$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa File: 8d41710e-c6e8-4052-a1da-98784984e015.roa (raw, json) Hash identifier: PZIWNtLI3KXeIYNqt/vFV4ilq3D/a4xPVdbdVsZ8qwQ= Subject key identifier: 4B:DB:E6:54:0F:6C:C0:82:9C:93:69:76:90:D7:01:7C:73:66:94:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C6D854239839E076D4A0992D57C9F83E3C78A97 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa Signing time: Tue 08 Jul 2025 15:42:08 +0000 ROA not before: Tue 08 Jul 2025 15:42:08 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:2040::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:6d:85:42:39:83:9e:07:6d:4a:09:92:d5:7c:9f:83:e3:c7:8a:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:42:08 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=dba036e3d7c8da9e3f2091ae05ec72d77fbd83841079042a6beec6b03783cbda, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:f9:3d:b9:db:b1:32:c7:28:98:8e:d0:fb:fa: 6a:d1:51:e9:a6:b5:c8:a4:b8:db:86:a6:9d:61:6b: d0:a9:3c:b1:cb:f9:d9:28:94:36:d1:44:7c:4f:2d: a9:aa:40:19:84:e4:a0:0a:af:50:f2:cc:59:0f:10: cd:98:a2:5c:7e:3f:57:f4:9f:24:cf:18:11:23:96: 23:93:80:bd:92:60:6e:19:45:cd:ce:f4:29:c5:40: e3:82:7e:29:89:5b:ff:a5:b6:a4:46:87:c3:50:cb: 75:b4:f5:dd:50:dc:3d:4b:cf:35:24:7b:67:d1:6f: 28:db:79:2d:e4:86:06:1c:84:6b:35:f7:be:b7:97: 79:c4:e3:a2:cb:e5:8b:2e:07:c6:7f:b8:28:a7:20: 9c:5c:c9:5f:ed:8e:96:a3:29:d5:05:d0:f6:36:ae: 6c:38:23:3b:3c:bd:e1:f7:d8:a3:7e:95:f5:b1:0d: af:a8:11:29:5c:cf:3d:f9:83:89:f2:f7:ae:2f:68: 54:d1:f5:7d:d4:a2:f0:2a:82:61:ec:92:45:4e:27: d4:43:25:4a:f6:9a:80:29:e0:23:31:2c:d6:be:fb: 79:67:35:4d:85:38:01:0d:6d:cd:8c:2c:f2:dd:22: 65:36:93:bb:5b:4b:fa:e0:4d:84:ad:72:d4:50:f7: 7d:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:DB:E6:54:0F:6C:C0:82:9C:93:69:76:90:D7:01:7C:73:66:94:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d41710e-c6e8-4052-a1da-98784984e015.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:2040::/46 Signature Algorithm: sha256WithRSAEncryption 55:91:30:e8:2d:ac:a5:8a:cf:24:d3:48:87:11:b2:45:bb:7d: 01:79:73:47:bc:db:cf:9b:fa:27:12:61:3d:52:04:46:80:f9: ef:ce:19:96:88:b3:32:67:6c:6f:df:4b:e5:7d:f1:4d:32:61: 52:fc:2d:06:23:e8:8e:f8:7a:02:99:ba:f7:18:fd:ee:ef:b3: 04:77:5d:27:2a:26:00:3d:a2:4a:81:6c:4e:c8:cc:40:e8:c7: e4:c2:c4:43:ce:d9:95:bd:7b:6e:68:68:c4:09:aa:4c:e1:9a: b9:d2:45:41:56:aa:ca:9f:ff:58:a6:e3:5c:55:e7:72:35:62: e5:82:6e:c7:d3:0a:d9:e7:20:db:b8:15:b4:4f:8e:60:f8:24: f2:2e:8a:85:df:99:6d:d3:69:20:3b:b9:59:c9:ef:38:5f:27: d2:3d:20:5b:68:05:29:30:eb:b9:4d:17:03:b8:13:b5:de:4b: 05:3f:e3:77:bb:36:13:e4:75:44:49:cc:7a:9e:74:c0:23:29: fc:6f:5f:3f:18:6c:40:26:99:df:27:9c:81:bc:b9:f3:e8:4e: 06:72:08:c9:8d:1d:f9:1d:2b:9f:8a:22:17:48:af:1e:6e:21: b0:43:29:4d:24:ce:fd:e4:01:d7:ad:1b:45:e0:6e:8c:e8:35: d0:5a:53:97 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbG2FQjmDngdtSgmS1Xyfg+PHipcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTU0MjA4WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmEwMzZlM2Q3YzhkYTllM2YyMDkxYWUwNWVjNzJkNzdm YmQ4Mzg0MTA3OTA0MmE2YmVlYzZiMDM3ODNjYmRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU+T2527EyxyiYjtD7+mrRUemmtcikuNuGpp1ha9CpPLHL +dkolDbRRHxPLamqQBmE5KAKr1DyzFkPEM2Yolx+P1f0nyTPGBEjliOTgL2SYG4Z Rc3O9CnFQOOCfimJW/+ltqRGh8NQy3W09d1Q3D1LzzUke2fRbyjbeS3khgYchGs1 9763l3nE46LL5YsuB8Z/uCinIJxcyV/tjpajKdUF0PY2rmw4Izs8veH32KN+lfWx Da+oESlczz35g4ny964vaFTR9X3UovAqgmHskkVOJ9RDJUr2moAp4CMxLNa++3ln NU2FOAENbc2MLPLdImU2k7tbS/rgTYStctRQ930VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUS9vmVA9swIKck2l2kNcBfHNmlLswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNDE3MTBlLWM2ZTgtNDA1Mi1hMWRhLTk4Nzg0OTg0ZTAxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7IEAwDQYJKoZIhvcNAQELBQADggEBAFWRMOgtrKWKzyTTSIcRskW7 fQF5c0e828+b+icSYT1SBEaA+e/OGZaIszJnbG/fS+V98U0yYVL8LQYj6I74egKZ uvcY/e7vswR3XScqJgA9okqBbE7IzEDox+TCxEPO2ZW9e25oaMQJqkzhmrnSRUFW qsqf/1im41xV53I1YuWCbsfTCtnnINu4FbRPjmD4JPIuioXfmW3TaSA7uVnJ7zhf J9I9IFtoBSkw67lNFwO4E7XeSwU/43e7NhPkdURJzHqedMAjKfxvXz8YbEAmmd8n nIG8ufPoTgZyCMmNHfkdK5+KIhdIrx5uIbBDKU0kzv3kAdetG0XgbozoNdBaU5c= -----END CERTIFICATE-----Generated at Tue Jul 22 05:09:46 2025 by rpki-client