$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d04681e-2458-4f39-84be-dcccbbcbdab0.roa File: 6d04681e-2458-4f39-84be-dcccbbcbdab0.roa (raw, json) Hash identifier: Gh7p9GZAaQCG3jn617vDojYCmJckboNhuiYM9FhYBmw= Subject key identifier: 9F:80:15:40:FF:69:2E:A9:F7:06:2B:62:BF:2F:21:C0:B2:EF:F6:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43FB28B9E1BB538392291039E74583CDD4A8B841 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d04681e-2458-4f39-84be-dcccbbcbdab0.roa Signing time: Fri 25 Jul 2025 00:11:55 +0000 ROA not before: Fri 25 Jul 2025 00:11:55 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:fb:28:b9:e1:bb:53:83:92:29:10:39:e7:45:83:cd:d4:a8:b8:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 25 00:11:55 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=585d65a5ef2727934b69ef6018cc6a7bc0a84709e7bf5558cdb17060931b7f61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:28:87:ef:63:76:12:3a:b8:a4:49:4e:6c:05: 40:51:d0:14:4d:dc:28:14:4c:7c:79:17:b5:cb:e0: c4:e5:ce:1d:a7:6a:ee:75:16:a9:33:af:bc:db:18: 4c:f2:cb:6e:99:f6:14:b2:22:00:ce:af:a4:dc:23: 66:73:11:9e:29:e4:36:95:f3:14:f9:28:07:1c:6d: b9:a1:56:e1:7d:d6:f2:b4:71:19:6e:c1:78:1d:de: fa:78:10:ee:35:c7:3f:75:b3:51:7a:90:a1:42:47: 5d:86:3a:b9:21:57:f0:71:0b:43:6f:ec:03:a3:53: 48:68:fb:0f:f7:9b:2f:52:bd:2c:df:5e:e0:ac:93: de:09:a4:91:7d:c7:bb:2a:01:d5:18:5f:ce:6a:88: 7c:94:85:15:73:2e:73:35:9d:e4:a6:c3:7b:6b:f3: 91:fc:db:ae:aa:c1:b6:73:31:ea:ea:13:54:c8:1a: c3:1a:44:3c:33:df:e7:82:4e:35:6d:68:93:5c:3f: e4:26:0d:92:56:c2:a7:6e:c0:21:59:5f:85:e2:61: 91:55:4a:32:d9:84:7a:a9:ec:8e:72:55:61:2f:df: 11:1e:bb:52:4b:1c:22:1a:7f:ea:25:d6:e6:fb:62: e0:19:0f:8f:7a:91:e1:47:57:70:ed:12:05:3d:cd: f1:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:80:15:40:FF:69:2E:A9:F7:06:2B:62:BF:2F:21:C0:B2:EF:F6:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d04681e-2458-4f39-84be-dcccbbcbdab0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:c000::/40 Signature Algorithm: sha256WithRSAEncryption 13:0b:0f:e1:89:2e:6e:5e:62:86:49:d0:6f:a8:68:b2:1f:f3: 69:ff:80:34:19:7c:7c:d6:d4:f6:f7:8e:40:4c:76:a1:84:1d: 87:b7:a1:a3:20:d9:1c:f2:ef:c8:b2:50:cb:fc:3f:0f:7b:05: bb:c1:56:60:f3:92:d8:4d:13:03:5c:87:05:00:f9:19:98:5e: 34:54:ed:1f:7a:cc:e4:50:b0:81:5b:ac:f2:2b:09:c1:38:75: 8f:90:0c:69:c6:66:15:df:a7:ac:59:70:b1:80:16:d4:92:77: fe:3b:3a:a4:4e:90:8b:f7:36:76:01:c6:b5:6e:7d:df:69:a1: ce:2d:9c:52:a3:22:ba:ce:c0:42:18:be:9f:c3:7a:bb:c8:2f: fd:7c:f2:66:ff:5f:6f:0a:4d:a6:6e:d7:3b:ed:65:0c:9f:2c: c3:42:a9:7f:1c:70:0a:b1:e5:62:4c:ad:95:9d:79:15:77:2f: 58:c9:05:86:b8:ac:61:79:3b:4a:5d:19:6a:2d:e8:bd:49:ff: eb:4f:dc:84:3b:a9:d6:00:ba:34:1a:8d:81:fa:53:23:29:6c: b3:a9:e0:29:0c:85:a2:88:91:40:35:46:34:ec:32:12:8f:17: 28:33:46:b4:cc:cc:1b:c7:70:65:3e:65:f2:34:a4:96:f3:d8: fb:5a:d1:6b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQ/soueG7U4OSKRA550WDzdSouEEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI1MDAxMTU1WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODVkNjVhNWVmMjcyNzkzNGI2OWVmNjAxOGNjNmE3YmMw YTg0NzA5ZTdiZjU1NThjZGIxNzA2MDkzMWI3ZjYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9KIfvY3YSOrikSU5sBUBR0BRN3CgUTHx5F7XL4MTlzh2n au51Fqkzr7zbGEzyy26Z9hSyIgDOr6TcI2ZzEZ4p5DaV8xT5KAccbbmhVuF91vK0 cRluwXgd3vp4EO41xz91s1F6kKFCR12GOrkhV/BxC0Nv7AOjU0ho+w/3my9SvSzf XuCsk94JpJF9x7sqAdUYX85qiHyUhRVzLnM1neSmw3tr85H8266qwbZzMerqE1TI GsMaRDwz3+eCTjVtaJNcP+QmDZJWwqduwCFZX4XiYZFVSjLZhHqp7I5yVWEv3xEe u1JLHCIaf+ol1ub7YuAZD496keFHV3DtEgU9zfEzAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUn4AVQP9pLqn3Bitivy8hwLLv9o0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkMDQ2ODFlLTI0NTgtNGYzOS04NGJlLWRjY2NiYmNiZGFiMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gwDANBgkqhkiG9w0BAQsFAAOCAQEAEwsP4Ykubl5ihknQb6hosh/z af+ANBl8fNbU9veOQEx2oYQdh7ehoyDZHPLvyLJQy/w/D3sFu8FWYPOS2E0TA1yH BQD5GZheNFTtH3rM5FCwgVus8isJwTh1j5AMacZmFd+nrFlwsYAW1JJ3/js6pE6Q i/c2dgHGtW5932mhzi2cUqMius7AQhi+n8N6u8gv/XzyZv9fbwpNpm7XO+1lDJ8s w0KpfxxwCrHlYkytlZ15FXcvWMkFhrisYXk7Sl0Zai3ovUn/60/chDup1gC6NBqN gfpTIylss6ngKQyFooiRQDVGNOwyEo8XKDNGtMzMG8dwZT5l8jSklvPY+1rRaw== -----END CERTIFICATE-----Generated at Sat Jul 26 01:54:45 2025 by rpki-client