$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa File: a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa (raw, json) Hash identifier: MFIdEIX1DCpaAConhR4QajehJsj0nPyO9yKZwmxLtWQ= Subject key identifier: 82:FC:D0:70:2C:D4:6B:15:6E:13:83:E5:AD:AF:97:02:92:A8:96:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D2F71A1824E470B39D2D859622B1FEBC043AE98 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa Signing time: Tue 19 Aug 2025 00:11:09 +0000 ROA not before: Tue 19 Aug 2025 00:11:09 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:2f:71:a1:82:4e:47:0b:39:d2:d8:59:62:2b:1f:eb:c0:43:ae:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 19 00:11:09 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=03359487e571b59e8e72c8051d7cb3ef0154339951e6b72165d464d329f15b1a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ac:61:7f:1b:74:fe:42:9c:a4:be:9e:0c:75: fa:84:9e:bb:4d:ca:fa:e8:82:ce:d6:91:50:48:a8: b6:e4:be:d4:4a:db:07:92:7b:e6:b2:c2:64:82:8f: 8b:bb:6b:10:98:b6:60:97:c3:45:f5:b5:79:2f:78: a4:2b:1b:ad:96:50:63:c4:92:57:47:38:3f:6d:29: 03:88:4f:91:71:3b:e6:63:f4:5b:0e:ea:31:a4:4a: a2:e1:39:0e:2e:30:1a:6e:d1:bc:b1:da:e2:17:68: 3d:f6:e7:d3:26:cf:9c:94:4a:67:34:aa:78:ff:b5: 57:03:d7:55:76:4b:f8:4f:d0:15:08:cd:3e:f6:9c: 75:b9:96:1a:30:13:ff:7f:bf:3d:26:be:36:7f:2c: e8:6b:b1:d0:13:db:17:5d:ab:0a:e0:d5:32:58:ee: bd:02:96:da:b8:ad:c6:c7:18:2f:e7:b2:a9:52:e3: 69:5f:34:cf:41:20:7a:6a:ff:de:db:2e:7a:c7:24: 4d:07:9f:18:c5:65:e1:44:57:bd:c6:23:6e:f8:38: 70:b8:ba:ca:71:b7:58:61:67:e9:ca:6e:60:53:04: f8:00:fa:7e:d3:7b:1d:ed:69:47:61:9e:6e:54:97: 34:83:c9:c9:3c:db:70:72:47:3a:e1:9d:6e:2a:00: 63:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:FC:D0:70:2C:D4:6B:15:6E:13:83:E5:AD:AF:97:02:92:A8:96:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:3400::/40 Signature Algorithm: sha256WithRSAEncryption 1f:57:e4:44:ea:da:9b:90:99:b1:26:e2:aa:d7:1c:37:e0:82: e1:9f:ac:09:d9:80:46:46:ca:5d:41:57:17:c4:16:d9:be:42: 1d:ef:b8:9a:43:67:15:a3:fb:9f:e3:9b:44:4d:ce:84:fc:5e: be:31:60:89:e8:06:d8:79:56:c3:df:78:ba:21:a1:5f:df:30: f5:cd:be:b4:f1:16:d4:4b:4f:c7:3b:e3:6a:8a:5d:34:df:a7: 40:21:e6:8a:26:b1:eb:0a:ec:2e:10:aa:b9:3e:c9:5a:f2:b0: dc:fe:02:32:81:56:a4:7b:f1:18:3d:3a:92:58:1f:71:df:63: 92:b8:86:e4:34:22:d9:29:ba:2b:af:e6:9f:13:e1:a0:8d:a8: c2:0a:e7:45:b0:98:96:47:a9:00:fa:47:70:b5:33:8c:65:57: d6:50:fb:3e:6e:00:f2:b5:08:05:13:4f:b7:0e:6d:ad:b7:da: 60:4f:31:5f:96:4c:9f:e7:24:a6:e4:46:3b:3e:1b:d8:5d:17: 20:fa:fa:9f:35:3c:a4:8b:4d:17:d8:8f:b0:54:2e:e8:4a:f2: ae:c3:51:03:3d:03:c6:17:0a:6d:79:26:fa:d1:49:d0:6f:9d: b0:80:ac:a0:55:dd:57:21:09:d4:4f:c2:3f:14:6a:cf:f2:6c: 27:5b:02:02 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfS9xoYJORws50thZYisf68BDrpgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE5MDAxMTA5WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzM1OTQ4N2U1NzFiNTllOGU3MmM4MDUxZDdjYjNlZjAx NTQzMzk5NTFlNmI3MjE2NWQ0NjRkMzI5ZjE1YjFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdrGF/G3T+Qpykvp4MdfqEnrtNyvrogs7WkVBIqLbkvtRK 2weSe+aywmSCj4u7axCYtmCXw0X1tXkveKQrG62WUGPEkldHOD9tKQOIT5FxO+Zj 9FsO6jGkSqLhOQ4uMBpu0byx2uIXaD3259Mmz5yUSmc0qnj/tVcD11V2S/hP0BUI zT72nHW5lhowE/9/vz0mvjZ/LOhrsdAT2xddqwrg1TJY7r0Cltq4rcbHGC/nsqlS 42lfNM9BIHpq/97bLnrHJE0HnxjFZeFEV73GI274OHC4uspxt1hhZ+nKbmBTBPgA +n7Tex3taUdhnm5UlzSDyck823ByRzrhnW4qAGPZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUgvzQcCzUaxVuE4Plra+XApKolgwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZmZkYTk4LWJkNjctNGExOC05Nzk3LTM1YWEyZTA0YTJiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gNDANBgkqhkiG9w0BAQsFAAOCAQEAH1fkROram5CZsSbiqtccN+CC 4Z+sCdmARkbKXUFXF8QW2b5CHe+4mkNnFaP7n+ObRE3OhPxevjFgiegG2HlWw994 uiGhX98w9c2+tPEW1EtPxzvjaopdNN+nQCHmiiax6wrsLhCquT7JWvKw3P4CMoFW pHvxGD06klgfcd9jkriG5DQi2Sm6K6/mnxPhoI2owgrnRbCYlkepAPpHcLUzjGVX 1lD7Pm4A8rUIBRNPtw5trbfaYE8xX5ZMn+ckpuRGOz4b2F0XIPr6nzU8pItNF9iP sFQu6EryrsNRAz0DxhcKbXkm+tFJ0G+dsICsoFXdVyEJ1E/CPxRqz/JsJ1sCAg== -----END CERTIFICATE-----Generated at Sat Aug 23 08:23:20 2025 by rpki-client