$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c288c187-a311-482f-a404-3061061e705c.roa File: c288c187-a311-482f-a404-3061061e705c.roa (raw, json) Hash identifier: FFbNdW98I4NETcJU3l28w0UL20X14whVhJ/yWhMLM/o= Subject key identifier: CB:9C:1D:A9:61:79:79:FF:9A:7E:53:5A:A1:A0:CF:C9:0F:58:FF:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2C5C87F903309F01BB199165F62CC0267D63A987 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c288c187-a311-482f-a404-3061061e705c.roa Signing time: Fri 29 Aug 2025 15:40:48 +0000 ROA not before: Fri 29 Aug 2025 15:40:48 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f12:400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:5c:87:f9:03:30:9f:01:bb:19:91:65:f6:2c:c0:26:7d:63:a9:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:40:48 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=c65b08b50077ba81b36da3b028fe36f6c9a7548f4294f50b50c41b603003b5ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:71:95:29:6e:eb:93:33:fa:35:cc:02:56:6c: 91:84:9d:75:ff:ac:d4:b4:b3:71:31:f1:58:63:2e: f1:10:cc:99:7a:9b:37:41:8f:b9:52:f8:8b:02:96: 62:2d:79:6e:2b:4e:a2:39:fe:d5:4b:76:60:61:6d: 2b:7a:0a:44:bc:59:8e:d4:f2:f0:ba:75:d0:dc:6f: da:ac:91:29:02:9e:d2:60:1c:e9:f1:13:14:09:76: 79:fe:37:92:ea:8c:fd:0d:66:bb:4b:3f:88:f5:e0: 3c:79:dc:cc:c8:84:a7:91:2f:c7:6a:98:d5:9f:fd: 73:cf:76:ea:f5:9b:48:bb:5b:4a:b2:c9:6a:4f:df: 0d:5d:d6:0a:aa:f9:1f:14:87:fb:a2:db:1d:1b:66: ab:7c:ee:a1:c9:3b:c5:89:07:94:b1:c6:c0:48:e4: 9d:9b:33:7a:e3:02:35:f4:d7:6c:e1:4b:ef:a7:81: 4e:c0:27:e6:8e:d8:69:ee:b9:24:f9:8f:1b:48:83: 06:77:16:e4:b1:6d:4a:11:c8:93:73:8f:51:a2:61: 96:a1:eb:db:f2:09:7a:dc:d9:df:52:18:9c:92:2a: 4f:17:22:da:cb:5c:bd:c0:e0:8e:9a:90:90:11:50: 45:92:c4:d3:d1:df:b6:32:17:e1:27:63:cc:c0:7b: ea:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:9C:1D:A9:61:79:79:FF:9A:7E:53:5A:A1:A0:CF:C9:0F:58:FF:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c288c187-a311-482f-a404-3061061e705c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f12:400::/38 Signature Algorithm: sha256WithRSAEncryption 22:75:e6:13:1f:cd:80:7c:cd:e2:4d:e1:a2:0a:05:3d:bf:c0: 92:a1:ed:c8:a2:38:45:16:9f:57:c7:2b:7d:18:20:fd:cc:aa: 72:bb:03:70:df:16:5f:ef:2a:00:7a:31:d6:60:75:ca:b4:a5: 92:56:c0:46:24:2e:9d:e7:cd:20:0f:2d:56:c9:3e:67:c8:f5: 1a:9a:8a:e1:e5:75:86:08:23:de:29:85:73:d0:e3:9d:e1:f8: 2c:7b:a5:b7:14:09:0d:4c:f1:7d:b4:85:d7:f5:ce:e5:3c:7b: cb:8b:bd:c7:50:03:7d:5e:93:8a:96:1a:09:59:2a:33:d8:19: 32:f5:26:8c:14:b5:a4:ad:df:7f:c5:c3:f8:22:7c:ff:d5:8f: 82:3b:6d:d8:60:ef:af:fa:94:87:95:20:c3:1b:74:04:57:da: b7:5f:76:53:ca:42:65:39:39:ba:4b:89:b6:9f:52:e5:5c:61: 93:97:36:03:98:b6:33:70:7b:f0:8d:50:35:fc:49:86:b2:3c: f2:37:81:64:eb:46:d6:9f:be:04:58:bf:29:e2:49:56:4a:ec: 69:82:16:9e:24:87:a8:97:fc:8f:7a:5b:75:ea:2c:69:b0:cc: ab:d3:58:c3:58:eb:db:07:71:2a:3a:1a:d7:ab:0a:8f:f6:42: 48:bd:9b:80 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULFyH+QMwnwG7GZFl9izAJn1jqYcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTU0MDQ4WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjViMDhiNTAwNzdiYTgxYjM2ZGEzYjAyOGZlMzZmNmM5 YTc1NDhmNDI5NGY1MGI1MGM0MWI2MDMwMDNiNWVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4cZUpbuuTM/o1zAJWbJGEnXX/rNS0s3Ex8VhjLvEQzJl6 mzdBj7lS+IsClmIteW4rTqI5/tVLdmBhbSt6CkS8WY7U8vC6ddDcb9qskSkCntJg HOnxExQJdnn+N5LqjP0NZrtLP4j14Dx53MzIhKeRL8dqmNWf/XPPdur1m0i7W0qy yWpP3w1d1gqq+R8Uh/ui2x0bZqt87qHJO8WJB5SxxsBI5J2bM3rjAjX012zhS++n gU7AJ+aO2GnuuST5jxtIgwZ3FuSxbUoRyJNzj1GiYZah69vyCXrc2d9SGJySKk8X ItrLXL3A4I6akJARUEWSxNPR37YyF+EnY8zAe+qLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUy5wdqWF5ef+aflNaoaDPyQ9Y/x4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyODhjMTg3LWEzMTEtNDgyZi1hNDA0LTMwNjEwNjFlNzA1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8SBDANBgkqhkiG9w0BAQsFAAOCAQEAInXmEx/NgHzN4k3hogoFPb/A kqHtyKI4RRafV8crfRgg/cyqcrsDcN8WX+8qAHox1mB1yrSlklbARiQunefNIA8t Vsk+Z8j1GpqK4eV1hggj3imFc9DjneH4LHultxQJDUzxfbSF1/XO5Tx7y4u9x1AD fV6TipYaCVkqM9gZMvUmjBS1pK3ff8XD+CJ8/9WPgjtt2GDvr/qUh5Ugwxt0BFfa t192U8pCZTk5ukuJtp9S5Vxhk5c2A5i2M3B78I1QNfxJhrI88jeBZOtG1p++BFi/ KeJJVkrsaYIWniSHqJf8j3pbdeosabDMq9NYw1jr2wdxKjoa16sKj/ZCSL2bgA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:19:46 2025 by rpki-client