$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f89be87-45c1-410c-99ee-05d9e524cb54.roa File: 0f89be87-45c1-410c-99ee-05d9e524cb54.roa (raw, json) Hash identifier: zDL6KxrLP4VNRAnF+4/TrB98pin/NIKgzfG6zeCvoVA= Subject key identifier: DC:33:96:83:72:9B:FB:A6:EA:49:0E:14:EF:C0:2B:37:97:F0:73:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2023448C99399340ECD4D9DA5BC4694B10F4C6D4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f89be87-45c1-410c-99ee-05d9e524cb54.roa Signing time: Sat 26 Jul 2025 00:12:25 +0000 ROA not before: Sat 26 Jul 2025 00:12:25 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:a400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:23:44:8c:99:39:93:40:ec:d4:d9:da:5b:c4:69:4b:10:f4:c6:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:12:25 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=4b3e8133014e3cabd93032714ded9aa291db6b57a38eb0653ec68a2ecbac15c3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:d4:1f:81:70:71:e8:bd:cf:ca:a7:b7:70:01: 23:6b:ae:3e:60:ad:f3:fd:a5:72:fb:3a:6f:f1:eb: 7a:2d:96:cc:5d:40:84:ed:e4:bd:11:2c:fc:97:f7: 65:f0:16:c7:b9:e8:ac:3c:19:e4:b6:9b:bd:0d:a1: 5e:16:80:33:b4:69:b3:97:38:4c:6b:84:60:af:93: f4:15:1d:5d:a6:75:05:0b:48:5e:e3:02:13:7b:bf: 64:3f:1c:b1:2e:dd:69:89:8c:94:55:b3:09:5f:b4: dc:89:04:97:89:82:3f:fd:c6:51:cd:ce:53:37:af: 80:58:d2:e9:fc:0c:26:97:25:0e:b6:da:ae:a9:03: 64:cf:6a:2a:7b:38:ff:5e:ff:2c:f1:f6:f9:eb:05: 49:68:f8:e3:db:6e:30:58:e0:bc:17:60:c5:cb:f6: 03:40:87:0a:f4:c1:0e:e6:09:8b:b4:df:f9:7b:35: 76:c9:a4:c9:c3:7a:5d:89:3a:2e:17:c1:d8:ba:76: b1:1a:4b:0b:8f:e3:c4:a0:da:00:be:95:55:a1:ad: 50:0c:0a:b0:b5:01:de:2b:15:db:61:98:52:b9:64: 12:cf:c8:99:d6:d9:85:fb:09:39:e0:b1:d1:e6:4b: d4:e9:d7:93:90:95:aa:93:81:d7:eb:b5:e5:d2:c2: ef:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:33:96:83:72:9B:FB:A6:EA:49:0E:14:EF:C0:2B:37:97:F0:73:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f89be87-45c1-410c-99ee-05d9e524cb54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:a400::/40 Signature Algorithm: sha256WithRSAEncryption 48:32:62:bf:4b:c2:a0:64:e1:b2:28:5e:20:ff:d6:35:71:a3: e2:16:23:f2:9d:57:4c:58:70:2a:1d:38:03:1a:3d:5f:ff:8f: 53:96:c6:3a:92:98:56:a7:4f:06:de:b0:3d:2a:ca:41:48:67: 2e:a1:b4:93:74:97:fb:e6:ea:ed:33:98:f9:3e:3e:2d:5c:9f: 00:62:a2:6b:1f:10:32:20:dd:7d:74:d7:c5:60:7a:ea:67:ef: ea:a2:94:39:93:cb:3a:32:d4:a8:44:27:89:e4:9e:da:6e:4b: 33:ce:bb:25:00:ae:d4:4c:9e:14:73:c4:09:2f:98:4f:41:5d: 30:b7:eb:f3:23:c3:5c:a6:82:69:72:27:3a:3b:90:b2:57:6f: 06:2d:64:68:28:36:8a:96:75:30:a1:20:48:2f:d4:88:0c:1c: 8d:dc:28:29:ea:fe:99:82:ff:53:95:2d:e6:39:e1:a3:c2:a1: 3d:2e:7a:1f:55:46:cd:ba:91:ba:a7:db:7a:1e:15:e8:74:cf: 90:69:d9:ac:c4:04:cc:52:b2:03:62:78:29:ee:61:b4:11:e1: c3:ee:fd:98:c5:49:0d:70:2e:54:5e:ec:cb:1e:0b:47:b0:12: 1b:8b:59:58:2b:21:2a:57:eb:39:39:5c:54:6d:6b:40:1a:7a: 01:d4:3f:be -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUICNEjJk5k0Ds1NnaW8RpSxD0xtQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMjI1WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjNlODEzMzAxNGUzY2FiZDkzMDMyNzE0ZGVkOWFhMjkx ZGI2YjU3YTM4ZWIwNjUzZWM2OGEyZWNiYWMxNWMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDa1B+BcHHovc/Kp7dwASNrrj5grfP9pXL7Om/x63otlsxd QITt5L0RLPyX92XwFse56Kw8GeS2m70NoV4WgDO0abOXOExrhGCvk/QVHV2mdQUL SF7jAhN7v2Q/HLEu3WmJjJRVswlftNyJBJeJgj/9xlHNzlM3r4BY0un8DCaXJQ62 2q6pA2TPaip7OP9e/yzx9vnrBUlo+OPbbjBY4LwXYMXL9gNAhwr0wQ7mCYu03/l7 NXbJpMnDel2JOi4Xwdi6drEaSwuP48Sg2gC+lVWhrVAMCrC1Ad4rFdthmFK5ZBLP yJnW2YX7CTngsdHmS9Tp15OQlaqTgdfrteXSwu+FAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3DOWg3Kb+6bqSQ4U78ArN5fwc3kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmODliZTg3LTQ1YzEtNDEwYy05OWVlLTA1ZDllNTI0Y2I1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/2pDANBgkqhkiG9w0BAQsFAAOCAQEASDJiv0vCoGThsiheIP/WNXGj 4hYj8p1XTFhwKh04Axo9X/+PU5bGOpKYVqdPBt6wPSrKQUhnLqG0k3SX++bq7TOY +T4+LVyfAGKiax8QMiDdfXTXxWB66mfv6qKUOZPLOjLUqEQnieSe2m5LM867JQCu 1EyeFHPECS+YT0FdMLfr8yPDXKaCaXInOjuQsldvBi1kaCg2ipZ1MKEgSC/UiAwc jdwoKer+mYL/U5Ut5jnho8KhPS56H1VGzbqRuqfbeh4V6HTPkGnZrMQEzFKyA2J4 Ke5htBHhw+79mMVJDXAuVF7syx4LR7ASG4tZWCshKlfrOTlcVG1rQBp6AdQ/vg== -----END CERTIFICATE-----Generated at Sat Aug 9 02:51:32 2025 by rpki-client