$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa File: fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa (raw, json) Hash identifier: cijZr7il+RWjusd5FzpBRe5J32ZzC03hjZFIgCbwLow= Subject key identifier: 2B:E1:EB:E5:3F:28:DB:8A:66:2A:88:35:1B:8A:EE:A4:B1:0E:A4:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04D4AE6411BE964755FA4752D87EBD1C3439D3B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa Signing time: Mon 01 Sep 2025 15:21:28 +0000 ROA not before: Mon 01 Sep 2025 15:21:28 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 08 Sep 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d4:ae:64:11:be:96:47:55:fa:47:52:d8:7e:bd:1c:34:39:d3:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Sep 1 15:21:28 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=52458adccfa1f7cafaf96fe23369988a81838c0eeb9d450ec1500383a4a4f0cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9e:11:14:db:f0:13:0a:85:3c:a9:0b:4f:4c: 0d:47:50:66:11:9f:dd:a7:7d:7c:aa:0b:b9:08:b9: 91:3c:30:a2:87:13:33:9d:71:f5:89:70:31:8b:8f: 0b:9f:dd:ce:de:15:06:3e:05:15:35:41:2c:68:ea: d9:a9:98:3e:44:ca:f1:9d:57:fe:5a:4b:c2:93:0e: f5:c5:51:49:01:91:01:1f:a5:23:68:ac:97:f4:58: 4f:fe:70:58:97:19:7b:f5:78:07:9c:c9:a4:69:39: de:9f:85:2b:13:17:34:ae:b2:44:6a:e6:6f:c7:24: d1:2d:2d:9b:1c:2e:36:91:5f:a8:70:ff:22:47:8b: c4:c0:8c:f7:62:2a:7e:78:7c:a0:a9:ed:0c:63:56: 77:48:8a:40:0b:d6:79:5a:a7:23:71:9b:ad:ac:fa: a7:55:f2:73:d2:cc:16:4c:75:93:90:65:28:47:2b: 7d:85:c1:e2:0f:71:4a:c0:39:ee:5a:8b:e0:3b:06: 43:16:a5:6a:df:d9:72:84:5c:9d:a8:fb:76:0c:74: 64:c1:15:0f:a6:e8:aa:fd:00:ad:67:b9:f9:ab:62: 76:cd:47:2c:10:c1:da:df:fe:79:4d:9c:e2:4a:4a: 37:61:0f:f9:a9:a4:60:6d:fe:f4:16:bd:77:54:64: ea:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E1:EB:E5:3F:28:DB:8A:66:2A:88:35:1B:8A:EE:A4:B1:0E:A4:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd77e161-bf66-4f9c-a4c7-a0521006fc6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:7400::/40 Signature Algorithm: sha256WithRSAEncryption a5:60:3c:21:ba:39:b7:ff:20:de:f3:8e:e2:79:ae:a9:75:e1: 67:77:5f:ce:40:6e:01:c6:5a:6d:97:4c:9d:46:b8:7b:d5:cd: ff:05:2f:f9:cf:9e:fb:e8:55:87:ec:10:de:b0:30:42:99:1a: ed:c4:32:68:08:ab:7c:a9:9d:2b:d8:23:b4:87:e8:1e:97:fd: 2c:b4:bd:8c:72:cf:32:84:19:4c:a8:6c:ea:52:95:6b:4c:d4: 0b:18:4a:4d:0a:6d:99:20:ae:45:ed:c8:c2:ae:3e:01:94:6e: 93:fd:f4:f7:16:82:cf:44:3a:eb:66:11:6f:a0:eb:54:9e:8a: a8:ee:c1:17:4a:23:19:e1:20:1d:d4:14:20:f3:36:57:99:f0: c8:d2:ea:bc:8a:e7:4d:79:45:9f:2c:68:2c:ce:08:b5:3e:da: 5a:d6:eb:62:2c:5a:53:0e:80:63:1c:e4:de:1b:1f:d1:fb:4a: 9f:3f:8f:14:5b:e3:c9:4d:4b:b1:05:3b:8e:e2:86:5c:fb:e6: c3:e5:26:6e:24:b3:fc:20:cb:53:3a:04:60:e3:5c:90:cc:63: 18:cd:d7:bb:88:19:b2:a9:f3:56:5e:4b:90:45:10:1a:43:00: 0d:3a:6e:52:c3:95:b2:77:b7:82:a5:db:af:ec:fb:4d:84:3b: 36:ed:89:8f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBNSuZBG+lkdV+kdS2H69HDQ507IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwOTAxMTUyMTI4WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjQ1OGFkY2NmYTFmN2NhZmFmOTZmZTIzMzY5OTg4YTgx ODM4YzBlZWI5ZDQ1MGVjMTUwMDM4M2E0YTRmMGNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBnhEU2/ATCoU8qQtPTA1HUGYRn92nfXyqC7kIuZE8MKKH EzOdcfWJcDGLjwuf3c7eFQY+BRU1QSxo6tmpmD5EyvGdV/5aS8KTDvXFUUkBkQEf pSNorJf0WE/+cFiXGXv1eAecyaRpOd6fhSsTFzSuskRq5m/HJNEtLZscLjaRX6hw /yJHi8TAjPdiKn54fKCp7QxjVndIikAL1nlapyNxm62s+qdV8nPSzBZMdZOQZShH K32FweIPcUrAOe5ai+A7BkMWpWrf2XKEXJ2o+3YMdGTBFQ+m6Kr9AK1nufmrYnbN RywQwdrf/nlNnOJKSjdhD/mppGBt/vQWvXdUZOqpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUK+Hr5T8o24pmKog1G4rupLEOpKEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkNzdlMTYxLWJmNjYtNGY5Yy1hNGM3LWEwNTIxMDA2ZmM2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vdDANBgkqhkiG9w0BAQsFAAOCAQEApWA8Ibo5t/8g3vOO4nmuqXXh Z3dfzkBuAcZabZdMnUa4e9XN/wUv+c+e++hVh+wQ3rAwQpka7cQyaAirfKmdK9gj tIfoHpf9LLS9jHLPMoQZTKhs6lKVa0zUCxhKTQptmSCuRe3Iwq4+AZRuk/309xaC z0Q662YRb6DrVJ6KqO7BF0ojGeEgHdQUIPM2V5nwyNLqvIrnTXlFnyxoLM4ItT7a WtbrYixaUw6AYxzk3hsf0ftKnz+PFFvjyU1LsQU7juKGXPvmw+UmbiSz/CDLUzoE YONckMxjGM3Xu4gZsqnzVl5LkEUQGkMADTpuUsOVsne3gqXbr+z7TYQ7Nu2Jjw== -----END CERTIFICATE-----Generated at Sat Sep 6 16:28:10 2025 by rpki-client