$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa File: a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa (raw, json) Hash identifier: iBCvIPbc33wVRDROnpOvrxfqMEV08g/jbs03kG8hWyo= Subject key identifier: 44:08:FF:C7:50:36:53:F8:5E:CF:59:BE:F2:20:B3:3E:AF:11:6B:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2415D3AFA393DDA0395947FEE2A54930534A9372 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa Signing time: Fri 29 Aug 2025 16:11:01 +0000 ROA not before: Fri 29 Aug 2025 16:11:01 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f25:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:15:d3:af:a3:93:dd:a0:39:59:47:fe:e2:a5:49:30:53:4a:93:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:11:01 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=64ce9044da2c1a70d30ebc12d97d9c9be1e925f4dcfb32d8f508110612008466, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:aa:21:d0:0b:0f:43:71:01:70:d6:f7:48:d4: 3f:d0:fd:85:38:d0:d0:4b:fd:30:de:24:87:24:91: 2d:9f:77:4a:5d:70:a9:53:eb:fc:c8:a1:f7:33:c9: 7d:23:1a:e4:3a:09:73:24:99:11:1e:a4:18:4b:0c: 85:73:4f:af:53:a7:6b:bf:42:28:1a:98:04:ac:31: 5e:1e:b4:b0:52:1c:73:84:f9:33:ef:25:71:b5:dd: 61:92:bb:de:77:0c:f7:45:4f:4b:8c:70:14:66:bf: dd:ff:82:da:1f:00:3c:d6:45:02:01:26:5f:88:1a: 0c:a3:75:04:da:cc:61:07:9f:d9:2c:ec:46:6a:82: dd:d5:dc:01:4f:3f:67:6d:ca:10:51:ad:bd:be:1f: 56:c1:c1:a7:35:8a:e9:1e:65:11:22:a3:06:c3:3d: 6d:5d:ee:ab:07:bd:8c:f0:7f:72:65:32:23:14:0e: f6:7d:bd:4d:95:9a:68:0a:3b:97:82:cb:0b:6e:8a: 22:10:6b:e7:ac:fd:9f:5c:be:6c:30:3f:2f:4c:96: 47:b1:32:42:65:68:3d:a4:b7:1d:f9:04:6e:f3:2a: d5:df:24:f2:8e:25:79:cd:f1:5f:0c:d0:29:07:5c: 0a:e7:c6:85:1c:2e:eb:e9:3e:cd:12:7c:eb:92:93: 28:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:08:FF:C7:50:36:53:F8:5E:CF:59:BE:F2:20:B3:3E:AF:11:6B:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:8000::/36 Signature Algorithm: sha256WithRSAEncryption 56:f9:74:94:ee:09:49:7d:e2:06:53:91:e2:5c:9c:ca:e5:7a: 3f:29:70:86:3f:d2:d7:8f:91:c4:b9:2f:8c:b1:42:e0:a0:fa: 63:bf:7e:c9:3d:39:49:aa:c0:7d:ab:81:88:09:3a:49:fa:62: 94:f5:8e:ec:c4:e8:81:10:f5:95:67:55:fd:87:ca:ab:ae:18: 4b:ad:6f:00:b7:25:06:be:71:0b:98:83:73:4e:5f:9f:63:bd: 1d:9e:ca:9a:e8:c0:bd:a2:bd:27:fc:63:43:0e:89:bf:de:a8: 5d:41:de:47:b7:0d:95:48:00:e7:e0:4d:c1:9d:41:63:fe:54: e5:b8:1b:65:5e:9c:98:a5:96:a5:ec:26:f4:a6:01:5b:d2:19: 77:58:f3:54:33:cc:e4:a8:ee:cb:5c:73:ab:32:12:82:26:c9: c5:6a:a4:b0:c4:ac:c6:a2:ae:42:31:9f:8f:9d:c6:d1:ae:71: 6c:0a:c9:d7:4d:fd:52:9b:40:54:86:1d:66:f1:55:5c:d2:d1: 73:37:11:60:81:3f:a3:2c:f9:f0:e6:d6:e2:09:ba:90:9e:b3: bf:d6:47:18:12:c8:2b:da:ce:b2:b4:bc:35:50:4d:92:8a:9e: b7:9c:28:58:99:29:0c:57:cd:1e:66:e9:b5:fb:ef:3f:80:31: 1a:0d:47:5b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJBXTr6OT3aA5WUf+4qVJMFNKk3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYxMTAxWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGNlOTA0NGRhMmMxYTcwZDMwZWJjMTJkOTdkOWM5YmUx ZTkyNWY0ZGNmYjMyZDhmNTA4MTEwNjEyMDA4NDY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKqiHQCw9DcQFw1vdI1D/Q/YU40NBL/TDeJIckkS2fd0pd cKlT6/zIofczyX0jGuQ6CXMkmREepBhLDIVzT69Tp2u/QigamASsMV4etLBSHHOE +TPvJXG13WGSu953DPdFT0uMcBRmv93/gtofADzWRQIBJl+IGgyjdQTazGEHn9ks 7EZqgt3V3AFPP2dtyhBRrb2+H1bBwac1iukeZREiowbDPW1d7qsHvYzwf3JlMiMU DvZ9vU2VmmgKO5eCywtuiiIQa+es/Z9cvmwwPy9MlkexMkJlaD2ktx35BG7zKtXf JPKOJXnN8V8M0CkHXArnxoUcLuvpPs0SfOuSkyiDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURAj/x1A2U/hez1m+8iCzPq8Ra18wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyZDEwY2ZhLWZiM2UtNGYxMi1hNzMyLTBjOWU1ODMyYzU4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lgDANBgkqhkiG9w0BAQsFAAOCAQEAVvl0lO4JSX3iBlOR4lycyuV6 Pylwhj/S14+RxLkvjLFC4KD6Y79+yT05SarAfauBiAk6SfpilPWO7MTogRD1lWdV /YfKq64YS61vALclBr5xC5iDc05fn2O9HZ7KmujAvaK9J/xjQw6Jv96oXUHeR7cN lUgA5+BNwZ1BY/5U5bgbZV6cmKWWpewm9KYBW9IZd1jzVDPM5Kjuy1xzqzISgibJ xWqksMSsxqKuQjGfj53G0a5xbArJ1039UptAVIYdZvFVXNLRczcRYIE/oyz58ObW 4gm6kJ6zv9ZHGBLIK9rOsrS8NVBNkoqet5woWJkpDFfNHmbptfvvP4AxGg1HWw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:58 2025 by rpki-client