$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9f51838-30d7-4d1c-860c-6e6007978e48.roa File: d9f51838-30d7-4d1c-860c-6e6007978e48.roa (raw, json) Hash identifier: dhzu7RuHHWpEAL3MGjFjd5c9LmT3UMQhqV1Y/KqTyjg= Subject key identifier: 2D:3C:C7:96:20:EB:4A:37:C3:5D:C3:63:56:CF:67:F8:60:4B:54:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F979B41FA41701BFF034DED12823BD5C69596B9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9f51838-30d7-4d1c-860c-6e6007978e48.roa Signing time: Tue 08 Jul 2025 17:00:26 +0000 ROA not before: Tue 08 Jul 2025 17:00:26 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f19:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:97:9b:41:fa:41:70:1b:ff:03:4d:ed:12:82:3b:d5:c6:95:96:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 17:00:26 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=789c472f77294af0873bac0f5cb3c090d586c8f19e59b0cea016e0ad172b891f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dd:32:5a:7a:82:e5:89:21:bb:d6:fc:29:c6: a2:ce:b1:bf:0c:be:97:f0:73:6e:e1:e7:99:bd:48: 9e:2b:90:83:a2:37:65:b6:93:12:3c:bc:da:48:07: 08:ad:fe:54:4e:6e:ce:ac:5e:47:7a:58:17:18:6b: e2:75:92:35:0b:f3:12:6d:79:84:b4:0c:ca:b2:49: ce:96:1e:53:03:6e:e8:01:d8:b8:4f:16:39:32:71: b1:71:84:b4:0c:09:52:50:5f:ce:7e:74:3e:fc:bb: c4:e5:dd:ae:64:2e:ec:6f:62:1c:bd:f1:ca:ec:4e: 03:34:aa:bb:cf:27:bb:26:fc:8b:4c:7c:1f:f7:90: f0:46:7a:18:5e:55:14:7c:8c:38:df:8b:d0:c5:e5: 6f:16:42:f1:87:16:6a:8e:f6:09:5c:64:5d:6a:e6: e0:e2:67:ba:fc:b3:e7:e9:d2:df:09:30:b3:51:00: 2a:58:c9:01:83:78:27:0d:d2:57:fc:99:3f:9b:47: f2:ef:f8:05:0c:d6:c4:43:0d:b8:ff:a5:61:e3:e8: 0d:0d:18:0c:a3:19:d6:5d:85:a5:67:77:df:bf:6a: fc:75:b3:ac:23:da:90:8b:d3:c7:e9:d9:ea:2f:df: 85:65:b5:e9:a9:78:d6:9b:d1:0a:45:c3:b5:ef:ec: 81:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:3C:C7:96:20:EB:4A:37:C3:5D:C3:63:56:CF:67:F8:60:4B:54:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d9f51838-30d7-4d1c-860c-6e6007978e48.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f19:4000::/37 Signature Algorithm: sha256WithRSAEncryption d8:87:d7:1e:42:c4:b0:5b:27:e9:7f:38:25:50:7b:a5:fc:eb: 4d:e4:b8:6e:8f:2a:86:6f:b3:f2:22:ca:3e:36:94:0c:50:4c: f8:20:4a:84:39:49:b9:5a:83:65:5d:b2:02:a1:de:cf:24:ef: 8e:cc:c1:b1:74:d2:60:d9:02:e5:78:30:3b:be:d4:a2:34:3a: 5a:85:eb:7d:fb:c7:11:58:4e:7c:f9:d1:0b:79:dc:da:70:73: 55:29:1e:70:87:b3:83:8a:df:4c:47:09:b4:9f:4e:0f:81:4d: c3:eb:5e:5f:6a:92:de:f8:25:89:a9:8b:b1:c7:37:a1:87:8a: 87:d7:50:c2:f2:da:b6:ab:1c:8f:0e:88:26:e9:3b:dd:ce:ec: 29:dd:a5:61:75:72:c5:a9:9b:a4:8a:40:3f:56:48:c6:e5:04: 41:fc:7b:e7:b2:06:ad:f6:a7:1c:eb:92:8c:f8:36:f2:19:80: 74:c0:b0:1f:72:16:d6:4b:7f:57:45:c9:b0:e5:88:9f:9a:ac: bf:21:47:47:96:2d:a0:e8:ef:01:78:ff:0f:91:6c:d2:b1:a2: c0:42:aa:7c:bf:ba:51:82:c4:6f:eb:13:b4:85:64:f8:71:07: f5:7c:d8:76:98:93:ba:e0:2a:b0:81:21:2a:09:a4:e3:dd:e3: 92:55:df:9b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUL5ebQfpBcBv/A03tEoI71caVlrkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTcwMDI2WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ODljNDcyZjc3Mjk0YWYwODczYmFjMGY1Y2IzYzA5MGQ1 ODZjOGYxOWU1OWIwY2VhMDE2ZTBhZDE3MmI4OTFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC3TJaeoLliSG71vwpxqLOsb8Mvpfwc27h55m9SJ4rkIOi N2W2kxI8vNpIBwit/lRObs6sXkd6WBcYa+J1kjUL8xJteYS0DMqySc6WHlMDbugB 2LhPFjkycbFxhLQMCVJQX85+dD78u8Tl3a5kLuxvYhy98crsTgM0qrvPJ7sm/ItM fB/3kPBGehheVRR8jDjfi9DF5W8WQvGHFmqO9glcZF1q5uDiZ7r8s+fp0t8JMLNR ACpYyQGDeCcN0lf8mT+bR/Lv+AUM1sRDDbj/pWHj6A0NGAyjGdZdhaVnd9+/avx1 s6wj2pCL08fp2eov34VltempeNab0QpFw7Xv7IEVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULTzHliDrSjfDXcNjVs9n+GBLVHYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q5ZjUxODM4LTMwZDctNGQxYy04NjBjLTZlNjAwNzk3OGU0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8ZQDANBgkqhkiG9w0BAQsFAAOCAQEA2IfXHkLEsFsn6X84JVB7pfzr TeS4bo8qhm+z8iLKPjaUDFBM+CBKhDlJuVqDZV2yAqHezyTvjszBsXTSYNkC5Xgw O77UojQ6WoXrffvHEVhOfPnRC3nc2nBzVSkecIezg4rfTEcJtJ9OD4FNw+teX2qS 3vgliamLscc3oYeKh9dQwvLatqscjw6IJuk73c7sKd2lYXVyxambpIpAP1ZIxuUE Qfx757IGrfanHOuSjPg28hmAdMCwH3IW1kt/V0XJsOWIn5qsvyFHR5YtoOjvAXj/ D5Fs0rGiwEKqfL+6UYLEb+sTtIVk+HEH9XzYdpiTuuAqsIEhKgmk493jklXfmw== -----END CERTIFICATE-----Generated at Mon Jul 21 18:12:07 2025 by rpki-client