$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5cb9a48f-17e2-4fa1-8ff6-b5f80c8a8908.roa File: 5cb9a48f-17e2-4fa1-8ff6-b5f80c8a8908.roa (raw, json) Hash identifier: Dx2Y2/ewqW1rfxlRjuzpEJ8DsJLpnzQeGmCGkstFXE4= Subject key identifier: 9E:8C:98:9A:B8:AA:C3:74:83:1F:EE:B6:45:2F:EC:38:E4:9A:65:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A9B75403D8E4DCACED1837D2BF424B675C77073 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5cb9a48f-17e2-4fa1-8ff6-b5f80c8a8908.roa Signing time: Wed 06 Aug 2025 00:20:26 +0000 ROA not before: Wed 06 Aug 2025 00:20:26 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fef:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:9b:75:40:3d:8e:4d:ca:ce:d1:83:7d:2b:f4:24:b6:75:c7:70:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 6 00:20:26 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=0031aec051e07a1d3c0977f3f18df51bf17e33982e99de4eaaff4a8b62348fc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:3a:9f:62:5b:d0:e1:bd:77:bf:9e:45:98:f0: a8:08:ed:93:a7:13:cd:4f:d2:dc:f1:a7:50:f9:c9: f1:b5:34:fc:72:f6:f0:1e:64:98:8d:5d:01:30:0a: 39:f3:75:a8:36:73:ac:e1:7d:36:d6:8e:17:f1:f1: 63:10:ef:b4:59:17:17:d9:4b:43:a5:2e:51:10:7b: 74:36:06:6e:13:cb:c7:b0:79:20:ba:0d:c8:4b:29: d6:32:52:1d:be:fa:fa:0e:7d:ee:bb:3f:ce:b1:f6: 4f:66:60:d9:96:97:31:91:03:9e:dc:73:0b:84:42: b0:d4:51:f5:1f:31:97:da:3b:70:b8:70:fa:1b:ad: 31:1d:31:d8:f4:18:96:cf:44:6c:1e:84:f8:83:44: 39:9f:1f:ed:03:8d:f9:c3:be:0c:d9:7f:ac:c3:6d: cf:4d:0c:f1:61:0d:e1:b7:69:df:31:b8:70:c9:05: d5:17:1a:a4:43:68:91:23:2f:88:6d:a6:32:c4:a9: b5:f6:ea:9d:b5:e1:08:3d:e4:b7:4e:5e:a2:77:6d: dc:51:84:2c:34:fe:2f:82:aa:00:64:28:f5:b1:7f: d9:1e:b1:fd:d9:47:77:cd:78:13:7c:48:ad:12:7c: dc:c5:c4:af:45:d6:5d:bc:6b:e5:0d:cc:09:bc:c4: f1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:8C:98:9A:B8:AA:C3:74:83:1F:EE:B6:45:2F:EC:38:E4:9A:65:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5cb9a48f-17e2-4fa1-8ff6-b5f80c8a8908.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:c000::/40 Signature Algorithm: sha256WithRSAEncryption 29:95:06:96:18:bc:e9:a3:81:37:d2:b4:87:80:70:b4:d5:0c: 95:1d:f0:0b:94:a9:e5:53:68:47:15:80:1a:b8:29:7c:50:41: 37:2f:19:51:94:0a:6b:38:8a:a8:0a:58:4a:76:0a:1f:8a:16: 9e:20:7e:23:59:d3:07:5e:68:17:14:86:af:46:87:09:46:61: 5d:8e:5e:41:bc:e4:86:d4:91:10:2b:18:6d:1a:e8:88:fd:38: 93:a4:b1:9d:ca:0b:1a:54:c5:f2:12:6c:1b:05:3c:7b:e6:a1: a8:39:f7:77:6a:43:ec:35:14:e5:b7:93:d1:59:32:23:6a:63: d1:db:26:21:9a:40:d9:29:b5:f5:e7:78:34:f9:3b:91:3a:5c: 7b:54:a8:99:18:7a:b7:95:16:1a:4a:38:14:c9:59:e2:bb:ff: 0a:51:2a:9e:50:5b:41:f6:2e:50:b0:ac:d7:2f:2b:12:b3:c7: 58:a6:50:a4:1f:2d:be:d0:fe:c6:1c:2c:d9:5a:dc:3f:82:ac: 2e:47:96:fe:c1:c0:81:35:dc:9e:b4:c6:eb:57:4f:2a:7a:1c: 9a:70:dd:96:b6:1f:84:c6:df:6b:97:99:ba:0e:ab:a9:47:8f: b0:31:ed:80:2f:50:59:db:31:41:23:88:ca:5f:fa:40:be:37: 13:7a:e5:05 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSpt1QD2OTcrO0YN9K/QktnXHcHMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA2MDAyMDI2WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDMxYWVjMDUxZTA3YTFkM2MwOTc3ZjNmMThkZjUxYmYx N2UzMzk4MmU5OWRlNGVhYWZmNGE4YjYyMzQ4ZmM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrOp9iW9DhvXe/nkWY8KgI7ZOnE81P0tzxp1D5yfG1NPxy 9vAeZJiNXQEwCjnzdag2c6zhfTbWjhfx8WMQ77RZFxfZS0OlLlEQe3Q2Bm4Ty8ew eSC6DchLKdYyUh2++voOfe67P86x9k9mYNmWlzGRA57ccwuEQrDUUfUfMZfaO3C4 cPobrTEdMdj0GJbPRGwehPiDRDmfH+0DjfnDvgzZf6zDbc9NDPFhDeG3ad8xuHDJ BdUXGqRDaJEjL4htpjLEqbX26p214Qg95LdOXqJ3bdxRhCw0/i+CqgBkKPWxf9ke sf3ZR3fNeBN8SK0SfNzFxK9F1l28a+UNzAm8xPEFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnoyYmriqw3SDH+62RS/sOOSaZTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVjYjlhNDhmLTE3ZTItNGZhMS04ZmY2LWI1ZjgwYzhhODkwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vwDANBgkqhkiG9w0BAQsFAAOCAQEAKZUGlhi86aOBN9K0h4BwtNUM lR3wC5Sp5VNoRxWAGrgpfFBBNy8ZUZQKaziKqApYSnYKH4oWniB+I1nTB15oFxSG r0aHCUZhXY5eQbzkhtSRECsYbRroiP04k6SxncoLGlTF8hJsGwU8e+ahqDn3d2pD 7DUU5beT0VkyI2pj0dsmIZpA2Sm19ed4NPk7kTpce1SomRh6t5UWGko4FMlZ4rv/ ClEqnlBbQfYuULCs1y8rErPHWKZQpB8tvtD+xhws2VrcP4KsLkeW/sHAgTXcnrTG 61dPKnocmnDdlrYfhMbfa5eZug6rqUePsDHtgC9QWdsxQSOIyl/6QL43E3rlBQ== -----END CERTIFICATE-----Generated at Sat Aug 23 10:21:04 2025 by rpki-client