$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe61cb59-a563-4969-a348-4cfb46c842f5.roa File: fe61cb59-a563-4969-a348-4cfb46c842f5.roa (raw, json) Hash identifier: +lVzGfYKSII1PCx0w3vpA2Vu8vx4f/X/dfXduGh+bFY= Subject key identifier: 6F:B5:FC:1F:82:8D:F2:8C:FD:BF:26:6C:50:AF:32:E5:EE:EB:A0:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C0844A9E7EEB9D54D1A5651EC4082B47E735CCF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe61cb59-a563-4969-a348-4cfb46c842f5.roa Signing time: Sat 30 Aug 2025 00:20:52 +0000 ROA not before: Sat 30 Aug 2025 00:20:52 +0000 ROA not after: Sat 04 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f20:c000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:08:44:a9:e7:ee:b9:d5:4d:1a:56:51:ec:40:82:b4:7e:73:5c:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 30 00:20:52 2025 GMT Not After : Oct 4 23:59:59 2025 GMT Subject: serialNumber=37ab4428f22745138ac6a1fa8baa2b7c3bdb822f6305256d6bd93030ddabd3c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b7:83:44:0a:7d:34:ea:16:9c:dd:9e:be:4f: 63:2f:67:c7:84:98:1b:84:04:67:f6:02:06:03:7e: d6:a4:79:e1:fa:78:80:18:78:3b:1a:9f:5b:65:02: 88:f6:75:49:f5:db:5c:40:bb:62:4b:3d:71:3c:96: 6f:92:6a:7e:ab:fc:99:4b:c8:55:ae:e6:76:2d:70: 45:56:29:11:33:8c:ba:ce:70:01:a5:6a:65:ec:3d: a3:13:41:69:37:11:b9:a0:86:c5:87:0e:3a:87:dc: a0:b5:70:91:10:20:f5:3b:88:e0:b8:02:9b:40:4d: 05:aa:a9:ea:dc:57:c2:44:f9:fc:37:ba:4a:3e:ba: b7:4e:50:1c:9c:40:9f:ef:4e:e9:d7:26:c1:95:2e: 45:f5:3e:2b:49:94:6d:b1:1a:2e:96:4c:8a:db:d8: d1:cf:d5:af:e7:00:d5:d5:8e:df:7b:4f:e5:7c:cc: 50:be:3a:7a:49:4b:22:19:01:09:13:9a:c6:24:4d: 35:2f:03:73:8f:d0:b4:6e:35:d8:b3:d5:be:0f:9b: d5:36:4c:fb:44:40:a6:13:1b:6e:10:49:b5:ad:80: 90:5d:1c:fd:bb:93:f3:02:60:e1:34:b2:d2:c0:7c: 62:9a:30:5f:0d:28:77:59:f1:9c:95:02:8a:7a:27: bb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B5:FC:1F:82:8D:F2:8C:FD:BF:26:6C:50:AF:32:E5:EE:EB:A0:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fe61cb59-a563-4969-a348-4cfb46c842f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f20:c000::/36 Signature Algorithm: sha256WithRSAEncryption 1b:01:f7:d1:51:ea:80:4f:10:2e:de:cf:f3:fc:65:cf:b7:7e: ae:a9:f8:5a:26:9d:b5:f9:49:3e:48:f3:af:cb:bc:0c:3f:c9: bd:60:83:76:74:0b:24:70:a3:d9:0d:83:99:57:c4:ed:4f:7c: 06:cb:34:bf:a0:85:0b:70:4d:68:4a:96:0e:31:0e:51:dd:ce: cb:ed:40:20:c3:1d:34:d3:ba:01:4d:00:87:5d:ca:2e:ac:51: b3:8b:91:47:95:12:4a:b1:d1:72:42:8a:f0:3e:10:61:78:53: 23:bc:b1:57:04:96:93:c4:69:66:13:9a:e2:ac:46:7d:7a:87: b3:48:6e:3c:c0:76:2c:56:db:e0:08:88:67:37:90:02:5c:57: 98:8a:14:7d:43:96:7c:45:2d:e6:07:eb:44:28:f1:2a:ad:7b: a2:02:d4:84:e4:65:68:0c:59:b5:6c:d1:5e:11:5b:88:3d:ba: 8e:07:9c:57:6e:10:45:0b:0d:de:65:51:ca:a5:52:d4:77:71: 65:66:67:ad:dd:6b:a5:e7:7b:d8:a0:0c:55:e3:bd:b1:e9:ee: f2:1c:e6:3d:b3:06:ac:20:65:56:08:0f:23:ef:59:c5:1e:8c: 8f:85:89:14:e2:52:d0:23:e5:0e:8e:96:e2:36:dc:f7:5a:12: 40:73:b6:6f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDAhEqefuudVNGlZR7ECCtH5zXM8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODMwMDAyMDUyWhcNMjUxMDA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzN2FiNDQyOGYyMjc0NTEzOGFjNmExZmE4YmFhMmI3YzNi ZGI4MjJmNjMwNTI1NmQ2YmQ5MzAzMGRkYWJkM2M4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDct4NECn006hac3Z6+T2MvZ8eEmBuEBGf2AgYDftakeeH6 eIAYeDsan1tlAoj2dUn121xAu2JLPXE8lm+San6r/JlLyFWu5nYtcEVWKREzjLrO cAGlamXsPaMTQWk3EbmghsWHDjqH3KC1cJEQIPU7iOC4AptATQWqqercV8JE+fw3 uko+urdOUBycQJ/vTunXJsGVLkX1PitJlG2xGi6WTIrb2NHP1a/nANXVjt97T+V8 zFC+OnpJSyIZAQkTmsYkTTUvA3OP0LRuNdiz1b4Pm9U2TPtEQKYTG24QSbWtgJBd HP27k/MCYOE0stLAfGKaMF8NKHdZ8ZyVAop6J7uvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUb7X8H4KN8oz9vyZsUK8y5e7roJMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZlNjFjYjU5LWE1NjMtNDk2OS1hMzQ4LTRjZmI0NmM4NDJmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8gwDANBgkqhkiG9w0BAQsFAAOCAQEAGwH30VHqgE8QLt7P8/xlz7d+ rqn4WiadtflJPkjzr8u8DD/JvWCDdnQLJHCj2Q2DmVfE7U98Bss0v6CFC3BNaEqW DjEOUd3Oy+1AIMMdNNO6AU0Ah13KLqxRs4uRR5USSrHRckKK8D4QYXhTI7yxVwSW k8RpZhOa4qxGfXqHs0huPMB2LFbb4AiIZzeQAlxXmIoUfUOWfEUt5gfrRCjxKq17 ogLUhORlaAxZtWzRXhFbiD26jgecV24QRQsN3mVRyqVS1HdxZWZnrd1rped72KAM VeO9senu8hzmPbMGrCBlVggPI+9ZxR6Mj4WJFOJS0CPlDo6W4jbc91oSQHO2bw== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:46 2025 by rpki-client