$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ba541aa-4cf6-45d6-a44f-bd862d09a3cb.roa File: 8ba541aa-4cf6-45d6-a44f-bd862d09a3cb.roa (raw, json) Hash identifier: 74armHUdjpLuf1rqyItlo1Jq/Hsl+9ir4bfevso3y/Q= Subject key identifier: E8:4B:1D:30:92:D7:76:06:4D:EF:71:F4:0B:18:BD:99:5E:7B:CE:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6123190781EAC341779D1B53961DE75703247885 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ba541aa-4cf6-45d6-a44f-bd862d09a3cb.roa Signing time: Fri 29 Aug 2025 15:32:24 +0000 ROA not before: Fri 29 Aug 2025 15:32:24 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:40a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:23:19:07:81:ea:c3:41:77:9d:1b:53:96:1d:e7:57:03:24:78:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:32:24 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=a7775fb80e44d1be396fc4c0f2bc9ca8377b4f31ffa2932788f04c1fc704009a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3d:92:f5:fa:c5:f2:5e:22:46:12:c4:3b:f4: fa:d1:4e:dd:16:9d:ab:47:25:1d:e9:a6:5b:c3:ee: 07:78:f3:34:71:b7:0a:e6:7f:12:3b:3a:a2:58:36: 3a:20:54:f1:fd:55:f0:c9:9e:03:ca:a5:52:d0:b7: bb:32:69:e6:80:f1:d5:b1:3f:33:26:73:eb:0e:e9: e2:1c:53:66:e6:0f:da:46:17:a8:b7:80:1a:21:7a: ca:87:16:3e:86:5a:11:23:3e:1f:e0:e9:f3:3b:15: 6a:7c:2a:f5:dc:76:d4:a8:b6:bf:95:19:7c:64:30: cd:d8:a2:b9:18:e2:b5:56:ca:10:be:77:b3:d0:58: 52:7b:61:17:36:64:88:d4:13:67:d6:7a:cb:ea:83: 11:09:21:39:82:11:03:ad:b0:47:d8:6d:ae:ef:19: a5:2d:41:57:13:0f:a8:5f:99:c8:15:80:59:95:80: 5d:90:4c:91:fa:4b:15:5c:18:c7:c6:e8:65:01:99: c6:bf:0b:0e:83:76:05:fc:c3:be:3f:4d:30:b6:59: 07:2a:64:94:53:eb:cd:a0:aa:32:c4:80:56:7a:3e: 33:4a:01:b2:2e:b0:cf:9e:0f:65:e3:50:cc:38:a4: 9f:94:89:dd:14:fe:98:58:58:d6:e5:b5:e0:2c:e0: 1c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:4B:1D:30:92:D7:76:06:4D:EF:71:F4:0B:18:BD:99:5E:7B:CE:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ba541aa-4cf6-45d6-a44f-bd862d09a3cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:40a0::/48 Signature Algorithm: sha256WithRSAEncryption 7a:4a:e8:25:18:4f:3c:70:bb:1e:d1:55:ad:a3:00:43:8a:dc: 03:b6:6d:60:36:39:85:96:f7:a8:28:a0:70:f3:71:5e:db:ef: b6:e9:48:44:53:f6:98:1a:ac:20:aa:93:61:4c:26:9b:78:7b: c1:b9:c4:ee:04:eb:2a:5d:63:9a:8a:1e:37:aa:7f:f6:70:63: a2:30:f8:95:7f:35:9a:a6:47:e0:65:25:72:4c:ed:3e:73:5f: 76:27:ef:0a:3a:51:78:48:6f:fb:ac:3c:5e:c8:9a:4c:f9:94: 02:a7:6d:ee:d4:df:f9:40:3b:76:48:e9:9b:c5:2a:cc:07:3d: 8a:90:03:57:cc:e6:7d:8d:ce:4b:ed:a8:10:de:31:92:c4:a3: 26:fa:30:19:41:4d:39:e8:5e:26:ed:59:71:c4:b3:d1:9c:dd: f3:b7:50:89:1a:07:c9:a6:13:e9:b4:9d:30:aa:88:55:3a:86: c0:43:64:20:4b:f0:21:a6:bf:ad:78:5f:4e:d6:26:82:5b:fc: 5a:fb:a9:02:ac:bb:8a:cf:11:10:9e:75:45:8d:d5:d6:89:9c: b7:ea:f2:cd:bc:2f:3d:4a:9a:75:a4:1f:14:ff:29:b7:81:63: 2b:23:cb:76:8c:8a:85:cf:8c:b1:84:0f:91:28:c1:63:79:cb: e8:70:7c:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYSMZB4Hqw0F3nRtTlh3nVwMkeIUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUzMjI0WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzc3NWZiODBlNDRkMWJlMzk2ZmM0YzBmMmJjOWNhODM3 N2I0ZjMxZmZhMjkzMjc4OGYwNGMxZmM3MDQwMDlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3PZL1+sXyXiJGEsQ79PrRTt0WnatHJR3pplvD7gd48zRx twrmfxI7OqJYNjogVPH9VfDJngPKpVLQt7syaeaA8dWxPzMmc+sO6eIcU2bmD9pG F6i3gBohesqHFj6GWhEjPh/g6fM7FWp8KvXcdtSotr+VGXxkMM3YorkY4rVWyhC+ d7PQWFJ7YRc2ZIjUE2fWesvqgxEJITmCEQOtsEfYba7vGaUtQVcTD6hfmcgVgFmV gF2QTJH6SxVcGMfG6GUBmca/Cw6DdgX8w74/TTC2WQcqZJRT682gqjLEgFZ6PjNK AbIusM+eD2XjUMw4pJ+Uid0U/phYWNblteAs4Bz5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6EsdMJLXdgZN73H0Cxi9mV57ztYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiYTU0MWFhLTRjZjYtNDVkNi1hNDRmLWJkODYyZDA5YTNjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AQKAwDQYJKoZIhvcNAQELBQADggEBAHpK6CUYTzxwux7RVa2jAEOK 3AO2bWA2OYWW96gooHDzcV7b77bpSERT9pgarCCqk2FMJpt4e8G5xO4E6ypdY5qK Hjeqf/ZwY6Iw+JV/NZqmR+BlJXJM7T5zX3Yn7wo6UXhIb/usPF7Imkz5lAKnbe7U 3/lAO3ZI6ZvFKswHPYqQA1fM5n2NzkvtqBDeMZLEoyb6MBlBTTnoXibtWXHEs9Gc 3fO3UIkaB8mmE+m0nTCqiFU6hsBDZCBL8CGmv614X07WJoJb/Fr7qQKsu4rPERCe dUWN1daJnLfq8s28Lz1KmnWkHxT/KbeBYysjy3aMioXPjLGED5EowWN5y+hwfAE= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:25 2025 by rpki-client