$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/984313af-1a59-4f57-8dec-958207f6c75c.roa File: 984313af-1a59-4f57-8dec-958207f6c75c.roa (raw, json) Hash identifier: nkpJX81DWeUif5gVMexxC+fezx7yi33eIip9uF4XsBg= Subject key identifier: 51:6D:D0:F2:95:B7:1C:BB:0D:E1:0B:65:50:2C:9F:AB:3C:7C:39:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C4075AE988154B66D238A8350792227593C8065 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/984313af-1a59-4f57-8dec-958207f6c75c.roa Signing time: Tue 26 Aug 2025 16:41:31 +0000 ROA not before: Tue 26 Aug 2025 16:41:31 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:6000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:40:75:ae:98:81:54:b6:6d:23:8a:83:50:79:22:27:59:3c:80:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 16:41:31 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=336c2804e9a691dd9641da63c9b5f0e7671c7598ea1553e6d9e7590db25f5c7d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f6:7d:80:62:5e:d8:65:35:f4:f6:08:18:b3: 10:68:9c:7c:55:f3:ef:4d:f5:7b:bd:a4:a9:2b:e8: af:34:61:2b:29:54:e7:e6:2d:9a:f4:9e:78:32:5f: 5d:f3:47:e0:57:c2:6c:e3:b6:8d:e9:28:b8:b5:11: 9d:01:79:68:be:19:78:35:ae:b3:0d:fd:9c:78:08: b8:9a:1e:e7:87:88:fa:0b:d5:65:bf:e6:c6:8c:29: 13:34:ac:da:c5:fd:95:9c:b7:55:fe:d2:65:ca:5b: 07:57:50:0b:2e:dc:37:53:07:56:2c:d5:18:39:07: c1:e4:f4:b2:62:cf:ba:41:b1:09:f7:0b:47:87:e3: d7:c2:b5:7a:1f:d0:4a:07:e5:11:3f:11:93:c5:49: cd:b8:88:ec:b7:57:31:d3:13:28:2e:59:f6:a4:2e: 3c:a5:a1:c6:1c:df:2b:81:f2:4e:63:9e:58:44:4c: 09:4b:1e:63:fa:01:91:49:3e:4d:c5:76:2e:b4:50: b1:e3:11:d5:88:2b:81:2f:ac:e5:16:be:06:48:64: ab:07:b6:39:49:f3:44:26:9a:f2:87:d0:57:78:21: 5c:f1:3f:4f:be:13:f1:62:12:36:59:cd:7c:d6:7e: e1:cc:50:af:b9:df:64:03:79:20:6d:22:3d:4c:e1: 34:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:6D:D0:F2:95:B7:1C:BB:0D:E1:0B:65:50:2C:9F:AB:3C:7C:39:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/984313af-1a59-4f57-8dec-958207f6c75c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:6000::/40 Signature Algorithm: sha256WithRSAEncryption 6d:f3:fe:b9:1b:b2:23:c6:98:10:ea:24:5a:58:b7:61:03:87: 44:08:6d:4f:9d:80:2c:14:2d:ed:b6:9f:7e:65:5b:4f:97:83: 54:55:f4:2a:60:b6:95:be:21:10:b6:25:bd:b3:4a:65:e8:1e: 15:29:55:ae:ee:f6:e5:4d:0e:21:97:b6:98:d7:15:f6:bb:92: 59:dc:c3:fc:c7:d3:25:7d:1c:36:dd:9d:b6:99:e9:79:b4:77: 4d:17:73:e4:41:2b:a4:cd:5f:6f:a3:e2:ef:f1:18:b2:8a:70: ae:23:77:7b:cd:48:ba:ca:aa:c7:47:c0:81:a8:f9:55:64:b8: 86:d4:89:24:73:9c:54:89:da:6b:37:db:7b:91:b6:c5:34:09: e5:f6:38:be:95:36:e2:25:76:50:1a:a6:cd:f2:3d:4d:f2:3c: e0:83:28:5b:32:06:0d:e9:5a:b6:91:80:2a:5e:75:64:66:65: a2:82:00:6f:66:79:16:9c:a9:2f:88:95:ec:67:f7:0a:95:a3: 8c:9c:e9:55:3e:a2:d3:88:3a:da:44:fb:bb:11:85:5b:d2:82: 42:32:c4:0f:14:11:d0:6c:4b:29:52:c2:f0:88:bc:33:ec:77: 05:63:1e:46:56:b2:de:b4:c8:06:9e:74:13:7e:4b:ce:a1:59: 1e:6a:11:4f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfEB1rpiBVLZtI4qDUHkiJ1k8gGUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTY0MTMxWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzZjMjgwNGU5YTY5MWRkOTY0MWRhNjNjOWI1ZjBlNzY3 MWM3NTk4ZWExNTUzZTZkOWU3NTkwZGIyNWY1YzdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCo9n2AYl7YZTX09ggYsxBonHxV8+9N9Xu9pKkr6K80YSsp VOfmLZr0nngyX13zR+BXwmzjto3pKLi1EZ0BeWi+GXg1rrMN/Zx4CLiaHueHiPoL 1WW/5saMKRM0rNrF/ZWct1X+0mXKWwdXUAsu3DdTB1Ys1Rg5B8Hk9LJiz7pBsQn3 C0eH49fCtXof0EoH5RE/EZPFSc24iOy3VzHTEyguWfakLjylocYc3yuB8k5jnlhE TAlLHmP6AZFJPk3Fdi60ULHjEdWIK4EvrOUWvgZIZKsHtjlJ80QmmvKH0Fd4IVzx P0++E/FiEjZZzXzWfuHMUK+532QDeSBtIj1M4TQtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUUW3Q8pW3HLsN4QtlUCyfqzx8OdowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4NDMxM2FmLTFhNTktNGY1Ny04ZGVjLTk1ODIwN2Y2Yzc1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB84YDANBgkqhkiG9w0BAQsFAAOCAQEAbfP+uRuyI8aYEOokWli3YQOH RAhtT52ALBQt7baffmVbT5eDVFX0KmC2lb4hELYlvbNKZegeFSlVru725U0OIZe2 mNcV9ruSWdzD/MfTJX0cNt2dtpnpebR3TRdz5EErpM1fb6Pi7/EYsopwriN3e81I usqqx0fAgaj5VWS4htSJJHOcVInaazfbe5G2xTQJ5fY4vpU24iV2UBqmzfI9TfI8 4IMoWzIGDelatpGAKl51ZGZlooIAb2Z5FpypL4iV7Gf3CpWjjJzpVT6i04g62kT7 uxGFW9KCQjLEDxQR0GxLKVLC8Ii8M+x3BWMeRlay3rTIBp50E35LzqFZHmoRTw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:50 2025 by rpki-client