$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88fc7b11-27c5-436c-9c47-2bc31fd12223.roa File: 88fc7b11-27c5-436c-9c47-2bc31fd12223.roa (raw, json) Hash identifier: hkpRgmvpWjFJUqaipxduvlgkjP74Ulp7tWbcQCHDNLA= Subject key identifier: 61:0C:14:C9:93:A8:91:2A:A1:2F:27:C9:DE:C3:99:F1:01:77:10:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7CE5C60421A9EA90A3F887633CEE84060389D3D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88fc7b11-27c5-436c-9c47-2bc31fd12223.roa Signing time: Wed 13 Aug 2025 00:22:04 +0000 ROA not before: Wed 13 Aug 2025 00:22:04 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:e5:c6:04:21:a9:ea:90:a3:f8:87:63:3c:ee:84:06:03:89:d3:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:22:04 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=417cb83524ac0454ef36bdc6820ced815dc80f75f6ebb2d5713262344aaf206c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8f:1a:fa:47:3e:2b:f9:0b:e7:27:8b:40:cd: 25:53:55:21:f5:89:ad:c7:03:3e:c8:31:23:45:1e: 17:af:19:97:95:a9:8d:10:05:56:85:d5:35:7b:89: 25:41:95:92:31:59:32:00:2f:9c:ea:49:24:19:0d: b1:07:e4:df:9f:7c:12:c8:06:42:85:3e:ad:6b:86: e2:f2:f2:22:da:0e:5f:2d:79:e1:16:db:11:45:52: 46:ab:21:e8:bd:cf:29:b4:40:4b:35:4f:b8:0d:37: 1d:6c:bb:41:54:e2:51:39:80:b3:33:e0:61:e0:6f: ef:f0:10:55:c3:28:5a:a2:4c:4a:fb:86:67:1f:cc: 58:e8:aa:bc:53:59:0d:f3:91:d0:f1:ef:b4:a3:09: d0:6e:53:cd:3c:32:66:35:98:84:08:44:3f:45:0a: 1a:36:7d:47:e2:74:af:2a:6f:1d:88:7a:09:4f:0b: fb:f9:d4:9b:45:8b:dc:fb:31:4a:a4:29:60:17:91: a3:e0:6b:48:b6:76:53:97:63:d2:86:d7:42:e4:ae: 13:ee:f5:f2:77:eb:7b:ec:c4:5b:99:c1:c4:96:1b: 3c:17:ac:7f:32:60:c2:64:30:9c:44:3d:4f:e3:49: 5a:5a:46:3a:e7:fa:90:b0:d0:42:65:60:d1:d3:ff: bc:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:0C:14:C9:93:A8:91:2A:A1:2F:27:C9:DE:C3:99:F1:01:77:10:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/88fc7b11-27c5-436c-9c47-2bc31fd12223.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:c000::/40 Signature Algorithm: sha256WithRSAEncryption 74:93:0e:0f:bb:b3:2a:e9:d6:d7:c3:a2:36:89:d3:1e:fc:bd: fd:02:46:c4:9e:37:85:db:57:4d:c7:b2:34:1f:34:02:f5:7e: e6:e0:53:f7:db:84:9c:ba:ea:18:9b:a6:7c:03:60:6e:9b:21: c5:63:49:f7:2f:11:f1:41:bd:c6:a6:38:8d:87:ad:e2:35:7c: de:da:ad:7b:f7:dd:6f:93:eb:d3:65:81:0c:8a:2d:e6:d6:57: 3c:15:b6:81:e4:74:7c:4e:79:23:4a:c5:86:2a:b9:56:83:9c: 98:68:80:f9:06:05:62:97:df:2a:e1:83:86:0e:36:76:c5:f7: a1:36:b9:0b:58:d9:7a:82:aa:1e:87:6a:46:d1:aa:96:15:90: 1b:ea:10:39:66:1b:65:8d:39:5b:30:b8:29:34:14:d3:14:25: b5:ec:24:75:77:bd:6e:46:9a:c4:c4:fd:cc:9e:c3:6b:9f:77: 6b:33:ba:e2:a0:7a:7c:1d:6f:6f:74:b8:00:59:d7:71:6e:87: e0:ab:72:9b:62:cc:05:5e:81:d4:7c:a4:c5:da:f9:b5:f7:bb: 1d:93:8b:f5:fd:60:bb:69:0d:dc:17:e3:7c:a1:5c:71:e9:d4: f6:92:4e:06:df:bd:5c:fb:23:e6:5a:37:89:5d:be:46:79:34: 65:3d:be:01 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfOXGBCGp6pCj+IdjPO6EBgOJ09AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAyMjA0WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MTdjYjgzNTI0YWMwNDU0ZWYzNmJkYzY4MjBjZWQ4MTVk YzgwZjc1ZjZlYmIyZDU3MTMyNjIzNDRhYWYyMDZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7jxr6Rz4r+QvnJ4tAzSVTVSH1ia3HAz7IMSNFHhevGZeV qY0QBVaF1TV7iSVBlZIxWTIAL5zqSSQZDbEH5N+ffBLIBkKFPq1rhuLy8iLaDl8t eeEW2xFFUkarIei9zym0QEs1T7gNNx1su0FU4lE5gLMz4GHgb+/wEFXDKFqiTEr7 hmcfzFjoqrxTWQ3zkdDx77SjCdBuU808MmY1mIQIRD9FCho2fUfidK8qbx2IeglP C/v51JtFi9z7MUqkKWAXkaPga0i2dlOXY9KG10LkrhPu9fJ363vsxFuZwcSWGzwX rH8yYMJkMJxEPU/jSVpaRjrn+pCw0EJlYNHT/7xFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUYQwUyZOokSqhLyfJ3sOZ8QF3EAYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg4ZmM3YjExLTI3YzUtNDM2Yy05YzQ3LTJiYzMxZmQxMjIyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9owDANBgkqhkiG9w0BAQsFAAOCAQEAdJMOD7uzKunW18OiNonTHvy9 /QJGxJ43hdtXTceyNB80AvV+5uBT99uEnLrqGJumfANgbpshxWNJ9y8R8UG9xqY4 jYet4jV83tqte/fdb5Pr02WBDIot5tZXPBW2geR0fE55I0rFhiq5VoOcmGiA+QYF YpffKuGDhg42dsX3oTa5C1jZeoKqHodqRtGqlhWQG+oQOWYbZY05WzC4KTQU0xQl tewkdXe9bkaaxMT9zJ7Da593azO64qB6fB1vb3S4AFnXcW6H4Ktym2LMBV6B1Hyk xdr5tfe7HZOL9f1gu2kN3BfjfKFccenU9pJOBt+9XPsj5lo3iV2+Rnk0ZT2+AQ== -----END CERTIFICATE-----Generated at Sat Aug 23 10:13:03 2025 by rpki-client