$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa File: a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa (raw, json) Hash identifier: csBAGhA8yvnH171Q3nDvIBikuT2HUIxKYBbpAG3lee0= Subject key identifier: 14:AC:C2:AB:5A:FB:A0:2D:39:B8:50:23:4F:B9:69:29:06:13:91:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 333592BC93D025D176EABC93DF2A7BB8BD087C30 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa Signing time: Tue 05 Aug 2025 00:22:12 +0000 ROA not before: Tue 05 Aug 2025 00:22:12 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fed:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:35:92:bc:93:d0:25:d1:76:ea:bc:93:df:2a:7b:b8:bd:08:7c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 5 00:22:12 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=1332ea41ef8cdfa4febbf63abf7e83f9059f928155dd34712658ff2fb37f721c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:11:19:a2:8f:1d:11:2b:63:1a:35:a3:c9:b5: da:68:e0:5a:5c:2a:8f:ba:2a:cb:ca:a5:f1:33:f1: 74:8a:9b:cc:11:2f:ee:5f:6e:2f:82:aa:6b:25:d7: 72:ec:86:d6:bc:b4:73:e5:1b:a6:92:cd:20:4a:94: 6d:2e:44:e8:6d:1a:ea:77:eb:d2:84:b2:84:24:28: 1d:b3:58:bf:2c:a2:22:51:55:e9:50:4a:64:9f:67: 34:1b:61:94:4f:8d:02:a6:3e:9d:78:76:75:ae:53: 04:4e:f7:5e:f3:fc:95:a2:9f:51:17:48:cb:94:3d: 8a:05:6b:3d:8e:0e:74:c1:0d:d8:f4:79:6d:21:c7: bb:e8:98:69:16:80:5e:3c:ac:a1:58:30:90:bd:a6: 56:32:a1:d7:23:f5:af:77:84:a9:bb:3d:67:a3:f8: 90:fa:f2:71:2b:35:a0:d0:43:f0:ad:24:a8:34:af: 54:52:1e:30:ea:3c:8e:0d:c9:be:af:b6:cd:35:19: 30:e1:b5:98:e4:f2:06:4b:be:a8:48:2a:24:bf:ae: d9:5b:f9:6c:0e:ea:e4:c7:ba:0b:80:18:f9:c4:f9: c3:15:52:d3:49:21:8a:b1:d9:eb:46:90:4b:2d:11: b8:bc:8f:32:ff:01:0e:1f:82:1b:2e:10:e1:56:c2: 9e:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:AC:C2:AB:5A:FB:A0:2D:39:B8:50:23:4F:B9:69:29:06:13:91:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2449603-a2b3-44df-ae94-c2ddb5ea8f63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fed:2000::/40 Signature Algorithm: sha256WithRSAEncryption 5d:1e:0d:f3:2f:97:a9:83:b3:f3:5d:30:8a:8d:62:37:ee:b5: 7b:5a:3a:be:44:32:f8:2d:85:7e:68:a2:23:cb:ca:7d:f8:90: 67:a5:33:57:31:82:5c:89:8e:3b:ca:cb:75:42:2b:09:85:e9: f9:8f:53:02:5b:f8:f9:fd:9c:f0:c6:6d:90:25:e1:92:64:58: b4:ce:29:a0:e7:ce:df:9e:95:76:46:60:01:11:b6:b7:af:bb: 2b:6e:69:fa:bf:1c:6e:a6:d3:be:c2:a4:45:32:6d:20:35:48: 52:56:56:8d:e4:fa:d6:82:9a:2f:8d:2f:89:4f:75:cb:e4:d0: 50:02:fb:89:12:f9:62:33:76:63:10:f6:c3:77:80:7a:3a:d5: 66:8a:5f:9d:ee:fc:6f:f3:af:ba:9c:c4:a6:33:82:a7:13:61: 74:43:a4:e2:44:e7:a1:9b:37:13:0c:1e:4c:38:28:9c:4e:d1: 70:30:f3:da:05:48:90:36:7c:ea:78:cf:4f:42:25:2d:19:ec: 69:83:6e:22:96:f6:44:a2:9b:32:8f:3c:86:c6:ea:42:02:e5: 4e:3d:53:ea:37:43:d4:e7:19:df:b9:b1:e1:c3:5d:e0:6a:23: 82:97:73:a7:85:37:a5:b2:8f:2a:6e:23:24:11:2c:34:29:24: 87:03:3d:12 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMzWSvJPQJdF26ryT3yp7uL0IfDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA1MDAyMjEyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzMyZWE0MWVmOGNkZmE0ZmViYmY2M2FiZjdlODNmOTA1 OWY5MjgxNTVkZDM0NzEyNjU4ZmYyZmIzN2Y3MjFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpERmijx0RK2MaNaPJtdpo4FpcKo+6KsvKpfEz8XSKm8wR L+5fbi+Cqmsl13Lshta8tHPlG6aSzSBKlG0uROhtGup369KEsoQkKB2zWL8soiJR VelQSmSfZzQbYZRPjQKmPp14dnWuUwRO917z/JWin1EXSMuUPYoFaz2ODnTBDdj0 eW0hx7vomGkWgF48rKFYMJC9plYyodcj9a93hKm7PWej+JD68nErNaDQQ/CtJKg0 r1RSHjDqPI4Nyb6vts01GTDhtZjk8gZLvqhIKiS/rtlb+WwO6uTHuguAGPnE+cMV UtNJIYqx2etGkEstEbi8jzL/AQ4fghsuEOFWwp5/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFKzCq1r7oC05uFAjT7lpKQYTkTgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyNDQ5NjAzLWEyYjMtNDRkZi1hZTk0LWMyZGRiNWVhOGY2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/tIDANBgkqhkiG9w0BAQsFAAOCAQEAXR4N8y+XqYOz810wio1iN+61 e1o6vkQy+C2FfmiiI8vKffiQZ6UzVzGCXImOO8rLdUIrCYXp+Y9TAlv4+f2c8MZt kCXhkmRYtM4poOfO356VdkZgARG2t6+7K25p+r8cbqbTvsKkRTJtIDVIUlZWjeT6 1oKaL40viU91y+TQUAL7iRL5YjN2YxD2w3eAejrVZopfne78b/OvupzEpjOCpxNh dEOk4kTnoZs3EwweTDgonE7RcDDz2gVIkDZ86njPT0IlLRnsaYNuIpb2RKKbMo88 hsbqQgLlTj1T6jdD1OcZ37mx4cNd4Gojgpdzp4U3pbKPKm4jJBEsNCkkhwM9Eg== -----END CERTIFICATE-----Generated at Wed Aug 6 09:38:17 2025 by rpki-client