$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91bf7848-3999-4493-bb9a-0d9915c1accb.roa File: 91bf7848-3999-4493-bb9a-0d9915c1accb.roa (raw, json) Hash identifier: Ck1d8evErbe/tsX2ORy2BJ6XDhcW0My9TY30eaHocvQ= Subject key identifier: C9:DC:FC:66:76:DA:FE:9F:25:9E:49:56:85:72:05:BE:C6:64:3B:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 055D1346C731BD934848EB0400D634D8AC9F17D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91bf7848-3999-4493-bb9a-0d9915c1accb.roa Signing time: Wed 13 Aug 2025 00:10:26 +0000 ROA not before: Wed 13 Aug 2025 00:10:26 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:80e1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:5d:13:46:c7:31:bd:93:48:48:eb:04:00:d6:34:d8:ac:9f:17:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:10:26 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=9afbc4f4a5a99e72409c06627fbfc1a28c1f336ecd09af70e63cc6c6b9aee01a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:25:e2:18:04:3b:ec:71:b5:1f:f4:f3:e7:70: 41:54:d6:9f:01:2a:78:5a:50:45:4c:89:c3:53:34: 12:b0:f2:57:c8:07:9b:fb:99:27:72:a6:3a:be:34: 9d:88:65:28:77:5a:d5:b4:9f:67:0f:e3:c8:14:2a: 90:d6:5c:7b:72:2d:3d:e1:ef:95:74:91:46:ea:f6: 99:08:8a:de:2b:d6:6c:75:6f:ab:2d:82:0f:ed:01: 22:13:c7:72:21:92:57:16:0f:2b:e2:69:eb:05:75: 84:4e:7c:1e:81:cc:f7:f3:6d:34:a1:b1:29:3f:2e: cf:9d:a2:25:08:a0:f6:cb:68:b3:e1:fc:1f:78:0d: 21:fd:37:c3:c9:5b:4c:cd:27:34:64:03:f2:99:e1: be:f0:d1:8b:01:82:1b:33:07:b2:58:6c:a4:8f:02: b7:03:f3:4c:05:af:8f:39:36:da:f6:e5:04:02:6e: e2:40:25:0d:8a:dc:98:77:77:4f:6b:74:88:f8:a9: e8:c2:cd:80:34:4f:ce:03:b3:97:66:60:6d:ff:e3: 4b:02:d1:0e:df:70:0c:f7:50:c1:25:a6:d9:c8:0d: ca:2e:bd:d2:b7:33:c4:a9:44:8c:9e:69:49:9a:2e: bc:b8:cd:d5:81:4d:61:c4:18:90:e5:13:cc:18:c9: df:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:DC:FC:66:76:DA:FE:9F:25:9E:49:56:85:72:05:BE:C6:64:3B:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/91bf7848-3999-4493-bb9a-0d9915c1accb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:80e1::/48 Signature Algorithm: sha256WithRSAEncryption a2:11:dc:fc:78:f9:65:19:bf:db:6f:6e:b0:0a:e6:33:ff:87: 39:43:71:5d:34:ac:a1:8b:b3:31:f6:4c:7b:74:96:32:ec:43: 3a:ed:5a:b3:87:95:4f:5e:76:21:e7:51:32:e2:36:ea:5c:e7: dd:31:2d:92:d0:d4:a8:17:7d:67:e8:a4:76:75:04:b9:86:4f: 34:a2:0f:67:5d:5c:34:66:12:9b:2e:7c:4a:8a:27:dd:57:34: 93:c9:32:8c:71:75:75:4d:84:ae:50:92:74:95:0e:5e:e7:26: 22:7b:c1:b9:c8:d3:6d:07:dd:9e:7d:c5:60:99:05:de:bb:21: 35:a1:c2:40:5b:88:fb:f6:e5:fb:06:96:e9:e5:22:22:84:cf: 78:9a:26:b3:11:75:db:a0:0f:3a:37:3c:8c:b4:83:0b:23:e9: 68:a6:f6:ff:7e:b9:d3:8e:ff:f0:c6:ff:f6:b5:85:99:b8:6c: 8c:87:ab:bb:31:80:01:00:22:0f:9c:d6:5d:e5:09:22:4e:8a: 97:76:80:05:71:36:de:d8:52:11:b8:ad:79:f7:61:56:0e:fa: e3:2d:e3:51:7c:4c:6d:b3:d8:f6:e7:d9:d5:89:21:e0:45:af: 7a:ab:34:1f:a4:31:e6:81:cc:f8:13:76:11:6e:b0:ac:8e:69: 67:50:62:68 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBV0TRscxvZNISOsEANY02KyfF9AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMDI2WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YWZiYzRmNGE1YTk5ZTcyNDA5YzA2NjI3ZmJmYzFhMjhj MWYzMzZlY2QwOWFmNzBlNjNjYzZjNmI5YWVlMDFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEJeIYBDvscbUf9PPncEFU1p8BKnhaUEVMicNTNBKw8lfI B5v7mSdypjq+NJ2IZSh3WtW0n2cP48gUKpDWXHtyLT3h75V0kUbq9pkIit4r1mx1 b6stgg/tASITx3IhklcWDyviaesFdYROfB6BzPfzbTShsSk/Ls+doiUIoPbLaLPh /B94DSH9N8PJW0zNJzRkA/KZ4b7w0YsBghszB7JYbKSPArcD80wFr485Ntr25QQC buJAJQ2K3Jh3d09rdIj4qejCzYA0T84Ds5dmYG3/40sC0Q7fcAz3UMElptnIDcou vdK3M8SpRIyeaUmaLry4zdWBTWHEGJDlE8wYyd+1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUydz8Znba/p8lnklWhXIFvsZkO0IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkxYmY3ODQ4LTM5OTktNDQ5My1iYjlhLTBkOTkxNWMxYWNjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gOEwDQYJKoZIhvcNAQELBQADggEBAKIR3Px4+WUZv9tvbrAK5jP/ hzlDcV00rKGLszH2THt0ljLsQzrtWrOHlU9ediHnUTLiNupc590xLZLQ1KgXfWfo pHZ1BLmGTzSiD2ddXDRmEpsufEqKJ91XNJPJMoxxdXVNhK5QknSVDl7nJiJ7wbnI 020H3Z59xWCZBd67ITWhwkBbiPv25fsGlunlIiKEz3iaJrMRddugDzo3PIy0gwsj 6Wim9v9+udOO//DG//a1hZm4bIyHq7sxgAEAIg+c1l3lCSJOipd2gAVxNt7YUhG4 rXn3YVYO+uMt41F8TG2z2Pbn2dWJIeBFr3qrNB+kMeaBzPgTdhFusKyOaWdQYmg= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:24 2025 by rpki-client