$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/535ea099-1417-4f80-aa37-e10c92ee2b94.roa File: 535ea099-1417-4f80-aa37-e10c92ee2b94.roa (raw, json) Hash identifier: 1fK5/du5GVV5i28r+jsKCiJvBdsDp0K/9OZAY89yLww= Subject key identifier: 38:F6:6B:07:5A:E3:F2:01:EC:07:03:65:DD:5D:6F:97:AE:93:A1:F7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5AFC77C8053A9A9D50C5147DE00CF67FD01B3242 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/535ea099-1417-4f80-aa37-e10c92ee2b94.roa Signing time: Tue 08 Jul 2025 17:20:25 +0000 ROA not before: Tue 08 Jul 2025 17:20:25 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f25:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:fc:77:c8:05:3a:9a:9d:50:c5:14:7d:e0:0c:f6:7f:d0:1b:32:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 17:20:25 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=c48cfb68a7e0ad685c1b0d6501c9ba00a1ff19a03527287ee725400809dbeb71, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8c:b6:30:6e:5d:c3:3f:c0:5e:ea:00:42:49: ff:78:73:3a:22:93:87:fd:92:9f:a1:ed:b3:53:c3: 55:c3:a1:a0:90:3f:9e:31:7a:61:5b:17:f4:49:52: 91:2b:bd:03:4b:bd:a0:0b:ce:9d:70:49:73:e6:43: b1:9b:e3:9b:aa:c2:14:06:64:d0:09:c4:24:1b:0d: 6f:a9:53:e8:46:df:53:4d:ec:ac:a9:1f:b9:9c:72: bd:57:fb:df:fd:dc:50:ce:60:b4:44:c0:97:8d:09: dc:e9:3f:4a:84:35:cb:a2:ba:9a:db:ec:ad:f2:f6: ae:11:b1:0f:76:44:b7:4a:83:38:51:6d:c9:d9:b1: 33:df:33:5e:f9:72:d3:7b:f4:ad:23:64:30:e2:e8: 2e:a1:35:9c:1a:bb:20:05:fd:b9:e9:60:c7:31:78: e3:b1:d6:fe:dc:52:74:12:0d:21:f5:52:a3:c0:d7: 1a:f4:ae:c2:6a:93:68:c5:23:6b:90:22:ed:5f:fe: 39:4f:95:29:60:c4:f1:f3:16:66:72:cb:ee:b3:0e: b4:e9:c2:3a:46:3e:a4:72:8c:6a:a6:3a:2f:9b:30: 75:72:d5:e2:34:f4:fe:21:69:46:0e:8f:b2:22:4f: 53:e4:49:c8:53:51:cf:ac:c6:ed:81:64:9e:ce:10: 00:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F6:6B:07:5A:E3:F2:01:EC:07:03:65:DD:5D:6F:97:AE:93:A1:F7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/535ea099-1417-4f80-aa37-e10c92ee2b94.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:4000::/36 Signature Algorithm: sha256WithRSAEncryption 51:ff:5f:37:9d:ab:af:24:05:c7:ad:70:b9:f5:26:01:b5:f8: f0:a7:09:7c:e9:d3:46:2c:a5:81:e5:0f:79:e2:0e:46:12:93: 21:ee:91:f3:44:6f:f8:7f:10:d2:27:1a:34:4f:de:72:3e:b4: e9:21:59:a2:b4:6a:cb:f2:09:b3:84:d6:fa:37:be:75:8b:3d: 5b:59:91:9a:a7:14:e5:48:3c:2c:66:a2:71:e0:a6:33:94:1e: a8:95:59:b5:75:6a:c8:ef:94:fa:4c:7c:a9:14:c0:ac:b3:b5: 6e:ce:db:5a:3c:aa:66:1d:ab:c4:eb:c0:85:15:77:69:cf:54: d2:fc:ea:43:01:b6:0d:ac:fc:8d:61:66:3d:d1:0b:1d:5c:1f: 57:f0:99:b3:69:b1:0a:22:f3:28:8d:18:c6:88:44:9e:a7:af: 1f:54:56:9f:b8:ec:7d:dc:af:34:1a:21:b0:3c:17:9d:ef:01: 3c:c1:4d:78:07:2b:8c:7d:62:e9:00:c1:5d:47:08:1b:08:ea: ae:40:ac:b4:cc:58:b0:e2:02:c8:c3:00:52:c2:91:00:cf:bf: 6d:e0:62:94:b1:4b:80:0b:13:1a:2b:b8:36:b4:88:99:69:c5: 03:67:88:8a:f4:5d:b8:c5:e6:3d:9d:2e:0c:ee:75:d5:07:ce: e3:44:55:02 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWvx3yAU6mp1QxRR94Az2f9AbMkIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTcyMDI1WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDhjZmI2OGE3ZTBhZDY4NWMxYjBkNjUwMWM5YmEwMGEx ZmYxOWEwMzUyNzI4N2VlNzI1NDAwODA5ZGJlYjcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgjLYwbl3DP8Be6gBCSf94czoik4f9kp+h7bNTw1XDoaCQ P54xemFbF/RJUpErvQNLvaALzp1wSXPmQ7Gb45uqwhQGZNAJxCQbDW+pU+hG31NN 7KypH7mccr1X+9/93FDOYLREwJeNCdzpP0qENcuiuprb7K3y9q4RsQ92RLdKgzhR bcnZsTPfM175ctN79K0jZDDi6C6hNZwauyAF/bnpYMcxeOOx1v7cUnQSDSH1UqPA 1xr0rsJqk2jFI2uQIu1f/jlPlSlgxPHzFmZyy+6zDrTpwjpGPqRyjGqmOi+bMHVy 1eI09P4haUYOj7IiT1PkSchTUc+sxu2BZJ7OEADLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUOPZrB1rj8gHsBwNl3V1vl66TofcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzNWVhMDk5LTE0MTctNGY4MC1hYTM3LWUxMGM5MmVlMmI5NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lQDANBgkqhkiG9w0BAQsFAAOCAQEAUf9fN52rryQFx61wufUmAbX4 8KcJfOnTRiylgeUPeeIORhKTIe6R80Rv+H8Q0icaNE/ecj606SFZorRqy/IJs4TW +je+dYs9W1mRmqcU5Ug8LGaiceCmM5QeqJVZtXVqyO+U+kx8qRTArLO1bs7bWjyq Zh2rxOvAhRV3ac9U0vzqQwG2Daz8jWFmPdELHVwfV/CZs2mxCiLzKI0YxohEnqev H1RWn7jsfdyvNBohsDwXne8BPMFNeAcrjH1i6QDBXUcIGwjqrkCstMxYsOICyMMA UsKRAM+/beBilLFLgAsTGiu4NrSImWnFA2eIivRduMXmPZ0uDO511QfO40RVAg== -----END CERTIFICATE-----Generated at Tue Jul 22 05:13:04 2025 by rpki-client