$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f68dd099-aa8e-4399-88fc-6d8848cf3dcb.roa File: f68dd099-aa8e-4399-88fc-6d8848cf3dcb.roa (raw, json) Hash identifier: SW4KJ4f3VI5yJc4uDz6/HUDWt05+VgzKDxiHHvo1pN0= Subject key identifier: 9E:C2:59:C7:35:A1:24:57:23:AA:91:E1:39:CF:C0:BC:2D:AA:31:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4819789A19AC13390A8966651C7613C88E6641B5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f68dd099-aa8e-4399-88fc-6d8848cf3dcb.roa Signing time: Mon 04 Aug 2025 16:32:03 +0000 ROA not before: Mon 04 Aug 2025 16:32:03 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16:c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:19:78:9a:19:ac:13:39:0a:89:66:65:1c:76:13:c8:8e:66:41:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:32:03 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=2845bab18119f7c812f50363e89addcc9c42a8270dd33df42ea5889085fb49ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:87:01:3c:44:63:09:36:28:08:e2:1e:86:de: 93:6f:fe:74:51:f4:d4:af:01:b1:1b:71:57:e7:17: 13:fd:d8:29:8e:f0:78:4b:5b:68:65:f0:f3:25:ca: 7b:97:d8:c5:ec:f3:0b:a3:df:fe:44:89:d2:ca:b1: 98:f5:30:4a:ae:9d:63:f0:6e:c4:d7:ba:7a:03:00: 5a:fc:67:5b:72:5a:be:46:dd:81:f3:eb:22:82:c5: 26:39:de:8d:7a:a9:24:27:12:b5:cd:cf:d8:22:7e: 40:63:a2:4a:f2:c0:da:49:1b:12:a3:31:9f:5a:03: 42:75:3a:11:f4:35:c1:9f:f0:8f:2c:5d:cd:16:13: bc:41:34:0b:de:29:24:23:e2:19:08:c4:4a:8b:dc: f2:ff:be:66:08:34:b7:6d:d9:40:03:d0:50:f3:f9: 8d:10:07:53:19:6b:67:d8:e1:3d:45:be:82:e5:77: 37:bf:07:1c:7a:29:bb:f4:70:54:02:36:d6:9f:c5: 76:58:c5:a6:25:c2:0e:62:d9:df:3e:18:30:7c:e0: d7:a3:37:78:07:d5:d0:c2:a4:68:5e:10:06:5b:33: 52:fc:d8:5e:4b:6a:00:ce:fe:8a:34:7a:5e:68:45: 6a:3d:7c:29:b7:75:ba:c4:a8:40:a7:02:9c:41:69: 3a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:C2:59:C7:35:A1:24:57:23:AA:91:E1:39:CF:C0:BC:2D:AA:31:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f68dd099-aa8e-4399-88fc-6d8848cf3dcb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16:c00::/38 Signature Algorithm: sha256WithRSAEncryption bc:72:5d:f7:a1:1e:e8:cf:fd:94:9e:8f:3d:34:12:18:a2:8d: 70:2e:91:58:c8:df:b8:d2:a6:9e:ca:46:13:38:54:62:b9:99: 13:6f:52:c9:10:86:ce:09:6c:6a:f2:8f:34:85:f1:ca:c5:a4: 9a:dc:57:4e:d1:cb:b9:fb:f5:15:82:11:82:1a:fd:63:a5:29: 82:e6:f2:1d:cd:4f:2b:49:7d:78:b2:ac:e5:d2:71:e5:28:cd: 50:dc:be:ce:0d:89:90:c8:1b:3d:b8:3c:33:76:5e:99:2b:38: f3:77:7e:33:5c:56:c4:98:28:0c:18:9c:76:4e:4b:ad:73:b8: 89:02:95:e5:64:b1:c7:27:f0:b1:d6:e8:4f:89:bb:8a:f9:00: bc:70:ca:d2:f2:2b:77:c7:0d:dd:3f:c8:80:68:8f:f7:8b:99: d9:cb:2b:6e:d2:5e:5c:7f:cd:e3:4c:45:b4:2b:3b:6c:bd:35: 0f:b8:31:ee:e0:a5:17:3b:c1:18:ac:0a:25:f1:6f:ca:ca:04: f3:68:05:05:4a:06:a2:49:6f:0f:d8:b1:14:90:b0:a8:af:20: 3b:2a:91:54:cf:9a:1e:3c:57:24:f1:ad:a6:4b:94:86:57:c2: be:49:75:1d:4b:52:c5:74:4c:30:26:0d:73:4f:0f:81:be:69: c2:7e:61:3a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSBl4mhmsEzkKiWZlHHYTyI5mQbUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYzMjAzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODQ1YmFiMTgxMTlmN2M4MTJmNTAzNjNlODlhZGRjYzlj NDJhODI3MGRkMzNkZjQyZWE1ODg5MDg1ZmI0OWNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDxhwE8RGMJNigI4h6G3pNv/nRR9NSvAbEbcVfnFxP92CmO 8HhLW2hl8PMlynuX2MXs8wuj3/5EidLKsZj1MEqunWPwbsTXunoDAFr8Z1tyWr5G 3YHz6yKCxSY53o16qSQnErXNz9gifkBjokrywNpJGxKjMZ9aA0J1OhH0NcGf8I8s Xc0WE7xBNAveKSQj4hkIxEqL3PL/vmYINLdt2UAD0FDz+Y0QB1MZa2fY4T1FvoLl dze/Bxx6Kbv0cFQCNtafxXZYxaYlwg5i2d8+GDB84NejN3gH1dDCpGheEAZbM1L8 2F5LagDO/oo0el5oRWo9fCm3dbrEqECnApxBaToPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnsJZxzWhJFcjqpHhOc/AvC2qMQ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y2OGRkMDk5LWFhOGUtNDM5OS04OGZjLTZkODg0OGNmM2RjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8WDDANBgkqhkiG9w0BAQsFAAOCAQEAvHJd96Ee6M/9lJ6PPTQSGKKN cC6RWMjfuNKmnspGEzhUYrmZE29SyRCGzglsavKPNIXxysWkmtxXTtHLufv1FYIR ghr9Y6UpgubyHc1PK0l9eLKs5dJx5SjNUNy+zg2JkMgbPbg8M3ZemSs483d+M1xW xJgoDBicdk5LrXO4iQKV5WSxxyfwsdboT4m7ivkAvHDK0vIrd8cN3T/IgGiP94uZ 2csrbtJeXH/N40xFtCs7bL01D7gx7uClFzvBGKwKJfFvysoE82gFBUoGoklvD9ix FJCwqK8gOyqRVM+aHjxXJPGtpkuUhlfCvkl1HUtSxXRMMCYNc08Pgb5pwn5hOg== -----END CERTIFICATE-----Generated at Tue Aug 5 23:07:03 2025 by rpki-client