$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91826dee-b9ed-4897-b2c0-6034e2003b59.roa File: 91826dee-b9ed-4897-b2c0-6034e2003b59.roa (raw, json) Hash identifier: GLX1DwwbTnlke7jJMhbGdtaiU38O3wsy6XiUjxmp7sA= Subject key identifier: 0A:EF:F9:70:E4:81:17:49:48:64:3C:1E:85:0F:3F:FB:56:72:FF:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EEFE6D4F9FF41C7BE376FF866EDC8E33E6FD23C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91826dee-b9ed-4897-b2c0-6034e2003b59.roa Signing time: Sat 06 Sep 2025 00:10:26 +0000 ROA not before: Sat 06 Sep 2025 00:10:26 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:80cb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 15 Sep 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ef:e6:d4:f9:ff:41:c7:be:37:6f:f8:66:ed:c8:e3:3e:6f:d2:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:10:26 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=a38f27a502bdcccfe4afd90a181e10db40aadd453522531d2a611b9d5331680b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:fb:f9:34:2b:df:b6:ed:b0:2c:e0:dd:04:a9: 73:d1:c4:7d:a6:17:7d:78:a8:05:3f:a4:fb:5e:a8: 9f:ae:12:4b:fa:09:a8:bc:b1:da:41:5b:4b:7e:ce: 9f:61:dc:0b:a0:92:ea:66:ea:12:6d:67:ce:e0:95: d4:a2:95:e6:64:7c:f3:1f:2b:51:35:b7:fc:fc:b7: 73:ed:9b:48:75:92:f0:39:69:33:48:eb:22:f1:09: 7d:52:46:16:bf:13:8a:84:c8:3d:3f:1b:85:60:30: 1c:2c:ab:61:67:1a:e2:de:a5:0d:8d:15:24:1b:52: 97:ca:41:b4:da:4a:d2:9c:34:8a:93:9f:e9:13:02: 0c:b5:e0:59:9f:76:9c:c5:8e:bb:6a:17:61:33:f6: 64:81:e9:d2:db:7b:8a:5b:cb:c2:fc:ec:0e:f5:8f: 9e:1c:86:3f:b5:50:0d:23:3c:4a:6f:1e:78:35:61: 73:a8:dd:cc:a7:9f:5c:81:b2:e1:16:d5:e9:82:70: 46:37:b2:57:79:20:25:79:3e:0d:5a:63:c0:2b:1d: be:20:bc:0f:59:24:fe:49:1b:9f:ec:65:d9:3a:d1: 31:a4:da:24:94:4e:07:88:53:a2:2b:f8:7b:e6:f4: 48:5d:fe:74:18:85:39:3e:e2:e8:ec:87:02:1b:6c: 0b:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:EF:F9:70:E4:81:17:49:48:64:3C:1E:85:0F:3F:FB:56:72:FF:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91826dee-b9ed-4897-b2c0-6034e2003b59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:80cb::/48 Signature Algorithm: sha256WithRSAEncryption 0b:cf:f8:2f:3d:d6:c6:f8:61:68:e8:ca:10:2f:b9:ee:a4:44: 1f:ff:e3:31:ba:e5:fd:ca:1a:b3:7d:25:72:52:82:06:df:34: 0c:a7:64:f9:0e:04:aa:7c:11:a1:5e:f5:cb:fb:5c:6f:bc:52: a5:ea:03:e4:18:ac:fd:e8:5a:1b:13:bf:a1:43:88:7b:73:f9: ec:6c:fb:fb:b8:1d:85:10:30:e1:69:b3:14:75:72:c9:86:72: f6:53:3c:36:87:29:94:d6:d8:5e:27:ed:39:a4:bc:fd:b6:0c: 3d:66:c3:6b:2b:3c:ad:95:39:5d:de:c5:4f:f1:1b:06:49:5b: e8:9a:b8:29:1d:da:b7:7f:f4:88:a6:e3:da:e2:52:60:aa:52: c4:a5:e7:5b:6e:c7:56:6e:95:6b:43:bf:ab:5e:0e:6e:ab:e9: 42:af:08:2c:a9:72:7e:d8:31:da:67:fa:d9:17:f8:b8:cd:64: 60:6c:2b:ad:0f:64:55:72:38:a6:bf:ce:f8:1d:04:07:5b:64: ca:88:26:0e:01:39:b8:7d:04:ae:e7:66:97:ce:ae:08:74:90: 99:63:86:24:65:bd:e5:ad:14:96:c9:d2:b5:3c:f4:7f:cc:98: 13:b3:6c:8f:f6:6b:7e:00:8f:d8:e8:4e:ca:c1:68:41:d9:73: 4c:59:ac:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTu/m1Pn/Qce+N2/4Zu3I4z5v0jwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAxMDI2WhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzhmMjdhNTAyYmRjY2NmZTRhZmQ5MGExODFlMTBkYjQw YWFkZDQ1MzUyMjUzMWQyYTYxMWI5ZDUzMzE2ODBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU+/k0K9+27bAs4N0EqXPRxH2mF314qAU/pPteqJ+uEkv6 Cai8sdpBW0t+zp9h3Augkupm6hJtZ87gldSileZkfPMfK1E1t/z8t3Ptm0h1kvA5 aTNI6yLxCX1SRha/E4qEyD0/G4VgMBwsq2FnGuLepQ2NFSQbUpfKQbTaStKcNIqT n+kTAgy14FmfdpzFjrtqF2Ez9mSB6dLbe4pby8L87A71j54chj+1UA0jPEpvHng1 YXOo3cynn1yBsuEW1emCcEY3sld5ICV5Pg1aY8ArHb4gvA9ZJP5JG5/sZdk60TGk 2iSUTgeIU6Ir+Hvm9Ehd/nQYhTk+4ujshwIbbAsBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCu/5cOSBF0lIZDwehQ8/+1Zy/90wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxODI2ZGVlLWI5ZWQtNDg5Ny1iMmMwLTYwMzRlMjAwM2I1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gMswDQYJKoZIhvcNAQELBQADggEBAAvP+C891sb4YWjoyhAvue6k RB//4zG65f3KGrN9JXJSggbfNAynZPkOBKp8EaFe9cv7XG+8UqXqA+QYrP3oWhsT v6FDiHtz+exs+/u4HYUQMOFpsxR1csmGcvZTPDaHKZTW2F4n7TmkvP22DD1mw2sr PK2VOV3exU/xGwZJW+iauCkd2rd/9Iim49riUmCqUsSl51tux1ZulWtDv6teDm6r 6UKvCCypcn7YMdpn+tkX+LjNZGBsK60PZFVyOKa/zvgdBAdbZMqIJg4BObh9BK7n ZpfOrgh0kJljhiRlveWtFJbJ0rU89H/MmBOzbI/2a34Aj9joTsrBaEHZc0xZrJI= -----END CERTIFICATE-----Generated at Sun Sep 14 00:18:56 2025 by rpki-client