$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa File: bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa (raw, json) Hash identifier: hPyHtYzZQL034luWK+lUKv2V7onLCy+TO4REAiYm9mA= Subject key identifier: A2:7D:0D:5A:96:2C:12:AA:F2:CF:F9:FC:9B:5F:2D:28:18:1A:00:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35C44C208526E0792F8BB142908F2BCCDBCE68F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa Signing time: Tue 26 Aug 2025 16:51:44 +0000 ROA not before: Tue 26 Aug 2025 16:51:44 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8050::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c4:4c:20:85:26:e0:79:2f:8b:b1:42:90:8f:2b:cc:db:ce:68:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 16:51:44 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=9376af458b3b59aa4c38fb962a6d457e927d47ff302009d986c88601d52b7b28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d7:5f:73:c7:7f:26:a9:c2:f2:cf:87:f1:8c: df:e4:1a:f6:27:fe:b2:1f:63:2d:cc:c5:11:c5:c5: ed:9d:7b:c9:86:a8:5e:84:2c:0c:a5:6b:b1:38:31: 4a:fc:61:b7:ac:89:1b:81:e5:83:d9:d4:27:99:3b: 6d:2b:e2:4e:d9:bf:2f:7d:d8:e3:e7:c9:ba:57:d0: 42:90:ab:6d:49:17:63:5c:51:79:1c:42:3f:7f:8a: c6:03:f8:ff:fe:b9:5e:35:9d:30:45:5e:44:e1:b9: c5:ab:7a:22:d9:fe:87:fc:78:17:c2:f0:31:03:d9: 65:05:84:d4:33:69:af:08:60:c2:79:bf:ce:1b:3b: 67:7d:0a:1f:57:25:0a:1a:fd:c0:68:cd:2e:d1:4d: 38:b3:13:a7:aa:32:ac:70:64:78:5f:ac:e0:d9:a4: 5a:5c:fe:7c:d9:a7:08:68:e7:e3:66:67:b6:82:3c: fd:2b:a6:c3:8e:de:c8:5a:e2:6f:af:38:ba:18:7b: 8b:c4:3a:ba:65:b1:44:f6:ab:e2:e0:78:a8:7c:d8: d5:c4:af:62:40:cd:4f:90:42:5f:54:ab:29:ba:ae: 39:7f:f4:a0:3a:26:03:74:6c:6e:4c:41:52:fd:80: 70:33:ac:ce:dd:48:de:0b:4f:17:cb:58:19:cf:ca: 14:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7D:0D:5A:96:2C:12:AA:F2:CF:F9:FC:9B:5F:2D:28:18:1A:00:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf8d77dc-48f9-49c2-ac2d-febcf8af2bd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8050::/48 Signature Algorithm: sha256WithRSAEncryption 24:12:c7:a6:8b:c6:27:bf:85:e2:c4:ba:cb:5e:57:68:08:95: 39:37:20:50:2b:71:fe:9d:bb:3c:de:a9:2e:cf:c2:5c:9d:ae: dd:6e:56:36:ec:b4:80:4b:2b:36:3b:3f:20:57:7a:59:d5:84: 80:af:ac:21:8b:37:81:03:cf:3d:93:a3:e2:69:24:60:2b:d3: a1:0d:e0:13:44:91:36:1a:c2:c9:5e:e2:57:f9:5b:92:a3:52: 92:c0:38:17:91:ec:f4:df:60:98:b9:21:1c:69:46:be:af:70: e2:c5:6c:5d:1e:e7:ca:25:a7:08:61:af:20:99:10:ba:f7:bd: fb:a3:33:d5:36:91:86:a5:26:9f:b4:70:03:4b:f6:63:24:8d: 64:94:89:f9:30:07:98:5e:95:5d:d3:f5:cd:f8:13:ff:29:aa: 10:2d:d2:8f:c8:a4:4e:d7:83:36:c2:c1:f9:5b:9d:32:c9:c9: b5:15:89:64:c3:f5:80:8b:21:c2:bd:55:0d:f9:b4:9f:01:c4: 41:84:42:af:f0:db:d3:0d:32:51:40:f7:d1:9f:5c:cb:14:09: e1:d3:59:63:56:5d:3e:f5:ff:0a:0f:17:c2:45:ac:28:aa:78: 10:e1:51:e7:9f:67:b6:94:8f:18:7c:10:b8:b9:df:ab:a1:0a: 6d:20:2f:5b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNcRMIIUm4Hkvi7FCkI8rzNvOaPYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTY1MTQ0WhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5Mzc2YWY0NThiM2I1OWFhNGMzOGZiOTYyYTZkNDU3ZTky N2Q0N2ZmMzAyMDA5ZDk4NmM4ODYwMWQ1MmI3YjI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDv119zx38mqcLyz4fxjN/kGvYn/rIfYy3MxRHFxe2de8mG qF6ELAyla7E4MUr8YbesiRuB5YPZ1CeZO20r4k7Zvy992OPnybpX0EKQq21JF2Nc UXkcQj9/isYD+P/+uV41nTBFXkThucWreiLZ/of8eBfC8DED2WUFhNQzaa8IYMJ5 v84bO2d9Ch9XJQoa/cBozS7RTTizE6eqMqxwZHhfrODZpFpc/nzZpwho5+NmZ7aC PP0rpsOO3sha4m+vOLoYe4vEOrplsUT2q+LgeKh82NXEr2JAzU+QQl9Uqym6rjl/ 9KA6JgN0bG5MQVL9gHAzrM7dSN4LTxfLWBnPyhSHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUon0NWpYsEqryz/n8m18tKBgaABQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmOGQ3N2RjLTQ4ZjktNDljMi1hYzJkLWZlYmNmOGFmMmJkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgFAwDQYJKoZIhvcNAQELBQADggEBACQSx6aLxie/heLEusteV2gI lTk3IFArcf6duzzeqS7Pwlydrt1uVjbstIBLKzY7PyBXelnVhICvrCGLN4EDzz2T o+JpJGAr06EN4BNEkTYawsle4lf5W5KjUpLAOBeR7PTfYJi5IRxpRr6vcOLFbF0e 58olpwhhryCZELr3vfujM9U2kYalJp+0cANL9mMkjWSUifkwB5helV3T9c34E/8p qhAt0o/IpE7XgzbCwflbnTLJybUViWTD9YCLIcK9VQ35tJ8BxEGEQq/w29MNMlFA 99GfXMsUCeHTWWNWXT71/woPF8JFrCiqeBDhUeefZ7aUjxh8ELi536uhCm0gL1s= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:28 2025 by rpki-client