$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35db25f9-c570-4660-adb0-06bc15c44481.roa File: 35db25f9-c570-4660-adb0-06bc15c44481.roa (raw, json) Hash identifier: osgCwVXId2IBVQd90QPjth96t14CPqccaXHGJNBpWEk= Subject key identifier: 0F:85:FC:7B:B8:47:5D:FB:00:3E:94:BC:67:6C:2D:C1:92:91:A7:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 459D3736809D4AE462F062E15E90CDB3AD7515F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35db25f9-c570-4660-adb0-06bc15c44481.roa Signing time: Mon 04 Aug 2025 15:32:14 +0000 ROA not before: Mon 04 Aug 2025 15:32:14 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:7400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:9d:37:36:80:9d:4a:e4:62:f0:62:e1:5e:90:cd:b3:ad:75:15:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:32:14 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=85b5f780a85aa3ab299dfc7d695cf410c9806780da69c6824ac1b9c224a79c6d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8d:a6:d3:13:1f:88:7d:bb:7b:d9:0b:c8:68: 9e:27:cc:20:98:a6:86:59:81:ac:8b:55:ef:14:0a: 09:7f:b1:8a:c1:47:c8:5f:b6:c0:27:df:64:0c:02: 78:d1:f4:3f:a9:9b:40:a5:c4:c9:f8:19:7d:24:cd: 4a:e6:62:f1:8a:76:55:fe:80:63:a6:c9:b2:6a:b5: bb:b6:2a:72:97:9d:8a:52:49:17:b0:2b:4a:3d:89: dc:84:9d:2f:8e:bf:4c:a4:11:10:52:88:34:10:1c: ec:60:ed:9d:b4:a4:29:f6:91:48:44:d7:30:d5:e6: 6b:6f:d0:91:d3:45:51:ae:c2:ab:f6:b0:bf:99:42: 51:88:16:45:a3:81:c8:2a:b0:a8:3b:1e:d4:3d:3a: 96:6e:b8:31:6b:a9:08:c4:07:de:77:fa:3a:11:66: 33:6e:89:00:f2:27:3e:4b:27:54:29:04:20:5f:3c: c5:fe:c1:9d:f9:1e:2a:42:b5:f6:af:83:cb:fe:99: 42:fd:a5:1b:4b:56:a6:c9:66:9a:a2:3d:4f:09:b9: 9f:7d:de:2b:0a:ed:02:96:56:b6:a2:1a:70:a0:31: 36:4b:cc:71:96:08:be:1f:9d:27:35:95:d6:1a:23: c4:8d:d4:91:d3:e8:db:5c:8e:e4:2f:e5:32:3d:71: 56:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:85:FC:7B:B8:47:5D:FB:00:3E:94:BC:67:6C:2D:C1:92:91:A7:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35db25f9-c570-4660-adb0-06bc15c44481.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:7400::/40 Signature Algorithm: sha256WithRSAEncryption c1:00:44:54:ce:1e:2d:cf:1a:c6:36:c1:ca:fa:e8:b7:5f:a8: 15:97:e3:1d:be:ec:d1:94:e0:03:ff:da:b3:e3:e1:de:dd:03: 1a:48:a8:e6:a3:f3:57:86:48:2e:89:bf:17:6a:e9:b0:7a:f4: 72:d0:b2:97:bd:51:55:24:a1:24:82:2c:d6:ba:41:96:25:47: 0b:05:d7:22:88:5b:66:9f:58:c9:98:94:7f:33:e3:ba:5c:da: c3:cf:91:79:26:5b:cc:63:9c:c7:1e:43:a6:d5:90:72:07:e2: c9:47:56:3a:71:92:ac:09:fb:85:ce:bb:ed:34:94:79:d5:db: 45:8d:79:f7:f0:aa:bc:9f:ec:7e:0a:5c:56:3d:3e:6d:72:fa: ec:31:a3:ea:84:e4:5e:53:14:72:8e:15:13:50:4b:8d:0f:01: 72:36:18:fb:56:50:18:b9:e6:df:4b:6c:2c:81:68:13:4b:22: b0:43:62:07:5f:ea:a6:db:aa:58:05:5b:f9:fc:64:a1:51:9b: 7c:ad:d7:4d:6e:1c:81:40:09:24:48:4e:68:83:84:9e:54:3b: d3:e6:d9:44:4c:de:dc:be:64:18:b7:d5:4b:be:80:0a:64:c3: 6b:8b:93:5b:6b:49:c3:28:07:ac:90:35:fa:4b:9a:77:56:1e: 1c:50:ea:40 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURZ03NoCdSuRi8GLhXpDNs611FfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUzMjE0WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NWI1Zjc4MGE4NWFhM2FiMjk5ZGZjN2Q2OTVjZjQxMGM5 ODA2NzgwZGE2OWM2ODI0YWMxYjljMjI0YTc5YzZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgjabTEx+Ifbt72QvIaJ4nzCCYpoZZgayLVe8UCgl/sYrB R8hftsAn32QMAnjR9D+pm0ClxMn4GX0kzUrmYvGKdlX+gGOmybJqtbu2KnKXnYpS SRewK0o9idyEnS+Ov0ykERBSiDQQHOxg7Z20pCn2kUhE1zDV5mtv0JHTRVGuwqv2 sL+ZQlGIFkWjgcgqsKg7HtQ9OpZuuDFrqQjEB953+joRZjNuiQDyJz5LJ1QpBCBf PMX+wZ35HipCtfavg8v+mUL9pRtLVqbJZpqiPU8JuZ993isK7QKWVraiGnCgMTZL zHGWCL4fnSc1ldYaI8SN1JHT6NtcjuQv5TI9cVavAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUD4X8e7hHXfsAPpS8Z2wtwZKRp4IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ZGIyNWY5LWM1NzAtNDY2MC1hZGIwLTA2YmMxNWM0NDQ4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//dDANBgkqhkiG9w0BAQsFAAOCAQEAwQBEVM4eLc8axjbByvrot1+o FZfjHb7s0ZTgA//as+Ph3t0DGkio5qPzV4ZILom/F2rpsHr0ctCyl71RVSShJIIs 1rpBliVHCwXXIohbZp9YyZiUfzPjulzaw8+ReSZbzGOcxx5DptWQcgfiyUdWOnGS rAn7hc677TSUedXbRY159/CqvJ/sfgpcVj0+bXL67DGj6oTkXlMUco4VE1BLjQ8B cjYY+1ZQGLnm30tsLIFoE0sisENiB1/qptuqWAVb+fxkoVGbfK3XTW4cgUAJJEhO aIOEnlQ70+bZREze3L5kGLfVS76ACmTDa4uTW2tJwygHrJA1+kuad1YeHFDqQA== -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:30 2025 by rpki-client