$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/434e9526-9e97-40e5-9178-9ac0395ab2f2.roa File: 434e9526-9e97-40e5-9178-9ac0395ab2f2.roa (raw, json) Hash identifier: 8jjRDRZG0B+mF++TAI14wqvayTcdthbmFEkZTJAE3/s= Subject key identifier: AD:81:C9:25:C9:25:2E:2A:81:05:17:34:74:A9:7F:2B:61:B6:E3:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3885707F055E14599371D3F113284800387830C3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/434e9526-9e97-40e5-9178-9ac0395ab2f2.roa Signing time: Sat 26 Jul 2025 00:12:13 +0000 ROA not before: Sat 26 Jul 2025 00:12:13 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff6:5000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:85:70:7f:05:5e:14:59:93:71:d3:f1:13:28:48:00:38:78:30:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:12:13 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=1d02bada09d34f9913584df69609a1afa0e719de7c1eaea47d94bbf4b7cdb781, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:31:c3:84:ed:2b:76:f1:7d:e1:d8:73:03:c7: 22:b8:71:06:6f:9b:ff:c4:be:1a:f6:e2:4b:7f:a6: 4f:b6:66:f6:21:af:29:2c:2d:10:3c:eb:d2:0c:d8: d5:bb:f4:51:09:78:f1:ff:41:d7:84:89:eb:99:fd: 85:84:ad:78:23:03:ef:0f:ec:a2:2b:c6:be:ce:31: 9a:35:b6:11:a4:8f:96:c3:8d:43:3e:54:bb:8f:c6: f8:6f:fd:e2:ab:05:9b:d9:a4:ba:41:98:c0:9f:0c: e9:02:70:3c:b7:f7:6a:b1:f3:5b:f1:c4:8b:d6:2f: 4f:6f:90:1b:36:bb:79:d3:0c:0a:1b:93:61:85:af: 67:17:1e:b4:3e:7e:36:fe:d7:67:90:40:0b:3f:8b: bc:9e:31:8a:ce:d6:cf:8c:a4:9b:f4:9d:11:62:52: a9:56:6e:85:c7:21:d0:d8:74:a1:a4:95:a1:08:02: 6a:67:8b:9e:df:32:3f:48:54:a4:8e:f9:d0:c1:3d: ac:11:03:f5:f4:0b:01:60:de:6b:62:c5:d6:09:51: 6e:29:2d:1a:f3:49:57:d3:df:03:bd:5d:e0:31:b3: 24:42:07:50:d9:f6:b9:53:ae:09:10:13:05:52:4e: 46:f5:8f:4a:08:24:f0:7a:d8:61:e3:20:b4:a7:44: 40:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:81:C9:25:C9:25:2E:2A:81:05:17:34:74:A9:7F:2B:61:B6:E3:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/434e9526-9e97-40e5-9178-9ac0395ab2f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff6:5000::/40 Signature Algorithm: sha256WithRSAEncryption 85:06:a7:05:59:a5:6a:2c:ea:88:a4:cd:18:6f:72:52:ae:ee: 69:5c:fc:e5:a9:4d:fe:8c:f0:92:b0:50:41:2e:f1:87:65:cf: 96:e4:38:0a:d8:f7:49:66:60:e2:b8:b6:cd:1e:95:f4:df:19: 2b:32:57:d8:73:1a:6c:6b:7d:c2:b6:b9:82:4c:ca:8e:af:74: 44:51:89:f4:fc:b7:91:f6:01:f6:ad:2a:a2:ef:37:53:02:fb: c1:e3:d1:60:2a:2e:ff:f3:a7:9d:09:ec:16:2c:54:f6:17:87: e3:ea:37:c0:c7:41:41:60:7e:09:c9:c9:59:d2:3f:b8:d7:e7: 7e:fe:61:c3:ee:ce:ca:93:d9:4f:64:c3:2f:81:4b:a7:50:7c: 12:6e:2d:b5:c1:0e:fb:b8:b4:32:de:2e:0c:7d:bf:e6:95:13: e6:b7:d8:d3:1c:a2:b0:1c:12:68:b4:b5:1f:76:1c:94:f5:57: 65:76:9e:79:ee:3f:40:22:c5:88:98:a6:39:21:f2:f0:06:54: cb:10:1b:cd:bf:c1:63:8c:64:a0:7e:e4:26:d5:4e:d2:35:10: 2c:ea:38:a2:e6:a6:b9:bb:80:91:89:b4:0a:14:9f:47:01:3f: 3f:91:f8:41:61:17:c6:2f:5d:b3:99:dc:39:9e:11:ee:8b:e3: c3:78:0c:63 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOIVwfwVeFFmTcdPxEyhIADh4MMMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMjEzWhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDAyYmFkYTA5ZDM0Zjk5MTM1ODRkZjY5NjA5YTFhZmEw ZTcxOWRlN2MxZWFlYTQ3ZDk0YmJmNGI3Y2RiNzgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYMcOE7St28X3h2HMDxyK4cQZvm//Evhr24kt/pk+2ZvYh ryksLRA869IM2NW79FEJePH/QdeEieuZ/YWErXgjA+8P7KIrxr7OMZo1thGkj5bD jUM+VLuPxvhv/eKrBZvZpLpBmMCfDOkCcDy392qx81vxxIvWL09vkBs2u3nTDAob k2GFr2cXHrQ+fjb+12eQQAs/i7yeMYrO1s+MpJv0nRFiUqlWboXHIdDYdKGklaEI Ampni57fMj9IVKSO+dDBPawRA/X0CwFg3mtixdYJUW4pLRrzSVfT3wO9XeAxsyRC B1DZ9rlTrgkQEwVSTkb1j0oIJPB62GHjILSnREA1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUrYHJJcklLiqBBRc0dKl/K2G242gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNGU5NTI2LTllOTctNDBlNS05MTc4LTlhYzAzOTVhYjJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/2UDANBgkqhkiG9w0BAQsFAAOCAQEAhQanBVmlaizqiKTNGG9yUq7u aVz85alN/ozwkrBQQS7xh2XPluQ4Ctj3SWZg4ri2zR6V9N8ZKzJX2HMabGt9wra5 gkzKjq90RFGJ9Py3kfYB9q0qou83UwL7wePRYCou//OnnQnsFixU9heH4+o3wMdB QWB+CcnJWdI/uNfnfv5hw+7OypPZT2TDL4FLp1B8Em4ttcEO+7i0Mt4uDH2/5pUT 5rfY0xyisBwSaLS1H3YclPVXZXaeee4/QCLFiJimOSHy8AZUyxAbzb/BY4xkoH7k JtVO0jUQLOo4ouamubuAkYm0ChSfRwE/P5H4QWEXxi9ds5ncOZ4R7ovjw3gMYw== -----END CERTIFICATE-----Generated at Sat Aug 9 23:28:22 2025 by rpki-client