi2Kn4j+F8/Zzl8fnpi62hkOcCThgA+g IX/+GWL8omTSuFg9E+OmgE9UoJmubxnWLkJth/xOivvR6C9rnKMAqLS0phgD0urt v0lqhp1cdWU0tI7HiB/qGOYQrS2aJhQyyfXGB0uXvizu56LcCXek8AEcgSjPT8CX 95ay8HpcWYRjMJD4wvpkRHwbK4vTEPbf8nnoWSrAVT0/mWtIvP6sy2IeoL0EvKs= -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:48 2025 by rpki-client