$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bb5b3ff-d7f0-4096-afb0-76a4caac2233.roa File: 9bb5b3ff-d7f0-4096-afb0-76a4caac2233.roa (raw, json) Hash identifier: QRIuk5zTtPwt7ONCk4wBOuEN0E19saQlwDH79iDW/3M= Subject key identifier: D2:13:0E:65:5E:1F:9F:BD:61:E9:5A:2C:1B:F1:44:7C:01:AA:9F:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E4B73073AF48B18FEF2672D7A1C11B14273BC8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bb5b3ff-d7f0-4096-afb0-76a4caac2233.roa Signing time: Mon 04 Aug 2025 15:40:31 +0000 ROA not before: Mon 04 Aug 2025 15:40:31 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1:4000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:4b:73:07:3a:f4:8b:18:fe:f2:67:2d:7a:1c:11:b1:42:73:bc:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:40:31 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=4e5b68ed44276b01fc717743f737236ee198ee3e34a177be545dacc092d65ebb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:15:4d:dd:45:e2:b5:88:4d:b8:c8:4f:7b:5a: 2b:08:91:1b:fc:1f:f7:5d:1a:73:5b:8a:d0:88:7c: 0f:15:b2:39:eb:bf:d1:1f:e0:80:5f:b0:38:77:fd: 89:8d:b6:63:9e:74:2b:ff:66:0b:20:b8:c2:1f:0f: 81:0d:c2:34:98:3f:9c:2f:2c:1d:14:c1:e2:d0:3c: 83:07:15:68:dd:56:cb:20:c4:c2:af:02:3e:c0:6d: 49:a5:ae:69:94:85:b0:e7:58:ce:e9:87:31:c5:d3: d2:25:8a:41:36:4e:82:f7:e3:03:60:6f:6d:3e:42: a8:ab:45:33:e9:ba:8b:49:cd:b5:54:e6:fa:b2:84: 18:47:49:e6:e4:4b:e5:76:e3:03:14:5f:e8:c4:af: f4:48:50:4e:cc:52:0b:fe:ca:87:62:1e:5c:91:ea: fe:d1:85:c3:f4:a4:f6:6e:3b:b9:80:d3:a8:61:63: a6:0a:31:29:68:b4:78:5b:f1:28:d8:32:d5:16:f2: 98:a4:73:4c:cb:25:69:5c:ea:f5:27:f9:d7:07:9b: 51:23:6b:60:b8:04:d6:55:77:24:99:81:b0:bf:ef: 87:25:4a:c7:e1:c8:8e:9e:29:c1:51:e0:87:d2:1f: 84:34:c9:6a:cb:84:a0:31:60:bc:18:28:42:f8:e4: a6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:13:0E:65:5E:1F:9F:BD:61:E9:5A:2C:1B:F1:44:7C:01:AA:9F:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9bb5b3ff-d7f0-4096-afb0-76a4caac2233.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1:4000::/39 Signature Algorithm: sha256WithRSAEncryption b1:9b:d9:ac:0d:55:f9:9f:bf:81:ed:2f:0c:53:38:0a:e6:9a: 3c:ce:fb:3c:5b:f2:92:9a:3e:89:96:f1:d6:5b:cc:0e:d3:c1: cd:34:d7:b4:ca:72:8b:b0:f0:9d:82:0a:50:08:9d:32:3f:07: fa:30:c6:a1:1d:cd:67:25:d9:74:25:5c:f4:95:09:cd:65:c8: 1a:1d:0a:96:36:d5:c4:11:d3:5d:4d:24:a0:07:2f:00:32:c1: aa:f3:1d:41:11:1c:5c:aa:e3:cc:38:dc:ef:aa:d0:97:b4:e4: 49:26:7f:3a:6b:21:aa:f8:d0:56:49:5f:c7:37:79:28:a4:7c: 26:3f:3f:4c:d3:dd:f7:e1:7f:5d:79:9f:73:25:59:03:2a:44: 8a:ea:52:2d:d2:49:d0:8e:1f:86:55:fa:c6:6d:32:5b:d4:22: a3:e1:21:4e:f3:52:e8:e8:1b:b5:9c:07:5c:00:66:bb:dd:d8: e7:b8:78:94:d0:34:4f:a5:8b:d3:7b:27:d6:8d:ea:cf:3d:c8: 42:58:22:b1:2e:33:28:2b:08:b3:81:82:09:4d:90:51:c1:10: ae:21:d4:d2:37:5c:76:10:5e:c7:af:32:21:4a:82:82:e8:84: b0:ef:50:96:4c:91:f5:1e:38:3c:b9:81:18:00:6b:dc:5c:b9: ec:3f:2a:f0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULktzBzr0ixj+8mctehwRsUJzvI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTU0MDMxWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZTViNjhlZDQ0Mjc2YjAxZmM3MTc3NDNmNzM3MjM2ZWUx OThlZTNlMzRhMTc3YmU1NDVkYWNjMDkyZDY1ZWJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9FU3dReK1iE24yE97WisIkRv8H/ddGnNbitCIfA8Vsjnr v9Ef4IBfsDh3/YmNtmOedCv/ZgsguMIfD4ENwjSYP5wvLB0UweLQPIMHFWjdVssg xMKvAj7AbUmlrmmUhbDnWM7phzHF09IlikE2ToL34wNgb20+QqirRTPpuotJzbVU 5vqyhBhHSebkS+V24wMUX+jEr/RIUE7MUgv+yodiHlyR6v7RhcP0pPZuO7mA06hh Y6YKMSlotHhb8SjYMtUW8pikc0zLJWlc6vUn+dcHm1Eja2C4BNZVdySZgbC/74cl SsfhyI6eKcFR4IfSH4Q0yWrLhKAxYLwYKEL45KY5AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU0hMOZV4fn71h6VosG/FEfAGqn5YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliYjViM2ZmLWQ3ZjAtNDA5Ni1hZmIwLTc2YTRjYWFjMjIzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/xQDANBgkqhkiG9w0BAQsFAAOCAQEAsZvZrA1V+Z+/ge0vDFM4Cuaa PM77PFvykpo+iZbx1lvMDtPBzTTXtMpyi7DwnYIKUAidMj8H+jDGoR3NZyXZdCVc 9JUJzWXIGh0KljbVxBHTXU0koAcvADLBqvMdQREcXKrjzDjc76rQl7TkSSZ/Omsh qvjQVklfxzd5KKR8Jj8/TNPd9+F/XXmfcyVZAypEiupSLdJJ0I4fhlX6xm0yW9Qi o+EhTvNS6OgbtZwHXABmu93Y57h4lNA0T6WL03sn1o3qzz3IQlgisS4zKCsIs4GC CU2QUcEQriHU0jdcdhBex68yIUqCguiEsO9QlkyR9R44PLmBGABr3Fy57D8q8A== -----END CERTIFICATE-----Generated at Fri Aug 8 20:54:45 2025 by rpki-client