$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa File: b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa (raw, json) Hash identifier: hEsnJBnDnPBwoY1vvbFQ4j9Wgen4Ptdzxu75EcuKP6A= Subject key identifier: 2B:ED:14:C1:A2:0D:5C:E2:9D:05:01:AA:F4:81:C3:BD:B8:E7:B7:D0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1613A7235AD1E1FF9DB4A8E2080AAB5C8FCD6B15 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa Signing time: Sat 30 Aug 2025 00:20:21 +0000 ROA not before: Sat 30 Aug 2025 00:20:21 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fb8:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:13:a7:23:5a:d1:e1:ff:9d:b4:a8:e2:08:0a:ab:5c:8f:cd:6b:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:20:21 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=973a384bae6b29b627c924a0661af1c13d0452a0e767b3f95af95332df469b2b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:c8:72:13:63:98:1c:45:49:90:ad:d5:5a: 7c:0c:c7:cc:e5:d1:d3:64:cc:cd:6a:39:8f:83:2a: a0:c6:dc:40:af:bf:da:b5:1d:9c:6c:92:69:59:30: 5e:06:1f:aa:04:3d:38:4e:10:d7:ba:91:f7:2f:64: 13:ec:28:0c:0a:3b:45:03:58:5a:75:83:59:a1:53: 83:a2:d0:14:5d:05:e6:ff:92:7e:83:7c:1a:44:b3: 76:7f:da:8c:8d:bf:27:18:a3:b3:be:8d:ba:69:9a: 52:ce:d0:04:69:a7:f3:6c:7c:7d:c5:2a:99:46:b0: 27:91:19:e7:72:be:82:e6:ec:7b:86:a4:3d:78:bb: 38:81:fb:cc:e0:b5:0a:ce:75:4a:90:89:8f:80:bc: ec:a9:6e:8a:e6:6f:5c:f4:65:18:4a:60:a5:85:23: ae:93:32:c6:b5:9c:be:a1:e7:f6:17:b1:ed:19:7b: a4:db:e6:06:7c:4c:c1:38:e7:f0:09:dc:5c:7f:f8: 2d:2c:bc:03:d8:42:45:95:31:1a:12:c0:5d:76:f4: 31:a2:97:f3:41:ea:3e:09:1f:65:53:80:a3:ff:a5: d1:3b:d1:a9:3a:50:b1:5b:8b:69:e7:ab:7b:c5:de: f0:b7:fa:e4:8c:35:de:8c:23:2b:76:d3:e9:d1:09: 74:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:ED:14:C1:A2:0D:5C:E2:9D:05:01:AA:F4:81:C3:BD:B8:E7:B7:D0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9a67dba-13fc-4b07-9d44-def1dd6a809e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:2000::/40 Signature Algorithm: sha256WithRSAEncryption 2d:f6:6e:2f:8d:37:5b:33:ef:f3:48:77:d3:1b:e2:b0:f7:3b: b1:ef:16:4a:c2:59:ee:91:6d:e0:6e:f5:64:a6:58:13:13:72: 0d:37:fa:f2:6b:9e:f7:2c:14:9f:77:6c:de:b8:55:1b:e4:02: 24:44:ab:1e:11:ca:24:33:9a:13:0e:dc:a7:be:b2:8e:ed:33: 2f:87:06:eb:18:58:83:53:0f:1b:73:9e:1b:14:b7:d0:50:9d: 14:7c:dc:55:d8:f6:42:39:7e:a7:4f:29:30:9e:14:4a:76:b9: ce:f5:c8:65:4a:08:12:82:db:f0:4e:6c:61:2f:61:3a:f1:7d: 63:f4:e3:ec:0c:24:d2:25:61:13:15:7e:dc:ae:41:c0:1d:21: 6c:0d:e1:ad:59:23:88:7a:79:d9:74:df:e9:d3:95:5a:bf:4f: 7e:99:1e:26:a2:e0:fd:08:74:8e:83:74:7b:71:08:c6:e7:02: 7d:91:ce:5b:1d:57:88:3f:7b:e9:d6:00:2d:e1:c4:a7:90:a1: 37:16:95:75:a5:61:55:46:38:2e:24:87:2d:f1:13:6b:bd:d7: 34:db:4a:8c:f0:f0:ea:45:1f:7a:45:25:23:43:0e:31:54:5a: fd:2b:81:cc:19:9a:19:ca:8d:83:0a:c9:7e:af:a2:ce:4d:0e: 59:af:2e:24 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUFhOnI1rR4f+dtKjiCAqrXI/NaxUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAyMDIxWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzNhMzg0YmFlNmIyOWI2MjdjOTI0YTA2NjFhZjFjMTNk MDQ1MmEwZTc2N2IzZjk1YWY5NTMzMmRmNDY5YjJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJxMhyE2OYHEVJkK3VWnwMx8zl0dNkzM1qOY+DKqDG3ECv v9q1HZxskmlZMF4GH6oEPThOENe6kfcvZBPsKAwKO0UDWFp1g1mhU4Oi0BRdBeb/ kn6DfBpEs3Z/2oyNvycYo7O+jbppmlLO0ARpp/NsfH3FKplGsCeRGedyvoLm7HuG pD14uziB+8zgtQrOdUqQiY+AvOypbormb1z0ZRhKYKWFI66TMsa1nL6h5/YXse0Z e6Tb5gZ8TME45/AJ3Fx/+C0svAPYQkWVMRoSwF129DGil/NB6j4JH2VTgKP/pdE7 0ak6ULFbi2nnq3vF3vC3+uSMNd6MIyt20+nRCXQTAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUK+0UwaINXOKdBQGq9IHDvbjnt9AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5YTY3ZGJhLTEzZmMtNGIwNy05ZDQ0LWRlZjFkZDZhODA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4IDANBgkqhkiG9w0BAQsFAAOCAQEALfZuL403WzPv80h30xvisPc7 se8WSsJZ7pFt4G71ZKZYExNyDTf68mue9ywUn3ds3rhVG+QCJESrHhHKJDOaEw7c p76yju0zL4cG6xhYg1MPG3OeGxS30FCdFHzcVdj2Qjl+p08pMJ4USna5zvXIZUoI EoLb8E5sYS9hOvF9Y/Tj7Awk0iVhExV+3K5BwB0hbA3hrVkjiHp52XTf6dOVWr9P fpkeJqLg/Qh0joN0e3EIxucCfZHOWx1XiD976dYALeHEp5ChNxaVdaVhVUY4LiSH LfETa73XNNtKjPDw6kUfekUlI0MOMVRa/SuBzBmaGcqNgwrJfq+izk0OWa8uJA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:33 2025 by rpki-client