$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa File: 0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa (raw, json) Hash identifier: dy3AOFSxolkEzfcONVbMXM1DMLaLmQ83Y6SXyOX4pQE= Subject key identifier: 6C:86:6F:39:F0:0D:FB:4E:1C:B9:56:15:75:6C:F4:DD:8F:BB:99:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E150ABE95485B8EA9F3BAFEA12E19344F1A88DA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa Signing time: Sat 12 Jul 2025 00:20:22 +0000 ROA not before: Sat 12 Jul 2025 00:20:22 +0000 ROA not after: Sat 16 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:1000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:15:0a:be:95:48:5b:8e:a9:f3:ba:fe:a1:2e:19:34:4f:1a:88:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 12 00:20:22 2025 GMT Not After : Aug 16 23:59:59 2025 GMT Subject: serialNumber=cd56a177d633f20af9b0f036229fce1fa2eef3ce18a9bc6526c6f2979e795261, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:25:ee:43:a0:05:8c:66:8a:bd:b4:00:f0:58: 0c:46:57:a3:ab:34:0c:55:c5:6a:f3:fd:f0:d1:c9: 94:1a:4b:c9:da:70:7b:3d:08:a9:d6:30:1b:fc:93: 37:60:86:6b:4b:74:41:98:e9:7d:11:3e:0f:48:fe: 8c:88:c3:1d:d8:9a:0e:04:10:c9:f0:62:f6:d6:0d: b1:1f:2b:f2:e5:72:83:58:b4:fd:ff:9c:2a:9a:56: a1:81:15:d4:50:14:27:c7:cb:12:3b:d6:72:df:c0: 49:38:8b:1f:63:a8:52:81:c3:01:aa:7e:01:11:82: db:5c:8d:0f:0e:90:b4:f9:6a:01:62:f0:c3:c4:df: a4:29:d2:1e:8c:c7:99:eb:53:75:05:6a:c7:f9:30: bb:43:13:33:7a:11:83:d7:86:f0:b8:f2:2f:6d:93: 7f:95:87:52:48:1f:b4:1c:61:a3:1b:3a:18:4f:2b: 1f:b5:fa:d4:b9:f4:80:55:79:f0:54:1e:b5:e1:db: 6e:4b:b0:d8:62:55:c2:aa:46:7a:81:5a:96:fb:e4: 9e:5f:9a:b5:36:10:d2:e8:40:56:d5:7a:eb:e1:62: 86:51:98:b1:ce:9d:8d:64:49:f2:fa:30:80:a9:2d: ff:e9:c6:91:f0:bc:d8:58:2b:bd:fe:20:2f:5d:4e: 70:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:86:6F:39:F0:0D:FB:4E:1C:B9:56:15:75:6C:F4:DD:8F:BB:99:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ba2cbe3-bc8c-4566-9cf9-f5f9bfd51821.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:1000::/40 Signature Algorithm: sha256WithRSAEncryption 88:6a:0f:fd:33:39:d4:43:ac:52:33:b6:47:d6:63:59:39:77: 6c:a6:72:66:d8:37:f1:7c:8c:7c:fc:01:e9:42:4b:4e:51:31: a0:06:74:5f:7a:0e:0a:08:ef:fb:73:d4:6b:98:4c:42:14:15: 37:ee:a0:25:0c:06:28:8f:7b:9f:24:d4:fd:6e:a2:77:bd:0b: 4a:24:63:d6:40:d7:ca:06:d3:0a:77:5c:b6:eb:eb:80:d1:4d: 96:fa:7a:95:96:99:f6:8e:92:f7:d3:ad:bd:4e:b1:a7:fa:06: 44:1a:fc:fd:28:f7:e1:03:2a:cc:c9:f6:5e:37:45:c9:7d:bb: 1e:15:99:2d:56:a4:95:11:c4:a7:82:d9:e2:5d:e3:81:99:02: f4:ea:2b:b5:21:39:8f:84:2a:8a:39:d9:27:df:24:a0:80:86: a1:91:ee:ed:fa:80:f2:e1:38:00:e1:be:f6:34:0b:f9:f2:b7: e1:07:db:8e:c9:3a:a5:ea:61:ee:55:49:65:ae:e9:64:ea:11: a0:b3:b5:c8:62:ef:be:0a:02:80:c6:a5:49:94:ef:a8:7a:d7: e7:6e:75:66:02:5f:03:5c:31:be:12:1f:85:9b:61:65:bb:90: 14:36:6e:b2:67:30:c0:b2:61:7b:b3:59:72:47:b0:fd:ed:21: 31:2b:19:92 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULhUKvpVIW46p87r+oS4ZNE8aiNowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzEyMDAyMDIyWhcNMjUwODE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDU2YTE3N2Q2MzNmMjBhZjliMGYwMzYyMjlmY2UxZmEy ZWVmM2NlMThhOWJjNjUyNmM2ZjI5NzllNzk1MjYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMJe5DoAWMZoq9tADwWAxGV6OrNAxVxWrz/fDRyZQaS8na cHs9CKnWMBv8kzdghmtLdEGY6X0RPg9I/oyIwx3Ymg4EEMnwYvbWDbEfK/LlcoNY tP3/nCqaVqGBFdRQFCfHyxI71nLfwEk4ix9jqFKBwwGqfgERgttcjQ8OkLT5agFi 8MPE36Qp0h6Mx5nrU3UFasf5MLtDEzN6EYPXhvC48i9tk3+Vh1JIH7QcYaMbOhhP Kx+1+tS59IBVefBUHrXh225LsNhiVcKqRnqBWpb75J5fmrU2ENLoQFbVeuvhYoZR mLHOnY1kSfL6MICpLf/pxpHwvNhYK73+IC9dTnDbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUbIZvOfAN+04cuVYVdWz03Y+7mSowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiYTJjYmUzLWJjOGMtNDU2Ni05Y2Y5LWY1ZjliZmQ1MTgyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vEDANBgkqhkiG9w0BAQsFAAOCAQEAiGoP/TM51EOsUjO2R9ZjWTl3 bKZyZtg38XyMfPwB6UJLTlExoAZ0X3oOCgjv+3PUa5hMQhQVN+6gJQwGKI97nyTU /W6id70LSiRj1kDXygbTCndctuvrgNFNlvp6lZaZ9o6S99OtvU6xp/oGRBr8/Sj3 4QMqzMn2XjdFyX27HhWZLVaklRHEp4LZ4l3jgZkC9OortSE5j4QqijnZJ98koICG oZHu7fqA8uE4AOG+9jQL+fK34Qfbjsk6peph7lVJZa7pZOoRoLO1yGLvvgoCgMal SZTvqHrX5251ZgJfA1wxvhIfhZthZbuQFDZusmcwwLJhe7NZckew/e0hMSsZkg== -----END CERTIFICATE-----Generated at Mon Jul 21 18:09:54 2025 by rpki-client