$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5ede365-047d-4c5f-a97d-dee6ba58b110.roa File: f5ede365-047d-4c5f-a97d-dee6ba58b110.roa (raw, json) Hash identifier: bnv9YTZESWhDG68OrMMjF1xBy81M+HDl8oduUq60TI4= Subject key identifier: DB:9F:DC:C6:74:56:8F:D5:85:42:97:34:4C:75:4B:C8:7B:45:A4:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B8B0FDCFB1D82FB46B0D82A2604D6E31A993F83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5ede365-047d-4c5f-a97d-dee6ba58b110.roa Signing time: Fri 29 Aug 2025 15:40:23 +0000 ROA not before: Fri 29 Aug 2025 15:40:23 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:8b:0f:dc:fb:1d:82:fb:46:b0:d8:2a:26:04:d6:e3:1a:99:3f:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:40:23 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=b15462f86e61c8a9f3e0e5c440b6c451c81d4b1928b2845c6d5049fa21a0bbb0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:c7:c4:4b:27:de:76:d4:15:f7:ff:7f:95:bc: ab:e9:bc:c9:e3:91:75:8b:29:2d:71:ea:2e:f1:1b: 6c:c3:d6:17:e5:9d:c4:13:a7:85:ea:af:f3:74:74: bf:e8:3c:f8:1e:28:2b:4c:cf:88:b8:69:92:e6:fe: 00:a1:49:87:2f:a6:17:44:9d:55:b3:31:36:c5:0c: 26:c8:40:d9:7d:6b:c0:41:c1:fe:be:32:56:43:82: ce:20:fa:41:22:c6:ce:54:ea:c2:8c:83:87:04:b5: 59:ed:b7:6f:79:38:b3:85:fc:ec:56:c2:85:b5:e2: e1:25:44:ad:dd:28:0e:ab:37:6a:37:8b:f6:77:23: 2b:2a:8f:4d:69:10:72:2d:ec:16:e7:d8:f0:72:67: aa:63:b4:67:4a:5a:14:c6:24:cc:5c:7d:c1:9f:bb: 9e:dd:29:80:37:d0:dd:04:d0:41:6f:e3:5a:47:16: e5:9e:d1:be:e7:eb:ac:b2:dd:c8:0e:42:2d:5e:a8: 66:d9:00:04:f1:f0:81:b9:44:33:c8:1e:bb:11:be: 57:23:00:d6:28:72:a4:7c:ae:f7:b4:40:35:61:76: f6:d9:28:79:d5:59:54:f7:cc:e5:fd:29:52:88:cd: 79:b9:05:e9:86:ee:9d:32:3b:0f:b3:bd:80:ac:69: cf:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9F:DC:C6:74:56:8F:D5:85:42:97:34:4C:75:4B:C8:7B:45:A4:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f5ede365-047d-4c5f-a97d-dee6ba58b110.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4400::/38 Signature Algorithm: sha256WithRSAEncryption 02:ff:fe:f1:b5:42:8a:6f:3f:35:0d:cf:e9:03:cb:c6:b7:a0: ef:fe:42:d7:99:4e:fe:9e:56:2e:8f:fc:e0:37:25:4f:b7:5e: d5:97:a6:38:64:eb:8d:d4:53:7b:bd:12:70:aa:5e:b1:90:43: 5b:f6:aa:40:0b:25:46:cb:65:6d:9a:80:76:89:3e:a8:d3:5d: 6d:90:98:45:af:22:02:48:68:5c:6e:b7:0b:d6:d1:66:08:a8: 54:61:59:10:8f:65:da:b8:36:07:a3:22:24:16:f8:e1:a1:02: a0:00:32:95:5c:d3:ee:35:9b:7e:cb:83:09:be:3d:5c:2e:65: 3c:0b:bf:fc:47:57:39:00:c6:18:d9:0b:4a:a1:b0:25:bd:9a: 16:8f:31:15:3d:d8:e4:16:0f:7e:1b:54:3b:bc:ee:ef:3b:dc: 9b:5a:7d:f0:aa:b8:ed:ba:1c:9a:62:56:47:f5:84:67:22:3b: 46:77:e9:24:16:7c:ce:a4:f2:ff:e5:2c:c6:b0:f2:9e:63:34: fd:db:93:06:ec:f2:a4:7f:a7:80:7b:61:06:0c:9c:01:7b:b3: c4:0c:94:72:cb:30:ee:2a:9f:21:8e:d6:a6:c7:26:57:bb:f9: b9:27:28:ea:82:c3:3e:10:27:0c:4b:2b:d5:c1:ff:95:f7:84: 65:38:61:db -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUO4sP3PsdgvtGsNgqJgTW4xqZP4MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTU0MDIzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTU0NjJmODZlNjFjOGE5ZjNlMGU1YzQ0MGI2YzQ1MWM4 MWQ0YjE5MjhiMjg0NWM2ZDUwNDlmYTIxYTBiYmIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbx8RLJ9521BX3/3+VvKvpvMnjkXWLKS1x6i7xG2zD1hfl ncQTp4Xqr/N0dL/oPPgeKCtMz4i4aZLm/gChSYcvphdEnVWzMTbFDCbIQNl9a8BB wf6+MlZDgs4g+kEixs5U6sKMg4cEtVntt295OLOF/OxWwoW14uElRK3dKA6rN2o3 i/Z3Iysqj01pEHIt7Bbn2PByZ6pjtGdKWhTGJMxcfcGfu57dKYA30N0E0EFv41pH FuWe0b7n66yy3cgOQi1eqGbZAATx8IG5RDPIHrsRvlcjANYocqR8rve0QDVhdvbZ KHnVWVT3zOX9KVKIzXm5BemG7p0yOw+zvYCsac8hAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU25/cxnRWj9WFQpc0THVLyHtFpCEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y1ZWRlMzY1LTA0N2QtNGM1Zi1hOTdkLWRlZTZiYTU4YjExMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8XRDANBgkqhkiG9w0BAQsFAAOCAQEAAv/+8bVCim8/NQ3P6QPLxreg 7/5C15lO/p5WLo/84DclT7de1ZemOGTrjdRTe70ScKpesZBDW/aqQAslRstlbZqA dok+qNNdbZCYRa8iAkhoXG63C9bRZgioVGFZEI9l2rg2B6MiJBb44aECoAAylVzT 7jWbfsuDCb49XC5lPAu//EdXOQDGGNkLSqGwJb2aFo8xFT3Y5BYPfhtUO7zu7zvc m1p98Kq47bocmmJWR/WEZyI7RnfpJBZ8zqTy/+UsxrDynmM0/duTBuzypH+ngHth BgycAXuzxAyUcssw7iqfIY7WpscmV7v5uSco6oLDPhAnDEsr1cH/lfeEZThh2w== -----END CERTIFICATE-----Generated at Sat Sep 6 16:40:56 2025 by rpki-client