$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89570917-e234-4dbb-8694-dc75eb220444.roa File: 89570917-e234-4dbb-8694-dc75eb220444.roa (raw, json) Hash identifier: KhBg2JISS0xiK2VIoVEH77+MQbOShCpwdO3u3ZKS3Z4= Subject key identifier: D0:CC:8B:26:DF:DC:3F:79:C6:1C:9B:DC:14:56:3E:01:5F:7E:28:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F2E746656D61C3A97F61DAED7B3B9F26EF62D83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89570917-e234-4dbb-8694-dc75eb220444.roa Signing time: Fri 15 Aug 2025 00:40:19 +0000 ROA not before: Fri 15 Aug 2025 00:40:19 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1ff2:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:2e:74:66:56:d6:1c:3a:97:f6:1d:ae:d7:b3:b9:f2:6e:f6:2d:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 15 00:40:19 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=a15c45cfadf40ec0455942bf3db3398f6b58e3046619de6647c6a1f01b6d7007, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ac:af:6f:8d:05:c8:31:e6:1e:12:22:56:6e: 3f:bd:86:28:60:59:72:00:41:7f:84:99:b9:de:f9: fe:93:b9:24:68:ba:d3:0e:4c:56:ae:d4:9b:16:88: d9:3d:a7:9f:32:f6:f8:f1:85:4e:a6:8a:4c:4f:c1: 1c:b0:69:00:9c:94:9d:4e:7e:48:79:5b:c6:30:bd: ab:2a:14:0d:9f:7f:61:d4:0d:66:47:ca:ec:83:de: 64:70:1e:40:b8:01:e8:eb:96:70:4c:a1:c3:8e:d0: 2f:d8:56:cd:68:64:e0:3a:d6:6c:5d:04:19:06:c7: b2:84:0d:3c:b0:1f:45:ec:cb:6f:c4:eb:b6:bc:dc: ae:75:37:63:8e:bd:e0:4c:bf:0b:c7:6c:8c:af:5f: 73:33:46:86:02:ea:25:91:f8:1b:f1:15:95:8b:d2: 21:d1:f5:48:dd:be:5c:ff:27:c6:30:33:c8:c2:46: e7:51:72:fe:7e:79:d4:05:4d:46:32:53:04:99:55: 94:99:b0:0d:59:27:39:f9:df:7f:8a:44:1f:49:2a: 34:5b:e9:c3:b9:87:21:34:d7:15:81:b7:bf:e1:30: 19:fa:7a:d7:56:3e:a1:aa:39:12:88:eb:fc:a9:00: 8e:5a:d2:55:ec:33:f9:0a:a2:d4:c0:c7:44:b5:fa: 93:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:CC:8B:26:DF:DC:3F:79:C6:1C:9B:DC:14:56:3E:01:5F:7E:28:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/89570917-e234-4dbb-8694-dc75eb220444.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8000::/39 Signature Algorithm: sha256WithRSAEncryption 39:2d:26:69:d4:a5:65:a6:d1:77:66:4f:d3:96:1a:00:91:e2: 99:42:65:60:21:1c:35:2f:5b:de:e7:20:1a:04:a4:8a:a5:18: 4b:03:4e:74:66:95:62:fa:d5:da:ef:37:07:a7:66:c9:6c:81: 25:d5:a5:05:d2:ec:22:47:7c:45:7a:e0:68:8f:ee:4d:7a:f3: cd:74:3d:a4:9c:52:5f:b1:59:75:dc:cc:58:3e:f8:ba:7c:b5: fd:91:f9:74:6f:2e:af:88:d6:3d:a5:68:df:25:78:fa:40:3d: 45:b7:86:36:65:5d:17:e5:6e:73:79:e9:53:8b:24:02:fa:8c: 5b:d3:c4:a8:17:33:f5:40:53:4c:e0:06:58:02:25:9f:8f:a9: 03:0e:e0:0f:3c:6a:f6:ba:af:b6:bd:77:6b:76:ee:95:95:6f: 2a:39:7d:2a:97:a7:10:0c:2c:90:15:c6:e2:61:d0:43:87:59: a3:9c:e1:fc:6f:50:47:bb:23:6a:fb:98:f3:01:72:37:70:f5: de:24:8c:44:d1:12:de:b8:1e:0c:c4:69:89:6b:c3:c2:8e:e7: 7d:4d:f0:d3:16:23:da:52:c0:2f:ae:93:93:08:78:38:88:be: 79:bc:55:82:95:cf:ee:95:34:c0:51:6d:71:e9:ae:bb:20:7b: 3b:b9:49:df -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUDy50ZlbWHDqX9h2u17O58m72LYMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE1MDA0MDE5WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTVjNDVjZmFkZjQwZWMwNDU1OTQyYmYzZGIzMzk4ZjZi NThlMzA0NjYxOWRlNjY0N2M2YTFmMDFiNmQ3MDA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOrK9vjQXIMeYeEiJWbj+9hihgWXIAQX+Embne+f6TuSRo utMOTFau1JsWiNk9p58y9vjxhU6mikxPwRywaQCclJ1Ofkh5W8YwvasqFA2ff2HU DWZHyuyD3mRwHkC4AejrlnBMocOO0C/YVs1oZOA61mxdBBkGx7KEDTywH0Xsy2/E 67a83K51N2OOveBMvwvHbIyvX3MzRoYC6iWR+BvxFZWL0iHR9Ujdvlz/J8YwM8jC RudRcv5+edQFTUYyUwSZVZSZsA1ZJzn533+KRB9JKjRb6cO5hyE01xWBt7/hMBn6 etdWPqGqORKI6/ypAI5a0lXsM/kKotTAx0S1+pMlAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0MyLJt/cP3nGHJvcFFY+AV9+KLowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5NTcwOTE3LWUyMzQtNGRiYi04Njk0LWRjNzVlYjIyMDQ0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/ygDANBgkqhkiG9w0BAQsFAAOCAQEAOS0madSlZabRd2ZP05YaAJHi mUJlYCEcNS9b3ucgGgSkiqUYSwNOdGaVYvrV2u83B6dmyWyBJdWlBdLsIkd8RXrg aI/uTXrzzXQ9pJxSX7FZddzMWD74uny1/ZH5dG8ur4jWPaVo3yV4+kA9RbeGNmVd F+Vuc3npU4skAvqMW9PEqBcz9UBTTOAGWAIln4+pAw7gDzxq9rqvtr13a3bulZVv Kjl9KpenEAwskBXG4mHQQ4dZo5zh/G9QR7sjavuY8wFyN3D13iSMRNES3rgeDMRp iWvDwo7nfU3w0xYj2lLAL66Tkwh4OIi+ebxVgpXP7pU0wFFtcemuuyB7O7lJ3w== -----END CERTIFICATE-----Generated at Sat Aug 23 07:03:11 2025 by rpki-client