$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa File: d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa (raw, json) Hash identifier: X9+wEYH9XKDjwCWdx1k76JPTx3tX7hYUuJUN3q3ppvg= Subject key identifier: 67:85:08:A2:59:40:21:7F:B5:7C:AC:C0:A6:CA:3B:A6:35:5F:B7:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C9A1921DD1E7BFA4DFFED4ED0D9EE1760F5E3D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa Signing time: Mon 30 Jun 2025 15:11:43 +0000 ROA not before: Mon 30 Jun 2025 15:11:43 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f32:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:9a:19:21:dd:1e:7b:fa:4d:ff:ed:4e:d0:d9:ee:17:60:f5:e3:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:11:43 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=598e399cdca41a6d56a3c558fe9ca4d86c6bce6f22a25fa35c1fdd69d5b395d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:f9:b6:aa:d3:f4:dc:d2:43:c6:df:f5:6b:c1: 2e:fb:cb:6f:91:46:46:08:69:ba:02:7e:56:8e:b2: ca:c1:f7:21:68:39:8c:e0:95:c6:37:3b:7c:00:1b: a8:6e:39:04:c6:db:47:01:8c:1e:3e:86:ce:bb:62: 78:05:34:47:77:b8:d1:e4:8a:c6:ac:3a:91:15:90: 0b:3c:04:7e:ca:fc:58:ce:7e:c3:f4:b7:53:86:e3: da:29:8c:53:37:5d:23:0d:85:0d:f0:5a:93:a1:0a: 0b:35:2e:3c:6e:19:c4:11:da:4d:f6:99:77:12:6d: 25:e1:1a:0a:51:7f:db:cc:90:de:a6:fc:3e:c0:37: bf:47:63:5a:ab:c8:1e:b7:ee:1d:cb:5a:3e:40:4d: 8c:23:5f:fe:9b:04:2a:2d:42:6a:7b:64:33:c5:ef: 03:f0:1b:32:4c:1c:30:39:f7:69:f2:34:53:fe:f3: 78:23:60:fc:aa:79:37:20:64:36:dc:7a:b9:6e:b0: fc:5b:72:09:89:a3:23:c8:7a:3f:96:1e:ed:7f:82: 9b:75:c7:4b:a6:83:6b:96:5d:f6:0c:9d:5a:a9:75: 15:77:25:b8:ad:e6:4e:a7:60:91:1e:71:8e:d8:66: 68:5d:b2:ee:fd:d5:e4:37:9e:60:08:6e:fe:75:2c: 9e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:85:08:A2:59:40:21:7F:B5:7C:AC:C0:A6:CA:3B:A6:35:5F:B7:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7fe2419-f59a-4ab1-9c98-0d66a172149d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:8000::/39 Signature Algorithm: sha256WithRSAEncryption 30:98:dc:80:71:cb:bf:ed:c9:05:cf:6b:88:46:ed:45:59:42: 0c:7c:bb:39:54:69:52:ff:f0:21:45:84:d9:51:6b:f3:80:e3: 5f:62:be:d2:76:32:d1:f3:f3:1f:e7:9f:ee:74:d3:f4:c0:61: d9:e0:cf:b8:50:f8:fa:62:34:0f:4d:83:e3:db:02:b8:f0:9d: 60:11:f1:44:ed:ce:fa:94:a6:6e:1d:a1:e9:c8:c1:60:75:94: c4:c3:db:54:fc:9e:41:9b:5b:cf:e0:37:42:f5:db:fb:86:ba: 53:2a:ac:6d:b6:64:f8:fa:a5:d0:c1:cf:8a:c0:9c:a3:ee:53: ae:e0:40:1e:df:4d:48:65:77:de:3c:03:88:5a:14:21:b8:70: d4:c8:c2:fd:90:4c:04:5b:be:21:3f:5f:ad:ce:51:41:fb:38: 59:9a:98:71:2b:e8:6e:70:ba:d3:b3:b5:ae:5a:7c:67:65:ca: 89:0c:54:52:b7:1b:40:2a:c1:39:ba:64:d7:30:84:5e:65:cb: 66:6a:9a:04:e7:5a:17:8e:9e:a1:62:cd:dc:24:85:a0:e6:71: e7:c9:a9:e8:6e:be:4d:88:25:4f:d5:27:42:f9:d4:f8:32:b9: f7:0b:3f:75:3f:4e:f0:06:39:6e:67:15:cb:a1:33:a0:6f:8a: a6:11:36:36 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHJoZId0ee/pN/+1O0NnuF2D149AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUxMTQzWhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OThlMzk5Y2RjYTQxYTZkNTZhM2M1NThmZTljYTRkODZj NmJjZTZmMjJhMjVmYTM1YzFmZGQ2OWQ1YjM5NWQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCI+baq0/Tc0kPG3/VrwS77y2+RRkYIaboCflaOssrB9yFo OYzglcY3O3wAG6huOQTG20cBjB4+hs67YngFNEd3uNHkisasOpEVkAs8BH7K/FjO fsP0t1OG49opjFM3XSMNhQ3wWpOhCgs1LjxuGcQR2k32mXcSbSXhGgpRf9vMkN6m /D7AN79HY1qryB637h3LWj5ATYwjX/6bBCotQmp7ZDPF7wPwGzJMHDA592nyNFP+ 83gjYPyqeTcgZDbcerlusPxbcgmJoyPIej+WHu1/gpt1x0umg2uWXfYMnVqpdRV3 Jbit5k6nYJEecY7YZmhdsu791eQ3nmAIbv51LJ6tAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZ4UIollAIX+1fKzApso7pjVftyYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3ZmUyNDE5LWY1OWEtNGFiMS05Yzk4LTBkNjZhMTcyMTQ5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB8ygDANBgkqhkiG9w0BAQsFAAOCAQEAMJjcgHHLv+3JBc9riEbtRVlC DHy7OVRpUv/wIUWE2VFr84DjX2K+0nYy0fPzH+ef7nTT9MBh2eDPuFD4+mI0D02D 49sCuPCdYBHxRO3O+pSmbh2h6cjBYHWUxMPbVPyeQZtbz+A3QvXb+4a6UyqsbbZk +Pql0MHPisCco+5TruBAHt9NSGV33jwDiFoUIbhw1MjC/ZBMBFu+IT9frc5RQfs4 WZqYcSvobnC607O1rlp8Z2XKiQxUUrcbQCrBObpk1zCEXmXLZmqaBOdaF46eoWLN 3CSFoOZx58mp6G6+TYglT9UnQvnU+DK59ws/dT9O8AY5bmcVy6EzoG+KphE2Ng== -----END CERTIFICATE-----Generated at Mon Jul 21 18:08:30 2025 by rpki-client