$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abdcdb22-6b90-4b2b-b537-e8807eb684a8.roa File: abdcdb22-6b90-4b2b-b537-e8807eb684a8.roa (raw, json) Hash identifier: XRfjxr4tKjE/25dJAPI/OXHGI1Mwg8rAJwI083fP1jY= Subject key identifier: 45:B4:AA:33:4C:6E:08:44:6B:06:4C:D4:7E:16:87:BA:03:2A:7D:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23069B0473E288DF63AA99E5FD8FF25D409C484B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abdcdb22-6b90-4b2b-b537-e8807eb684a8.roa Signing time: Fri 29 Aug 2025 16:21:17 +0000 ROA not before: Fri 29 Aug 2025 16:21:17 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f18::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:06:9b:04:73:e2:88:df:63:aa:99:e5:fd:8f:f2:5d:40:9c:48:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 16:21:17 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=52327083ce81bff9195fa3e6626fe4da289f7ccd3fe7e595ddd88a6bfd4ee6a2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4a:a6:db:30:53:29:fd:e4:8f:1e:b0:f1:b5: 51:79:72:75:48:24:41:00:7e:f1:f9:74:c2:30:cc: 98:e8:0b:38:35:22:65:3c:dc:c6:f2:2e:2a:9b:28: e7:07:0b:65:58:99:bd:2f:40:e4:cd:6f:96:42:01: 5b:ef:76:06:a6:18:cb:39:01:a3:b8:df:85:ed:64: 97:d3:49:5a:82:c0:d1:2c:17:32:fa:e0:8c:a8:6e: 89:1f:53:87:ec:54:f5:90:84:5d:29:a9:7c:f1:d3: b0:8b:58:20:0d:c8:39:5d:16:3b:63:2f:ed:5d:e8: 88:29:1b:02:e4:e1:c0:27:89:ff:da:45:ea:a9:90: c7:a4:d2:b8:c0:43:a9:0c:1b:54:9a:68:22:d8:3a: a6:01:91:09:10:9d:73:ce:74:81:5d:13:8f:3e:c1: 64:be:4b:d3:ec:f4:a4:65:a2:a3:1d:74:0a:26:d1: ac:40:4f:0a:17:61:a8:d2:0f:5c:80:9c:eb:14:55: b8:1e:93:ad:eb:fc:5d:9c:04:db:94:c6:ab:f6:c8: 8b:22:f1:44:91:cb:f7:08:70:2a:a6:cd:9a:3c:f9: 45:92:ae:ce:27:0e:70:b5:15:d3:1f:51:cc:95:f0: 4f:2a:c0:75:5f:75:74:35:9a:16:bb:cd:3f:4e:77: 9d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B4:AA:33:4C:6E:08:44:6B:06:4C:D4:7E:16:87:BA:03:2A:7D:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/abdcdb22-6b90-4b2b-b537-e8807eb684a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f18::/33 Signature Algorithm: sha256WithRSAEncryption 65:6f:4e:02:59:d1:62:33:b6:f0:5a:5d:9d:97:98:64:79:e8: a0:6a:a3:f9:da:25:66:a2:24:6a:9b:2b:67:4e:7e:29:f7:58: c9:cf:1b:7b:9b:bd:84:60:ae:83:51:0b:0f:b8:e3:e7:c5:42: a5:35:9d:11:06:14:8a:7b:4e:67:98:a6:66:ca:e1:fc:c8:6f: ed:39:bd:c5:f4:c5:cf:e5:dc:00:2b:5e:b8:41:b9:0c:33:ca: 86:70:37:11:cc:01:8c:0a:6f:c7:0e:b2:0c:0a:38:f4:8b:c0: 8e:cc:74:95:51:d2:ec:85:93:3a:51:35:c6:85:cb:80:f7:ff: 80:66:95:f1:bd:6e:13:34:1e:9c:39:f1:cd:42:1c:6e:6c:dd: dc:f6:ea:38:49:9e:b0:31:b4:7b:96:c2:06:2c:bc:2d:fa:54: 00:1a:71:3e:b8:2a:c8:49:73:1c:68:1c:bf:7c:29:15:6f:ca: 2d:a6:e8:89:44:94:a7:d5:5c:c5:70:e8:08:29:62:54:7e:12: 1f:96:35:7b:83:5d:f7:94:53:4b:3c:b6:a3:97:13:f7:f6:a2: 12:28:38:83:10:15:34:db:ef:cd:da:55:dc:00:79:ab:eb:5b: 8e:66:a7:03:f7:b3:9a:b3:41:aa:db:2a:75:8f:b7:3e:d8:fc: cc:24:fd:9e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUIwabBHPiiN9jqpnl/Y/yXUCcSEswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTYyMTE3WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjMyNzA4M2NlODFiZmY5MTk1ZmEzZTY2MjZmZTRkYTI4 OWY3Y2NkM2ZlN2U1OTVkZGQ4OGE2YmZkNGVlNmEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwSqbbMFMp/eSPHrDxtVF5cnVIJEEAfvH5dMIwzJjoCzg1 ImU83MbyLiqbKOcHC2VYmb0vQOTNb5ZCAVvvdgamGMs5AaO434XtZJfTSVqCwNEs FzL64IyobokfU4fsVPWQhF0pqXzx07CLWCANyDldFjtjL+1d6IgpGwLk4cAnif/a ReqpkMek0rjAQ6kMG1SaaCLYOqYBkQkQnXPOdIFdE48+wWS+S9Ps9KRloqMddAom 0axATwoXYajSD1yAnOsUVbgek63r/F2cBNuUxqv2yIsi8USRy/cIcCqmzZo8+UWS rs4nDnC1FdMfUcyV8E8qwHVfdXQ1mha7zT9Od50pAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQURbSqM0xuCERrBkzUfhaHugMqfVwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiZGNkYjIyLTZiOTAtNGIyYi1iNTM3LWU4ODA3ZWI2ODRhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgcmAB8YADANBgkqhkiG9w0BAQsFAAOCAQEAZW9OAlnRYjO28FpdnZeYZHno oGqj+dolZqIkapsrZ05+KfdYyc8be5u9hGCug1ELD7jj58VCpTWdEQYUintOZ5im Zsrh/Mhv7Tm9xfTFz+XcACteuEG5DDPKhnA3EcwBjApvxw6yDAo49IvAjsx0lVHS 7IWTOlE1xoXLgPf/gGaV8b1uEzQenDnxzUIcbmzd3PbqOEmesDG0e5bCBiy8LfpU ABpxPrgqyElzHGgcv3wpFW/KLaboiUSUp9VcxXDoCCliVH4SH5Y1e4Nd95RTSzy2 o5cT9/aiEig4gxAVNNvvzdpV3AB5q+tbjmanA/ezmrNBqtsqdY+3Ptj8zCT9ng== -----END CERTIFICATE-----Generated at Sat Sep 6 14:13:57 2025 by rpki-client