$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa File: ab98bfdb-9af4-412f-87c6-d3448c52456d.roa (raw, json) Hash identifier: MjYWqTitHdbEYPFsKpmbe7lyrObcuJritQJEA3Sh4pk= Subject key identifier: 3C:81:2F:95:DA:AE:E0:5E:07:13:44:E4:B3:EE:E3:9E:2E:C0:B0:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E0D63FDA3E6B837D313CAE4519B6C37091818F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa Signing time: Tue 12 Aug 2025 00:10:53 +0000 ROA not before: Tue 12 Aug 2025 00:10:53 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8143::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:0d:63:fd:a3:e6:b8:37:d3:13:ca:e4:51:9b:6c:37:09:18:18:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:10:53 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=41859ca49ad63b352380664a249d8a72e27b877118a5019f05b3d8c771b15ebe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:41:2f:94:72:6b:88:8c:fd:0d:e8:db:fa:0f: 23:46:16:7a:6f:44:13:80:56:f2:81:fc:26:f8:c2: 01:08:ae:aa:9b:53:6c:d1:26:b5:9c:3f:ac:2a:14: 0f:75:07:8f:f7:09:f3:02:2f:24:4b:c0:af:f6:2c: f3:a1:83:e6:96:8f:2a:6c:0b:ec:03:7f:c1:b5:03: d1:f1:7c:ed:4d:28:68:26:dd:94:96:64:14:87:3c: 88:a2:98:08:81:28:e0:3f:85:d0:e6:1d:2b:18:74: 1d:6f:b5:7a:81:5a:f8:fb:3e:6a:10:16:2d:7b:cc: 9e:8d:95:18:d2:9b:c6:52:b2:8c:44:ae:92:8f:52: 79:f5:e2:6a:7c:a9:b4:d1:1f:c1:48:e2:36:3f:c5: 21:42:23:91:9d:67:2d:d5:5c:4f:5d:08:3b:15:97: 2f:ee:f0:9c:e4:68:14:9e:70:49:4f:a8:e2:e6:57: 03:0a:dd:59:fe:44:82:02:4a:c1:f3:69:0b:86:f2: 83:a3:79:26:c7:75:d9:28:9e:15:2e:a5:9a:95:c7: a6:ea:3a:3a:d9:6f:be:56:7d:ac:a5:06:05:45:7d: 8b:74:13:c1:88:fc:79:8d:fd:fe:58:ab:a0:5e:85: 33:ef:ee:bb:f6:c7:09:f8:0f:88:af:4a:1d:ad:ec: 86:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:81:2F:95:DA:AE:E0:5E:07:13:44:E4:B3:EE:E3:9E:2E:C0:B0:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab98bfdb-9af4-412f-87c6-d3448c52456d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8143::/48 Signature Algorithm: sha256WithRSAEncryption d7:31:e7:71:91:8a:2c:d1:90:32:1f:ce:27:e4:22:95:a3:25: 58:d1:f9:94:3a:16:e2:7f:8a:9c:75:2d:cd:ae:07:4f:d2:7d: e1:cc:06:47:2b:b5:82:92:22:16:51:5c:8e:81:6b:70:1c:4d: 0e:99:fb:1f:54:57:20:6a:0f:98:fe:e5:7a:7d:8c:37:ed:8a: 07:4f:b2:50:31:de:43:36:93:22:84:81:60:88:94:0a:c1:58: 69:26:e4:45:aa:ce:b6:b8:a4:0f:8f:0f:87:88:36:03:16:77: 2c:d3:87:b6:fc:dd:d1:b1:88:e9:75:63:cc:6f:04:60:0b:d8: fb:bf:b0:9d:09:70:e0:41:d0:cd:e5:59:0e:ec:08:af:c1:c2: c2:66:98:ad:6d:d8:16:f4:a5:80:f8:0f:3a:a6:ae:94:de:8c: 5b:fa:2e:f9:a4:5f:e7:ce:ab:67:58:46:68:11:9b:5c:d0:91: df:d6:4e:13:77:80:08:76:52:42:eb:f2:2b:92:5d:e3:06:8e: d2:f1:10:e1:df:fd:72:b0:3f:84:f2:b3:bf:55:d2:7d:af:f3: d1:e6:20:d8:48:f9:80:ac:36:2a:d4:52:37:a9:55:e3:85:bf: 07:14:40:83:12:b6:a3:93:ad:61:b7:75:99:05:86:71:b8:ad: f3:f7:55:29 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPg1j/aPmuDfTE8rkUZtsNwkYGPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMDUzWhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTg1OWNhNDlhZDYzYjM1MjM4MDY2NGEyNDlkOGE3MmUy N2I4NzcxMThhNTAxOWYwNWIzZDhjNzcxYjE1ZWJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTQS+UcmuIjP0N6Nv6DyNGFnpvRBOAVvKB/Cb4wgEIrqqb U2zRJrWcP6wqFA91B4/3CfMCLyRLwK/2LPOhg+aWjypsC+wDf8G1A9HxfO1NKGgm 3ZSWZBSHPIiimAiBKOA/hdDmHSsYdB1vtXqBWvj7PmoQFi17zJ6NlRjSm8ZSsoxE rpKPUnn14mp8qbTRH8FI4jY/xSFCI5GdZy3VXE9dCDsVly/u8JzkaBSecElPqOLm VwMK3Vn+RIICSsHzaQuG8oOjeSbHddkonhUupZqVx6bqOjrZb75WfaylBgVFfYt0 E8GI/HmN/f5Yq6BehTPv7rv2xwn4D4ivSh2t7IadAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPIEvldqu4F4HE0Tks+7jni7AsDEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiOThiZmRiLTlhZjQtNDEyZi04N2M2LWQzNDQ4YzUyNDU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gUMwDQYJKoZIhvcNAQELBQADggEBANcx53GRiizRkDIfzifkIpWj JVjR+ZQ6FuJ/ipx1Lc2uB0/SfeHMBkcrtYKSIhZRXI6Ba3AcTQ6Z+x9UVyBqD5j+ 5Xp9jDftigdPslAx3kM2kyKEgWCIlArBWGkm5EWqzra4pA+PD4eINgMWdyzTh7b8 3dGxiOl1Y8xvBGAL2Pu/sJ0JcOBB0M3lWQ7sCK/BwsJmmK1t2Bb0pYD4DzqmrpTe jFv6LvmkX+fOq2dYRmgRm1zQkd/WThN3gAh2UkLr8iuSXeMGjtLxEOHf/XKwP4Ty s79V0n2v89HmINhI+YCsNirUUjepVeOFvwcUQIMStqOTrWG3dZkFhnG4rfP3VSk= -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:27 2025 by rpki-client