$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa File: 624938a7-7c55-4a2c-87ea-1939815006d1.roa (raw, json) Hash identifier: ktRxw+UvwjDBGaTz9eanDcrHogiaGuX+6xX+cKg8jyM= Subject key identifier: 22:AB:63:4B:CA:8E:87:A5:84:08:06:DF:4B:7D:CA:62:F6:5A:78:56 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B4F24E36821ABA34CD4AFF7D9707D6BA21A6B0F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa Signing time: Fri 29 Aug 2025 15:01:58 +0000 ROA not before: Fri 29 Aug 2025 15:01:58 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff1:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:4f:24:e3:68:21:ab:a3:4c:d4:af:f7:d9:70:7d:6b:a2:1a:6b:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:01:58 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=6e3cecfe14ae9941763dec2c7347607cbeab0ea305213e97900b7f87b20e138d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d1:3d:f0:5f:b3:3e:23:4b:f2:a6:a7:3a:9f: 7d:cc:7f:a2:65:88:09:89:01:e8:b9:f6:b1:59:ee: 6f:fc:d9:4d:85:01:94:a8:9b:5b:38:69:28:8a:c7: e5:8b:b2:3e:14:5b:84:6a:de:c9:99:df:2e:f9:c3: fe:2b:dd:ee:b3:c5:2e:f3:2d:a0:25:97:46:16:b1: fc:5e:2f:5f:04:28:ad:54:70:ef:16:d4:a1:28:cd: 57:c0:c0:21:3f:cb:6e:36:5e:3d:c9:7e:1d:c9:ce: 2a:64:6c:0b:43:01:20:e5:90:ee:51:00:a5:a0:e7: 1d:88:b9:4a:68:8b:3c:2e:a3:2f:8c:49:13:de:8b: 4f:0f:85:6f:d6:2b:48:88:d3:f9:5d:72:19:cd:40: 2b:32:1f:8e:37:41:24:e1:13:ca:4e:23:95:00:73: 4e:a7:7f:4b:03:4e:9b:76:2d:52:c2:50:4c:ca:22: bc:0d:0b:38:28:32:be:04:a4:9e:dc:c9:aa:1a:b5: 7a:12:66:5e:84:3b:79:bc:42:4d:53:e7:2c:59:eb: 2b:b7:62:2c:d6:36:b9:b4:69:80:60:52:22:c4:c9: 03:0a:13:ba:d4:1c:6d:29:0f:38:6b:5d:94:77:80: 33:c7:db:c9:62:3e:e7:f2:b9:29:f5:0c:d4:48:d4: 01:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:AB:63:4B:CA:8E:87:A5:84:08:06:DF:4B:7D:CA:62:F6:5A:78:56 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/624938a7-7c55-4a2c-87ea-1939815006d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:8000::/39 Signature Algorithm: sha256WithRSAEncryption 3a:d7:be:7f:b8:d7:db:da:8c:71:8e:a3:89:bb:8f:b9:8b:d1: aa:26:2f:08:4f:bd:88:1f:44:6d:87:a9:86:d9:d4:44:3f:a5: 0f:ef:4a:ef:b7:90:81:46:52:25:31:7a:24:ae:8c:e1:bb:13: 79:95:aa:af:c6:d6:dd:6d:87:84:32:f3:4d:bc:a0:19:05:c0: 65:89:e1:19:5b:4d:85:99:44:3b:6c:66:b0:56:36:4b:c1:e7: cd:cf:09:86:97:53:31:8e:e4:55:cc:4e:af:de:85:af:04:c3: 1d:83:79:43:d4:0d:1a:8a:56:89:ee:8c:b6:9f:f8:57:c9:b1: e0:a6:fd:82:3d:49:8a:6d:e0:69:c8:c2:14:3a:8f:65:6b:74: d8:55:60:80:8e:39:a8:a2:3a:00:cb:7e:04:dc:c9:02:5c:9c: ef:44:61:7e:ca:7f:2a:11:ce:2f:05:f1:47:c5:b4:d6:34:66: 55:56:de:20:60:5d:40:ba:1d:c6:db:5b:de:f7:84:cb:b6:2d: 54:f2:3e:5b:71:5e:eb:29:80:20:49:29:30:3a:a2:ca:b4:e0: af:f1:31:ce:f7:bb:c6:1a:c1:78:56:8e:c2:92:00:03:ad:31: a9:ee:b1:7e:64:58:03:b9:29:45:ee:61:99:8f:bd:81:8d:0a: ac:d3:73:af -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUO08k42ghq6NM1K/32XB9a6Iaaw8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUwMTU4WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTNjZWNmZTE0YWU5OTQxNzYzZGVjMmM3MzQ3NjA3Y2Jl YWIwZWEzMDUyMTNlOTc5MDBiN2Y4N2IyMGUxMzhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD10T3wX7M+I0vypqc6n33Mf6JliAmJAei59rFZ7m/82U2F AZSom1s4aSiKx+WLsj4UW4Rq3smZ3y75w/4r3e6zxS7zLaAll0YWsfxeL18EKK1U cO8W1KEozVfAwCE/y242Xj3Jfh3JzipkbAtDASDlkO5RAKWg5x2IuUpoizwuoy+M SRPei08PhW/WK0iI0/ldchnNQCsyH443QSThE8pOI5UAc06nf0sDTpt2LVLCUEzK IrwNCzgoMr4EpJ7cyaoatXoSZl6EO3m8Qk1T5yxZ6yu3YizWNrm0aYBgUiLEyQMK E7rUHG0pDzhrXZR3gDPH28liPufyuSn1DNRI1AHFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUIqtjS8qOh6WECAbfS33KYvZaeFYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyNDkzOGE3LTdjNTUtNGEyYy04N2VhLTE5Mzk4MTUwMDZkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/xgDANBgkqhkiG9w0BAQsFAAOCAQEAOte+f7jX29qMcY6jibuPuYvR qiYvCE+9iB9EbYephtnURD+lD+9K77eQgUZSJTF6JK6M4bsTeZWqr8bW3W2HhDLz TbygGQXAZYnhGVtNhZlEO2xmsFY2S8Hnzc8JhpdTMY7kVcxOr96FrwTDHYN5Q9QN GopWie6Mtp/4V8mx4Kb9gj1Jim3gacjCFDqPZWt02FVggI45qKI6AMt+BNzJAlyc 70Rhfsp/KhHOLwXxR8W01jRmVVbeIGBdQLodxttb3veEy7YtVPI+W3Fe6ymAIEkp MDqiyrTgr/Exzve7xhrBeFaOwpIAA60xqe6xfmRYA7kpRe5hmY+9gY0KrNNzrw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:05 2025 by rpki-client