$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/998b9d87-46d7-45d1-85e8-62d6d8298271.roa File: 998b9d87-46d7-45d1-85e8-62d6d8298271.roa (raw, json) Hash identifier: Bv5ZXqvlc5b75hzp9decnr12Q1L7yD+eqYr2aHnICN8= Subject key identifier: FD:DD:8C:37:C3:4C:6E:5E:BE:AE:A7:06:12:3F:A6:C4:F4:F0:96:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D1DEC5C6C0ED6D2A500C0AB19C210AAF98B46F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/998b9d87-46d7-45d1-85e8-62d6d8298271.roa Signing time: Wed 13 Aug 2025 00:11:11 +0000 ROA not before: Wed 13 Aug 2025 00:11:11 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f32:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:1d:ec:5c:6c:0e:d6:d2:a5:00:c0:ab:19:c2:10:aa:f9:8b:46:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:11:11 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=d12153e708d173812e16cad024a4c822381e89824756d962aae7dbb5d52e5872, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a5:cf:0b:9e:05:0f:ae:cc:05:00:70:72:af: df:8a:ff:86:d2:ee:fd:04:7a:c9:21:6b:a8:f6:92: 04:cf:6b:9e:14:e5:aa:39:c8:2d:75:4c:e1:22:d8: 16:db:8a:6a:d6:1e:59:8f:57:d4:6c:f2:f1:db:6f: 91:40:b0:1d:c1:b9:04:52:f1:e5:aa:a8:84:15:0d: 3f:7e:93:41:48:2f:57:50:9b:1c:83:46:63:b3:10: 40:84:c0:e6:ba:f6:c8:dd:f5:87:3e:59:ae:a2:87: 85:14:23:fc:e8:d8:2f:15:6e:12:63:3e:45:ec:72: 07:80:d9:6f:7d:a9:6f:74:07:56:c6:5f:3d:0d:8d: ac:9b:db:56:c7:85:da:a4:f2:f5:59:e2:33:55:80: 3e:7e:1f:d3:19:4b:62:2c:5d:62:f6:e0:19:df:e3: d5:9c:87:d5:7b:a9:d1:85:ab:84:2a:53:85:71:15: 4b:f4:9d:d9:f5:a0:00:fb:c1:4c:89:fa:0b:92:33: 54:2d:12:ae:e7:69:c6:95:dc:c2:1e:30:1a:fb:3e: 5e:69:84:02:ed:a4:81:41:e6:51:db:13:dd:a5:ea: 73:ce:4d:fb:04:e6:1c:49:fa:0d:f3:e1:17:b8:3e: 9c:84:73:02:c3:5a:73:7c:cd:6a:1f:ea:aa:92:35: 48:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:DD:8C:37:C3:4C:6E:5E:BE:AE:A7:06:12:3F:A6:C4:F4:F0:96:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/998b9d87-46d7-45d1-85e8-62d6d8298271.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:2000::/40 Signature Algorithm: sha256WithRSAEncryption 4b:a3:63:a0:14:a1:eb:d6:cd:1f:48:7a:e4:94:7c:f2:db:97: b1:1d:92:8e:6c:b7:60:47:00:1e:e2:1a:22:01:d9:c4:75:2b: a2:7e:20:39:f1:1c:d2:9f:cc:d8:e7:53:f9:05:07:be:b0:6d: ac:9a:cd:10:8c:2c:85:19:02:ed:94:da:0c:ae:2a:51:d3:8c: 25:0c:f1:2c:82:68:49:0b:df:71:70:d5:09:e9:8f:7c:a6:fe: 92:53:2d:be:6e:05:39:32:51:6a:59:bf:7d:b3:ea:29:c6:6d: bd:1d:40:b4:01:77:48:f1:a6:b8:88:7f:9c:37:90:e1:47:4c: 84:41:6a:fa:a1:cb:50:df:82:16:a9:46:18:4f:f1:cf:f9:c7: 0e:67:d7:9a:76:e9:27:82:58:5f:a4:f9:0d:90:ad:f1:d9:51: e5:14:b3:42:01:69:64:79:97:47:22:5e:ec:d0:f9:c8:32:97: 91:18:c2:63:9a:fd:3f:60:a6:60:de:6f:3f:9d:cb:d5:39:3a: 6f:b1:73:2e:1b:a5:2a:58:88:98:1d:87:b0:e7:60:88:ac:ff: e4:f8:0b:e2:6a:ec:1a:16:06:65:6e:af:10:fd:2b:75:b1:57: ad:92:9d:b4:67:79:41:23:16:14:4b:0d:6b:9c:54:5f:ff:07: 30:53:da:89 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULR3sXGwO1tKlAMCrGcIQqvmLRvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMTExWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTIxNTNlNzA4ZDE3MzgxMmUxNmNhZDAyNGE0YzgyMjM4 MWU4OTgyNDc1NmQ5NjJhYWU3ZGJiNWQ1MmU1ODcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzpc8LngUPrswFAHByr9+K/4bS7v0Eeskha6j2kgTPa54U 5ao5yC11TOEi2BbbimrWHlmPV9Rs8vHbb5FAsB3BuQRS8eWqqIQVDT9+k0FIL1dQ mxyDRmOzEECEwOa69sjd9Yc+Wa6ih4UUI/zo2C8VbhJjPkXscgeA2W99qW90B1bG Xz0Njayb21bHhdqk8vVZ4jNVgD5+H9MZS2IsXWL24Bnf49Wch9V7qdGFq4QqU4Vx FUv0ndn1oAD7wUyJ+guSM1QtEq7nacaV3MIeMBr7Pl5phALtpIFB5lHbE92l6nPO TfsE5hxJ+g3z4Re4PpyEcwLDWnN8zWof6qqSNUgNAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU/d2MN8NMbl6+rqcGEj+mxPTwlqQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5OGI5ZDg3LTQ2ZDctNDVkMS04NWU4LTYyZDZkODI5ODI3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8yIDANBgkqhkiG9w0BAQsFAAOCAQEAS6NjoBSh69bNH0h65JR88tuX sR2Sjmy3YEcAHuIaIgHZxHUron4gOfEc0p/M2OdT+QUHvrBtrJrNEIwshRkC7ZTa DK4qUdOMJQzxLIJoSQvfcXDVCemPfKb+klMtvm4FOTJRalm/fbPqKcZtvR1AtAF3 SPGmuIh/nDeQ4UdMhEFq+qHLUN+CFqlGGE/xz/nHDmfXmnbpJ4JYX6T5DZCt8dlR 5RSzQgFpZHmXRyJe7ND5yDKXkRjCY5r9P2CmYN5vP53L1Tk6b7FzLhulKliImB2H sOdgiKz/5PgL4mrsGhYGZW6vEP0rdbFXrZKdtGd5QSMWFEsNa5xUX/8HMFPaiQ== -----END CERTIFICATE-----Generated at Sat Aug 23 15:14:20 2025 by rpki-client