$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa File: a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa (raw, json) Hash identifier: HoREWg8YHpZrBkOSRCKlN4GXOyNRTi9/7+18IkXn7fg= Subject key identifier: 31:0C:4E:35:44:CD:F6:F5:D5:FC:29:ED:45:E0:0D:7B:2E:20:0B:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F88CE7B68C8D28281951427C6C1142A779C15E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa Signing time: Fri 29 Aug 2025 00:51:03 +0000 ROA not before: Fri 29 Aug 2025 00:51:03 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:88:ce:7b:68:c8:d2:82:81:95:14:27:c6:c1:14:2a:77:9c:15:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:51:03 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=cb8ed260d57b8ab0b6ae2bd28d8e58ff7ef1e4b50c3be50a0efea55fbd475ffd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:82:78:2b:8d:b8:66:0a:33:a5:79:e8:c7:9b: 39:1c:ae:fa:d6:74:cf:ec:d9:c1:39:39:12:d7:2a: 01:de:38:fe:ca:56:4f:07:9b:d3:f6:50:41:a7:23: 35:4d:0a:a1:24:0e:2c:46:a8:5e:ae:5a:c1:87:cd: 08:df:03:08:33:22:3e:ac:cb:e0:e6:60:89:fc:d8: 4a:36:a3:71:83:80:57:30:e4:9f:17:60:bc:bb:d9: d8:d2:86:39:d9:07:3d:1d:ba:64:62:6f:0b:09:c3: 58:c6:b3:fc:15:10:3a:c1:b6:dc:7c:60:2b:f7:28: 06:c7:0d:aa:1a:e7:cf:c0:78:67:27:a0:32:0a:a7: 86:76:93:51:39:7c:bc:a2:e0:a6:40:0f:14:40:29: 15:95:1a:ac:57:8f:f3:2f:b9:66:a4:07:e1:e2:91: 9c:87:dc:94:7b:e1:a6:f4:85:1b:5a:04:3c:7a:34: 58:54:ed:f6:ad:55:f1:76:ea:12:24:20:34:0a:42: 16:5c:62:6c:04:78:35:3f:4a:23:fe:29:02:1e:b5: 4f:c9:3c:84:89:c9:25:91:14:f7:17:bd:29:39:63: c6:88:2b:36:70:01:46:b3:32:40:87:25:6b:94:68: 58:bf:5f:c9:40:5a:87:89:32:f0:47:94:04:1c:e6: 87:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0C:4E:35:44:CD:F6:F5:D5:FC:29:ED:45:E0:0D:7B:2E:20:0B:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a887eddf-23b6-4a95-bacd-cb7f8e096ff1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8000::/40 Signature Algorithm: sha256WithRSAEncryption d7:05:54:c7:44:16:a7:00:c3:fa:57:ce:fd:ee:c5:5a:99:95: 2a:4c:7e:60:29:83:1a:57:4a:c5:fa:01:41:7d:f3:44:91:42: ff:c3:85:38:9f:0a:43:84:a8:af:cc:21:13:8c:87:f2:7c:20: 1b:8f:bf:37:87:80:43:1f:63:06:4f:40:7d:77:59:cb:f6:6e: 01:64:59:cb:85:36:6a:41:71:e3:b1:e9:1a:4e:d5:0a:64:43: 75:72:a9:7e:05:b0:6e:dc:12:87:3e:ef:0f:98:b9:f7:60:e2: 23:b6:0b:3d:5b:40:a5:04:ea:7e:a6:79:cd:ed:bc:fa:e0:b7: 38:c7:78:2c:26:e6:a5:2f:19:2b:c0:ca:4d:99:06:b4:1c:ce: 94:da:c4:b5:cb:14:2c:27:41:72:9f:b0:d4:27:85:51:34:cd: 06:61:79:fa:a3:d8:ab:2a:b9:81:3f:6b:95:74:2d:89:b6:26: 18:52:a5:4d:24:b9:38:9c:5f:81:d5:2b:2e:57:fa:e4:66:41: 08:cd:de:3a:79:da:5c:9f:4b:8b:0a:70:56:6b:f9:49:04:13: cb:4c:f7:5c:22:5f:f9:3e:5b:d0:50:f1:97:e2:4b:26:23:86: fd:5c:27:fb:2f:1e:81:eb:8f:84:1e:ee:f3:09:23:9d:e1:aa: 59:9f:d9:7b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUP4jOe2jI0oKBlRQnxsEUKnecFeEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDA1MTAzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYjhlZDI2MGQ1N2I4YWIwYjZhZTJiZDI4ZDhlNThmZjdl ZjFlNGI1MGMzYmU1MGEwZWZlYTU1ZmJkNDc1ZmZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxgngrjbhmCjOleejHmzkcrvrWdM/s2cE5ORLXKgHeOP7K Vk8Hm9P2UEGnIzVNCqEkDixGqF6uWsGHzQjfAwgzIj6sy+DmYIn82Eo2o3GDgFcw 5J8XYLy72djShjnZBz0dumRibwsJw1jGs/wVEDrBttx8YCv3KAbHDaoa58/AeGcn oDIKp4Z2k1E5fLyi4KZADxRAKRWVGqxXj/MvuWakB+HikZyH3JR74ab0hRtaBDx6 NFhU7fatVfF26hIkIDQKQhZcYmwEeDU/SiP+KQIetU/JPISJySWRFPcXvSk5Y8aI KzZwAUazMkCHJWuUaFi/X8lAWoeJMvBHlAQc5ofvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMQxONUTN9vXV/CntReANey4gC0kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4ODdlZGRmLTIzYjYtNGE5NS1iYWNkLWNiN2Y4ZTA5NmZmMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//gDANBgkqhkiG9w0BAQsFAAOCAQEA1wVUx0QWpwDD+lfO/e7FWpmV Kkx+YCmDGldKxfoBQX3zRJFC/8OFOJ8KQ4Sor8whE4yH8nwgG4+/N4eAQx9jBk9A fXdZy/ZuAWRZy4U2akFx47HpGk7VCmRDdXKpfgWwbtwShz7vD5i592DiI7YLPVtA pQTqfqZ5ze28+uC3OMd4LCbmpS8ZK8DKTZkGtBzOlNrEtcsULCdBcp+w1CeFUTTN BmF5+qPYqyq5gT9rlXQtibYmGFKlTSS5OJxfgdUrLlf65GZBCM3eOnnaXJ9Liwpw Vmv5SQQTy0z3XCJf+T5b0FDxl+JLJiOG/Vwn+y8egeuPhB7u8wkjneGqWZ/Zew== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:44 2025 by rpki-client