$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa File: 9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa (raw, json) Hash identifier: +MvMqfqQNey0i20lH271LTdAGm4rvTplkzvGjYB0/SM= Subject key identifier: 17:B6:84:3B:02:DE:81:72:71:18:72:41:85:B1:6C:91:A5:1C:5F:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E903B9D2C761A10341F80A3FD3F186645B0B9DC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa Signing time: Mon 07 Jul 2025 17:21:53 +0000 ROA not before: Mon 07 Jul 2025 17:21:53 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:4040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:90:3b:9d:2c:76:1a:10:34:1f:80:a3:fd:3f:18:66:45:b0:b9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 17:21:53 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=f56ac36211b95d1d26e829417454035def7af86428b8f70242b2c879fb642be6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f9:fe:e6:0a:08:74:ef:2d:8e:de:62:6e:30: 98:06:68:e7:0b:04:f1:cc:65:6a:1a:5a:36:91:38: a5:f7:90:20:b4:12:76:d4:1b:a9:71:0f:7d:1a:7c: ff:11:3a:14:68:28:63:2f:b1:36:cb:e7:8f:5c:0e: 69:98:88:2a:11:5a:ec:2b:44:6c:f4:03:71:95:1e: 38:7a:54:60:37:9d:43:59:a9:d7:e5:b5:73:c1:f1: f7:ea:7f:0c:2c:7f:16:46:90:ae:37:d2:5b:1a:7f: 23:64:49:c0:17:1e:6e:7b:76:83:52:fa:30:c6:f8: 78:1e:35:d5:64:d0:37:b4:e1:c7:11:8f:29:de:07: fc:ad:4e:f4:e1:45:d7:c9:84:18:66:94:d9:9e:b2: dc:4d:a8:43:f6:35:b6:2e:b6:3f:d4:cd:c1:b0:68: 67:b4:50:5b:53:42:19:c8:d3:a2:55:90:8d:e3:91: de:69:e5:1a:48:b7:13:2e:69:b0:95:86:fa:84:4a: 0d:77:c2:81:1c:67:f6:ae:34:2f:3b:91:00:03:a0: bd:c5:28:be:c1:f3:f7:ef:28:af:75:94:ee:12:38: 3f:a5:b1:e7:67:cd:1e:96:dd:be:7b:fe:fa:8f:fc: ae:29:25:ff:c0:80:d9:b6:97:76:37:85:65:7a:25: e1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B6:84:3B:02:DE:81:72:71:18:72:41:85:B1:6C:91:A5:1C:5F:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f7e061b-ce73-4723-ae0d-5ea7afa3bea5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:4040::/48 Signature Algorithm: sha256WithRSAEncryption 74:ab:59:cb:8a:c7:2b:1f:11:26:ea:5b:ae:ef:44:ac:be:7e: 6d:ef:6f:09:e1:af:db:81:c2:28:22:a6:6f:66:f9:5e:9c:15: 29:87:54:98:a6:8e:41:47:9d:9d:a7:7e:53:52:8c:74:85:f3: b9:38:6b:84:11:36:4c:d8:f4:c4:1c:a5:51:6d:a3:8c:44:c6: 1f:1c:83:df:f4:45:cf:15:65:e3:62:9c:55:77:19:cd:ae:a4: 3f:ed:79:16:ea:8c:6e:b4:93:b8:43:7e:9f:81:b0:d2:75:e9: 31:4b:0d:d7:41:1a:a1:11:47:28:28:74:5d:69:1a:fd:f7:f5: ec:65:27:d9:f3:5a:2f:7d:02:6f:3a:66:fb:4c:3d:03:ab:0b: fe:3c:56:1d:97:f4:ad:09:21:94:ba:f6:57:81:e3:f8:cf:34: eb:ba:65:5b:57:08:89:37:86:c1:13:47:37:e5:1a:02:10:26: e9:7b:d4:14:04:b8:6f:52:94:36:81:44:0f:14:ef:6d:7b:99: 5e:f9:65:8e:61:2f:a2:d9:8c:5a:11:a1:c2:8a:55:48:80:c3: 19:d4:5c:cc:57:55:b3:5d:96:15:cd:82:9b:12:41:f3:a3:0d: 02:d7:4d:80:cc:76:2b:16:25:59:91:13:40:d3:fb:bf:db:c5: 9c:15:ed:e1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXpA7nSx2GhA0H4Cj/T8YZkWwudwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTcyMTUzWhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTZhYzM2MjExYjk1ZDFkMjZlODI5NDE3NDU0MDM1ZGVm N2FmODY0MjhiOGY3MDI0MmIyYzg3OWZiNjQyYmU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDo+f7mCgh07y2O3mJuMJgGaOcLBPHMZWoaWjaROKX3kCC0 EnbUG6lxD30afP8ROhRoKGMvsTbL549cDmmYiCoRWuwrRGz0A3GVHjh6VGA3nUNZ qdfltXPB8ffqfwwsfxZGkK430lsafyNkScAXHm57doNS+jDG+HgeNdVk0De04ccR jyneB/ytTvThRdfJhBhmlNmestxNqEP2NbYutj/UzcGwaGe0UFtTQhnI06JVkI3j kd5p5RpItxMuabCVhvqESg13woEcZ/auNC87kQADoL3FKL7B8/fvKK91lO4SOD+l sednzR6W3b57/vqP/K4pJf/AgNm2l3Y3hWV6JeGvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUF7aEOwLegXJxGHJBhbFskaUcXyowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmN2UwNjFiLWNlNzMtNDcyMy1hZTBkLTVlYTdhZmEzYmVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84QEAwDQYJKoZIhvcNAQELBQADggEBAHSrWcuKxysfESbqW67vRKy+ fm3vbwnhr9uBwigipm9m+V6cFSmHVJimjkFHnZ2nflNSjHSF87k4a4QRNkzY9MQc pVFto4xExh8cg9/0Rc8VZeNinFV3Gc2upD/teRbqjG60k7hDfp+BsNJ16TFLDddB GqERRygodF1pGv339exlJ9nzWi99Am86ZvtMPQOrC/48Vh2X9K0JIZS69leB4/jP NOu6ZVtXCIk3hsETRzflGgIQJul71BQEuG9SlDaBRA8U7217mV75ZY5hL6LZjFoR ocKKVUiAwxnUXMxXVbNdlhXNgpsSQfOjDQLXTYDMdisWJVmRE0DT+7/bxZwV7eE= -----END CERTIFICATE-----Generated at Mon Jul 21 23:40:23 2025 by rpki-client