$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72333184-87ac-4997-aef3-ad6d2ebcdd26.roa File: 72333184-87ac-4997-aef3-ad6d2ebcdd26.roa (raw, json) Hash identifier: tvKXURaIaGoanG5YAwUrQeB3+z+GlTGdCf65izwD9bU= Subject key identifier: 23:88:03:E3:5B:EA:D1:C0:9D:26:02:A6:DE:CF:EA:8B:82:46:81:CF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D1D73609A0D6484CD69D12E4B7D47E303D6249F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72333184-87ac-4997-aef3-ad6d2ebcdd26.roa Signing time: Mon 25 Aug 2025 16:52:14 +0000 ROA not before: Mon 25 Aug 2025 16:52:14 +0000 ROA not after: Mon 29 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fec:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:1d:73:60:9a:0d:64:84:cd:69:d1:2e:4b:7d:47:e3:03:d6:24:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 25 16:52:14 2025 GMT Not After : Sep 29 23:59:59 2025 GMT Subject: serialNumber=69a7092aff31438fe7b2289244e7da704b493131cf5859a48d4909899d550a85, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1e:78:4a:1e:64:90:d9:0f:c2:c5:e9:d2:b3: 11:92:87:26:aa:c5:f3:20:61:02:0e:ef:28:b3:1d: 85:c8:fa:cc:58:b1:ad:fd:62:a9:f9:98:e8:19:5a: 71:8d:cc:c7:ed:1d:af:cb:48:eb:87:8e:be:c0:8d: 2a:14:1b:67:fc:c0:b2:b1:06:19:5e:b4:a0:88:dc: e5:09:f2:ff:0d:37:8b:6c:aa:a9:0c:f5:7a:9e:ca: 4d:00:a4:be:92:0f:4a:d2:38:ac:46:87:01:8f:6b: ee:31:c0:f0:9c:8b:42:ea:6d:d2:90:51:40:5f:63: 3e:db:72:d5:7f:5a:56:25:7e:a4:7e:dc:c8:bd:85: 0c:a3:a3:3e:ba:89:34:9e:09:3e:9b:c4:d7:75:b7: 9d:b8:70:a7:13:d2:9f:33:12:95:31:c9:29:b3:ec: 74:34:a1:de:3f:93:3d:24:53:ba:6e:9b:db:b6:c3: 8a:2a:16:98:7f:7c:e9:27:4d:31:65:9f:9e:fc:4d: 3d:ec:f5:6d:6f:33:c4:80:93:73:6c:56:c3:a6:b0: 8e:e6:24:6b:8d:b9:0f:3e:75:7f:a5:55:ff:b5:5d: fd:7c:10:3e:0b:c6:7b:42:ca:df:57:28:e0:80:79: 2e:b5:73:25:4b:84:45:71:5e:14:c4:8b:98:90:4c: 7d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:88:03:E3:5B:EA:D1:C0:9D:26:02:A6:DE:CF:EA:8B:82:46:81:CF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72333184-87ac-4997-aef3-ad6d2ebcdd26.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:2000::/48 Signature Algorithm: sha256WithRSAEncryption 49:96:c3:46:a4:59:11:74:11:96:d6:ac:12:39:cf:33:8f:1c: a3:d6:a7:84:8c:70:37:b7:80:22:88:ef:ed:8f:93:09:0a:f1: b5:cf:d2:db:01:d6:8e:e9:f4:13:cd:b7:3e:88:5d:54:a9:eb: 78:58:0d:d3:67:08:ff:12:32:70:8e:8a:eb:c2:af:1c:67:82: b3:67:b9:4e:ef:7d:6d:99:97:21:ba:e0:d9:c9:9a:54:de:50: 70:9e:a4:b7:85:64:df:af:3d:77:70:64:b4:06:18:b3:97:c2: 60:e8:ac:39:6a:2d:29:81:3b:38:54:fe:64:72:b0:e7:5d:93: 7f:a7:c8:0d:23:b1:ea:94:c5:48:70:bd:da:03:a4:44:d8:94: 28:8c:e3:cf:45:12:9d:71:de:7a:77:8a:bc:04:f3:d3:9c:fb: bd:17:f9:23:5a:5c:e5:ba:df:e4:cd:4b:83:ac:46:e8:6b:9d: 15:9d:7d:67:61:a9:22:86:02:c4:2f:a7:97:b5:1e:07:4b:13: 44:32:46:38:5e:7e:d1:28:23:c9:1b:ee:38:66:5b:20:d6:73: 7e:72:d8:d8:88:0d:bc:d8:ce:14:ca:bd:2a:7a:4b:c1:6f:58: 6d:de:2e:ba:3d:09:c9:2c:9c:92:1f:13:79:e2:7a:97:55:8d: af:03:0d:b6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbR1zYJoNZITNadEuS31H4wPWJJ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI1MTY1MjE0WhcNMjUwOTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OWE3MDkyYWZmMzE0MzhmZTdiMjI4OTI0NGU3ZGE3MDRi NDkzMTMxY2Y1ODU5YTQ4ZDQ5MDk4OTlkNTUwYTg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaHnhKHmSQ2Q/CxenSsxGShyaqxfMgYQIO7yizHYXI+sxY sa39Yqn5mOgZWnGNzMftHa/LSOuHjr7AjSoUG2f8wLKxBhletKCI3OUJ8v8NN4ts qqkM9Xqeyk0ApL6SD0rSOKxGhwGPa+4xwPCci0LqbdKQUUBfYz7bctV/WlYlfqR+ 3Mi9hQyjoz66iTSeCT6bxNd1t524cKcT0p8zEpUxySmz7HQ0od4/kz0kU7pum9u2 w4oqFph/fOknTTFln578TT3s9W1vM8SAk3NsVsOmsI7mJGuNuQ8+dX+lVf+1Xf18 ED4LxntCyt9XKOCAeS61cyVLhEVxXhTEi5iQTH3ZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUI4gD41vq0cCdJgKm3s/qi4JGgc8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyMzMzMTg0LTg3YWMtNDk5Ny1hZWYzLWFkNmQyZWJjZGQyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/sIAAwDQYJKoZIhvcNAQELBQADggEBAEmWw0akWRF0EZbWrBI5zzOP HKPWp4SMcDe3gCKI7+2PkwkK8bXP0tsB1o7p9BPNtz6IXVSp63hYDdNnCP8SMnCO iuvCrxxngrNnuU7vfW2ZlyG64NnJmlTeUHCepLeFZN+vPXdwZLQGGLOXwmDorDlq LSmBOzhU/mRysOddk3+nyA0jseqUxUhwvdoDpETYlCiM489FEp1x3np3irwE89Oc +70X+SNaXOW63+TNS4OsRuhrnRWdfWdhqSKGAsQvp5e1HgdLE0QyRjheftEoI8kb 7jhmWyDWc35y2NiIDbzYzhTKvSp6S8FvWG3eLro9CcksnJIfE3niepdVja8DDbY= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:35 2025 by rpki-client