$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/430f9de8-7aca-4990-8867-0daaf0d82e64.roa File: 430f9de8-7aca-4990-8867-0daaf0d82e64.roa (raw, json) Hash identifier: N5QxhoGVKuH06NUYkUptUJBhyyF2ErPBssvsMMwrI1Q= Subject key identifier: 8D:72:C7:20:88:F6:E9:2E:42:D5:A8:6D:D4:A0:83:E9:BE:F9:17:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A6ACAAD6DB2C90123E02342BF39686DA22D9629 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/430f9de8-7aca-4990-8867-0daaf0d82e64.roa Signing time: Fri 15 Aug 2025 00:31:58 +0000 ROA not before: Fri 15 Aug 2025 00:31:58 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff2:80e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:6a:ca:ad:6d:b2:c9:01:23:e0:23:42:bf:39:68:6d:a2:2d:96:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:31:58 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=0a63c83d128afd7310c75a340707f4b98eb0a81571b2260a38835ccbababd196, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:91:e2:fa:53:2b:19:b4:f0:d6:2c:fb:0c:77: d0:7c:1b:98:b2:c6:ff:75:29:55:c7:d5:68:6e:13: c1:70:db:3b:35:2a:61:81:76:4f:bf:05:e0:b4:da: 48:06:6b:f7:93:35:d6:01:96:ac:37:4d:06:30:a2: 35:06:07:e8:0e:ac:9e:5d:92:75:11:39:84:8a:9c: 01:e1:cc:59:04:91:d6:d0:d1:7d:6c:d9:8f:7f:5d: fc:00:c4:ab:df:72:a9:33:8c:a7:3e:b3:78:67:db: 58:19:74:73:de:01:4c:88:cf:fe:2d:cf:9d:d6:66: 52:b5:5b:4e:86:46:df:0f:4d:5b:97:61:60:cb:b6: dc:4d:7f:9a:64:de:3a:72:34:9f:44:4b:87:f3:59: 74:60:5c:5d:de:1b:ee:f8:13:20:2b:f5:e5:d1:4d: 78:68:d1:fe:65:ed:61:eb:ca:a4:30:3b:35:3c:9a: 9c:9e:fe:f7:d6:60:0f:0f:91:cb:21:0e:6c:14:be: d2:6d:07:a5:cd:56:3a:84:30:b8:d4:37:00:f7:02: 40:0c:18:29:20:86:e4:ea:8f:35:16:81:bf:6c:8d: c8:d1:13:a3:b0:13:72:0d:84:a0:69:4e:14:34:cb: 6c:78:77:29:9f:d1:6c:5d:3e:83:04:ef:45:77:c6: be:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:72:C7:20:88:F6:E9:2E:42:D5:A8:6D:D4:A0:83:E9:BE:F9:17:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/430f9de8-7aca-4990-8867-0daaf0d82e64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:80e0::/48 Signature Algorithm: sha256WithRSAEncryption 89:24:13:75:4b:6e:db:bf:1b:2b:da:f3:a7:f6:a0:1f:31:6e: 89:24:65:ee:3d:1a:ee:ff:dc:23:39:24:42:1d:bc:fa:c8:32: 9c:54:bf:b2:6c:96:75:22:de:41:70:fd:d8:91:1f:3d:92:9b: 7e:07:4b:f5:9b:29:ac:a3:73:82:5a:ba:f0:89:cc:76:7e:16: 64:38:8d:34:19:d1:ac:cd:75:ab:ce:cf:eb:1b:60:df:13:1b: 40:54:4c:52:fe:91:29:a3:6a:ae:5f:bb:17:0a:fb:d4:7b:e0: 12:f8:0c:54:3d:84:06:2f:c0:fe:91:2c:4a:ba:68:65:ad:e4: 2e:8d:eb:72:94:fb:0d:61:8c:0a:88:d6:a9:dc:da:40:00:09: b5:4f:71:de:f5:1d:04:d7:97:24:fa:e3:85:94:81:e5:94:c4: 04:57:a2:60:22:2e:c4:e9:9b:b7:ef:af:c6:9d:96:ed:74:77: 75:ee:6f:a3:06:1f:cc:8a:a7:a1:29:fe:46:42:c2:b4:1e:b2: b4:f9:a5:83:39:f4:40:fa:2a:b7:3e:12:c9:b5:81:98:b5:b0: 82:86:15:2a:6b:e7:25:60:ed:75:fc:6d:c1:35:96:ac:5d:c3: 17:42:e3:62:e6:12:3e:52:38:cc:36:e0:21:71:98:32:b1:b4: 7f:b7:38:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUemrKrW2yyQEj4CNCvzlobaItlikwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDAzMTU4WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTYzYzgzZDEyOGFmZDczMTBjNzVhMzQwNzA3ZjRiOThl YjBhODE1NzFiMjI2MGEzODgzNWNjYmFiYWJkMTk2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtkeL6UysZtPDWLPsMd9B8G5iyxv91KVXH1WhuE8Fw2zs1 KmGBdk+/BeC02kgGa/eTNdYBlqw3TQYwojUGB+gOrJ5dknUROYSKnAHhzFkEkdbQ 0X1s2Y9/XfwAxKvfcqkzjKc+s3hn21gZdHPeAUyIz/4tz53WZlK1W06GRt8PTVuX YWDLttxNf5pk3jpyNJ9ES4fzWXRgXF3eG+74EyAr9eXRTXho0f5l7WHryqQwOzU8 mpye/vfWYA8PkcshDmwUvtJtB6XNVjqEMLjUNwD3AkAMGCkghuTqjzUWgb9sjcjR E6OwE3INhKBpThQ0y2x4dymf0WxdPoME70V3xr7jAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjXLHIIj26S5C1aht1KCD6b75F6EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzMGY5ZGU4LTdhY2EtNDk5MC04ODY3LTBkYWFmMGQ4MmU2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ygOAwDQYJKoZIhvcNAQELBQADggEBAIkkE3VLbtu/Gyva86f2oB8x bokkZe49Gu7/3CM5JEIdvPrIMpxUv7JslnUi3kFw/diRHz2Sm34HS/WbKayjc4Ja uvCJzHZ+FmQ4jTQZ0azNdavOz+sbYN8TG0BUTFL+kSmjaq5fuxcK+9R74BL4DFQ9 hAYvwP6RLEq6aGWt5C6N63KU+w1hjAqI1qnc2kAACbVPcd71HQTXlyT644WUgeWU xARXomAiLsTpm7fvr8adlu10d3Xub6MGH8yKp6Ep/kZCwrQesrT5pYM59ED6Krc+ Esm1gZi1sIKGFSpr5yVg7XX8bcE1lqxdwxdC42LmEj5SOMw24CFxmDKxtH+3ONY= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:43 2025 by rpki-client