$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa File: a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa (raw, json) Hash identifier: wntAluImNmCAh3oIIZQ0kIQrlOjY+v8zIb052VEIW3U= Subject key identifier: 36:F3:CB:46:B2:E4:6E:F7:64:CF:BA:78:1B:58:F8:0C:4D:48:BE:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26645C420B8772A2DA59C6EF80DFAA391FAFEA8E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa Signing time: Tue 08 Jul 2025 17:21:47 +0000 ROA not before: Tue 08 Jul 2025 17:21:47 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f25:8000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:64:5c:42:0b:87:72:a2:da:59:c6:ef:80:df:aa:39:1f:af:ea:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 17:21:47 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=033008286026fd43215a708edbe4856c75db322cd73b764cebd9b46f736d7c29, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:30:ce:ea:b5:6a:24:85:c7:aa:9a:2b:3e:c6: d7:ac:33:cb:bb:90:d8:2f:0b:d6:d1:b5:50:78:09: b7:e5:19:4e:36:d6:f4:1a:c6:ba:c5:24:77:8f:ce: 10:50:a5:69:c4:51:d4:e7:9b:e9:87:23:b7:24:68: 0a:fd:39:af:28:cc:a8:9f:25:02:f6:f5:d6:28:02: 0d:0c:b7:69:1b:e7:82:84:05:da:ca:ef:15:8e:1e: 52:5e:da:30:40:5e:d9:5e:7d:aa:92:c0:1a:86:e1: 10:a8:b1:93:29:05:23:c3:d2:e6:8a:d1:a7:6e:a5: 9e:48:c5:2e:dd:6d:9d:59:6b:29:d2:51:01:d2:83: f4:f4:cf:55:0d:c8:95:be:f7:87:12:6b:2c:ad:02: d8:16:84:49:6c:f5:74:01:50:db:8c:07:aa:8f:bb: ea:5c:f4:03:10:cb:4c:00:c5:8b:09:2c:62:f0:7a: e5:a9:c5:0b:5a:af:f0:3f:f3:e7:89:2e:2e:cb:75: c6:c5:44:c5:6f:cc:d3:b9:26:93:cf:47:17:a6:ca: f4:bb:40:fa:be:8a:16:43:da:7b:2b:97:d5:13:b9: 44:85:58:01:76:f5:c1:60:e5:79:ee:a4:ca:a2:ed: d3:f0:3e:0e:2d:4d:be:96:09:53:ae:57:42:32:d7: 36:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:F3:CB:46:B2:E4:6E:F7:64:CF:BA:78:1B:58:F8:0C:4D:48:BE:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a2d10cfa-fb3e-4f12-a732-0c9e5832c58b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f25:8000::/36 Signature Algorithm: sha256WithRSAEncryption 54:b1:42:71:fc:17:bc:2e:44:3e:9b:92:17:79:14:87:ee:48: c2:e6:2f:12:b5:24:15:30:d8:69:62:23:a0:a1:1f:58:e3:4f: b6:85:c7:15:ef:4a:db:da:78:48:f0:6f:12:56:40:57:df:23: 25:49:92:cd:f7:e6:3a:7e:85:83:e6:b6:99:4f:9e:58:85:b5: 78:43:c7:f6:5a:72:52:42:d7:cb:ed:ec:83:f2:58:74:6e:93: 93:7b:e8:98:00:44:bd:ac:e3:20:55:e1:3f:09:bc:90:29:e7: 02:0a:a9:7a:07:17:bd:76:45:16:af:ec:9d:f0:dc:85:66:ba: 46:53:2c:d9:ef:40:07:32:a7:1e:21:c4:74:69:75:57:d8:ec: ff:1b:cc:de:19:d8:5b:51:71:9a:c7:52:dd:62:1e:5c:6e:82: c9:05:4c:c4:43:f6:79:9b:56:62:1f:79:9f:52:01:80:c4:dc: 3d:58:fd:04:7e:4d:42:a6:bc:2e:0a:1e:6b:6d:17:84:3d:76: 43:23:dc:c8:9c:67:8d:56:17:74:60:d2:a2:23:1a:7c:8f:1d: 44:58:10:45:b6:53:f2:85:04:33:6d:3f:09:d9:ad:3e:13:98: 08:b0:10:fe:12:06:ea:c3:82:8b:e6:f1:d4:9c:64:6b:68:cf: 32:bc:36:00 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJmRcQguHcqLaWcbvgN+qOR+v6o4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTcyMTQ3WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzMwMDgyODYwMjZmZDQzMjE1YTcwOGVkYmU0ODU2Yzc1 ZGIzMjJjZDczYjc2NGNlYmQ5YjQ2ZjczNmQ3YzI5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJMM7qtWokhceqmis+xtesM8u7kNgvC9bRtVB4CbflGU42 1vQaxrrFJHePzhBQpWnEUdTnm+mHI7ckaAr9Oa8ozKifJQL29dYoAg0Mt2kb54KE BdrK7xWOHlJe2jBAXtlefaqSwBqG4RCosZMpBSPD0uaK0adupZ5IxS7dbZ1ZaynS UQHSg/T0z1UNyJW+94cSayytAtgWhEls9XQBUNuMB6qPu+pc9AMQy0wAxYsJLGLw euWpxQtar/A/8+eJLi7LdcbFRMVvzNO5JpPPRxemyvS7QPq+ihZD2nsrl9UTuUSF WAF29cFg5XnupMqi7dPwPg4tTb6WCVOuV0Iy1zaZAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUNvPLRrLkbvdkz7p4G1j4DE1IvkcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EyZDEwY2ZhLWZiM2UtNGYxMi1hNzMyLTBjOWU1ODMyYzU4Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8lgDANBgkqhkiG9w0BAQsFAAOCAQEAVLFCcfwXvC5EPpuSF3kUh+5I wuYvErUkFTDYaWIjoKEfWONPtoXHFe9K29p4SPBvElZAV98jJUmSzffmOn6Fg+a2 mU+eWIW1eEPH9lpyUkLXy+3sg/JYdG6Tk3vomABEvazjIFXhPwm8kCnnAgqpegcX vXZFFq/snfDchWa6RlMs2e9ABzKnHiHEdGl1V9js/xvM3hnYW1FxmsdS3WIeXG6C yQVMxEP2eZtWYh95n1IBgMTcPVj9BH5NQqa8Lgoea20XhD12QyPcyJxnjVYXdGDS oiMafI8dRFgQRbZT8oUEM20/CdmtPhOYCLAQ/hIG6sOCi+bx1Jxka2jPMrw2AA== -----END CERTIFICATE-----Generated at Mon Jul 21 18:10:36 2025 by rpki-client