$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c463e88-0f7c-4897-ac99-34b8567b1dc9.roa File: 4c463e88-0f7c-4897-ac99-34b8567b1dc9.roa (raw, json) Hash identifier: 8yjbzVrsKq4zqxRwmAhnydZJ9Bv81HOf1h34KaJ73Y8= Subject key identifier: CF:BA:2C:61:DE:FA:89:A6:00:82:76:F6:6F:34:8F:26:09:D1:52:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 383E637435895757EFF05C814DD838A7118EDD08 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c463e88-0f7c-4897-ac99-34b8567b1dc9.roa Signing time: Mon 18 Aug 2025 15:31:20 +0000 ROA not before: Mon 18 Aug 2025 15:31:20 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:3e:63:74:35:89:57:57:ef:f0:5c:81:4d:d8:38:a7:11:8e:dd:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:31:20 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=608fe2decf2c57d39929b9db389e1c9cdc2ab218a99b302027ce0081e6340563, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a6:64:6e:19:9a:ae:50:a8:d2:d8:5e:1c:ba: f1:6f:f7:8c:21:f4:a1:17:b0:65:ef:51:68:ab:0a: 7c:7a:61:87:c3:51:c0:e1:5b:9b:fa:6f:ee:50:22: e6:e8:59:9c:c9:5d:50:ed:35:e7:da:19:a1:0e:a9: 14:64:ad:7a:d9:37:5e:db:bb:73:13:54:ab:ff:79: 41:38:98:9e:b7:d7:18:0b:06:cf:0d:b9:18:fc:f8: c0:9f:0d:de:1b:3c:d3:c6:53:3b:cc:8f:4f:40:bd: f8:08:e8:c4:ba:a3:ec:5f:3f:33:a4:cb:3e:72:11: e2:61:79:08:66:fd:c9:11:00:65:a9:fd:20:27:d6: be:4f:49:26:3f:89:88:3c:a4:b6:19:90:4f:ff:c2: 38:f4:a4:47:94:28:96:9c:6c:c6:ec:cc:3e:fb:94: 9d:a0:7e:c8:c5:a1:2c:39:dd:f7:43:71:28:98:32: 52:57:5b:4b:ef:11:c0:10:1b:fd:f4:20:99:c5:ad: 41:03:53:96:3c:3a:8c:10:53:55:7a:a4:80:e6:c8: 59:0c:61:fa:c4:2d:20:d4:d7:54:6c:2c:13:70:b8: 18:7e:92:8e:c1:09:c8:bb:96:21:f1:98:e3:e5:34: 50:ed:e3:ac:08:6d:b6:18:84:1d:c6:04:b3:c1:9f: ed:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:BA:2C:61:DE:FA:89:A6:00:82:76:F6:6F:34:8F:26:09:D1:52:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c463e88-0f7c-4897-ac99-34b8567b1dc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8000::/39 Signature Algorithm: sha256WithRSAEncryption 83:db:b9:cb:7b:cf:e8:43:93:9c:f4:4d:67:64:01:49:03:26: 15:85:73:0f:50:de:dd:58:66:04:2c:bb:5d:dd:6a:13:73:80: e5:0f:52:0f:d4:97:7d:e7:c2:e3:f1:5c:f6:44:46:c5:7a:6e: 0a:96:35:7e:e3:61:a3:fa:5e:29:88:ed:52:d9:30:f1:a3:01: 9b:24:ce:e1:2d:6f:bf:f7:6a:1b:1c:00:23:89:d6:9d:3b:01: 08:55:10:67:0d:04:11:fb:55:57:c9:7a:a5:1f:25:b5:ba:d0: fe:4a:01:1d:78:c2:b5:15:df:2e:d4:92:f0:2a:70:9d:bd:66: 04:30:b7:c7:38:30:b3:94:6a:24:23:df:b7:95:a8:bf:fd:63: 30:cf:5a:38:74:f5:37:d8:f0:fb:14:d4:44:70:0d:82:35:75: f9:8a:be:5a:5d:14:5c:39:a6:60:67:1b:66:48:41:5b:89:e2: f2:ba:f7:c7:87:59:28:8f:27:bf:77:19:31:7e:61:c1:6d:88: 5b:93:72:70:bc:9a:9c:fa:9e:18:0b:37:bd:3f:54:82:99:e3: d1:05:f2:81:02:1c:11:2f:e5:0d:5d:c3:bd:c8:7e:ff:98:56: 1b:97:05:96:58:87:e0:83:7a:c6:00:be:74:30:d5:a8:c9:8e: 97:87:d3:2d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOD5jdDWJV1fv8FyBTdg4pxGO3QgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUzMTIwWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDhmZTJkZWNmMmM1N2QzOTkyOWI5ZGIzODllMWM5Y2Rj MmFiMjE4YTk5YjMwMjAyN2NlMDA4MWU2MzQwNTYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDppmRuGZquUKjS2F4cuvFv94wh9KEXsGXvUWirCnx6YYfD UcDhW5v6b+5QIuboWZzJXVDtNefaGaEOqRRkrXrZN17bu3MTVKv/eUE4mJ631xgL Bs8NuRj8+MCfDd4bPNPGUzvMj09AvfgI6MS6o+xfPzOkyz5yEeJheQhm/ckRAGWp /SAn1r5PSSY/iYg8pLYZkE//wjj0pEeUKJacbMbszD77lJ2gfsjFoSw53fdDcSiY MlJXW0vvEcAQG/30IJnFrUEDU5Y8OowQU1V6pIDmyFkMYfrELSDU11RsLBNwuBh+ ko7BCci7liHxmOPlNFDt46wIbbYYhB3GBLPBn+1RAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUz7osYd76iaYAgnb2bzSPJgnRUrowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjNDYzZTg4LTBmN2MtNDg5Ny1hYzk5LTM0Yjg1NjdiMWRjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB//gDANBgkqhkiG9w0BAQsFAAOCAQEAg9u5y3vP6EOTnPRNZ2QBSQMm FYVzD1De3VhmBCy7Xd1qE3OA5Q9SD9SXfefC4/Fc9kRGxXpuCpY1fuNho/peKYjt Utkw8aMBmyTO4S1vv/dqGxwAI4nWnTsBCFUQZw0EEftVV8l6pR8ltbrQ/koBHXjC tRXfLtSS8Cpwnb1mBDC3xzgws5RqJCPft5Wov/1jMM9aOHT1N9jw+xTURHANgjV1 +Yq+Wl0UXDmmYGcbZkhBW4ni8rr3x4dZKI8nv3cZMX5hwW2IW5NycLyanPqeGAs3 vT9Ugpnj0QXygQIcES/lDV3Dvch+/5hWG5cFlliH4IN6xgC+dDDVqMmOl4fTLQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:10 2025 by rpki-client