$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/837b61fc-a3e4-4d74-b321-99209fe5979e.roa File: 837b61fc-a3e4-4d74-b321-99209fe5979e.roa (raw, json) Hash identifier: U8uFYD+RnldCTMK4fiZeVut/y/NWaUE0gZXqRlWif/w= Subject key identifier: 02:4C:E4:8B:58:2D:71:FB:77:78:EA:4B:50:A0:69:76:80:A4:E3:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0530414331136D32650DBCCE79557955381B650B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/837b61fc-a3e4-4d74-b321-99209fe5979e.roa Signing time: Wed 13 Aug 2025 00:10:29 +0000 ROA not before: Wed 13 Aug 2025 00:10:29 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffd:83ad::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:30:41:43:31:13:6d:32:65:0d:bc:ce:79:55:79:55:38:1b:65:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:10:29 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=473dd91b8bcc0ede1eaa2b7b36f792cb1b53e185ef9a72e609b1171312b3158f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:30:98:b8:58:ef:bb:a1:b2:ae:76:21:e6:6a: 57:68:38:71:a3:11:cd:2e:7f:00:54:30:a0:8a:71: b9:44:65:7d:08:9c:af:07:04:55:11:45:de:29:f0: e1:d8:af:fe:2c:9d:41:df:81:3e:9c:c9:e6:bf:c0: 34:d8:73:61:66:be:07:a5:ce:65:25:e1:c9:e2:03: c4:1e:55:5f:9c:e2:c5:7e:18:4c:3c:50:ae:8d:27: 96:d2:0a:b3:9c:ea:e6:f8:9a:b6:57:40:c7:ca:d7: 27:04:81:0f:c2:10:66:df:a9:6e:be:92:44:85:6a: 99:3e:64:a7:aa:d6:69:a5:85:69:5d:16:50:db:3e: de:d4:d0:51:30:67:d4:b0:86:e1:1c:bd:2b:4d:c5: 64:86:cb:9c:81:69:c0:8a:d9:f6:10:e0:1c:b7:c2: 3b:28:6b:4c:1e:63:eb:42:83:11:22:aa:68:1d:ab: 0d:ed:b2:04:97:c8:22:79:0f:54:86:5a:8a:b1:b3: 8f:28:ad:4e:4e:64:71:01:58:c2:73:c2:52:87:8f: 5f:44:47:0b:a0:6e:8c:d9:eb:65:42:96:c3:ca:a6: 6d:a8:bf:b4:0e:7d:08:45:c1:c5:4d:88:49:8b:ea: 44:b3:1e:e1:47:33:11:2c:87:87:22:c2:3e:90:69: 29:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:4C:E4:8B:58:2D:71:FB:77:78:EA:4B:50:A0:69:76:80:A4:E3:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/837b61fc-a3e4-4d74-b321-99209fe5979e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffd:83ad::/48 Signature Algorithm: sha256WithRSAEncryption 71:38:0b:3e:fe:87:be:11:ee:61:85:ff:4d:e3:71:86:45:b5: 65:f9:9a:85:e5:9a:95:ea:b1:9d:12:f7:96:4a:9b:5f:d3:2e: 85:5b:58:6c:c5:57:cb:d3:78:44:79:6f:a1:08:b8:04:8f:86: 8b:0a:ad:4e:e6:c4:8b:fd:1d:8b:af:99:4b:b2:b1:a7:af:9a: 30:6d:0d:c7:32:5e:f1:02:28:c9:50:08:c0:2a:c6:73:c2:2e: 35:c2:6a:38:66:8a:ca:f4:1b:a9:2b:c5:be:33:18:d9:a6:2a: 61:58:63:cd:cc:89:0c:f4:0d:5d:13:60:ad:b1:d6:5d:d5:84: 94:a1:47:a8:fa:aa:ef:bc:36:45:46:f0:fe:d2:67:17:4e:ca: 44:23:69:f5:7f:8f:ba:17:e1:d2:05:43:f7:c2:35:e5:50:b1: d5:66:f8:ec:57:44:34:c9:d2:71:56:f4:b1:59:0d:c0:19:7e: 63:c4:f4:d9:43:b8:dd:5a:ad:3f:d6:28:c6:a6:a2:38:10:37: d0:75:07:79:41:6a:27:15:f0:ef:f6:bd:1f:54:3f:3f:a0:9c: c3:61:31:5d:ea:93:d7:a9:fd:60:08:d1:ed:48:a2:6b:b1:d0: 84:66:2c:2f:c9:22:c8:19:21:4c:04:12:eb:a6:cb:23:54:d6: 7c:a8:2c:4d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBTBBQzETbTJlDbzOeVV5VTgbZQswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMDI5WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzNkZDkxYjhiY2MwZWRlMWVhYTJiN2IzNmY3OTJjYjFi NTNlMTg1ZWY5YTcyZTYwOWIxMTcxMzEyYjMxNThmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYMJi4WO+7obKudiHmaldoOHGjEc0ufwBUMKCKcblEZX0I nK8HBFURRd4p8OHYr/4snUHfgT6cyea/wDTYc2FmvgelzmUl4cniA8QeVV+c4sV+ GEw8UK6NJ5bSCrOc6ub4mrZXQMfK1ycEgQ/CEGbfqW6+kkSFapk+ZKeq1mmlhWld FlDbPt7U0FEwZ9SwhuEcvStNxWSGy5yBacCK2fYQ4By3wjsoa0weY+tCgxEiqmgd qw3tsgSXyCJ5D1SGWoqxs48orU5OZHEBWMJzwlKHj19ERwugbozZ62VClsPKpm2o v7QOfQhFwcVNiEmL6kSzHuFHMxEsh4ciwj6QaSmBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAkzki1gtcft3eOpLUKBpdoCk4ywwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgzN2I2MWZjLWEzZTQtNGQ3NC1iMzIxLTk5MjA5ZmU1OTc5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/9g60wDQYJKoZIhvcNAQELBQADggEBAHE4Cz7+h74R7mGF/03jcYZF tWX5moXlmpXqsZ0S95ZKm1/TLoVbWGzFV8vTeER5b6EIuASPhosKrU7mxIv9HYuv mUuysaevmjBtDccyXvECKMlQCMAqxnPCLjXCajhmisr0G6krxb4zGNmmKmFYY83M iQz0DV0TYK2x1l3VhJShR6j6qu+8NkVG8P7SZxdOykQjafV/j7oX4dIFQ/fCNeVQ sdVm+OxXRDTJ0nFW9LFZDcAZfmPE9NlDuN1arT/WKMamojgQN9B1B3lBaicV8O/2 vR9UPz+gnMNhMV3qk9ep/WAI0e1Iomux0IRmLC/JIsgZIUwEEuumyyNU1nyoLE0= -----END CERTIFICATE-----Generated at Sat Aug 23 06:48:20 2025 by rpki-client