$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd5d39ce-9ed8-4564-a1f8-c329aaebb997.roa File: bd5d39ce-9ed8-4564-a1f8-c329aaebb997.roa (raw, json) Hash identifier: Qk6vIOeSy6sgPi+EOzQ7+M8/EZrg8r7RcDKTXKyDGng= Subject key identifier: A1:B0:E6:1A:5E:23:B0:E5:C4:A4:02:88:61:AD:6E:B2:78:20:4E:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7194100CE0CC1D23B23FB9587D29585D71FD2407 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd5d39ce-9ed8-4564-a1f8-c329aaebb997.roa Signing time: Tue 12 Aug 2025 00:10:19 +0000 ROA not before: Tue 12 Aug 2025 00:10:19 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:8190::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:94:10:0c:e0:cc:1d:23:b2:3f:b9:58:7d:29:58:5d:71:fd:24:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:10:19 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=28be0088dff40241aea686d8ada87307aba04e0a19299b965ac5b8dd4b5a0775, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b6:97:de:fc:16:ef:ae:21:40:ba:2e:ea:a9: 35:4a:69:59:b1:d8:bc:58:d5:83:4b:e8:15:89:86: 1b:3b:26:a4:b2:10:3c:6f:36:7e:2a:f2:80:6f:c2: cc:a6:b8:5a:b8:56:5f:89:84:d6:9d:49:9c:e6:b6: 31:06:cb:fc:84:e2:e9:f1:e1:ee:68:4d:d7:c2:90: a1:7c:53:3c:3c:ff:c2:0d:96:bd:c0:e1:7d:2d:d1: ff:40:4b:34:4e:4a:ec:6c:a2:64:0d:e3:27:cc:c8: d1:af:4a:a3:a4:1d:18:ce:2e:27:90:ff:60:48:e8: 85:a9:d5:3e:2e:4a:36:db:26:8e:67:ba:48:b9:e0: b7:9a:9d:4f:96:a3:5c:4a:75:b4:e5:e7:37:45:b4: fd:15:6c:a8:e9:15:d0:6c:7c:8f:53:d1:f5:a6:a5: e7:ba:89:bf:00:f6:aa:55:27:4a:58:a8:43:ee:95: 0e:c1:6b:2a:f6:23:0e:8b:36:e7:2e:61:58:4e:c9: 8e:38:66:b7:be:41:eb:6c:49:77:9a:5e:42:f6:49: ec:ca:08:3b:22:29:fd:36:1a:cd:65:ec:64:ea:3d: ac:03:38:91:89:bc:d4:71:93:77:4c:38:cd:96:96: 1d:be:7e:cc:9f:74:db:b2:20:7a:73:17:cf:90:5d: af:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B0:E6:1A:5E:23:B0:E5:C4:A4:02:88:61:AD:6E:B2:78:20:4E:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd5d39ce-9ed8-4564-a1f8-c329aaebb997.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:8190::/48 Signature Algorithm: sha256WithRSAEncryption 1e:8c:0a:e3:4b:ab:29:7d:ec:7b:5c:69:b3:41:1e:cc:a5:06: 28:ac:9b:3d:23:3e:71:d9:83:56:83:d0:64:49:3c:f6:00:89: 3d:32:1d:80:34:72:04:9b:a5:6d:b2:80:45:fb:38:87:bb:2d: 53:5e:42:65:a4:ca:e2:8a:f7:27:cc:7e:7b:c2:ac:99:24:b7: aa:37:b0:f8:0d:ed:9b:80:91:7d:f0:93:ae:84:71:92:33:31: 0d:0b:79:1b:dc:bb:5a:b6:98:1f:03:a4:79:ef:dc:10:b3:09: 02:d7:59:f0:9d:3b:2a:97:0e:18:61:55:b3:85:09:ab:5a:bf: f8:3b:78:f5:80:42:c6:de:83:48:b0:ee:1d:50:c6:d1:39:a7: 3f:17:4e:c5:2c:ba:ed:26:df:b2:a6:b6:b6:38:27:ba:16:e5: ce:fa:a1:19:fb:05:79:9d:32:b1:df:86:86:f2:77:57:c7:eb: a6:08:8b:c3:c4:0d:3b:83:0e:d4:e0:ec:28:77:94:48:b0:36: ca:22:4b:b2:07:eb:82:6e:b5:ac:25:10:ef:3c:b5:59:11:7e: 7c:58:17:00:de:31:27:19:c3:14:69:d0:a2:fe:da:9c:2e:80: 33:0a:75:59:ba:1d:a6:44:b8:8b:9b:80:25:f6:31:0c:c0:6b: 1e:84:1c:3c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcZQQDODMHSOyP7lYfSlYXXH9JAcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAxMDE5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGJlMDA4OGRmZjQwMjQxYWVhNjg2ZDhhZGE4NzMwN2Fi YTA0ZTBhMTkyOTliOTY1YWM1YjhkZDRiNWEwNzc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCptpfe/BbvriFAui7qqTVKaVmx2LxY1YNL6BWJhhs7JqSy EDxvNn4q8oBvwsymuFq4Vl+JhNadSZzmtjEGy/yE4unx4e5oTdfCkKF8Uzw8/8IN lr3A4X0t0f9ASzROSuxsomQN4yfMyNGvSqOkHRjOLieQ/2BI6IWp1T4uSjbbJo5n uki54LeanU+Wo1xKdbTl5zdFtP0VbKjpFdBsfI9T0fWmpee6ib8A9qpVJ0pYqEPu lQ7Bayr2Iw6LNucuYVhOyY44Zre+QetsSXeaXkL2SezKCDsiKf02Gs1l7GTqPawD OJGJvNRxk3dMOM2Wlh2+fsyfdNuyIHpzF8+QXa/rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUobDmGl4jsOXEpAKIYa1usnggTtkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkNWQzOWNlLTllZDgtNDU2NC1hMWY4LWMzMjlhYWViYjk5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9gZAwDQYJKoZIhvcNAQELBQADggEBAB6MCuNLqyl97HtcabNBHsyl Biismz0jPnHZg1aD0GRJPPYAiT0yHYA0cgSbpW2ygEX7OIe7LVNeQmWkyuKK9yfM fnvCrJkkt6o3sPgN7ZuAkX3wk66EcZIzMQ0LeRvcu1q2mB8DpHnv3BCzCQLXWfCd OyqXDhhhVbOFCatav/g7ePWAQsbeg0iw7h1QxtE5pz8XTsUsuu0m37KmtrY4J7oW 5c76oRn7BXmdMrHfhobyd1fH66YIi8PEDTuDDtTg7Ch3lEiwNsoiS7IH64Jutawl EO88tVkRfnxYFwDeMScZwxRp0KL+2pwugDMKdVm6HaZEuIubgCX2MQzAax6EHDw= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:21 2025 by rpki-client