$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d41ff51-e213-454b-bf01-4829839d9568.roa File: 6d41ff51-e213-454b-bf01-4829839d9568.roa (raw, json) Hash identifier: vDV4oqp/c3Dq9BQWX/3+VVRdmXEz86vsdH1nQByXEOg= Subject key identifier: 2D:4F:E0:65:BB:F8:BE:75:CB:C4:BC:69:50:E9:AA:B3:8A:05:85:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D5C497FDFD3908408731FF3027878E67E31DA3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d41ff51-e213-454b-bf01-4829839d9568.roa Signing time: Fri 29 Aug 2025 15:30:32 +0000 ROA not before: Fri 29 Aug 2025 15:30:32 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1c:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:5c:49:7f:df:d3:90:84:08:73:1f:f3:02:78:78:e6:7e:31:da:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:30:32 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=bc23c6efb6611a799214253e5d0a4f639e3c0f77a17cb30897a7770b0e435559, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:1e:21:ce:11:a5:d2:00:e8:16:3e:54:83:73: 11:e3:5f:05:81:8d:1e:7f:97:0e:ae:4c:93:96:77: ce:7a:ee:2e:ef:86:81:da:ba:b1:95:9d:d8:d8:b3: a6:c5:1b:01:12:aa:26:c7:63:42:6b:7c:c5:2e:cc: 02:90:d8:42:bf:d4:04:b7:d2:af:f3:4e:52:56:77: a2:cb:94:75:1d:ac:b5:dc:18:74:56:dc:26:c4:b8: af:6d:92:70:a2:17:92:b9:32:a7:0c:df:d6:c5:b8: aa:4a:fb:cc:71:c1:10:d0:a9:a9:dc:d0:b4:72:9d: c8:6f:17:a6:50:a1:52:3d:c3:75:8f:00:33:bc:ef: 27:47:ce:dd:72:bd:7e:5a:fa:13:c2:fb:56:02:f6: f2:7f:af:8c:f9:1a:07:2b:15:c0:e7:89:ac:25:7d: b0:56:19:86:54:9f:e2:06:02:87:07:07:46:68:76: ad:5c:c4:73:96:61:80:e2:e6:0f:59:94:45:8e:4c: fe:03:ca:6f:cb:1a:10:a6:6d:31:bb:c1:81:43:58: 48:63:d1:c9:f0:3e:88:06:88:62:68:30:dc:55:75: 29:99:c2:a4:11:e8:bc:26:b1:d9:85:a2:e3:9a:dc: 22:9f:2a:f0:b8:b7:ea:a9:f4:5d:ed:15:e4:74:af: 6d:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:4F:E0:65:BB:F8:BE:75:CB:C4:BC:69:50:E9:AA:B3:8A:05:85:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d41ff51-e213-454b-bf01-4829839d9568.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1c:c00::/38 Signature Algorithm: sha256WithRSAEncryption 8d:46:88:f1:8a:f2:60:ae:8e:4e:6d:1d:12:59:47:43:13:5e: 6f:a6:b5:43:d9:f9:ca:fa:3c:bb:29:14:e6:10:9b:6a:c0:3a: bf:ba:8f:73:44:49:56:79:40:9f:ed:08:5c:5f:ea:8b:8d:ea: 80:cc:1e:96:3d:c0:ac:c0:0b:64:93:5b:03:af:e8:b6:0a:d8: 36:5b:24:68:78:db:ae:30:a8:d8:72:1f:ec:59:7d:19:6f:b0: 07:98:87:a2:2d:ac:8d:a4:cd:be:6b:c8:61:0b:a2:a9:30:1b: dc:4c:3a:30:dd:4e:14:bb:f1:88:82:46:b9:8a:07:cd:66:64: 3b:54:27:5e:ef:8d:8e:6d:49:88:0c:0e:7e:cc:d4:9b:0b:e1: de:f8:ce:0a:9d:bd:37:f4:a1:a1:7e:b0:96:9b:e5:b1:e4:e1: 33:9f:5d:6c:f3:c7:65:78:65:7e:32:ee:fe:97:e7:44:03:c5: 75:a7:6a:ae:7d:c8:47:58:98:88:fc:f9:a6:56:26:eb:fc:9f: 77:c3:6a:48:46:99:b3:bb:40:75:5f:78:90:53:5f:43:b2:86: 39:79:0a:cd:d5:f6:17:e9:82:33:02:d4:b0:b1:9b:40:99:f5: 72:77:e3:40:9e:d4:67:d4:0c:e1:14:e7:a6:e5:00:1a:3c:d8: 17:ef:ec:f6 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHVxJf9/TkIQIcx/zAnh45n4x2j8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUzMDMyWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYzIzYzZlZmI2NjExYTc5OTIxNDI1M2U1ZDBhNGY2Mzll M2MwZjc3YTE3Y2IzMDg5N2E3NzcwYjBlNDM1NTU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfHiHOEaXSAOgWPlSDcxHjXwWBjR5/lw6uTJOWd8567i7v hoHaurGVndjYs6bFGwESqibHY0JrfMUuzAKQ2EK/1AS30q/zTlJWd6LLlHUdrLXc GHRW3CbEuK9tknCiF5K5MqcM39bFuKpK+8xxwRDQqanc0LRynchvF6ZQoVI9w3WP ADO87ydHzt1yvX5a+hPC+1YC9vJ/r4z5GgcrFcDniawlfbBWGYZUn+IGAocHB0Zo dq1cxHOWYYDi5g9ZlEWOTP4Dym/LGhCmbTG7wYFDWEhj0cnwPogGiGJoMNxVdSmZ wqQR6LwmsdmFouOa3CKfKvC4t+qp9F3tFeR0r22NAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULU/gZbv4vnXLxLxpUOmqs4oFhUswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkNDFmZjUxLWUyMTMtNDU0Yi1iZjAxLTQ4Mjk4MzlkOTU2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8cDDANBgkqhkiG9w0BAQsFAAOCAQEAjUaI8YryYK6OTm0dEllHQxNe b6a1Q9n5yvo8uykU5hCbasA6v7qPc0RJVnlAn+0IXF/qi43qgMwelj3ArMALZJNb A6/otgrYNlskaHjbrjCo2HIf7Fl9GW+wB5iHoi2sjaTNvmvIYQuiqTAb3Ew6MN1O FLvxiIJGuYoHzWZkO1QnXu+Njm1JiAwOfszUmwvh3vjOCp29N/ShoX6wlpvlseTh M59dbPPHZXhlfjLu/pfnRAPFdadqrn3IR1iYiPz5plYm6/yfd8NqSEaZs7tAdV94 kFNfQ7KGOXkKzdX2F+mCMwLUsLGbQJn1cnfjQJ7UZ9QM4RTnpuUAGjzYF+/s9g== -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:06 2025 by rpki-client