$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2b6e44e-c9f2-449c-99e0-5e66b92216e9.roa File: c2b6e44e-c9f2-449c-99e0-5e66b92216e9.roa (raw, json) Hash identifier: 683Wos8EQWWCftWaxLbddCZuq0/zylAlk0P4i4S9Scc= Subject key identifier: 03:34:83:30:E2:13:00:81:1D:F9:A1:50:31:AC:8A:C3:C0:B7:69:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11FC3C39422CBD0C45CA74D1D57C39779E5B7500 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2b6e44e-c9f2-449c-99e0-5e66b92216e9.roa Signing time: Fri 29 Aug 2025 15:01:05 +0000 ROA not before: Fri 29 Aug 2025 15:01:05 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:fc:3c:39:42:2c:bd:0c:45:ca:74:d1:d5:7c:39:77:9e:5b:75:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:01:05 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=a38ea2dd4476632d8c65ae4b5e9b4de3f484769a426061d5ab8c4e12ccfcd818, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0f:ff:3d:63:fd:ec:84:a0:75:5d:aa:74:61: 40:a3:46:73:8c:66:ae:6e:22:7e:2f:0a:10:fb:06: 64:6e:e2:f3:b7:ef:ef:c6:c8:ab:38:7a:e9:33:ae: 45:22:f6:46:23:d5:24:82:65:15:2c:95:3d:95:c7: 4e:ee:09:54:d7:1b:40:6b:3c:1f:13:8c:f4:b8:45: 1a:86:98:75:6c:3c:ee:8a:08:1e:53:e0:c3:62:9f: c7:e2:d1:b3:5a:f6:e1:0e:15:30:f8:5d:3a:77:60: 75:d4:1d:bf:7a:c4:6c:07:57:99:8a:1e:fa:83:74: 4b:f6:d6:62:94:c3:34:82:42:1f:0c:50:49:9e:0a: ce:7b:b9:a4:d0:ba:5a:ce:aa:58:7a:5b:cd:88:3c: 47:00:99:de:36:b3:74:21:7b:d9:cc:11:b9:b4:16: b8:61:05:57:60:79:3c:d8:0f:36:c2:c6:12:b8:8f: a0:a1:17:69:78:68:63:1d:49:70:da:88:af:04:fd: e2:3a:57:30:5d:51:87:e7:e9:e7:8d:c3:d1:c2:27: c7:96:48:bc:88:3e:c3:af:40:c7:48:af:05:34:84: c9:8f:1f:6d:21:0f:a6:9e:6c:33:dd:49:57:c4:88: dc:6a:58:02:78:14:1b:db:be:86:85:2a:6f:a6:d1: 5f:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:34:83:30:E2:13:00:81:1D:F9:A1:50:31:AC:8A:C3:C0:B7:69:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2b6e44e-c9f2-449c-99e0-5e66b92216e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:2000::/40 Signature Algorithm: sha256WithRSAEncryption 79:eb:30:03:97:bb:a7:75:41:a6:eb:ad:c1:82:89:c0:70:ca: 65:6f:1a:bd:c5:66:41:49:f9:56:bf:33:7d:f8:d0:ec:2b:74: dd:0c:ba:94:4a:15:15:64:21:39:33:9f:83:c5:da:58:89:86: 93:5e:14:53:0d:92:ca:e9:37:37:38:ec:31:79:44:26:56:de: 18:ee:f8:e2:76:49:b0:43:81:15:ed:ac:ae:1a:79:19:a3:19: 3c:1c:22:b2:31:e0:35:03:6f:ee:c5:80:95:a0:67:0c:f7:5b: 1f:0c:41:d9:a7:79:f0:8d:3a:08:3e:4f:f1:a8:b3:c3:b4:47: 48:6a:53:bb:8f:04:12:8d:a8:a7:d8:3b:fe:e5:fd:85:56:2d: c7:be:95:5e:5c:ad:f6:74:b9:aa:92:b1:82:62:b7:cd:a5:b8: 9e:03:4c:e7:dd:ad:2d:aa:36:7f:14:e1:44:7d:14:a2:12:ea: 5b:c6:09:4c:f7:90:20:69:c8:5e:ef:b0:4f:66:2b:95:71:b3: ec:b5:b9:72:58:95:5b:3f:97:92:a3:48:a1:a8:39:dd:0e:43: 70:59:ef:da:41:55:7a:87:ad:ee:81:4a:d4:b4:51:a9:11:4c: 3f:3c:55:3a:80:4c:a2:fe:7c:5b:3e:e4:36:5c:5e:ab:19:51: db:f1:67:b4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEfw8OUIsvQxFynTR1Xw5d55bdQAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUwMTA1WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzhlYTJkZDQ0NzY2MzJkOGM2NWFlNGI1ZTliNGRlM2Y0 ODQ3NjlhNDI2MDYxZDVhYjhjNGUxMmNjZmNkODE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFD/89Y/3shKB1Xap0YUCjRnOMZq5uIn4vChD7BmRu4vO3 7+/GyKs4eukzrkUi9kYj1SSCZRUslT2Vx07uCVTXG0BrPB8TjPS4RRqGmHVsPO6K CB5T4MNin8fi0bNa9uEOFTD4XTp3YHXUHb96xGwHV5mKHvqDdEv21mKUwzSCQh8M UEmeCs57uaTQulrOqlh6W82IPEcAmd42s3Qhe9nMEbm0FrhhBVdgeTzYDzbCxhK4 j6ChF2l4aGMdSXDaiK8E/eI6VzBdUYfn6eeNw9HCJ8eWSLyIPsOvQMdIrwU0hMmP H20hD6aebDPdSVfEiNxqWAJ4FBvbvoaFKm+m0V/XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUAzSDMOITAIEd+aFQMayKw8C3ad0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyYjZlNDRlLWM5ZjItNDQ5Yy05OWUwLTVlNjZiOTIyMTZlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wIDANBgkqhkiG9w0BAQsFAAOCAQEAeeswA5e7p3VBpuutwYKJwHDK ZW8avcVmQUn5Vr8zffjQ7Ct03Qy6lEoVFWQhOTOfg8XaWImGk14UUw2Syuk3Nzjs MXlEJlbeGO744nZJsEOBFe2srhp5GaMZPBwisjHgNQNv7sWAlaBnDPdbHwxB2ad5 8I06CD5P8aizw7RHSGpTu48EEo2op9g7/uX9hVYtx76VXlyt9nS5qpKxgmK3zaW4 ngNM592tLao2fxThRH0UohLqW8YJTPeQIGnIXu+wT2YrlXGz7LW5cliVWz+XkqNI oag53Q5DcFnv2kFVeoet7oFK1LRRqRFMPzxVOoBMov58Wz7kNlxeqxlR2/FntA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:19 2025 by rpki-client