$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa File: c8f71b7e-9974-4779-8c24-e352d24c707e.roa (raw, json) Hash identifier: NBhFXUIkKs+oNHnr/UTYg7o8e+beBTjHQfcf8vIu1tM= Subject key identifier: 96:51:C7:9F:18:B5:3F:29:7D:F0:4A:31:39:0B:2C:25:0B:ED:47:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01B6D9489F84190ECFEECD576B5347F5CBFE8D2E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa Signing time: Fri 18 Jul 2025 00:20:29 +0000 ROA not before: Fri 18 Jul 2025 00:20:29 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:b6:d9:48:9f:84:19:0e:cf:ee:cd:57:6b:53:47:f5:cb:fe:8d:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 18 00:20:29 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=04d5bca51b911b1bc6e664d26b7e9d4898f027a7bedc86124b4981597f4674e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1b:ca:06:07:a5:e9:23:a1:3b:38:78:1d:28: 0a:a2:78:c8:67:01:07:16:8c:ce:ae:6a:4f:b7:37: be:16:e1:f2:bd:d5:d5:2b:75:f5:83:8e:6f:57:a4: 1d:4a:f6:8f:4d:84:68:12:78:a4:21:54:8e:d8:ef: 6d:3e:66:9f:52:6e:3b:2d:58:6b:0e:bb:26:5c:68: fc:11:f3:74:f4:8f:89:74:fc:a4:9e:60:ac:4a:8d: 37:9b:ff:9a:da:3f:a8:62:5b:48:3f:9c:f1:1e:90: 89:6f:20:35:8b:68:7d:3b:c3:01:b5:e3:5f:43:64: bc:a9:75:df:da:36:d7:cf:78:5b:f9:88:ea:09:96: 55:22:1e:6c:32:6f:57:f5:2f:f7:2b:bf:d6:bc:21: 5e:1a:f3:c4:67:95:33:8e:23:b4:33:32:16:dd:11: 35:65:23:cf:9e:34:53:7f:97:62:e8:8a:ad:2d:ff: 55:8a:b2:33:e3:7f:16:46:4b:2f:28:18:42:01:b1: 4e:66:0a:ff:4b:13:21:25:3d:87:df:e1:76:25:df: 3e:f9:bf:99:a0:41:15:a5:9a:71:a9:ed:80:4c:a4: 3a:ad:e4:9b:42:7c:00:19:ec:5c:db:d9:33:6e:1b: 38:ab:7d:08:0e:21:ad:c5:16:b5:a7:08:df:73:0b: 93:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:51:C7:9F:18:B5:3F:29:7D:F0:4A:31:39:0B:2C:25:0B:ED:47:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c8f71b7e-9974-4779-8c24-e352d24c707e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:5000::/36 Signature Algorithm: sha256WithRSAEncryption 7e:c1:96:19:68:c2:24:46:99:9d:3d:8a:7d:f0:25:f4:f7:5a: 9f:8e:3e:ec:7b:29:e5:e8:ac:9b:b3:d3:13:93:11:bc:96:a4: a1:dd:e9:03:83:3e:6a:5d:3a:fd:f9:16:dd:24:d0:da:3e:fd: 2f:51:3c:6d:24:13:d4:5a:59:2b:4d:32:c4:8b:19:23:e8:92: 4f:fd:36:c9:cb:8b:d2:ea:b1:42:5e:b1:cc:ef:ee:ad:32:b2: 07:91:60:e9:71:df:65:ff:38:50:95:d0:e0:f7:08:b1:02:0e: a7:be:aa:bd:2a:de:08:9e:53:f8:a9:88:a6:22:d7:9a:53:8f: c4:93:dc:d3:43:f5:94:bf:e0:be:e2:68:97:21:8a:6d:14:d1: 20:fb:89:bd:3b:45:ef:8f:e4:a6:e4:14:94:0b:dc:4e:1d:a3: 83:3f:09:1f:11:98:19:5a:74:aa:52:7e:98:6f:4c:e3:d3:c5: a7:97:6c:ea:e2:6c:ec:d1:cd:22:30:bb:ff:df:d0:b1:89:da: 5f:40:e6:fb:a6:7f:c9:3f:be:8d:f6:75:fb:b9:05:c7:49:98: 46:71:52:c8:3d:48:0b:21:08:d8:1a:7b:76:d8:7e:e2:97:90: b6:f0:08:c2:1e:ba:7a:cb:dd:5a:9d:2c:4a:f3:dd:01:02:21: e5:47:71:71 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAbbZSJ+EGQ7P7s1Xa1NH9cv+jS4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzE4MDAyMDI5WhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNGQ1YmNhNTFiOTExYjFiYzZlNjY0ZDI2YjdlOWQ0ODk4 ZjAyN2E3YmVkYzg2MTI0YjQ5ODE1OTdmNDY3NGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmG8oGB6XpI6E7OHgdKAqieMhnAQcWjM6uak+3N74W4fK9 1dUrdfWDjm9XpB1K9o9NhGgSeKQhVI7Y720+Zp9SbjstWGsOuyZcaPwR83T0j4l0 /KSeYKxKjTeb/5raP6hiW0g/nPEekIlvIDWLaH07wwG1419DZLypdd/aNtfPeFv5 iOoJllUiHmwyb1f1L/crv9a8IV4a88RnlTOOI7QzMhbdETVlI8+eNFN/l2Loiq0t /1WKsjPjfxZGSy8oGEIBsU5mCv9LEyElPYff4XYl3z75v5mgQRWlmnGp7YBMpDqt 5JtCfAAZ7Fzb2TNuGzirfQgOIa3FFrWnCN9zC5MDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUllHHnxi1Pyl98EoxOQssJQvtR4YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M4ZjcxYjdlLTk5NzQtNDc3OS04YzI0LWUzNTJkMjRjNzA3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB/4UDANBgkqhkiG9w0BAQsFAAOCAQEAfsGWGWjCJEaZnT2KffAl9Pda n44+7Hsp5eism7PTE5MRvJakod3pA4M+al06/fkW3STQ2j79L1E8bSQT1FpZK00y xIsZI+iST/02ycuL0uqxQl6xzO/urTKyB5Fg6XHfZf84UJXQ4PcIsQIOp76qvSre CJ5T+KmIpiLXmlOPxJPc00P1lL/gvuJolyGKbRTRIPuJvTtF74/kpuQUlAvcTh2j gz8JHxGYGVp0qlJ+mG9M49PFp5ds6uJs7NHNIjC7/9/QsYnaX0Dm+6Z/yT++jfZ1 +7kFx0mYRnFSyD1ICyEI2Bp7dth+4peQtvAIwh66esvdWp0sSvPdAQIh5UdxcQ== -----END CERTIFICATE-----Generated at Mon Jul 21 23:24:50 2025 by rpki-client