$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/627cfcbd-dea0-4a66-8797-dc40d8b87244.roa File: 627cfcbd-dea0-4a66-8797-dc40d8b87244.roa (raw, json) Hash identifier: ACu05kionX7hOSn15o58s+krs76QndPL+x4TIVSgX5E= Subject key identifier: 71:87:43:E8:75:C7:4B:78:AC:5B:F5:8C:E0:12:5B:EB:AD:57:07:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C3F771E39E3235FBFD5A942827788402DEEC6B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/627cfcbd-dea0-4a66-8797-dc40d8b87244.roa Signing time: Tue 26 Aug 2025 16:21:58 +0000 ROA not before: Tue 26 Aug 2025 16:21:58 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:8040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:3f:77:1e:39:e3:23:5f:bf:d5:a9:42:82:77:88:40:2d:ee:c6:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 16:21:58 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=5858df5bb8517c05c2d6b4c07928b8ddd5d1771aac1dc5f25de70ee24dc5b1e1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a7:88:81:b0:24:4a:b6:4d:1d:92:c3:35:f5: 51:46:9d:25:ff:3d:ca:5e:e5:fe:be:71:7a:35:d6: 48:c2:e5:5a:d6:93:09:03:f3:3e:33:1f:44:ba:15: 7c:a1:48:49:fb:13:c2:f9:38:da:34:76:9d:f5:b9: 7d:76:62:1d:54:bc:72:e6:bb:b6:f8:c9:b7:e1:97: 59:4c:85:ec:69:22:98:8f:d7:6d:27:08:40:de:9c: 2b:f7:44:77:2b:0d:64:c1:a6:a9:38:6d:a8:aa:6f: 4f:c1:32:b6:ac:d5:49:e2:56:b9:25:3d:0a:58:90: 43:63:fa:fe:7f:35:cd:d7:7f:bd:fb:75:5e:c7:4e: b6:b0:99:df:24:a7:5a:bf:ba:e6:09:8a:d1:83:ff: 74:6c:84:74:d4:b9:59:48:52:ac:66:ce:00:b3:ef: c9:67:6f:b0:67:eb:58:e7:39:55:c4:40:01:6a:5c: d5:1e:22:a3:33:c3:af:b1:da:2d:bd:c3:68:23:a7: 51:7c:8f:71:3a:78:30:0e:5d:ee:ee:79:ba:cd:30: aa:dd:7f:02:12:f5:03:e7:37:77:fd:4a:c4:6b:ac: 3e:6a:2b:59:04:7c:78:18:f2:50:30:62:00:31:48: 43:04:43:a6:e9:43:b9:9b:0c:1f:fe:23:b8:71:8f: 26:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:87:43:E8:75:C7:4B:78:AC:5B:F5:8C:E0:12:5B:EB:AD:57:07:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/627cfcbd-dea0-4a66-8797-dc40d8b87244.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:8040::/48 Signature Algorithm: sha256WithRSAEncryption 68:6e:75:f1:b6:a4:85:14:25:b7:20:db:f7:ed:59:61:a6:ea: 6d:81:c9:84:6e:2c:e3:5d:a7:2f:34:47:21:da:cd:3e:c1:e4: 2e:b3:e1:27:23:9b:2b:b2:85:6e:bb:0f:74:dd:91:36:1c:33: 0b:42:29:63:17:95:9c:ed:50:db:fc:14:d0:e7:dd:ab:13:d9: 93:eb:50:cd:f5:6d:13:cf:79:da:de:97:bf:72:d6:fe:8c:c8: fd:07:2c:8d:17:bf:5b:05:40:0f:86:53:0b:80:65:28:87:6a: a8:a0:89:63:07:d9:f1:cf:39:2c:07:35:05:9c:67:57:8a:56: bc:84:38:ff:e3:9d:d7:b0:f0:9b:3c:52:8d:65:54:ce:1b:19: 13:5a:72:3b:04:a4:48:c9:7d:f2:94:27:87:0e:12:f9:38:a1: 5e:db:e9:0c:66:95:91:16:33:90:d4:d9:fb:aa:b7:5b:96:4d: 79:65:9f:db:8f:cd:5c:e8:07:55:86:07:22:71:35:37:ca:0a: a7:4e:03:69:23:7a:8a:1a:48:4c:60:76:ef:df:78:c4:97:71: 06:39:fe:26:a4:33:21:7b:47:fb:83:e5:16:83:0d:ce:70:45: ff:7e:d6:32:bb:73:7d:bb:08:ec:b1:36:ab:bc:92:d7:f9:e5: 89:10:07:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPD93HjnjI1+/1alCgneIQC3uxrQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTYyMTU4WhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODU4ZGY1YmI4NTE3YzA1YzJkNmI0YzA3OTI4YjhkZGQ1 ZDE3NzFhYWMxZGM1ZjI1ZGU3MGVlMjRkYzViMWUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnp4iBsCRKtk0dksM19VFGnSX/Pcpe5f6+cXo11kjC5VrW kwkD8z4zH0S6FXyhSEn7E8L5ONo0dp31uX12Yh1UvHLmu7b4ybfhl1lMhexpIpiP 120nCEDenCv3RHcrDWTBpqk4baiqb0/BMras1UniVrklPQpYkENj+v5/Nc3Xf737 dV7HTrawmd8kp1q/uuYJitGD/3RshHTUuVlIUqxmzgCz78lnb7Bn61jnOVXEQAFq XNUeIqMzw6+x2i29w2gjp1F8j3E6eDAOXe7uebrNMKrdfwIS9QPnN3f9SsRrrD5q K1kEfHgY8lAwYgAxSEMEQ6bpQ7mbDB/+I7hxjyZPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcYdD6HXHS3isW/WM4BJb661XBxgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyN2NmY2JkLWRlYTAtNGE2Ni04Nzk3LWRjNDBkOGI4NzI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84gEAwDQYJKoZIhvcNAQELBQADggEBAGhudfG2pIUUJbcg2/ftWWGm 6m2ByYRuLONdpy80RyHazT7B5C6z4ScjmyuyhW67D3TdkTYcMwtCKWMXlZztUNv8 FNDn3asT2ZPrUM31bRPPedrel79y1v6MyP0HLI0Xv1sFQA+GUwuAZSiHaqigiWMH 2fHPOSwHNQWcZ1eKVryEOP/jndew8Js8Uo1lVM4bGRNacjsEpEjJffKUJ4cOEvk4 oV7b6QxmlZEWM5DU2fuqt1uWTXlln9uPzVzoB1WGByJxNTfKCqdOA2kjeooaSExg du/feMSXcQY5/iakMyF7R/uD5RaDDc5wRf9+1jK7c327COyxNqu8ktf55YkQB7c= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:29 2025 by rpki-client