$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854afe71-a47b-4f9f-8274-9f19c4431d15.roa File: 854afe71-a47b-4f9f-8274-9f19c4431d15.roa (raw, json) Hash identifier: vfLqTodusZYVdCJVjEAOocgaalZAGSUsUXjI6oLJ/6k= Subject key identifier: AA:FF:4D:80:12:D0:90:1D:27:9C:87:70:B4:8B:53:77:B0:57:E7:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E0BE6C4EF85F9736D9EF7EE1735820FDDADB042 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854afe71-a47b-4f9f-8274-9f19c4431d15.roa Signing time: Fri 29 Aug 2025 15:22:02 +0000 ROA not before: Fri 29 Aug 2025 15:22:02 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:0b:e6:c4:ef:85:f9:73:6d:9e:f7:ee:17:35:82:0f:dd:ad:b0:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:22:02 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=db7d221b930db06d3d19153e2b87d4aaf6acfd684d62ad705cf83d8b743746d3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:73:7c:46:21:a1:cb:65:e1:8f:e8:81:5f:a4: 2c:8a:c5:da:e1:c8:e7:d3:c7:f7:24:38:01:ee:2d: b9:a0:8f:a5:fd:09:14:a2:7a:00:21:c7:37:1e:af: 94:2f:d5:bb:6b:ff:c9:5f:ee:c8:d5:84:dc:55:44: d7:43:16:93:26:f2:72:b9:ea:74:6b:02:cc:8a:79: f7:d1:23:98:ce:20:f6:85:c0:28:e2:12:c4:59:bb: 7b:2b:86:f9:58:59:31:37:73:44:fa:03:a3:ad:69: 37:99:93:f9:bf:e1:1f:98:7c:d0:24:51:11:e7:96: aa:6c:12:8b:1d:5c:10:26:e2:86:af:2c:52:ba:2b: 7d:a1:68:9a:e1:bc:1c:1c:df:73:dc:11:d0:7e:1f: eb:00:fa:60:43:28:91:ce:bc:78:f1:85:bf:e7:7a: 89:ee:d8:0b:53:36:39:8d:63:61:32:11:3f:c1:0b: 80:fe:0d:b9:e3:d8:16:03:a9:12:dc:c7:16:fb:9b: a0:e5:8f:ed:1d:32:6b:32:7a:5a:26:ae:3a:c8:ef: 4f:bb:58:97:c1:1e:28:3c:39:db:26:c2:14:bc:cf: f7:f9:2e:63:6a:55:54:8a:07:74:e5:82:7a:b0:f1: a3:cf:9c:dc:2b:85:db:79:21:7d:2b:bc:b5:31:68: b7:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:FF:4D:80:12:D0:90:1D:27:9C:87:70:B4:8B:53:77:B0:57:E7:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854afe71-a47b-4f9f-8274-9f19c4431d15.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36::/32 Signature Algorithm: sha256WithRSAEncryption 70:4b:d6:81:6c:80:57:ab:e2:48:ce:ad:db:00:47:5c:d6:e1: 8c:3b:39:95:f6:7d:bf:c1:70:0f:c6:4a:61:10:ad:53:06:43: 45:56:24:be:73:4f:60:4b:db:a9:f8:12:0e:36:e4:ae:39:7e: 54:32:d3:0a:27:b5:88:57:53:82:09:3c:1e:8d:77:57:dc:bc: 8b:02:4f:48:94:8f:eb:85:dc:87:0d:7b:29:4e:4e:83:8b:5f: d5:d7:ab:33:76:4c:d7:37:f4:2b:02:91:7b:ef:6a:8f:ae:48: 6d:39:ab:93:36:8c:ff:cf:7b:1b:d5:60:7f:0f:f2:32:37:55: 91:c2:7b:c8:92:9e:4e:63:2e:3e:60:1a:c4:58:df:3f:ff:ef: a8:0f:94:de:b0:be:cf:1f:fd:88:4b:a3:32:34:58:c5:b2:35: de:2f:49:04:04:96:2d:63:20:73:81:a9:72:db:9e:c6:5a:af: 54:61:61:ef:2b:fe:45:94:3d:4f:50:45:47:48:36:79:5a:ff: b1:7e:a5:ed:dc:c8:e6:f4:c0:ec:0a:0d:0d:25:33:64:5f:2c: 98:92:2a:b9:1f:bb:29:62:69:1d:3b:e2:69:56:cd:55:05:c6: 7a:12:2f:37:cc:1c:36:ba:09:26:3d:d5:0e:ac:e4:e7:08:a6: 62:00:0e:fc -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUDgvmxO+F+XNtnvfuFzWCD92tsEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUyMjAyWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjdkMjIxYjkzMGRiMDZkM2QxOTE1M2UyYjg3ZDRhYWY2 YWNmZDY4NGQ2MmFkNzA1Y2Y4M2Q4Yjc0Mzc0NmQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTc3xGIaHLZeGP6IFfpCyKxdrhyOfTx/ckOAHuLbmgj6X9 CRSiegAhxzcer5Qv1btr/8lf7sjVhNxVRNdDFpMm8nK56nRrAsyKeffRI5jOIPaF wCjiEsRZu3srhvlYWTE3c0T6A6OtaTeZk/m/4R+YfNAkURHnlqpsEosdXBAm4oav LFK6K32haJrhvBwc33PcEdB+H+sA+mBDKJHOvHjxhb/neonu2AtTNjmNY2EyET/B C4D+Dbnj2BYDqRLcxxb7m6Dlj+0dMmsyelomrjrI70+7WJfBHig8OdsmwhS8z/f5 LmNqVVSKB3Tlgnqw8aPPnNwrhdt5IX0rvLUxaLdNAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUqv9NgBLQkB0nnIdwtItTd7BX50IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1NGFmZTcxLWE0N2ItNGY5Zi04Mjc0LTlmMTljNDQzMWQxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB82MA0GCSqGSIb3DQEBCwUAA4IBAQBwS9aBbIBXq+JIzq3bAEdc1uGM OzmV9n2/wXAPxkphEK1TBkNFViS+c09gS9up+BIONuSuOX5UMtMKJ7WIV1OCCTwe jXdX3LyLAk9IlI/rhdyHDXspTk6Di1/V16szdkzXN/QrApF772qPrkhtOauTNoz/ z3sb1WB/D/IyN1WRwnvIkp5OYy4+YBrEWN8//++oD5TesL7PH/2IS6MyNFjFsjXe L0kEBJYtYyBzgaly257GWq9UYWHvK/5FlD1PUEVHSDZ5Wv+xfqXt3Mjm9MDsCg0N JTNkXyyYkiq5H7spYmkdO+JpVs1VBcZ6Ei83zBw2ugkmPdUOrOTnCKZiAA78 -----END CERTIFICATE-----Generated at Sat Sep 6 16:41:00 2025 by rpki-client