$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa File: 026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa (raw, json) Hash identifier: 3dqLJIp6kXZ/HS4ZXy4DmRVay2cWpr+ZdSfNac6x18g= Subject key identifier: AD:5A:34:E8:37:6A:77:8B:89:7D:8C:0F:FF:71:1D:E0:49:8E:D1:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C5576A5DC9B31105A0FBF68E9D1451C9FDE449E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa Signing time: Wed 13 Aug 2025 00:11:47 +0000 ROA not before: Wed 13 Aug 2025 00:11:47 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:55:76:a5:dc:9b:31:10:5a:0f:bf:68:e9:d1:45:1c:9f:de:44:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:11:47 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=f037947e1f0a38dbe4de9bf3caed0c2d28082e63c30bd16af9c92a328bc788fa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a2:18:0b:1d:ec:5e:bd:43:c8:12:52:41:db: 74:c7:90:78:74:6d:9d:b2:61:58:22:eb:e3:a3:37: 97:d2:37:49:96:67:dd:bb:91:f3:97:1b:92:f5:92: 1c:c7:c8:05:8f:75:5b:27:a2:d8:01:90:c2:4f:dd: bd:a3:8e:f0:21:ac:ae:96:25:b7:24:7b:45:80:74: a3:3f:4b:ed:c7:02:3e:23:19:b4:d4:c6:3d:ae:6a: dd:b8:9f:b1:83:35:18:3a:ce:56:33:db:42:30:91: 02:64:fd:ef:66:bb:e6:2c:ad:dc:fe:dd:55:13:3e: c2:0c:88:9e:fe:a7:5f:63:71:cd:5f:7d:a2:bc:33: 71:45:0c:16:08:3a:34:2b:c1:6c:be:ef:36:48:ee: 67:d0:22:34:55:79:db:4d:86:d9:13:47:6b:c3:9f: 17:69:00:f4:1b:96:30:4b:07:4f:28:4d:24:89:ee: 41:0c:7c:13:0b:ca:f0:0d:23:25:9a:35:43:c1:f5: 55:8f:49:e4:24:79:c2:3a:42:bb:02:1f:12:f8:8c: e5:b4:a5:bb:44:20:da:06:ef:8f:53:d1:b9:26:05: 1d:95:0b:0c:a3:2b:20:48:8b:f7:a5:af:1a:4b:29: 9c:73:4e:c6:04:35:ab:8c:78:78:8d:55:04:f1:20: 74:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:5A:34:E8:37:6A:77:8B:89:7D:8C:0F:FF:71:1D:E0:49:8E:D1:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/026d9e0e-e9f3-4245-8184-2f5a17b3204e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:e000::/40 Signature Algorithm: sha256WithRSAEncryption d1:08:dc:da:69:38:89:c6:51:e7:42:f6:69:5a:35:f1:5e:f3: ed:ca:76:dd:37:ec:2d:92:77:13:db:46:f7:21:d6:9e:42:cc: 1a:b5:da:ce:30:78:c6:4f:e3:23:0a:8e:f0:b5:9e:1f:c4:bd: cc:c5:ac:1e:a6:70:16:81:69:6f:95:9b:0b:02:e8:6a:fe:b9: 66:03:a5:6b:99:f7:76:ca:42:05:0c:4a:24:be:00:37:df:1e: ea:be:76:b3:a7:59:14:25:8b:cc:25:9a:f2:9c:bd:2a:eb:b5: 79:ed:0b:18:13:6a:a5:95:fa:bc:f1:96:5b:4c:55:94:98:eb: 15:4b:65:be:78:f7:bf:3b:8f:15:07:6d:32:62:a4:d6:c4:06: bc:f1:cd:83:2f:fb:33:73:d9:fa:da:6a:32:fe:69:76:e9:78: 9d:a9:ea:b1:5c:f7:8b:11:da:e3:96:8e:b4:98:20:ff:5f:80: ae:ef:47:ff:91:8f:6b:5b:33:d7:48:93:90:da:1e:71:6f:4f: 6e:eb:48:cc:38:f8:eb:34:3f:e6:81:1d:79:ba:9a:c5:49:af: dc:72:bc:9f:b6:64:35:e9:f3:90:2b:df:37:79:bb:b9:41:f1: a3:d0:bf:27:be:3b:d8:9e:eb:3f:bb:b6:e7:f1:86:fd:c1:ac: 7d:32:bd:ca -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbFV2pdybMRBaD79o6dFFHJ/eRJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMTQ3WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDM3OTQ3ZTFmMGEzOGRiZTRkZTliZjNjYWVkMGMyZDI4 MDgyZTYzYzMwYmQxNmFmOWM5MmEzMjhiYzc4OGZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPohgLHexevUPIElJB23THkHh0bZ2yYVgi6+OjN5fSN0mW Z927kfOXG5L1khzHyAWPdVsnotgBkMJP3b2jjvAhrK6WJbcke0WAdKM/S+3HAj4j GbTUxj2uat24n7GDNRg6zlYz20IwkQJk/e9mu+Ysrdz+3VUTPsIMiJ7+p19jcc1f faK8M3FFDBYIOjQrwWy+7zZI7mfQIjRVedtNhtkTR2vDnxdpAPQbljBLB08oTSSJ 7kEMfBMLyvANIyWaNUPB9VWPSeQkecI6QrsCHxL4jOW0pbtEINoG749T0bkmBR2V CwyjKyBIi/elrxpLKZxzTsYENauMeHiNVQTxIHQBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrVo06Ddqd4uJfYwP/3Ed4EmO0V8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAyNmQ5ZTBlLWU5ZjMtNDI0NS04MTg0LTJmNWExN2IzMjA0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8y4DANBgkqhkiG9w0BAQsFAAOCAQEA0Qjc2mk4icZR50L2aVo18V7z 7cp23TfsLZJ3E9tG9yHWnkLMGrXazjB4xk/jIwqO8LWeH8S9zMWsHqZwFoFpb5Wb CwLoav65ZgOla5n3dspCBQxKJL4AN98e6r52s6dZFCWLzCWa8py9Kuu1ee0LGBNq pZX6vPGWW0xVlJjrFUtlvnj3vzuPFQdtMmKk1sQGvPHNgy/7M3PZ+tpqMv5pdul4 nanqsVz3ixHa45aOtJgg/1+Aru9H/5GPa1sz10iTkNoecW9PbutIzDj46zQ/5oEd ebqaxUmv3HK8n7ZkNenzkCvfN3m7uUHxo9C/J7472J7rP7u25/GG/cGsfTK9yg== -----END CERTIFICATE-----Generated at Sat Aug 23 10:23:06 2025 by rpki-client