$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa File: ab98bfdb-9af4-412f-87c6-d3448c52456d.roa (raw, json) Hash identifier: 1H/GzSlDZ8HeDoVC+1+pe5FjnNTXfovlhm53Nrt6wNg= Subject key identifier: 4B:AD:13:BD:55:8B:60:59:E9:90:C1:65:46:73:8E:AE:00:8A:F4:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C5270A77374752A5437D45078B290EF17FFBF6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa Signing time: Sat 06 Sep 2025 00:10:41 +0000 ROA not before: Sat 06 Sep 2025 00:10:41 +0000 ROA not after: Sat 11 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8143::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:52:70:a7:73:74:75:2a:54:37:d4:50:78:b2:90:ef:17:ff:bf:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 6 00:10:41 2025 GMT Not After : Oct 11 23:59:59 2025 GMT Subject: serialNumber=a9fd5bb6003fd3ee4372b33e785e1eef5614cb06fec08cf3c813a70e80cd0651, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:72:5e:0b:37:e4:59:90:7b:0a:1a:c0:5d:92: 3b:7f:97:dc:c6:1a:96:99:5b:f3:cd:ea:c4:0d:29: 79:a3:9c:ec:2f:4a:3b:a5:02:f7:d1:d8:57:80:85: 3a:84:ba:e1:a4:f9:6a:69:13:f0:ff:93:15:9c:50: 7c:7f:cc:0e:b8:db:a8:a0:94:4c:1b:2d:c1:e8:24: 9e:0f:7a:cb:3d:5f:8e:29:e3:a6:9b:39:74:58:be: d1:1f:e4:1e:b2:52:d4:10:4a:71:cb:b7:ec:e7:d1: 08:33:26:74:71:25:d0:f4:f1:ee:b6:54:92:f1:d3: ef:5c:d4:00:a4:5c:0e:c8:37:8c:69:b0:55:ba:f7: 70:1d:f8:f3:e6:63:57:82:12:83:b0:cd:f6:49:2a: dd:63:3b:2e:7a:fc:02:9b:2d:a7:d1:d0:29:96:78: f2:11:28:e6:09:39:ef:a9:0f:ad:4f:7d:b7:9d:56: e3:f6:c5:e8:ec:19:39:5b:33:bf:c9:b7:06:ba:8c: fe:17:a7:8f:40:9e:8f:b7:ce:94:47:a3:44:97:69: d7:76:54:82:9e:8f:c2:a3:8c:bb:74:3a:91:d2:8f: 0c:95:7d:b0:6d:81:0f:34:7e:26:d7:fc:5f:02:73: a2:ff:db:cf:65:56:7b:05:2c:dc:9e:a4:62:e5:83: 6e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:AD:13:BD:55:8B:60:59:E9:90:C1:65:46:73:8E:AE:00:8A:F4:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8143::/48 Signature Algorithm: sha256WithRSAEncryption b2:1b:e5:82:99:c1:ad:f2:79:aa:4c:f3:66:fa:d8:8f:a6:c3: 08:62:e8:85:c3:70:50:f9:78:38:a7:ab:f9:1a:ed:c7:3e:39: 1f:27:85:6d:a1:59:f1:61:83:d5:91:35:7f:52:68:0d:7f:c8: 55:5b:80:09:9a:bc:09:98:5d:bd:9d:61:49:6d:90:5a:db:d6: 03:60:d3:0c:96:90:69:a6:fd:b3:8b:aa:df:a0:61:2d:89:46: 9a:2b:d9:88:38:c6:3a:fd:dd:69:6f:25:74:43:34:76:18:1b: 33:18:d5:bd:2b:8c:2f:dd:95:a9:9a:6e:33:07:01:6d:28:5c: 10:04:94:d1:65:31:58:4d:15:aa:dd:04:2b:82:27:6a:c0:b4: 7f:21:d0:09:d0:9b:18:63:c7:63:50:d8:60:a9:33:b1:20:5e: fe:5b:24:b6:41:31:57:42:a4:51:27:14:f0:78:a7:9d:18:ac: 93:99:7c:bf:69:26:5d:66:e0:15:e7:b0:b6:e1:07:f2:03:60: 5b:d2:cf:ef:f4:cd:e8:34:c6:16:c9:c3:e2:e6:28:7a:03:1f: 54:e0:6f:67:97:cd:d2:bd:77:d7:bd:a4:a7:30:2d:09:6c:69: b8:fe:8c:a9:1d:01:d8:2c:f1:1a:34:cf:a1:ac:29:36:84:7e: 3c:1f:71:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHFJwp3N0dSpUN9RQeLKQ7xf/v2swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTA2MDAxMDQxWhcNMjUxMDExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWZkNWJiNjAwM2ZkM2VlNDM3MmIzM2U3ODVlMWVlZjU2 MTRjYjA2ZmVjMDhjZjNjODEzYTcwZTgwY2QwNjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8cl4LN+RZkHsKGsBdkjt/l9zGGpaZW/PN6sQNKXmjnOwv SjulAvfR2FeAhTqEuuGk+WppE/D/kxWcUHx/zA6426iglEwbLcHoJJ4Pess9X44p 46abOXRYvtEf5B6yUtQQSnHLt+zn0QgzJnRxJdD08e62VJLx0+9c1ACkXA7IN4xp sFW693Ad+PPmY1eCEoOwzfZJKt1jOy56/AKbLafR0CmWePIRKOYJOe+pD61Pfbed VuP2xejsGTlbM7/Jtwa6jP4Xp49Ano+3zpRHo0SXadd2VIKej8KjjLt0OpHSjwyV fbBtgQ80fibX/F8Cc6L/289lVnsFLNyepGLlg267AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS60TvVWLYFnpkMFlRnOOrgCK9OkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiOThiZmRiLTlhZjQtNDEyZi04N2M2LWQzNDQ4YzUyNDU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gUMwDQYJKoZIhvcNAQELBQADggEBALIb5YKZwa3yeapM82b62I+m wwhi6IXDcFD5eDinq/ka7cc+OR8nhW2hWfFhg9WRNX9SaA1/yFVbgAmavAmYXb2d YUltkFrb1gNg0wyWkGmm/bOLqt+gYS2JRpor2Yg4xjr93WlvJXRDNHYYGzMY1b0r jC/dlamabjMHAW0oXBAElNFlMVhNFardBCuCJ2rAtH8h0AnQmxhjx2NQ2GCpM7Eg Xv5bJLZBMVdCpFEnFPB4p50YrJOZfL9pJl1m4BXnsLbhB/IDYFvSz+/0zeg0xhbJ w+LmKHoDH1Tgb2eXzdK9d9e9pKcwLQlsabj+jKkdAdgs8Ro0z6GsKTaEfjwfcdo= -----END CERTIFICATE-----Generated at Thu Sep 18 14:23:21 2025 by rpki-client