$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af499eea-e6b5-4a3f-92db-69be5753668f.roa File: af499eea-e6b5-4a3f-92db-69be5753668f.roa (raw, json) Hash identifier: TOy5G6QEkrA+5+cTkXe/RD8gS7Ci3IY4mQ9X+ym9Gh0= Subject key identifier: B8:35:06:4E:FA:07:06:8C:FE:68:B7:5F:A5:16:C4:FB:14:E2:6D:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 07071EB35618502CBFC5A6390E01B011BA95E65F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af499eea-e6b5-4a3f-92db-69be5753668f.roa Signing time: Mon 18 Aug 2025 15:41:45 +0000 ROA not before: Mon 18 Aug 2025 15:41:45 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1fbb:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:07:1e:b3:56:18:50:2c:bf:c5:a6:39:0e:01:b0:11:ba:95:e6:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:41:45 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=0175b1e03e99a0c6c63cff70e1d50cc951731e202e58bb72c4e93375d68d4b85, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:66:ef:2d:34:f0:d3:42:b8:cb:ca:a0:fa:a8: 69:aa:ff:a4:88:32:27:5f:fe:b1:7e:72:f5:69:6d: 41:92:d6:38:62:3b:bb:5b:77:5d:99:22:97:b9:94: 5f:ae:c0:14:bf:19:18:7d:47:e0:eb:bd:d0:64:98: fc:41:01:8b:53:f6:bc:2a:c0:64:63:02:2b:5d:84: ce:30:8f:fd:46:3a:11:21:9c:be:12:82:27:43:34: a9:5a:f8:80:96:cf:f7:6f:4a:d0:51:57:3b:16:de: e6:d8:9e:f9:54:ac:95:44:83:d3:c1:f5:cb:84:07: c1:86:d2:a5:3b:58:d6:a7:58:d6:f0:fa:31:ab:f1: e2:a0:27:94:87:33:cf:98:9f:25:f1:61:a2:53:38: 7b:ec:5d:38:b7:91:4a:89:ff:ef:9e:0a:fe:c3:40: ae:9e:65:f2:36:2f:38:92:29:bd:ee:a8:a9:17:cd: cc:6a:d2:cb:86:ac:85:c6:6a:8d:65:ab:ec:b9:da: 61:5e:79:a0:94:3b:c9:ec:b4:aa:22:de:e1:84:f2: 2f:72:76:0b:4c:11:c4:84:af:73:7c:a5:94:aa:0f: f7:1e:53:e6:c9:8f:c6:75:e5:33:d7:c9:bf:6f:52: b3:09:b2:98:33:19:99:1a:d4:4a:d4:0c:6f:3d:c6: e9:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:35:06:4E:FA:07:06:8C:FE:68:B7:5F:A5:16:C4:FB:14:E2:6D:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/af499eea-e6b5-4a3f-92db-69be5753668f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fbb:5000::/40 Signature Algorithm: sha256WithRSAEncryption 73:d0:ca:24:3b:66:05:0a:0c:d5:14:f4:5c:3e:9a:0e:2a:af: 59:86:83:74:47:f2:fc:75:3c:d0:ca:6b:b0:a8:50:da:96:4f: ab:03:ab:6b:a7:e7:87:c8:69:7e:62:56:17:92:29:4d:fb:49: d5:ba:cf:e1:fa:6e:99:db:3e:20:73:ac:eb:f6:1a:13:c0:0e: c3:ea:07:40:fe:c3:01:04:4f:94:d2:86:be:65:5f:b7:2d:4c: 4c:10:a9:08:be:6d:6c:c0:69:c4:5e:bb:20:c8:d7:12:28:a2: 44:10:58:4f:b7:bc:eb:24:18:65:74:8c:49:a7:6e:35:8e:09: 6d:bd:22:12:ce:77:00:9f:b7:5d:ee:89:e5:8e:e0:79:92:18: 86:a8:94:e5:68:43:35:7f:7a:08:f1:fc:55:e2:2a:da:0b:a7: 0b:96:6b:1d:19:2a:50:05:36:7f:32:91:d2:5a:3f:f2:6b:27: ee:f0:64:db:10:37:05:d6:cc:bf:2b:88:67:07:c5:56:95:8a: 14:c4:c2:8e:21:08:02:8d:69:bb:d6:66:8f:22:3c:e2:e7:a3: aa:5a:93:ad:ec:b4:c2:0f:9e:7b:7a:c4:b1:83:d3:bb:c6:74: b6:62:6f:70:aa:d2:42:4d:3c:62:c8:d4:8b:5f:13:5f:92:35: 9c:bd:a6:6c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBwces1YYUCy/xaY5DgGwEbqV5l8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU0MTQ1WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTc1YjFlMDNlOTlhMGM2YzYzY2ZmNzBlMWQ1MGNjOTUx NzMxZTIwMmU1OGJiNzJjNGU5MzM3NWQ2OGQ0Yjg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtZu8tNPDTQrjLyqD6qGmq/6SIMidf/rF+cvVpbUGS1jhi O7tbd12ZIpe5lF+uwBS/GRh9R+DrvdBkmPxBAYtT9rwqwGRjAitdhM4wj/1GOhEh nL4SgidDNKla+ICWz/dvStBRVzsW3ubYnvlUrJVEg9PB9cuEB8GG0qU7WNanWNbw +jGr8eKgJ5SHM8+YnyXxYaJTOHvsXTi3kUqJ/++eCv7DQK6eZfI2LziSKb3uqKkX zcxq0suGrIXGao1lq+y52mFeeaCUO8nstKoi3uGE8i9ydgtMEcSEr3N8pZSqD/ce U+bJj8Z15TPXyb9vUrMJspgzGZka1ErUDG89xukzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUuDUGTvoHBoz+aLdfpRbE+xTibTEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FmNDk5ZWVhLWU2YjUtNGEzZi05MmRiLTY5YmU1NzUzNjY4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+7UDANBgkqhkiG9w0BAQsFAAOCAQEAc9DKJDtmBQoM1RT0XD6aDiqv WYaDdEfy/HU80MprsKhQ2pZPqwOra6fnh8hpfmJWF5IpTftJ1brP4fpumds+IHOs 6/YaE8AOw+oHQP7DAQRPlNKGvmVfty1MTBCpCL5tbMBpxF67IMjXEiiiRBBYT7e8 6yQYZXSMSaduNY4Jbb0iEs53AJ+3Xe6J5Y7geZIYhqiU5WhDNX96CPH8VeIq2gun C5ZrHRkqUAU2fzKR0lo/8msn7vBk2xA3BdbMvyuIZwfFVpWKFMTCjiEIAo1pu9Zm jyI84uejqlqTrey0wg+ee3rEsYPTu8Z0tmJvcKrSQk08YsjUi18TX5I1nL2mbA== -----END CERTIFICATE-----Generated at Sat Aug 23 14:48:11 2025 by rpki-client