$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/88d05d2c-791d-492a-9697-f4c4a592c57a.roa File: 88d05d2c-791d-492a-9697-f4c4a592c57a.roa (raw, json) Hash identifier: kz1e/uAhi5m0AijAylbrs9BkfLRp9YtzCTcytexZFuc= Subject key identifier: E9:69:C8:AF:3D:0F:28:DE:F6:A6:84:E2:69:12:BA:1D:59:45:01:8B Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 68AA6C91BF819E0D61C33698A44B07AC2BB470D5 Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/88d05d2c-791d-492a-9697-f4c4a592c57a.roa Signing time: Mon 01 Sep 2025 15:50:19 +0000 ROA not before: Mon 01 Sep 2025 15:50:19 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:9000:5201::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:aa:6c:91:bf:81:9e:0d:61:c3:36:98:a4:4b:07:ac:2b:b4:70:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: Sep 1 15:50:19 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=a81ad63f14d022e75948cea1cf8c92cdc1a816ea8fbf184f4ba9b1db4474fe16, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b3:55:25:1e:93:64:1c:00:59:a8:5e:28:b2: 39:e8:fa:a1:88:f6:12:af:3b:35:69:36:1e:54:ea: e5:94:32:9d:67:a5:0d:61:8a:21:f3:e6:3c:a4:00: 05:7d:3b:16:ab:d6:95:6b:21:1e:54:27:b8:29:2b: 0f:76:48:6b:a5:32:ad:70:a9:7e:07:3b:34:3b:a3: fc:83:63:24:b9:f9:16:a6:41:04:4a:56:45:76:ae: 34:e7:ee:a8:3f:f5:c8:05:6e:17:73:6a:61:03:94: bf:3f:e7:dd:1f:60:2c:97:5f:21:7b:0f:7d:8d:9b: e7:4c:1e:47:e8:d1:46:b1:0c:fd:86:2f:da:75:71: 3d:2b:a4:c3:08:74:69:9f:19:d3:4f:ae:4c:bc:87: f7:f0:b5:54:65:61:24:38:3e:35:ee:13:f8:8e:0a: 87:a7:d9:81:e1:bb:b6:96:b6:82:69:2e:33:e2:2a: 8d:87:4d:aa:11:a0:82:53:50:fc:47:12:c0:f2:2c: 34:86:55:61:3b:66:8c:82:98:da:74:14:d0:d0:d1: 70:aa:5e:14:07:48:8f:03:c4:c0:9e:8e:e0:7e:f8: 01:e3:3a:df:d9:38:3a:2c:ed:5b:f7:67:19:b7:10: 2f:9d:94:a1:6e:18:c9:42:8d:8c:12:02:46:f1:0c: 16:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:69:C8:AF:3D:0F:28:DE:F6:A6:84:E2:69:12:BA:1D:59:45:01:8B X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/88d05d2c-791d-492a-9697-f4c4a592c57a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:9000:5201::/48 Signature Algorithm: sha256WithRSAEncryption 4b:b7:4d:9a:45:99:26:58:03:82:ac:1d:72:ba:26:f0:b7:00: e1:fa:b0:7b:e9:df:11:ad:fc:f0:ab:0c:7b:ea:3a:1c:ec:c6: 9d:67:55:14:15:50:29:56:d6:97:e8:ba:3b:69:eb:f7:c0:e2: 47:dc:ee:10:d2:8c:53:9b:d7:2f:94:53:3f:83:31:69:7a:64: 8e:a4:07:ba:ce:ff:c8:2b:0d:ec:e5:f2:db:16:67:d8:74:46: 39:ea:07:9a:9f:7b:42:77:c6:df:9b:fb:fe:4c:93:dd:ff:4c: 9a:77:59:46:a7:f1:4f:1c:ff:fd:0a:de:96:76:2e:1c:d5:b3: 04:58:83:67:06:53:10:df:35:dd:f3:5c:20:25:c4:5a:bc:7c: 8d:89:af:d6:7c:3c:5d:42:c2:c3:2a:7c:e1:6d:16:e7:0f:55: 74:7e:61:fb:33:d8:e4:0c:1f:5d:be:63:18:98:27:e1:d6:c3: 1d:d1:57:66:bf:bc:35:da:07:0e:45:1e:e3:d4:a6:56:98:03: fc:28:99:34:80:65:26:18:2c:fd:76:cb:c0:df:f0:6b:e0:fc: f0:cd:49:eb:16:76:ad:1a:a1:10:8d:85:fb:44:af:52:8e:19: 80:67:a9:90:ef:76:53:b6:ed:d6:c3:bd:28:a1:b7:c7:cf:27: e2:9f:c8:8d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaKpskb+Bng1hwzaYpEsHrCu0cNUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjUwOTAxMTU1MDE5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODFhZDYzZjE0ZDAyMmU3NTk0OGNlYTFjZjhjOTJjZGMx YTgxNmVhOGZiZjE4NGY0YmE5YjFkYjQ0NzRmZTE2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIs1UlHpNkHABZqF4osjno+qGI9hKvOzVpNh5U6uWUMp1n pQ1hiiHz5jykAAV9Oxar1pVrIR5UJ7gpKw92SGulMq1wqX4HOzQ7o/yDYyS5+Ram QQRKVkV2rjTn7qg/9cgFbhdzamEDlL8/590fYCyXXyF7D32Nm+dMHkfo0UaxDP2G L9p1cT0rpMMIdGmfGdNPrky8h/fwtVRlYSQ4PjXuE/iOCoen2YHhu7aWtoJpLjPi Ko2HTaoRoIJTUPxHEsDyLDSGVWE7ZoyCmNp0FNDQ0XCqXhQHSI8DxMCejuB++AHj Ot/ZODos7Vv3Zxm3EC+dlKFuGMlCjYwSAkbxDBYtAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU6WnIrz0PKN72poTiaRK6HVlFAYswHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg4ZDA1ZDJjLTc5MWQtNDkyYS05Njk3LWY0YzRhNTkyYzU3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAJAAUgEwDQYJKoZIhvcNAQELBQADggEBAEu3TZpFmSZYA4KsHXK6JvC3 AOH6sHvp3xGt/PCrDHvqOhzsxp1nVRQVUClW1pfoujtp6/fA4kfc7hDSjFOb1y+U Uz+DMWl6ZI6kB7rO/8grDezl8tsWZ9h0RjnqB5qfe0J3xt+b+/5Mk93/TJp3WUan 8U8c//0K3pZ2LhzVswRYg2cGUxDfNd3zXCAlxFq8fI2Jr9Z8PF1CwsMqfOFtFucP VXR+Yfsz2OQMH12+YxiYJ+HWwx3RV2a/vDXaBw5FHuPUplaYA/womTSAZSYYLP12 y8Df8Gvg/PDNSesWdq0aoRCNhftEr1KOGYBnqZDvdlO27dbDvSiht8fPJ+KfyI0= -----END CERTIFICATE-----Generated at Sat Sep 6 13:45:17 2025 by rpki-client