$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c2d777-6b3c-4fd7-b962-4d3208537c27.roa File: 99c2d777-6b3c-4fd7-b962-4d3208537c27.roa (raw, json) Hash identifier: iDTLAnGWop6ZsL4Xa2TX91Q4fC7OGoLGYXjdpzvY/CY= Subject key identifier: 8E:46:69:65:06:0A:D7:77:7C:29:84:CD:5C:D3:6C:51:4D:FC:9B:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C4CB89F21F24DB7415C027B3B602E5904CB4861 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c2d777-6b3c-4fd7-b962-4d3208537c27.roa Signing time: Tue 26 Aug 2025 15:22:23 +0000 ROA not before: Tue 26 Aug 2025 15:22:23 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:1080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:4c:b8:9f:21:f2:4d:b7:41:5c:02:7b:3b:60:2e:59:04:cb:48:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:22:23 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=8152d187205ae751e8d3fa68e5358b6623435b649fc37a25654b99ea6e64855e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:9b:37:48:1b:25:27:e0:1a:e8:3f:c8:01: e7:12:42:85:87:47:86:8a:53:5d:89:eb:7a:a2:60: ac:15:f4:bb:d1:43:e9:dd:cb:a9:c5:37:c5:e3:97: 95:82:5d:79:7b:a2:09:f5:d7:e0:f5:05:58:7f:b8: 89:96:7c:e5:f9:fe:47:27:07:00:79:c6:de:a3:30: f0:99:71:c5:b4:54:17:f3:52:84:51:fe:30:b8:f1: 89:a5:63:42:4b:19:d4:80:31:44:a8:f0:93:6e:0b: 5f:ca:b0:93:9a:f9:68:bf:97:b4:93:73:06:74:7c: c2:2c:e1:37:17:61:93:16:72:3c:fe:14:41:2e:fe: 9c:c1:f0:14:7d:3c:13:e0:22:aa:e2:e7:78:b8:35: a4:10:98:00:e2:50:9b:11:12:c3:24:93:01:ef:f0: bf:02:6b:1a:26:63:12:5d:4c:09:c8:96:b2:bd:20: 6f:73:4c:49:6a:89:91:2b:78:5f:22:bc:11:c6:fb: ba:a9:b5:57:ef:ad:3a:52:7c:b7:fb:fc:2c:1e:b9: 92:63:af:26:c8:7e:24:01:2c:fd:fa:ed:e7:35:86: 1f:3d:cb:0e:bc:23:22:2e:12:49:f8:c9:35:0e:71: fb:fc:68:31:ce:e1:94:c6:55:b4:0a:50:d7:c8:b6: b9:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:46:69:65:06:0A:D7:77:7C:29:84:CD:5C:D3:6C:51:4D:FC:9B:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99c2d777-6b3c-4fd7-b962-4d3208537c27.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:1080::/48 Signature Algorithm: sha256WithRSAEncryption 26:25:bf:02:9e:fc:aa:53:ad:2e:45:61:13:3b:47:4f:b3:41: e2:d2:95:e0:ea:65:a9:43:a2:0f:c0:d7:17:65:c2:28:23:ba: 3c:8b:31:06:45:86:77:4c:36:19:49:4b:ae:54:27:32:51:7e: 96:e2:36:97:ca:b5:c9:cc:0e:11:ed:29:33:83:18:df:03:5e: 6d:4b:17:61:d1:54:4c:30:bc:76:61:8a:77:b1:3b:6f:67:f5: 4b:fa:c6:0f:99:3f:24:a6:a0:20:d0:d4:52:3f:6e:49:0a:dc: 76:cd:50:24:5d:fd:38:6a:c2:0c:4d:18:3d:b5:a5:1a:08:6a: d3:20:08:60:fc:b0:93:16:25:29:bb:7c:bc:74:0d:2a:82:f8: 1b:2b:e1:87:4a:b8:4b:07:bf:8c:df:36:e3:1d:ac:0c:0b:02: 91:4b:4c:dd:13:fd:1b:cb:8b:3f:d8:8d:d5:36:d0:ff:ad:78: d7:07:4f:9f:34:28:80:6d:7b:ec:fe:db:e7:cd:91:cd:a6:38: b4:e2:9d:b2:55:01:80:49:61:7d:94:50:4f:56:7b:06:ce:5e: 34:f4:ab:7f:4c:3f:4a:3c:47:04:45:ae:7e:a0:8b:4d:22:e6: cc:fe:3f:c1:c5:8a:d5:28:30:a7:26:40:f9:9b:e6:5e:af:7f: b7:d5:c0:89 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXEy4nyHyTbdBXAJ7O2AuWQTLSGEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTUyMjIzWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTUyZDE4NzIwNWFlNzUxZThkM2ZhNjhlNTM1OGI2NjIz NDM1YjY0OWZjMzdhMjU2NTRiOTllYTZlNjQ4NTVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC81Zs3SBslJ+Aa6D/IAecSQoWHR4aKU12J63qiYKwV9LvR Q+ndy6nFN8Xjl5WCXXl7ogn11+D1BVh/uImWfOX5/kcnBwB5xt6jMPCZccW0VBfz UoRR/jC48YmlY0JLGdSAMUSo8JNuC1/KsJOa+Wi/l7STcwZ0fMIs4TcXYZMWcjz+ FEEu/pzB8BR9PBPgIqri53i4NaQQmADiUJsREsMkkwHv8L8CaxomYxJdTAnIlrK9 IG9zTElqiZEreF8ivBHG+7qptVfvrTpSfLf7/CweuZJjrybIfiQBLP367ec1hh89 yw68IyIuEkn4yTUOcfv8aDHO4ZTGVbQKUNfItrkhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjkZpZQYK13d8KYTNXNNsUU38mygwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5YzJkNzc3LTZiM2MtNGZkNy1iOTYyLTRkMzIwODUzN2MyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hEIAwDQYJKoZIhvcNAQELBQADggEBACYlvwKe/KpTrS5FYRM7R0+z QeLSleDqZalDog/A1xdlwigjujyLMQZFhndMNhlJS65UJzJRfpbiNpfKtcnMDhHt KTODGN8DXm1LF2HRVEwwvHZhinexO29n9Uv6xg+ZPySmoCDQ1FI/bkkK3HbNUCRd /ThqwgxNGD21pRoIatMgCGD8sJMWJSm7fLx0DSqC+Bsr4YdKuEsHv4zfNuMdrAwL ApFLTN0T/RvLiz/YjdU20P+teNcHT580KIBte+z+2+fNkc2mOLTinbJVAYBJYX2U UE9WewbOXjT0q39MP0o8RwRFrn6gi00i5sz+P8HFitUoMKcmQPmb5l6vf7fVwIk= -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:40 2025 by rpki-client