$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8af17a15-f8c1-4ae4-979e-3aef5fcbb372.roa File: 8af17a15-f8c1-4ae4-979e-3aef5fcbb372.roa (raw, json) Hash identifier: Xb7CLPFmTdXRQJSxkHZvMbE3wz/sqvwgIKH4W1pa/Ss= Subject key identifier: 45:B1:D8:B5:27:97:C2:93:78:16:C9:D4:83:70:71:8D:5C:FD:14:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CF01DE90545634D0A774636790DE58A09B0FA00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8af17a15-f8c1-4ae4-979e-3aef5fcbb372.roa Signing time: Mon 07 Jul 2025 17:40:11 +0000 ROA not before: Mon 07 Jul 2025 17:40:11 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:5080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:f0:1d:e9:05:45:63:4d:0a:77:46:36:79:0d:e5:8a:09:b0:fa:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 17:40:11 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=07323fc3e56724bf5aaf3c78669217a4b918e9d0f8eaf12d046d4aefac1ac38b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:82:66:39:91:15:bf:f5:fb:e9:d9:8b:c9: e6:69:28:41:2e:09:30:84:b1:e4:c3:0b:9c:a2:53: d1:de:c7:8c:36:0f:9d:86:05:d1:70:9f:b7:f2:9f: f2:4f:78:98:8f:ac:c0:20:aa:b4:b0:28:9f:87:7c: a1:bf:69:ae:e1:c8:42:66:45:51:92:02:92:a3:97: 5c:cf:27:9d:b1:c9:79:9a:b6:08:28:b0:72:01:33: 3b:33:4b:14:89:7e:1a:84:ec:b4:4a:19:92:49:e2: 11:4b:1b:31:99:be:9f:3e:b0:37:ca:ad:a5:53:03: 2d:e6:7c:83:e9:9b:a0:fd:4d:95:82:d9:bc:bd:b9: 87:92:86:61:b7:5b:d9:cc:25:ca:c9:83:ae:d0:41: 72:a0:2e:91:1f:b2:c3:91:94:73:1d:35:91:72:2a: e8:86:38:a7:d1:93:c3:37:79:15:d7:0d:f2:a1:24: 95:94:b2:f7:db:0c:e8:9e:21:b9:eb:de:e1:84:33: 56:c0:8c:eb:a1:0f:ec:7d:d6:a8:45:6e:37:86:36: aa:54:8a:64:8b:57:54:91:82:b9:77:0e:a1:4e:ca: ff:65:12:4c:25:39:e8:05:00:27:dd:c0:13:35:6c: e6:31:07:c9:60:e4:7a:4b:28:53:98:f5:b6:b8:25: 5b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:B1:D8:B5:27:97:C2:93:78:16:C9:D4:83:70:71:8D:5C:FD:14:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8af17a15-f8c1-4ae4-979e-3aef5fcbb372.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:5080::/48 Signature Algorithm: sha256WithRSAEncryption 95:eb:38:b9:ca:34:76:0b:ed:e4:cf:de:56:67:cc:17:ee:a9: 01:a1:f4:ab:0c:4c:50:c5:a9:ee:4a:58:c9:7a:b9:88:52:62: 21:f7:d4:7d:05:c0:cb:4c:bb:2f:26:e7:4c:d3:78:d3:68:6e: b8:34:97:2c:01:ca:f5:21:71:a4:a5:77:ea:ec:ef:f3:90:0b: 27:9b:e4:25:2f:59:b7:6c:26:57:f2:fe:b8:30:b2:86:27:7b: ea:eb:f8:3a:98:b1:6f:34:a3:0d:eb:f9:0c:40:93:db:a8:15: 78:27:88:b6:b0:70:ef:80:eb:69:b5:65:41:f6:d3:5b:38:d2: c3:79:7a:87:35:5f:98:1f:e2:c6:b8:c3:e0:f6:2d:27:74:9e: 0e:66:e3:04:6e:9e:db:b5:03:27:37:17:7f:ad:47:bc:07:07: e4:95:62:2d:d2:a4:73:c2:f2:e7:98:7b:da:48:d9:84:ad:04: 8c:61:5a:de:ab:69:39:2f:f6:17:be:e3:1c:a4:f6:17:30:1a: 1c:c0:16:db:a0:6a:53:ce:98:de:72:2b:4d:6a:1e:00:de:69: 4d:49:59:93:23:9d:bb:78:7f:fb:f4:c0:b5:45:25:04:71:4a: 73:fd:01:ab:72:97:86:f2:3b:ba:83:d9:b3:f8:af:1f:17:f4: 09:0b:cd:d3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPPAd6QVFY00Kd0Y2eQ3ligmw+gAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTc0MDExWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzMyM2ZjM2U1NjcyNGJmNWFhZjNjNzg2NjkyMTdhNGI5 MThlOWQwZjhlYWYxMmQwNDZkNGFlZmFjMWFjMzhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKrIJmOZEVv/X76dmLyeZpKEEuCTCEseTDC5yiU9Hex4w2 D52GBdFwn7fyn/JPeJiPrMAgqrSwKJ+HfKG/aa7hyEJmRVGSApKjl1zPJ52xyXma tggosHIBMzszSxSJfhqE7LRKGZJJ4hFLGzGZvp8+sDfKraVTAy3mfIPpm6D9TZWC 2by9uYeShmG3W9nMJcrJg67QQXKgLpEfssORlHMdNZFyKuiGOKfRk8M3eRXXDfKh JJWUsvfbDOieIbnr3uGEM1bAjOuhD+x91qhFbjeGNqpUimSLV1SRgrl3DqFOyv9l EkwlOegFACfdwBM1bOYxB8lg5HpLKFOY9ba4JVsfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURbHYtSeXwpN4FsnUg3BxjVz9FIAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhhZjE3YTE1LWY4YzEtNGFlNC05NzllLTNhZWY1ZmNiYjM3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yUIAwDQYJKoZIhvcNAQELBQADggEBAJXrOLnKNHYL7eTP3lZnzBfu qQGh9KsMTFDFqe5KWMl6uYhSYiH31H0FwMtMuy8m50zTeNNobrg0lywByvUhcaSl d+rs7/OQCyeb5CUvWbdsJlfy/rgwsoYne+rr+DqYsW80ow3r+QxAk9uoFXgniLaw cO+A62m1ZUH201s40sN5eoc1X5gf4sa4w+D2LSd0ng5m4wRuntu1Ayc3F3+tR7wH B+SVYi3SpHPC8ueYe9pI2YStBIxhWt6raTkv9he+4xyk9hcwGhzAFtugalPOmN5y K01qHgDeaU1JWZMjnbt4f/v0wLVFJQRxSnP9Aatyl4byO7qD2bP4rx8X9AkLzdM= -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:58 2025 by rpki-client