$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa File: ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa (raw, json) Hash identifier: IAPNxptBdUKQxObaJfhQLEcxvOI/zQdDlsp+IN2oKr8= Subject key identifier: 98:B9:84:71:C7:C2:2C:6C:3E:60:19:05:08:3B:E3:47:4F:7C:37:E9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42AB6448A5235A9AA4FDC53F0A6C424514E46E54 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa Signing time: Mon 18 Aug 2025 15:41:42 +0000 ROA not before: Mon 18 Aug 2025 15:41:42 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:7400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:ab:64:48:a5:23:5a:9a:a4:fd:c5:3f:0a:6c:42:45:14:e4:6e:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:41:42 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=be7f01387a9082a11e9f8b280f40440b8cae4a5db6929962003b54bd11548fc9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f6:7d:2d:6a:83:7f:35:83:33:8d:86:b1:bd: 67:e7:ce:d7:bb:23:66:41:ef:d5:57:71:b5:a2:60: c3:cf:fb:53:35:ce:b4:4f:3e:38:fa:67:98:6b:31: 96:a1:f3:f0:70:fa:ac:86:80:a4:73:2f:b0:50:c5: 0a:72:e0:d7:67:31:ed:c0:c5:5f:28:bd:63:3b:b6: 92:c3:84:6b:46:d8:e5:98:df:19:38:e0:7d:5d:c0: 30:2d:41:f7:a8:73:3e:0c:78:b1:65:eb:6e:cc:90: 96:63:23:53:54:18:66:5a:5a:d3:41:43:e3:50:45: 40:2b:11:60:d1:c0:7b:6c:8c:84:bf:55:15:52:ba: 4d:35:ec:7a:db:11:56:d4:3f:7f:bc:e4:1e:3a:9d: 15:ad:e6:8c:2d:45:f4:1c:2d:f4:9d:e7:c0:c0:ca: 6d:73:bd:41:78:cc:da:92:22:f6:0c:7d:13:cb:b6: 47:a8:eb:07:1d:3c:e5:78:80:95:3b:ef:ef:08:b5: 23:b9:4e:d4:c6:21:88:22:6e:d5:b3:1e:84:41:4f: b3:e4:20:6c:c7:cd:90:b0:b6:68:d8:d1:db:67:ac: c5:7c:65:19:02:55:c2:80:08:87:16:4d:90:fd:f3: dd:41:1e:06:91:5a:b3:1f:7f:14:3b:c5:23:d6:4b: de:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B9:84:71:C7:C2:2C:6C:3E:60:19:05:08:3B:E3:47:4F:7C:37:E9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ddd7f531-58ac-44ff-acae-8c4e40bfb198.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:7400::/40 Signature Algorithm: sha256WithRSAEncryption 98:5a:17:d8:50:3a:00:5f:2b:65:a9:55:21:cc:9e:71:ba:d6: 35:28:43:73:d3:b9:e6:7a:bb:55:dd:f7:0f:a8:0d:0e:6e:e9: 3a:af:fd:6b:5f:72:71:0a:3d:a0:5c:fc:04:d0:2b:22:5c:9e: e8:b3:95:7f:bb:cf:99:b8:7a:59:e6:af:17:58:b4:52:71:61: d2:10:5a:a4:7c:62:bd:20:a6:15:00:e5:f1:b5:62:fb:d2:0b: 0b:22:90:88:21:e5:dd:d8:07:05:8b:96:44:77:03:b5:5e:ec: d2:1d:d5:fa:e3:4a:09:3f:85:74:08:3e:bb:e5:c7:2e:db:10: a5:c9:09:af:51:8a:22:5b:dc:c2:9f:0c:2e:97:62:0a:58:d7: 0c:51:3a:11:75:d2:2c:3a:be:7c:d8:09:6b:67:fa:7f:27:08: ab:ed:1a:37:cb:cd:03:ed:b5:7e:f9:e3:de:3f:9e:3f:c7:d0: 55:80:97:d9:0e:8d:15:f6:a6:9a:06:61:59:05:07:ad:b0:cc: 4a:08:30:5a:94:0b:c4:fe:91:ea:e0:bd:80:d7:e2:79:01:68: f1:e9:8b:bf:6d:4e:de:7a:a7:52:86:4f:8c:48:fd:fb:17:79: 9f:00:c9:79:7b:f0:df:2e:21:71:c3:af:b4:c8:4e:76:2f:e2: d0:81:41:22 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQqtkSKUjWpqk/cU/CmxCRRTkblQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTU0MTQyWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTdmMDEzODdhOTA4MmExMWU5ZjhiMjgwZjQwNDQwYjhj YWU0YTVkYjY5Mjk5NjIwMDNiNTRiZDExNTQ4ZmM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn9n0taoN/NYMzjYaxvWfnzte7I2ZB79VXcbWiYMPP+1M1 zrRPPjj6Z5hrMZah8/Bw+qyGgKRzL7BQxQpy4NdnMe3AxV8ovWM7tpLDhGtG2OWY 3xk44H1dwDAtQfeocz4MeLFl627MkJZjI1NUGGZaWtNBQ+NQRUArEWDRwHtsjIS/ VRVSuk017HrbEVbUP3+85B46nRWt5owtRfQcLfSd58DAym1zvUF4zNqSIvYMfRPL tkeo6wcdPOV4gJU77+8ItSO5TtTGIYgibtWzHoRBT7PkIGzHzZCwtmjY0dtnrMV8 ZRkCVcKACIcWTZD9891BHgaRWrMffxQ7xSPWS94TAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmLmEccfCLGw+YBkFCDvjR098N+kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RkZDdmNTMxLTU4YWMtNDRmZi1hY2FlLThjNGU0MGJmYjE5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0dDANBgkqhkiG9w0BAQsFAAOCAQEAmFoX2FA6AF8rZalVIcyecbrW NShDc9O55nq7Vd33D6gNDm7pOq/9a19ycQo9oFz8BNArIlye6LOVf7vPmbh6Weav F1i0UnFh0hBapHxivSCmFQDl8bVi+9ILCyKQiCHl3dgHBYuWRHcDtV7s0h3V+uNK CT+FdAg+u+XHLtsQpckJr1GKIlvcwp8MLpdiCljXDFE6EXXSLDq+fNgJa2f6fycI q+0aN8vNA+21fvnj3j+eP8fQVYCX2Q6NFfammgZhWQUHrbDMSggwWpQLxP6R6uC9 gNfieQFo8emLv21O3nqnUoZPjEj9+xd5nwDJeXvw3y4hccOvtMhOdi/i0IFBIg== -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:27 2025 by rpki-client