$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa File: 2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa (raw, json) Hash identifier: LDwryT/YKHT8ApywLVgZ8n4pmXK2eoNsywGG+ub02hc= Subject key identifier: 16:E4:12:50:7F:A3:FA:1C:B0:4C:7E:20:A2:ED:F0:04:09:0F:DD:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1107BF54F37485416AC967C65C794FBC6EB90A12 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa Signing time: Mon 07 Jul 2025 17:11:35 +0000 ROA not before: Mon 07 Jul 2025 17:11:35 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f00:8010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:07:bf:54:f3:74:85:41:6a:c9:67:c6:5c:79:4f:bc:6e:b9:0a:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 17:11:35 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=ae290e98219907930426d7de2c6ba48dad2f6672d414fb95bfb8d66b8588e0c8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:95:a9:04:ab:48:16:ad:7b:ab:0e:1f:da:f4: 7f:72:e2:d9:1f:1c:59:d4:fd:e3:52:ea:95:37:df: 7f:79:4b:28:6e:c2:4c:48:6d:a0:47:5e:39:a8:c5: 13:02:14:32:43:7e:30:29:d6:55:61:08:b0:71:4f: 14:c0:b9:e4:99:3b:42:4a:2d:94:10:96:46:40:af: 5d:d7:7b:f5:ee:00:21:94:9d:84:ef:d8:c5:af:8a: aa:af:ee:a9:f4:c4:a9:75:59:e0:0f:e0:f1:ef:06: 09:ad:cd:66:1f:05:51:28:5c:61:54:93:10:5a:53: 03:ad:3d:79:e0:b6:ed:6a:d2:a8:fb:2e:7c:44:8c: 8a:37:f8:6b:42:1a:fb:9e:a4:89:94:f2:05:2a:ef: f9:8d:95:b8:25:39:43:34:8a:d0:3f:a0:ca:49:bc: f0:82:60:8a:78:bb:5e:63:28:0d:7e:e5:25:b4:75: 66:ce:87:88:00:20:26:0f:7c:76:70:57:a2:1c:12: 90:4c:a0:92:ec:20:e3:d0:f4:90:8f:1a:85:c7:2f: e0:de:b0:19:26:dd:29:a8:79:98:ba:d3:d0:c7:1f: 7b:26:ce:26:98:65:e6:70:56:21:de:80:58:00:89: b9:ca:14:b6:52:a1:f3:9e:1e:38:9f:17:00:c4:90: 62:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E4:12:50:7F:A3:FA:1C:B0:4C:7E:20:A2:ED:F0:04:09:0F:DD:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4b5f5e-bd93-4b3d-ab14-989a0514f037.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8010::/48 Signature Algorithm: sha256WithRSAEncryption 16:8a:cf:bf:64:a8:19:9d:47:a7:f3:8e:e1:91:28:90:aa:51: 5f:78:d3:4b:21:b8:a6:a0:a2:2a:7f:84:26:bc:38:3c:2f:57: 94:59:e8:bb:f1:d9:9b:19:f2:af:d7:39:59:20:65:c2:72:91: fd:4c:ab:0b:98:c9:d5:ed:ff:cc:66:ca:a6:d5:d1:be:3c:b3: 44:d5:41:ae:fc:62:3a:19:16:0a:5f:22:0f:cc:0b:56:fe:e5: 22:74:71:e9:3b:1d:0e:a6:10:7e:9a:ad:1c:9d:b8:81:e1:f1: 27:74:84:1a:60:2c:bd:35:05:e7:cd:11:69:2e:53:45:32:b5: a9:8b:0e:69:fa:f7:04:2b:09:a2:87:85:8a:8b:06:7a:d4:b2: 01:ee:17:19:80:42:bb:94:2b:e4:62:96:bb:ed:90:55:a2:fc: f7:ef:44:5d:ae:25:03:d3:92:17:fb:0c:e3:9e:24:f6:a2:99: 55:9f:5f:17:e1:2d:19:40:e6:5b:2b:a3:fe:58:2f:1d:8b:87: f1:03:ca:b9:c0:5e:f2:64:7c:f3:aa:67:b1:5f:72:2a:ca:17: a8:be:39:68:16:c4:ac:ba:10:1e:9a:ef:7e:6a:93:e0:4f:30: c2:07:b3:8f:2c:fc:e8:89:d4:8c:87:1c:4a:49:f8:e6:cd:20: 96:db:f4:6e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEQe/VPN0hUFqyWfGXHlPvG65ChIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTcxMTM1WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTI5MGU5ODIxOTkwNzkzMDQyNmQ3ZGUyYzZiYTQ4ZGFk MmY2NjcyZDQxNGZiOTViZmI4ZDY2Yjg1ODhlMGM4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCklakEq0gWrXurDh/a9H9y4tkfHFnU/eNS6pU33395Syhu wkxIbaBHXjmoxRMCFDJDfjAp1lVhCLBxTxTAueSZO0JKLZQQlkZAr13Xe/XuACGU nYTv2MWviqqv7qn0xKl1WeAP4PHvBgmtzWYfBVEoXGFUkxBaUwOtPXngtu1q0qj7 LnxEjIo3+GtCGvuepImU8gUq7/mNlbglOUM0itA/oMpJvPCCYIp4u15jKA1+5SW0 dWbOh4gAICYPfHZwV6IcEpBMoJLsIOPQ9JCPGoXHL+DesBkm3SmoeZi609DHH3sm ziaYZeZwViHegFgAibnKFLZSofOeHjifFwDEkGK1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFuQSUH+j+hywTH4gou3wBAkP3WYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNGI1ZjVlLWJkOTMtNGIzZC1hYjE0LTk4OWEwNTE0ZjAzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgBAwDQYJKoZIhvcNAQELBQADggEBABaKz79kqBmdR6fzjuGRKJCq UV9400shuKagoip/hCa8ODwvV5RZ6Lvx2ZsZ8q/XOVkgZcJykf1MqwuYydXt/8xm yqbV0b48s0TVQa78YjoZFgpfIg/MC1b+5SJ0cek7HQ6mEH6arRyduIHh8Sd0hBpg LL01BefNEWkuU0UytamLDmn69wQrCaKHhYqLBnrUsgHuFxmAQruUK+RilrvtkFWi /PfvRF2uJQPTkhf7DOOeJPaimVWfXxfhLRlA5lsro/5YLx2Lh/EDyrnAXvJkfPOq Z7FfcirKF6i+OWgWxKy6EB6a735qk+BPMMIHs48s/OiJ1IyHHEpJ+ObNIJbb9G4= -----END CERTIFICATE-----Generated at Mon Jul 21 18:11:20 2025 by rpki-client