$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb63b58d-b028-4e5a-95f9-5d4ca97366d5.roa File: fb63b58d-b028-4e5a-95f9-5d4ca97366d5.roa (raw, json) Hash identifier: T/PBVpu8R9M5Ppn+ahRtSvGY+DGsbsB1XaZV+1PYnQ8= Subject key identifier: 7E:D8:29:5C:A5:3E:4F:D1:65:E5:85:2C:C6:98:55:91:3A:C0:AB:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FB890556955F9C90699CDEAA0862AC9E53848BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb63b58d-b028-4e5a-95f9-5d4ca97366d5.roa Signing time: Tue 26 Aug 2025 15:32:12 +0000 ROA not before: Tue 26 Aug 2025 15:32:12 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:b8:90:55:69:55:f9:c9:06:99:cd:ea:a0:86:2a:c9:e5:38:48:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:32:12 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=f38dc3ad0efe8ac27c8ee958dc876e80a46d9263e1c7ba167bbcaf2b3581061b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:f5:03:11:80:bc:15:a1:2a:b9:27:da:e9:1c: 54:b3:d5:d1:0d:92:ab:30:67:2b:75:17:eb:52:6e: 5b:85:61:e1:96:1e:79:6c:16:88:ef:ab:5d:2b:71: d5:52:eb:8a:4a:91:8f:a3:a8:2c:5e:c5:42:e2:f7: 8b:6a:86:ae:47:16:f5:3b:bd:46:19:26:0f:8f:84: 2d:1d:3a:cc:0d:a4:5a:fa:a2:3e:00:3d:9e:c0:02: d8:a9:49:a8:f4:b6:71:14:cd:91:2e:14:00:fb:11: 9c:e2:30:f8:2c:ca:2b:5d:4c:cf:60:12:6c:48:9f: a5:80:72:3b:74:94:1e:16:02:e2:3b:c7:8a:23:10: b9:0d:bc:27:b5:d5:af:a1:95:cb:29:80:0c:ac:b2: c6:a4:b6:76:6e:34:f0:ea:14:db:b7:88:34:fe:2a: b9:6b:d4:0e:1c:8e:5e:cb:7d:e2:92:b3:45:12:c6: dd:2d:4d:e3:7f:db:31:22:f5:50:a9:bd:e1:5b:a1: a0:55:1a:8a:cb:5c:4f:bd:4a:c1:5d:af:33:92:1d: b6:26:4e:e0:53:42:6f:58:e8:4a:26:94:6e:da:c9: 81:a1:43:dd:b9:bd:6a:4f:24:18:28:31:f0:d5:c5: 1b:34:fb:86:15:07:2c:c3:04:8c:f1:1f:26:64:17: 21:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D8:29:5C:A5:3E:4F:D1:65:E5:85:2C:C6:98:55:91:3A:C0:AB:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fb63b58d-b028-4e5a-95f9-5d4ca97366d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:80a0::/48 Signature Algorithm: sha256WithRSAEncryption d0:31:e6:54:ec:1c:6f:41:16:ac:fb:50:54:ea:b7:74:40:74: 3f:65:ab:a9:d1:3a:36:3e:6d:6b:12:fe:fc:52:e5:dd:1e:70: 5c:8f:f9:91:2e:e4:4e:94:09:49:6e:fe:1b:e3:d4:3c:31:ce: 11:2b:8a:51:fa:3a:2d:4d:a8:88:e3:7f:7e:d0:27:d7:62:2a: 28:87:4c:02:34:1f:b6:79:5a:0e:9f:dc:4c:ae:1a:b1:76:4e: 66:f2:a9:19:8e:bb:61:4a:58:ff:6c:c7:c5:2d:dc:35:36:78: af:5b:23:bb:11:ce:f6:cf:e0:22:cf:8b:47:ec:47:0f:1d:67: 93:0c:f5:2f:bf:9d:e6:ab:3b:28:b5:eb:fd:94:3d:59:71:93: 6e:44:b1:be:ba:61:e1:4b:a1:7e:22:79:ec:2a:bc:3f:33:38: 12:e0:b8:22:1f:e5:ef:6c:7f:b0:85:fa:74:02:d4:0c:e7:ae: a5:97:2d:cb:84:ce:89:f5:1e:07:aa:32:69:bb:59:88:47:06: 34:f4:61:95:4d:fa:91:2f:04:9b:bf:59:47:a2:a3:d9:7d:f8: ac:17:13:5f:7c:2e:11:4c:ea:97:d6:b2:81:65:2f:c2:39:a1: 72:e1:6a:74:70:b1:18:75:a9:c2:5e:06:38:48:fc:71:b4:bb: 0b:74:29:0e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUL7iQVWlV+ckGmc3qoIYqyeU4SLwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTUzMjEyWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzhkYzNhZDBlZmU4YWMyN2M4ZWU5NThkYzg3NmU4MGE0 NmQ5MjYzZTFjN2JhMTY3YmJjYWYyYjM1ODEwNjFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa9QMRgLwVoSq5J9rpHFSz1dENkqswZyt1F+tSbluFYeGW HnlsFojvq10rcdVS64pKkY+jqCxexULi94tqhq5HFvU7vUYZJg+PhC0dOswNpFr6 oj4APZ7AAtipSaj0tnEUzZEuFAD7EZziMPgsyitdTM9gEmxIn6WAcjt0lB4WAuI7 x4ojELkNvCe11a+hlcspgAysssaktnZuNPDqFNu3iDT+Krlr1A4cjl7LfeKSs0US xt0tTeN/2zEi9VCpveFboaBVGorLXE+9SsFdrzOSHbYmTuBTQm9Y6EomlG7ayYGh Q925vWpPJBgoMfDVxRs0+4YVByzDBIzxHyZkFyH1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUftgpXKU+T9Fl5YUsxphVkTrAqyUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiNjNiNThkLWIwMjgtNGU1YS05NWY5LTVkNGNhOTczNjZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gKAwDQYJKoZIhvcNAQELBQADggEBANAx5lTsHG9BFqz7UFTqt3RA dD9lq6nROjY+bWsS/vxS5d0ecFyP+ZEu5E6UCUlu/hvj1DwxzhErilH6Oi1NqIjj f37QJ9diKiiHTAI0H7Z5Wg6f3EyuGrF2TmbyqRmOu2FKWP9sx8Ut3DU2eK9bI7sR zvbP4CLPi0fsRw8dZ5MM9S+/nearOyi16/2UPVlxk25Esb66YeFLoX4ieewqvD8z OBLguCIf5e9sf7CF+nQC1AznrqWXLcuEzon1HgeqMmm7WYhHBjT0YZVN+pEvBJu/ WUeio9l9+KwXE198LhFM6pfWsoFlL8I5oXLhanRwsRh1qcJeBjhI/HG0uwt0KQ4= -----END CERTIFICATE-----Generated at Sat Sep 6 14:08:47 2025 by rpki-client