$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa File: c8f71b7e-9974-4779-8c24-e352d24c707e.roa (raw, json) Hash identifier: fZZZ+ezhHtZZ26MhzsddW4pUwoZxkjUfdCi/gdliQIc= Subject key identifier: AC:CB:37:0E:1A:D5:14:2A:C1:FA:13:7C:6A:69:1E:3A:EE:18:54:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 515EEB36361C87C7AF83295C262B1A11CA2FDEB0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa Signing time: Tue 12 Aug 2025 00:21:26 +0000 ROA not before: Tue 12 Aug 2025 00:21:26 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:5e:eb:36:36:1c:87:c7:af:83:29:5c:26:2b:1a:11:ca:2f:de:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:21:26 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=3a77d645883325774b37b37a5dd9430c88e6bc8a910417bad9d04a5a1eee66c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:95:f0:8e:27:05:1e:f4:2c:f4:2a:6c:78:5b: f8:ed:ce:a1:24:57:1b:f3:75:7c:b9:26:05:b2:aa: ee:33:32:86:b5:dc:98:67:f5:0a:ff:03:4a:ac:f8: 82:59:95:a3:13:99:5e:07:02:88:d3:ae:1b:9a:97: 9b:c4:9b:8b:53:ec:ed:d3:e3:04:ff:c6:bb:52:8b: ff:63:8e:58:eb:71:04:f6:70:64:b5:3c:0f:f4:3b: 44:c0:b5:90:37:c5:a3:1b:94:7b:cf:eb:3b:e2:b7: c6:b4:f6:b6:09:f9:cc:ce:0b:d1:e0:45:92:9d:7b: 0e:0f:5e:87:8b:ef:53:0e:42:ec:c8:93:1a:cc:91: fd:54:87:c2:e4:20:20:79:58:56:70:ce:27:20:7f: 5e:78:1a:92:ea:42:6e:ca:11:ae:73:0c:10:f8:36: 6f:1e:b3:31:e1:d4:0f:9e:a2:47:f3:d1:2d:68:fc: 88:68:31:df:e2:86:32:43:15:f4:f5:97:2c:c2:db: 62:a9:c1:39:ac:c4:b9:19:d8:99:39:36:87:d2:9c: 00:eb:95:78:7a:10:9b:90:4e:cc:bd:1c:a7:ba:23: 87:a9:ad:d0:4d:eb:89:4b:1e:1f:9f:2f:04:53:ca: 3d:6b:dc:0c:ca:83:31:65:86:a0:55:21:6c:ce:8d: 6a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CB:37:0E:1A:D5:14:2A:C1:FA:13:7C:6A:69:1E:3A:EE:18:54:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:5000::/36 Signature Algorithm: sha256WithRSAEncryption 56:ca:58:96:40:e3:7d:1d:12:55:83:73:e3:36:31:ab:cd:5e: a9:20:c1:e2:3d:4a:63:37:35:b9:ad:e7:cd:24:bc:d2:b7:07: 3e:b7:c3:fc:9c:d6:cf:16:ad:78:1f:3d:03:f7:4e:a3:e8:58: 02:52:30:e4:e9:bc:a4:a4:b1:ca:bc:27:56:59:6e:af:96:e4: e6:5b:94:71:15:3d:8f:a8:25:2b:cd:5c:00:ed:5d:2f:75:72: 06:3d:ee:33:e1:1a:56:61:40:96:8b:df:7c:ff:2e:b4:70:db: 27:de:b6:4b:76:fe:e2:a1:80:2b:7b:23:e5:1b:88:d5:5c:f5: e8:1d:61:aa:8a:62:6c:f7:e9:86:3c:b7:1c:4b:11:5e:a9:02: 49:e5:79:43:6e:e7:8d:b7:a5:93:c4:b0:9f:00:17:77:1e:eb: e1:eb:78:63:97:c3:d2:80:23:26:c2:8e:3f:b8:a5:9a:ac:8d: a0:2a:b0:98:4e:c9:c1:15:ec:66:2c:1c:aa:c0:c3:ff:2f:ab: ab:a7:e6:7a:f7:96:f0:7a:08:d4:77:5e:b5:a3:36:62:00:66: 95:5b:1b:8c:8f:f9:1b:e5:7c:7c:61:ed:3b:54:ca:77:f0:43: 0c:42:2c:51:e7:82:12:c8:54:94:e8:9b:1d:8a:b1:79:69:c0: ee:76:83:29 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUV7rNjYch8evgylcJisaEcov3rAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAyMTI2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTc3ZDY0NTg4MzMyNTc3NGIzN2IzN2E1ZGQ5NDMwYzg4 ZTZiYzhhOTEwNDE3YmFkOWQwNGE1YTFlZWU2NmM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDolfCOJwUe9Cz0Kmx4W/jtzqEkVxvzdXy5JgWyqu4zMoa1 3Jhn9Qr/A0qs+IJZlaMTmV4HAojTrhual5vEm4tT7O3T4wT/xrtSi/9jjljrcQT2 cGS1PA/0O0TAtZA3xaMblHvP6zvit8a09rYJ+czOC9HgRZKdew4PXoeL71MOQuzI kxrMkf1Uh8LkICB5WFZwzicgf154GpLqQm7KEa5zDBD4Nm8eszHh1A+eokfz0S1o /IhoMd/ihjJDFfT1lyzC22KpwTmsxLkZ2Jk5NofSnADrlXh6EJuQTsy9HKe6I4ep rdBN64lLHh+fLwRTyj1r3AzKgzFlhqBVIWzOjWoxAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrMs3DhrVFCrB+hN8amkeOu4YVLswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4ZjcxYjdlLTk5NzQtNDc3OS04YzI0LWUzNTJkMjRjNzA3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB/4UDANBgkqhkiG9w0BAQsFAAOCAQEAVspYlkDjfR0SVYNz4zYxq81e qSDB4j1KYzc1ua3nzSS80rcHPrfD/JzWzxateB89A/dOo+hYAlIw5Om8pKSxyrwn Vllur5bk5luUcRU9j6glK81cAO1dL3VyBj3uM+EaVmFAlovffP8utHDbJ962S3b+ 4qGAK3sj5RuI1Vz16B1hqopibPfphjy3HEsRXqkCSeV5Q27njbelk8SwnwAXdx7r 4et4Y5fD0oAjJsKOP7ilmqyNoCqwmE7JwRXsZiwcqsDD/y+rq6fmeveW8HoI1Hde taM2YgBmlVsbjI/5G+V8fGHtO1TKd/BDDEIsUeeCEshUlOibHYqxeWnA7naDKQ== -----END CERTIFICATE-----Generated at Sat Aug 23 08:13:09 2025 by rpki-client