$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd842759-1d22-4dc0-98e2-f1ca7b7cdf28.roa File: bd842759-1d22-4dc0-98e2-f1ca7b7cdf28.roa (raw, json) Hash identifier: 1VZWlSwp+PeqHivsGIUJPtYBgDbxxtZQg8KOp6ReUHI= Subject key identifier: CF:B5:26:4F:A9:7B:EB:BB:53:BB:0A:0E:E3:75:B3:7C:03:4F:2B:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B68380B029DBDC6FAC635EBF9211B449A6417B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd842759-1d22-4dc0-98e2-f1ca7b7cdf28.roa Signing time: Mon 25 Aug 2025 16:52:15 +0000 ROA not before: Mon 25 Aug 2025 16:52:15 +0000 ROA not after: Mon 29 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fec:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:68:38:0b:02:9d:bd:c6:fa:c6:35:eb:f9:21:1b:44:9a:64:17:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 25 16:52:15 2025 GMT Not After : Sep 29 23:59:59 2025 GMT Subject: serialNumber=895a9d07792ee2e63404603afd346720002a97fe417f9767fa47d87e254a45c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:04:f1:fc:93:d3:80:68:d7:90:69:74:0a:6b: a9:23:61:97:99:68:31:ec:fb:62:80:6f:84:92:6c: 9b:16:87:b5:27:03:b9:5b:fc:fc:b4:bc:b9:6a:07: 35:b7:3a:6e:79:4d:06:02:ff:80:34:0f:3d:9e:df: cd:7e:83:b5:db:ba:da:b1:f5:7c:9e:7d:59:46:fb: 6a:ab:ab:58:ca:56:0f:12:23:d7:8e:8a:79:96:f7: 0a:bf:4b:a5:04:ab:d5:25:5a:b5:98:95:b6:b4:85: 25:44:c6:89:82:5e:65:df:6a:6d:b5:3c:68:37:5c: 2b:69:29:e4:c9:e7:d6:b6:4f:85:81:da:32:58:97: e8:d9:58:3d:34:2e:c2:0a:6e:f4:50:15:0b:2d:26: 62:47:1f:21:56:ba:bc:16:5b:66:ea:c6:e5:23:7f: 76:dc:99:c4:45:88:8c:75:e4:47:9e:fd:26:ce:d5: ff:e2:ab:81:d8:b4:2e:01:03:d5:aa:3d:62:da:c2: 4e:49:4c:ec:c9:93:d6:d2:84:14:b8:04:5a:9c:0c: b4:9c:d8:e5:aa:93:c6:ed:0a:e0:55:12:0c:59:69: a1:6b:c1:d9:7f:17:d3:0b:44:d7:0d:73:3b:42:e0: 42:cf:a2:f2:12:9d:8d:da:e4:55:34:19:8a:e5:ed: ad:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:B5:26:4F:A9:7B:EB:BB:53:BB:0A:0E:E3:75:B3:7C:03:4F:2B:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bd842759-1d22-4dc0-98e2-f1ca7b7cdf28.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fec:2000::/48 Signature Algorithm: sha256WithRSAEncryption 63:8f:de:9d:1c:69:e8:d3:4d:68:61:97:35:24:be:e1:8a:f9: 97:da:ea:11:ce:c9:d9:16:65:87:d8:ef:1f:1d:ec:4e:d4:30: 91:b7:03:cd:b3:ea:d8:8a:d5:a1:6e:93:b5:75:13:fa:98:d8: fd:12:8b:bf:2b:33:e3:bc:00:37:14:ef:ec:b2:30:2d:e0:c1: b1:3a:f6:d1:1d:44:7f:5d:dd:70:1a:fe:71:01:6e:ae:9d:b3: 51:7f:87:fd:33:8c:d9:4c:c6:e1:9c:54:79:8a:32:e9:cc:cc: c5:3d:6e:b3:a3:ea:cf:9d:79:8c:58:49:7d:d8:f1:29:40:b8: 83:ce:81:59:52:c8:8e:bf:4e:02:31:cf:2e:59:3d:73:fa:bb: d6:cb:71:11:da:17:cd:24:7b:ff:03:0d:c0:61:c2:52:ec:49: 01:d7:02:6c:eb:0c:af:c6:1f:4c:37:59:db:f0:7a:50:f4:fa: f2:06:af:90:bb:d9:2b:2d:c6:45:04:6a:07:26:40:6e:6e:92: 44:df:37:59:f0:a0:5c:38:b3:50:a3:b7:09:a6:b6:98:c1:b3: 63:f4:a2:a6:4d:de:00:48:fd:c5:f5:8b:b8:73:11:09:8a:2b: 89:99:66:c0:03:65:e6:ce:91:0e:c3:79:7d:46:c5:c4:e7:ab: 68:f0:a1:81 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUW2g4CwKdvcb6xjXr+SEbRJpkF7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI1MTY1MjE1WhcNMjUwOTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTVhOWQwNzc5MmVlMmU2MzQwNDYwM2FmZDM0NjcyMDAw MmE5N2ZlNDE3Zjk3NjdmYTQ3ZDg3ZTI1NGE0NWMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoBPH8k9OAaNeQaXQKa6kjYZeZaDHs+2KAb4SSbJsWh7Un A7lb/Py0vLlqBzW3Om55TQYC/4A0Dz2e381+g7Xbutqx9XyefVlG+2qrq1jKVg8S I9eOinmW9wq/S6UEq9UlWrWYlba0hSVExomCXmXfam21PGg3XCtpKeTJ59a2T4WB 2jJYl+jZWD00LsIKbvRQFQstJmJHHyFWurwWW2bqxuUjf3bcmcRFiIx15Eee/SbO 1f/iq4HYtC4BA9WqPWLawk5JTOzJk9bShBS4BFqcDLSc2OWqk8btCuBVEgxZaaFr wdl/F9MLRNcNcztC4ELPovISnY3a5FU0GYrl7a3bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz7UmT6l767tTuwoO43WzfANPK8swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JkODQyNzU5LTFkMjItNGRjMC05OGUyLWYxY2E3YjdjZGYyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/sIAAwDQYJKoZIhvcNAQELBQADggEBAGOP3p0caejTTWhhlzUkvuGK +Zfa6hHOydkWZYfY7x8d7E7UMJG3A82z6tiK1aFuk7V1E/qY2P0Si78rM+O8ADcU 7+yyMC3gwbE69tEdRH9d3XAa/nEBbq6ds1F/h/0zjNlMxuGcVHmKMunMzMU9brOj 6s+deYxYSX3Y8SlAuIPOgVlSyI6/TgIxzy5ZPXP6u9bLcRHaF80ke/8DDcBhwlLs SQHXAmzrDK/GH0w3WdvwelD0+vIGr5C72SstxkUEagcmQG5ukkTfN1nwoFw4s1Cj twmmtpjBs2P0oqZN3gBI/cX1i7hzEQmKK4mZZsADZebOkQ7DeX1GxcTnq2jwoYE= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:09 2025 by rpki-client