$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa File: d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa (raw, json) Hash identifier: IPBa0CkxJ68TQfWUh/TGjAOzunF9/ftrxP1IahMtRWQ= Subject key identifier: 3C:52:2C:BF:A3:8A:FE:36:7C:A0:21:28:FC:33:5B:83:12:19:E7:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 664B717EC9EC9A89C1A4145C77C8B0BFE130B800 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa Signing time: Tue 26 Aug 2025 16:21:10 +0000 ROA not before: Tue 26 Aug 2025 16:21:10 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:8030::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:4b:71:7e:c9:ec:9a:89:c1:a4:14:5c:77:c8:b0:bf:e1:30:b8:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 16:21:10 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=7f04e0ea18b1e268378e7926d78c2a56c8f5483d86dd09ed73a4be8037fbb611, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:63:e0:8f:8c:a6:78:53:ec:ef:11:a1:24:43: ff:f4:09:77:f1:30:b0:4b:32:de:f8:30:b9:17:69: 69:9f:be:ae:d9:2c:07:a1:92:51:e4:af:13:d7:cd: ed:6b:36:9a:51:07:8f:1f:f5:ac:9a:62:39:29:4c: a5:35:7b:c9:d2:84:9c:dd:5c:ff:60:a2:5a:d5:a6: f6:31:7a:e6:a9:76:86:83:fd:4d:41:ef:87:0c:73: 7e:e9:37:70:94:b3:b0:a1:b4:e4:87:64:b6:be:f3: 3a:98:73:ab:d8:75:e0:a9:66:5d:91:77:fa:f8:80: 42:b1:62:2e:75:08:06:0d:b6:d9:b2:b7:13:8a:ab: 48:58:7e:5a:4d:1a:f5:ad:bb:b4:19:a6:33:88:5d: 8a:2e:20:38:fc:6f:7e:6d:d7:c6:3b:63:a3:5b:88: 67:ed:b6:34:ce:73:55:fb:86:e2:d9:ba:74:ec:66: df:5b:a0:a7:7d:ab:28:12:63:51:ec:4b:db:45:24: 1a:97:80:e0:d8:1e:9e:e1:19:9c:22:af:94:57:f7: a5:f6:3c:a6:3f:bb:b7:60:52:53:42:1e:30:af:57: 59:c4:d7:15:bf:01:51:a7:a7:b1:bd:f9:89:94:8c: 36:87:48:bc:fc:d8:34:8d:e7:5f:a7:8c:7b:03:28: b9:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:52:2C:BF:A3:8A:FE:36:7C:A0:21:28:FC:33:5B:83:12:19:E7:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d3c65ce9-9938-4d9b-ad5f-3eb7cfd85984.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8030::/48 Signature Algorithm: sha256WithRSAEncryption 3c:b9:c7:02:ec:90:03:3f:17:a7:94:94:6a:27:86:f8:b0:0f: 61:41:93:df:2b:c3:8c:24:37:87:54:b6:7e:0c:5d:6e:c9:a0: 6c:fb:72:23:d9:f5:38:1b:4e:13:d2:ef:a0:26:37:2d:4a:16: 65:30:b3:2b:7b:eb:2b:52:9d:7c:30:28:70:fc:79:df:cf:fd: 62:84:f2:19:a1:18:67:88:80:c0:39:61:ca:fd:a6:7f:ba:82: d2:10:0d:be:c9:3b:00:0e:e6:e1:dc:54:08:2e:50:04:46:1e: 0c:dc:d3:61:08:2e:18:28:20:c7:a3:92:ca:77:42:87:64:3b: f5:02:d1:cd:13:e5:9b:76:13:8b:6c:c8:5b:55:72:e0:1f:f3: 02:1d:fb:9f:c4:87:70:e5:76:9f:24:2f:12:bc:68:ab:49:c5: 6a:2b:f0:6f:b1:2f:7d:7b:7e:a0:16:c1:bf:24:98:7b:d7:87: 83:26:40:a7:96:f3:55:55:c0:92:87:d2:9a:6d:81:2f:fe:f4: 81:16:43:41:25:06:9e:0b:30:d0:2c:ab:9f:da:7a:0f:c7:1f: 5e:e0:04:f6:7c:36:d2:70:42:89:cf:99:99:f4:68:05:f7:29: 9d:91:c7:69:37:d7:b1:3b:53:1e:3c:a7:6d:f2:2e:55:db:50: 18:1b:c0:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZktxfsnsmonBpBRcd8iwv+EwuAAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTYyMTEwWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjA0ZTBlYTE4YjFlMjY4Mzc4ZTc5MjZkNzhjMmE1NmM4 ZjU0ODNkODZkZDA5ZWQ3M2E0YmU4MDM3ZmJiNjExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWY+CPjKZ4U+zvEaEkQ//0CXfxMLBLMt74MLkXaWmfvq7Z LAehklHkrxPXze1rNppRB48f9ayaYjkpTKU1e8nShJzdXP9golrVpvYxeuapdoaD /U1B74cMc37pN3CUs7ChtOSHZLa+8zqYc6vYdeCpZl2Rd/r4gEKxYi51CAYNttmy txOKq0hYflpNGvWtu7QZpjOIXYouIDj8b35t18Y7Y6NbiGfttjTOc1X7huLZunTs Zt9boKd9qygSY1HsS9tFJBqXgODYHp7hGZwir5RX96X2PKY/u7dgUlNCHjCvV1nE 1xW/AVGnp7G9+YmUjDaHSLz82DSN51+njHsDKLmtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUPFIsv6OK/jZ8oCEo/DNbgxIZ51AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzYzY1Y2U5LTk5MzgtNGQ5Yi1hZDVmLTNlYjdjZmQ4NTk4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgDAwDQYJKoZIhvcNAQELBQADggEBADy5xwLskAM/F6eUlGonhviw D2FBk98rw4wkN4dUtn4MXW7JoGz7ciPZ9TgbThPS76AmNy1KFmUwsyt76ytSnXww KHD8ed/P/WKE8hmhGGeIgMA5Ycr9pn+6gtIQDb7JOwAO5uHcVAguUARGHgzc02EI LhgoIMejksp3QodkO/UC0c0T5Zt2E4tsyFtVcuAf8wId+5/Eh3Dldp8kLxK8aKtJ xWor8G+xL317fqAWwb8kmHvXh4MmQKeW81VVwJKH0pptgS/+9IEWQ0ElBp4LMNAs q5/aeg/HH17gBPZ8NtJwQonPmZn0aAX3KZ2Rx2k317E7Ux48p23yLlXbUBgbwLg= -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:51 2025 by rpki-client