$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8535a9ec-bdd5-4f77-8f81-ebc2ed78e9b4.roa File: 8535a9ec-bdd5-4f77-8f81-ebc2ed78e9b4.roa (raw, json) Hash identifier: jm3Q68rbxDaFeiXl1Pd8BYQ/atprimahyrWiPf39CKo= Subject key identifier: C3:D2:A6:B1:A5:11:1D:85:CC:95:F2:E8:D9:A3:D0:FA:32:11:A5:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 594E964196D62F23554981FA55DB2F20A0874826 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8535a9ec-bdd5-4f77-8f81-ebc2ed78e9b4.roa Signing time: Mon 07 Jul 2025 17:20:30 +0000 ROA not before: Mon 07 Jul 2025 17:20:30 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:4e:96:41:96:d6:2f:23:55:49:81:fa:55:db:2f:20:a0:87:48:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 17:20:30 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=343d335d786d3d416784b26972b1fd8961d369a3378fff86a7f1e45bf5d1aec4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:79:4d:14:79:0b:62:5a:34:56:6b:f9:f0:de: 75:24:57:45:0f:ef:f2:e8:7c:b2:2e:7b:85:a3:39: 81:03:52:bf:1f:6b:05:82:7b:21:d9:39:16:02:02: 0d:8e:09:f3:21:45:8d:36:3f:ee:1e:59:bb:dc:bf: 75:33:aa:e1:bd:95:e4:b8:38:bb:6c:f6:b2:75:ca: d7:45:b9:77:e9:85:0a:e4:00:2d:59:77:d3:ea:06: 34:94:3f:f3:85:10:86:51:19:12:85:88:00:92:ed: ab:88:6f:f4:15:05:48:21:20:58:e5:30:5f:fd:58: 84:8d:fb:34:77:f4:6f:76:ad:ac:ea:64:d3:e6:51: d7:d0:11:ff:1c:b5:b7:29:58:1f:1a:70:f2:1d:97: 7d:8a:50:65:19:15:13:be:2b:fb:28:55:62:87:0b: e4:de:fa:e2:c7:2a:96:bb:c4:ec:d7:16:99:c9:40: ff:2b:a7:fc:b1:69:62:ba:0f:64:9a:1e:37:06:e5: 41:87:4c:bd:2d:b5:84:16:6b:5e:2d:af:ba:6f:a6: 62:aa:96:31:f2:9b:e5:06:a3:8d:29:04:ca:80:4d: 7d:a6:cd:eb:6b:39:ad:05:42:02:be:29:d6:5f:1b: 97:73:1a:3e:af:45:0d:47:22:c6:4f:c5:a0:6d:ba: e5:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D2:A6:B1:A5:11:1D:85:CC:95:F2:E8:D9:A3:D0:FA:32:11:A5:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8535a9ec-bdd5-4f77-8f81-ebc2ed78e9b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:2040::/48 Signature Algorithm: sha256WithRSAEncryption 01:f7:d5:e7:d9:16:7d:e3:8e:b4:c0:f6:f1:63:08:c4:79:6a: 2b:b2:f2:6f:f0:2e:47:6d:55:ac:52:8a:71:36:f2:4f:56:0c: fe:14:c2:0e:62:00:49:6e:5c:01:4f:6e:9b:8b:b3:94:44:2d: 2d:4e:51:8e:ca:7f:28:31:76:73:97:ad:23:2d:98:40:b8:70: 44:26:0d:47:34:cd:22:5d:75:ce:e0:82:c5:e9:72:57:0b:1b: 88:c4:55:cf:cf:33:b2:c1:3f:67:a9:39:ee:72:a9:a4:51:a0: e7:d1:24:bc:da:3b:74:11:5f:c8:63:e3:78:a7:b6:80:cf:54: 28:53:aa:59:14:1e:a3:ea:51:09:3e:ce:1b:50:e8:d4:b7:ed: 21:22:23:95:cd:d0:4a:d5:56:4e:27:8e:d0:e8:b7:ff:7a:3b: d0:d9:e4:86:42:24:7b:eb:fa:13:86:81:bb:2c:ec:c0:60:eb: 51:e0:f5:17:ad:43:49:61:69:6f:c5:18:61:39:e3:79:08:41: e2:f2:0a:d1:27:3e:16:e7:37:69:67:63:d4:40:e3:00:a4:ca: 90:1d:30:83:0d:d0:bd:e3:83:c8:f2:d7:55:04:66:01:4c:c5: e0:9a:85:11:ff:dd:ab:6d:a5:4d:8a:ca:e0:f1:59:c2:69:72: ce:51:6c:1d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUWU6WQZbWLyNVSYH6VdsvIKCHSCYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTcyMDMwWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNDNkMzM1ZDc4NmQzZDQxNjc4NGIyNjk3MmIxZmQ4OTYx ZDM2OWEzMzc4ZmZmODZhN2YxZTQ1YmY1ZDFhZWM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1eU0UeQtiWjRWa/nw3nUkV0UP7/LofLIue4WjOYEDUr8f awWCeyHZORYCAg2OCfMhRY02P+4eWbvcv3UzquG9leS4OLts9rJ1ytdFuXfphQrk AC1Zd9PqBjSUP/OFEIZRGRKFiACS7auIb/QVBUghIFjlMF/9WISN+zR39G92razq ZNPmUdfQEf8ctbcpWB8acPIdl32KUGUZFRO+K/soVWKHC+Te+uLHKpa7xOzXFpnJ QP8rp/yxaWK6D2SaHjcG5UGHTL0ttYQWa14tr7pvpmKqljHym+UGo40pBMqATX2m zetrOa0FQgK+KdZfG5dzGj6vRQ1HIsZPxaBtuuXdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUw9KmsaURHYXMlfLo2aPQ+jIRpRgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1MzVhOWVjLWJkZDUtNGY3Ny04ZjgxLWViYzJlZDc4ZTliNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AIEAwDQYJKoZIhvcNAQELBQADggEBAAH31efZFn3jjrTA9vFjCMR5 aiuy8m/wLkdtVaxSinE28k9WDP4Uwg5iAEluXAFPbpuLs5RELS1OUY7KfygxdnOX rSMtmEC4cEQmDUc0zSJddc7ggsXpclcLG4jEVc/PM7LBP2epOe5yqaRRoOfRJLza O3QRX8hj43intoDPVChTqlkUHqPqUQk+zhtQ6NS37SEiI5XN0ErVVk4njtDot/96 O9DZ5IZCJHvr+hOGgbss7MBg61Hg9RetQ0lhaW/FGGE543kIQeLyCtEnPhbnN2ln Y9RA4wCkypAdMIMN0L3jg8jy11UEZgFMxeCahRH/3attpU2KyuDxWcJpcs5RbB0= -----END CERTIFICATE-----Generated at Mon Jul 21 18:14:33 2025 by rpki-client