$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fad9b51e-2366-4de0-ba27-7ee4fdbaab2c.roa File: fad9b51e-2366-4de0-ba27-7ee4fdbaab2c.roa (raw, json) Hash identifier: +zy+pWMkUJJoyf3Kg333C3kmfvhBXa4XwsQMzfOTzvs= Subject key identifier: 9D:4F:1B:E8:FB:52:BC:4C:E4:B3:A3:89:7F:19:58:93:AE:03:1F:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33566E95ECA5C54B4604E8C0201B6D2B6D0F4B5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fad9b51e-2366-4de0-ba27-7ee4fdbaab2c.roa Signing time: Fri 29 Aug 2025 15:41:01 +0000 ROA not before: Fri 29 Aug 2025 15:41:01 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1a:4400::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:56:6e:95:ec:a5:c5:4b:46:04:e8:c0:20:1b:6d:2b:6d:0f:4b:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:41:01 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=0a13cde7c6f0b7f8c19d09e513054853cd6618ab34043b961ca9057e7a8cc618, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:af:1c:62:b6:e0:fc:d6:01:ce:f4:5a:cb:da: 54:33:a1:77:a4:ea:0d:8d:bb:a2:01:08:bb:29:13: a8:e1:24:7a:91:74:8a:09:2f:43:2b:02:51:ec:5f: 03:af:c0:5d:92:d3:9d:0b:2c:3d:b8:3b:cb:c3:eb: 88:4a:8f:e6:a6:ee:38:44:8a:27:00:eb:b9:e0:5c: b3:94:62:21:2f:97:0d:4c:ca:8c:b4:be:79:b8:34: b4:47:13:01:0d:26:ce:f1:31:32:e5:d5:df:c3:74: 80:16:51:71:b7:f8:c3:ea:ac:47:c6:38:99:ae:b0: 43:ee:df:16:90:6a:f8:44:0f:0f:33:48:7d:04:a7: da:a1:3d:4e:47:37:54:00:9b:cb:33:40:99:ce:ba: f6:1b:de:9a:38:63:8f:ab:41:5a:1a:ce:e5:15:e5: 29:40:92:1f:db:c6:30:ce:bb:c0:c0:7b:6b:e2:16: 9f:07:e9:24:df:ed:e7:b6:a6:f6:56:56:41:6d:0b: 14:e0:65:eb:22:81:c3:82:45:82:df:2b:c6:1f:c6: 36:7d:49:cf:d7:49:75:f7:cf:f1:31:28:a4:12:4e: 23:34:59:d4:f8:e4:47:e9:66:fa:01:bb:5d:61:5a: cd:11:92:7d:d2:68:12:67:5b:bf:11:45:aa:f3:a4: 23:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4F:1B:E8:FB:52:BC:4C:E4:B3:A3:89:7F:19:58:93:AE:03:1F:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fad9b51e-2366-4de0-ba27-7ee4fdbaab2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1a:4400::/38 Signature Algorithm: sha256WithRSAEncryption 8a:ef:e0:cc:97:89:7c:3e:44:f1:38:0a:8d:08:e8:85:dc:23: 14:9a:0b:99:b7:8c:5d:ba:96:f0:e3:19:6c:c4:12:14:1d:b3: 39:7c:85:9c:b6:85:76:11:e6:96:cd:c0:03:70:88:fa:e6:61: 56:f9:f8:ae:48:64:0b:ab:df:65:12:67:11:69:0e:3d:61:e8: ab:fc:09:20:bc:f5:8a:45:18:eb:32:00:9a:f6:22:ee:c2:9d: f8:a3:96:68:dc:e7:cd:cf:6a:dc:65:ea:bf:97:04:5f:af:69: a9:7d:05:c5:db:9f:dc:82:1e:ac:08:fc:20:d7:8a:60:2c:aa: 48:91:8c:12:e1:35:51:81:14:53:3c:a3:b2:40:f1:2a:a0:ee: f0:c9:77:e1:1c:d6:63:38:6a:fe:a7:a2:6b:25:88:b3:53:b3: 36:1f:be:08:1e:2f:42:7b:5a:88:29:12:68:a6:9e:7c:b7:c2: 88:7e:a3:74:94:ad:c0:de:78:fe:8a:9e:ef:05:57:12:c5:e3: 21:37:12:4f:9f:a3:f4:67:06:8c:84:ff:bd:2a:09:09:82:87: 5b:61:af:05:35:d5:61:e9:c0:d7:51:31:48:0f:1e:fc:d3:87: 8a:c8:57:e0:a9:52:2c:6b:1c:35:22:cf:bf:cf:a0:b9:cd:1a: 63:8b:43:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM1ZuleylxUtGBOjAIBttK20PS1swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTU0MTAxWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTEzY2RlN2M2ZjBiN2Y4YzE5ZDA5ZTUxMzA1NDg1M2Nk NjYxOGFiMzQwNDNiOTYxY2E5MDU3ZTdhOGNjNjE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4rxxituD81gHO9FrL2lQzoXek6g2Nu6IBCLspE6jhJHqR dIoJL0MrAlHsXwOvwF2S050LLD24O8vD64hKj+am7jhEiicA67ngXLOUYiEvlw1M yoy0vnm4NLRHEwENJs7xMTLl1d/DdIAWUXG3+MPqrEfGOJmusEPu3xaQavhEDw8z SH0Ep9qhPU5HN1QAm8szQJnOuvYb3po4Y4+rQVoazuUV5SlAkh/bxjDOu8DAe2vi Fp8H6STf7ee2pvZWVkFtCxTgZesigcOCRYLfK8YfxjZ9Sc/XSXX3z/ExKKQSTiM0 WdT45EfpZvoBu11hWs0Rkn3SaBJnW78RRarzpCN1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnU8b6PtSvEzks6OJfxlYk64DH8AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZhZDliNTFlLTIzNjYtNGRlMC1iYTI3LTdlZTRmZGJhYWIyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8aRDANBgkqhkiG9w0BAQsFAAOCAQEAiu/gzJeJfD5E8TgKjQjohdwj FJoLmbeMXbqW8OMZbMQSFB2zOXyFnLaFdhHmls3AA3CI+uZhVvn4rkhkC6vfZRJn EWkOPWHoq/wJILz1ikUY6zIAmvYi7sKd+KOWaNznzc9q3GXqv5cEX69pqX0Fxduf 3IIerAj8INeKYCyqSJGMEuE1UYEUUzyjskDxKqDu8Ml34RzWYzhq/qeiayWIs1Oz Nh++CB4vQntaiCkSaKaefLfCiH6jdJStwN54/oqe7wVXEsXjITcST5+j9GcGjIT/ vSoJCYKHW2GvBTXVYenA11ExSA8e/NOHishX4KlSLGscNSLPv8+guc0aY4tDfw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:22 2025 by rpki-client