$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa File: efc992f9-00af-49f7-9474-d7a5b0a4a931.roa (raw, json) Hash identifier: WjrphpdmRkasAhoZj05HuzeuLPLy6ESaD3Lio29tz9w= Subject key identifier: D5:9C:18:3C:AE:30:6B:BD:D9:16:C5:5C:7F:E8:B5:D1:3E:5B:3F:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1CDDE07C7E7DA462E239BA7A2AE1A4FE513DDD60 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa Signing time: Wed 13 Aug 2025 00:11:03 +0000 ROA not before: Wed 13 Aug 2025 00:11:03 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f01:4850::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:dd:e0:7c:7e:7d:a4:62:e2:39:ba:7a:2a:e1:a4:fe:51:3d:dd:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:11:03 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=468a9d75117bd3f68f83edd483f44637305e24636da00e64c75e813974835f8e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:6c:d8:4a:f1:fa:3d:35:48:67:9a:eb:4d:ee: 0a:7f:77:4a:42:c2:8f:87:19:b3:8f:16:cb:bb:45: ca:86:8f:37:6d:44:4d:21:74:1e:50:40:43:65:33: f4:d0:09:f1:2a:ed:84:0a:a4:26:8c:f0:2d:8d:67: 04:64:a3:5e:d4:92:7c:65:a6:79:bd:99:6e:58:4b: 7b:64:eb:20:95:63:00:d0:7a:10:ca:bb:53:0e:7c: e5:eb:7b:68:7f:32:c2:31:12:59:99:5f:bf:ee:d1: 2c:72:6e:33:75:7c:94:3a:b8:63:bb:3e:42:9d:74: 88:97:8d:c8:8a:34:c2:71:39:d9:7f:ca:99:04:85: bc:94:88:07:46:e6:4b:3d:96:1d:c9:e5:38:b2:3f: fc:67:fe:60:51:27:b2:0f:b2:c4:95:4a:83:38:4d: 18:81:19:bd:f4:5a:ae:25:81:71:30:3f:b7:9e:51: 34:a7:41:f4:31:97:a9:53:82:d6:33:25:a1:3d:df: 77:aa:77:f1:b0:de:22:b4:26:c8:ad:32:6d:25:d1: 4a:e4:6a:b2:8e:f4:75:a1:cb:6b:bc:d7:2a:54:05: 94:d4:fb:52:56:43:0e:83:22:91:27:29:27:76:72: 85:1a:7b:9d:ac:58:6c:0a:c1:65:2e:0a:4f:39:7b: 28:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9C:18:3C:AE:30:6B:BD:D9:16:C5:5C:7F:E8:B5:D1:3E:5B:3F:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/efc992f9-00af-49f7-9474-d7a5b0a4a931.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f01:4850::/47 Signature Algorithm: sha256WithRSAEncryption 6c:f4:1e:d2:69:6e:9e:3f:c0:60:55:21:0c:78:ec:11:ec:a5: fb:c7:12:50:96:ca:c2:97:07:13:f7:6c:3e:eb:af:95:16:7c: f9:a1:8b:a4:18:94:d2:90:5b:15:d9:8f:23:6b:83:20:0b:98: b5:aa:c7:f4:cb:54:e5:3d:dc:36:33:c5:9c:f4:a0:b8:9a:a4: 8d:14:d1:cf:ec:21:36:8e:2a:8b:a9:01:a0:79:29:6f:9e:57: 67:ca:5a:52:64:2b:bd:4d:83:2f:70:79:79:6d:82:55:71:6e: 13:91:d6:ee:c7:cb:ed:c6:82:b9:0e:22:17:ff:bd:b0:0e:d6: b8:7b:9a:9f:a2:ef:36:e5:6b:31:ef:b8:f4:6d:e3:cd:74:50: 59:a1:f2:12:cf:ca:ec:db:94:cb:0c:d7:62:a2:a5:b3:a7:1e: 50:29:77:03:34:fd:d9:f8:61:c8:a4:e2:e5:33:9e:75:0e:4f: ae:77:bb:e2:3f:a5:4a:3a:97:af:ff:4b:8e:03:7c:5c:c2:1c: f9:21:20:48:c1:0e:76:03:85:af:81:10:71:0a:18:d7:3f:3c: a6:f4:b6:eb:df:fd:e3:8b:89:54:f7:55:33:1d:95:71:f0:a3: e7:3c:b8:87:b0:63:35:68:dd:ef:9f:04:c0:a9:75:a6:89:76: 39:81:e6:2e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHN3gfH59pGLiObp6KuGk/lE93WAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAxMTAzWhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjhhOWQ3NTExN2JkM2Y2OGY4M2VkZDQ4M2Y0NDYzNzMw NWUyNDYzNmRhMDBlNjRjNzVlODEzOTc0ODM1ZjhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWbNhK8fo9NUhnmutN7gp/d0pCwo+HGbOPFsu7RcqGjzdt RE0hdB5QQENlM/TQCfEq7YQKpCaM8C2NZwRko17Uknxlpnm9mW5YS3tk6yCVYwDQ ehDKu1MOfOXre2h/MsIxElmZX7/u0SxybjN1fJQ6uGO7PkKddIiXjciKNMJxOdl/ ypkEhbyUiAdG5ks9lh3J5TiyP/xn/mBRJ7IPssSVSoM4TRiBGb30Wq4lgXEwP7ee UTSnQfQxl6lTgtYzJaE933eqd/Gw3iK0JsitMm0l0UrkarKO9HWhy2u81ypUBZTU +1JWQw6DIpEnKSd2coUae52sWGwKwWUuCk85eyjXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1ZwYPK4wa73ZFsVcf+i10T5bP0owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmYzk5MmY5LTAwYWYtNDlmNy05NDc0LWQ3YTViMGE0YTkzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAB8BSFAwDQYJKoZIhvcNAQELBQADggEBAGz0HtJpbp4/wGBVIQx47BHs pfvHElCWysKXBxP3bD7rr5UWfPmhi6QYlNKQWxXZjyNrgyALmLWqx/TLVOU93DYz xZz0oLiapI0U0c/sITaOKoupAaB5KW+eV2fKWlJkK71Ngy9weXltglVxbhOR1u7H y+3GgrkOIhf/vbAO1rh7mp+i7zblazHvuPRt4810UFmh8hLPyuzblMsM12KipbOn HlApdwM0/dn4Ycik4uUznnUOT653u+I/pUo6l6//S44DfFzCHPkhIEjBDnYDha+B EHEKGNc/PKb0tuvf/eOLiVT3VTMdlXHwo+c8uIewYzVo3e+fBMCpdaaJdjmB5i4= -----END CERTIFICATE-----Generated at Sat Aug 23 06:55:46 2025 by rpki-client