$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa File: 6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa (raw, json) Hash identifier: 8kLEkxiR5JpQOFUmNT5T35vLdxxH8U8Z51knpw+ehok= Subject key identifier: 3B:EB:F5:B1:C4:6B:46:BB:A2:01:3E:05:D2:66:76:E5:22:D1:58:45 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51743B45B31E27DD814726C3FC944D8162390C50 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa Signing time: Sat 06 Sep 2025 00:20:18 +0000 ROA not before: Sat 06 Sep 2025 00:20:18 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff9:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:74:3b:45:b3:1e:27:dd:81:47:26:c3:fc:94:4d:81:62:39:0c:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:20:18 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=af10698751592344f57c8d4363c47448ced74fa90154da616a7d97d6f4b4fcb2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fd:e4:d4:41:38:8e:6b:5f:60:40:59:85:18: 72:de:26:6a:df:da:23:ae:99:b8:52:7d:e3:33:4b: 70:72:f7:32:b8:90:c3:54:4b:bd:ce:27:39:5f:6c: 3f:56:36:92:ec:ff:bc:43:df:c2:b8:49:84:0f:25: 9e:82:38:9c:51:40:31:54:5d:82:e6:54:cf:cf:b3: bf:38:e4:d1:af:82:d4:a2:7c:82:35:77:50:a6:30: a4:b9:9d:65:59:1e:86:59:e9:aa:47:3e:6e:14:a6: 79:4e:e4:82:69:18:84:c2:5d:fc:4a:59:ad:e2:6d: b0:fd:de:ea:79:6a:3a:a1:d9:90:f2:b6:0b:bc:87: b0:0d:11:63:35:a2:db:07:42:bc:04:b4:e9:3d:d8: e5:06:59:ff:ad:8e:b1:1c:09:03:71:dd:c3:1a:c8: d7:90:0c:db:15:8a:66:26:5e:fa:f4:89:66:5a:88: aa:e9:79:bb:90:56:dc:1b:db:1a:2e:46:dc:ad:3a: 82:0a:f4:45:ad:26:82:2c:aa:96:b0:de:ea:91:ae: 44:f9:93:10:35:95:61:f1:94:54:ad:1f:52:44:36: 2b:ab:c9:7e:c4:9f:70:b4:a0:a3:e6:eb:a0:3a:9e: 89:05:9d:31:ca:31:eb:74:a4:5f:74:67:2a:8a:d8: 4c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:EB:F5:B1:C4:6B:46:BB:A2:01:3E:05:D2:66:76:E5:22:D1:58:45 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4fd009-c1bd-4df9-a85f-7c903e47ddcf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff9:8000::/39 Signature Algorithm: sha256WithRSAEncryption 5f:6c:ed:a4:f8:2b:8c:be:4f:2f:4b:3c:d1:25:4b:49:0d:bc: e6:3d:53:bc:c2:dc:f9:95:e1:42:9f:a8:cb:a5:47:17:7c:7d: d3:fd:7b:9c:19:2a:a5:11:c1:87:4c:0c:09:75:42:0e:b4:2c: e3:9a:4b:42:ed:05:73:21:08:6a:66:c0:c9:76:88:d9:e9:3f: b6:7d:40:c5:5d:9e:c9:ab:49:50:c4:48:8c:9d:be:61:b5:43: 0d:34:4c:d2:57:58:c6:72:1f:00:04:87:e9:f2:30:ad:f7:9f: a6:f6:9b:23:9a:0a:a8:51:aa:08:c0:4f:08:b5:ba:b6:81:04: 8a:5d:00:94:3c:dd:43:3d:1d:ce:e4:1d:7e:ec:1e:17:eb:83: cc:7d:05:74:95:b6:dc:3b:6e:9f:56:aa:2b:01:43:c4:22:98: 93:3b:eb:36:e6:f1:c3:a3:e3:fc:7f:10:a9:72:00:2d:d7:9c: 6f:93:53:0c:88:38:a9:b2:06:31:bd:1e:21:a0:11:99:d6:de: 1e:33:5a:94:a0:43:25:65:df:09:f6:e7:fe:98:8f:44:9f:8a: ab:4a:6a:6b:79:d5:2b:ee:f2:ef:10:e6:7f:fa:67:0c:16:21: 52:34:98:3f:cc:2d:37:9d:56:f5:05:a5:7f:3f:48:3b:b3:09: ae:80:b8:d1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUXQ7RbMeJ92BRybD/JRNgWI5DFAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAyMDE4WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjEwNjk4NzUxNTkyMzQ0ZjU3YzhkNDM2M2M0NzQ0OGNl ZDc0ZmE5MDE1NGRhNjE2YTdkOTdkNmY0YjRmY2IyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDE/eTUQTiOa19gQFmFGHLeJmrf2iOumbhSfeMzS3By9zK4 kMNUS73OJzlfbD9WNpLs/7xD38K4SYQPJZ6COJxRQDFUXYLmVM/Ps7845NGvgtSi fII1d1CmMKS5nWVZHoZZ6apHPm4UpnlO5IJpGITCXfxKWa3ibbD93up5ajqh2ZDy tgu8h7ANEWM1otsHQrwEtOk92OUGWf+tjrEcCQNx3cMayNeQDNsVimYmXvr0iWZa iKrpebuQVtwb2xouRtytOoIK9EWtJoIsqpaw3uqRrkT5kxA1lWHxlFStH1JENiur yX7En3C0oKPm66A6nokFnTHKMet0pF90ZyqK2Ey9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUO+v1scRrRruiAT4F0mZ25SLRWEUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmNGZkMDA5LWMxYmQtNGRmOS1hODVmLTdjOTAzZTQ3ZGRjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/5gDANBgkqhkiG9w0BAQsFAAOCAQEAX2ztpPgrjL5PL0s80SVLSQ28 5j1TvMLc+ZXhQp+oy6VHF3x90/17nBkqpRHBh0wMCXVCDrQs45pLQu0FcyEIambA yXaI2ek/tn1AxV2eyatJUMRIjJ2+YbVDDTRM0ldYxnIfAASH6fIwrfefpvabI5oK qFGqCMBPCLW6toEEil0AlDzdQz0dzuQdfuweF+uDzH0FdJW23Dtun1aqKwFDxCKY kzvrNubxw6Pj/H8QqXIALdecb5NTDIg4qbIGMb0eIaARmdbeHjNalKBDJWXfCfbn /piPRJ+Kq0pqa3nVK+7y7xDmf/pnDBYhUjSYP8wtN51W9QWlfz9IO7MJroC40Q== -----END CERTIFICATE-----Generated at Sat Sep 6 16:41:01 2025 by rpki-client