$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c817374e-a90b-4403-98c2-a40a1245a667.roa File: c817374e-a90b-4403-98c2-a40a1245a667.roa (raw, json) Hash identifier: jY3GCyeqHVK1DdGfAsyqC7WVl9bdl3EL5v4a2Jx6opI= Subject key identifier: BE:A3:A0:9E:F5:B9:DD:D8:1E:5B:A5:71:14:5A:31:88:FE:76:25:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DC8E6C13E75589553FA4BCEE462297B200BA7C0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c817374e-a90b-4403-98c2-a40a1245a667.roa Signing time: Wed 27 Aug 2025 21:06:55 +0000 ROA not before: Wed 27 Aug 2025 21:06:55 +0000 ROA not after: Wed 01 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:c8:e6:c1:3e:75:58:95:53:fa:4b:ce:e4:62:29:7b:20:0b:a7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 27 21:06:55 2025 GMT Not After : Oct 1 23:59:59 2025 GMT Subject: serialNumber=eef536012883693c936599f42b5a425847965d7b1cc32cb71874098767b53919, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:a1:be:f2:35:b6:f8:a5:8c:d1:68:b7:e6:5d: 6e:d6:3d:aa:e7:c9:b3:94:3e:03:96:72:18:9c:23: 39:f6:fd:5b:79:98:2a:e5:65:6c:e9:5c:cf:9c:f7: eb:80:20:2f:ad:d7:9c:e9:46:90:95:b8:b6:c9:53: 31:be:8f:7c:3a:81:0f:d2:cd:3c:88:fa:54:0a:9b: 89:a9:d6:e0:c3:93:37:e7:c9:03:44:c0:6f:10:09: c9:24:a0:e1:fa:05:26:01:2f:25:b3:da:eb:47:90: ba:3f:81:b6:dc:5d:e1:3e:75:fd:83:b8:84:56:5a: e5:81:1a:45:eb:c6:70:39:2f:88:2b:f3:24:7b:c6: b7:aa:17:38:1d:12:bf:e8:72:16:72:3d:65:21:40: 62:c3:4a:b0:80:3a:9d:9b:df:8d:53:1a:a7:ed:c4: 75:a8:aa:fe:88:e0:19:b9:6c:f9:09:46:2f:af:53: f0:7b:3a:08:65:79:9c:e1:1b:80:16:b5:34:49:01: 4d:20:ec:51:2d:1e:25:d6:33:ba:4a:ce:73:68:29: ed:c2:d1:cb:02:0d:5c:61:cd:ce:8d:5c:f6:63:06: f5:1f:90:0d:cf:fe:2b:98:42:db:5d:22:c0:86:bd: 19:66:73:95:16:bc:23:d1:be:d7:03:00:77:c1:8e: fd:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A3:A0:9E:F5:B9:DD:D8:1E:5B:A5:71:14:5A:31:88:FE:76:25:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c817374e-a90b-4403-98c2-a40a1245a667.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11:c800::/37 Signature Algorithm: sha256WithRSAEncryption bc:b9:a7:a7:b7:16:da:10:b8:d3:60:e8:44:eb:b2:1d:b1:61: 3c:9f:e4:25:3c:3d:ac:1b:19:b9:83:42:ef:77:0c:5d:33:10: be:d8:d3:09:fa:67:e3:c5:84:3f:44:5b:0b:57:bd:2b:a2:01: f6:6f:bc:fd:a4:e0:99:31:04:e6:f1:cc:d3:af:5a:d9:12:dd: 8f:fb:26:77:a1:0a:67:63:87:8f:c8:20:ed:26:07:08:0f:d3: 2c:97:51:cd:14:3b:30:0b:02:b9:96:fe:c9:ee:54:7e:de:90: 0d:83:78:11:a1:e1:68:f8:61:1c:3a:72:3f:45:d2:17:ff:7d: 3c:c9:df:df:d7:49:2e:cc:7e:fb:cf:ad:e6:d2:cc:40:61:22: 55:7f:49:f3:8a:91:b7:85:9c:d6:76:2b:ea:2b:63:1b:c9:b8: ca:f7:aa:cb:2c:23:94:87:3b:89:67:f9:74:56:9b:be:02:6d: 02:51:dd:3f:1d:5f:b0:9d:d9:93:6e:d9:da:f0:28:48:bc:7e: 9c:76:f1:15:32:93:49:ec:8d:65:5a:67:d1:72:fb:f8:4c:52: b0:d1:82:c5:aa:61:38:62:43:62:32:66:b1:96:d3:66:c5:2a: 59:84:c1:c6:89:20:55:e4:1c:fc:a5:4a:dc:72:b0:67:21:d9: 68:b8:ad:1c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULcjmwT51WJVT+kvO5GIpeyALp8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI3MjEwNjU1WhcNMjUxMDAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZWY1MzYwMTI4ODM2OTNjOTM2NTk5ZjQyYjVhNDI1ODQ3 OTY1ZDdiMWNjMzJjYjcxODc0MDk4NzY3YjUzOTE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD1ob7yNbb4pYzRaLfmXW7WParnybOUPgOWchicIzn2/Vt5 mCrlZWzpXM+c9+uAIC+t15zpRpCVuLbJUzG+j3w6gQ/SzTyI+lQKm4mp1uDDkzfn yQNEwG8QCckkoOH6BSYBLyWz2utHkLo/gbbcXeE+df2DuIRWWuWBGkXrxnA5L4gr 8yR7xreqFzgdEr/ochZyPWUhQGLDSrCAOp2b341TGqftxHWoqv6I4Bm5bPkJRi+v U/B7OghleZzhG4AWtTRJAU0g7FEtHiXWM7pKznNoKe3C0csCDVxhzc6NXPZjBvUf kA3P/iuYQttdIsCGvRlmc5UWvCPRvtcDAHfBjv17AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvqOgnvW53dgeW6VxFFoxiP52JVEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4MTczNzRlLWE5MGItNDQwMy05OGMyLWE0MGExMjQ1YTY2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8RyDANBgkqhkiG9w0BAQsFAAOCAQEAvLmnp7cW2hC402DoROuyHbFh PJ/kJTw9rBsZuYNC73cMXTMQvtjTCfpn48WEP0RbC1e9K6IB9m+8/aTgmTEE5vHM 069a2RLdj/smd6EKZ2OHj8gg7SYHCA/TLJdRzRQ7MAsCuZb+ye5Uft6QDYN4EaHh aPhhHDpyP0XSF/99PMnf39dJLsx++8+t5tLMQGEiVX9J84qRt4Wc1nYr6itjG8m4 yveqyywjlIc7iWf5dFabvgJtAlHdPx1fsJ3Zk27Z2vAoSLx+nHbxFTKTSeyNZVpn 0XL7+ExSsNGCxaphOGJDYjJmsZbTZsUqWYTBxokgVeQc/KVK3HKwZyHZaLitHA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:52 2025 by rpki-client