$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9be70d8-4469-4777-9d26-b4cb918733a8.roa File: f9be70d8-4469-4777-9d26-b4cb918733a8.roa (raw, json) Hash identifier: UWnlMlcT4/D0yz0UcDLHPh6xy/TkDeV8CkLiTweS0nM= Subject key identifier: 8A:D8:49:4A:4B:96:1D:D2:AB:3A:99:CB:13:F5:34:1D:85:CF:6A:FD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DE81FD8DF1B0513415A768D7CEBCFC29176D147 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9be70d8-4469-4777-9d26-b4cb918733a8.roa Signing time: Tue 08 Jul 2025 15:41:15 +0000 ROA not before: Tue 08 Jul 2025 15:41:15 +0000 ROA not after: Tue 12 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 23 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e8:1f:d8:df:1b:05:13:41:5a:76:8d:7c:eb:cf:c2:91:76:d1:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 8 15:41:15 2025 GMT Not After : Aug 12 23:59:59 2025 GMT Subject: serialNumber=703f2b3c034fae77c39780f65176db5d5f72fd2053d0c30d5c64460389958199, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:59:fb:01:f2:72:ae:2d:d7:25:47:e8:9d:37: a1:ec:38:f1:c3:32:cb:17:26:68:a2:89:9e:53:2d: ac:a9:ec:a4:16:ad:88:cc:7a:b7:18:89:77:b9:4c: 06:80:bc:39:1f:3a:f4:dd:15:93:f3:8e:35:b0:67: 80:f0:ae:fd:7a:fe:d5:3e:a7:6f:3b:96:71:e1:7c: e0:73:58:04:ba:47:a3:06:07:71:7c:05:0f:7b:07: 4d:9a:69:46:db:2b:c0:f0:2c:df:59:ee:05:99:35: b6:37:3a:f0:86:ef:86:32:93:6d:4b:be:98:29:88: d2:4c:5d:0a:41:f1:6a:3b:41:e7:f7:e9:8f:7d:66: 79:bd:f9:8c:ef:df:d1:14:d6:f4:e1:b8:e2:c7:ac: 44:99:41:1e:82:8b:cd:da:1b:26:00:63:20:5d:9a: 1a:93:9c:46:8c:27:82:90:f6:8f:e9:66:ce:6a:1d: cd:71:7a:87:7a:82:75:a5:4a:d6:17:26:36:c0:f3: d7:55:83:1a:38:c1:3c:cf:c1:be:8f:f1:d3:94:39: ee:7b:78:97:26:8d:10:75:a6:73:55:10:24:d9:03: c3:69:71:58:f2:c5:c3:ef:2f:9c:fc:df:f7:ad:6c: af:04:64:e2:41:bb:27:1a:97:01:6b:a8:dc:0e:8a: 08:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:D8:49:4A:4B:96:1D:D2:AB:3A:99:CB:13:F5:34:1D:85:CF:6A:FD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f9be70d8-4469-4777-9d26-b4cb918733a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:8080::/48 Signature Algorithm: sha256WithRSAEncryption 1b:e8:37:1b:11:e3:f8:bb:6d:5c:45:aa:5d:da:8f:67:0b:c0: 11:88:e6:2c:08:ca:80:65:42:8d:6e:45:85:c9:84:d1:79:95: c1:3f:6a:a6:a7:7c:8f:a2:00:7b:1b:d5:8b:42:99:ca:a4:05: eb:ff:a0:69:73:9c:a6:6b:82:3e:fe:b0:e4:df:2c:f1:bb:02: 8c:53:f8:91:99:78:36:44:e2:1b:9b:16:da:1b:03:f0:03:65: 99:f8:fd:35:1e:19:39:81:75:02:02:65:19:33:d5:c8:0d:c8: e4:c7:77:87:95:99:75:6e:5c:a4:ef:d6:47:36:fe:a0:73:3f: 5f:95:b0:c7:2f:6b:0e:43:ef:3c:eb:a3:0e:e6:10:19:a4:38: 4e:00:92:92:67:50:11:a6:81:24:9d:60:7c:24:1c:68:db:0e: da:0c:9d:a5:04:38:11:dd:bf:3f:c3:dd:ce:b9:aa:a9:1a:a5: ee:46:0e:e7:b5:69:8e:bd:20:c0:5d:4f:4d:60:07:ad:40:5b: 0c:22:0f:22:8b:56:f5:bd:d6:88:b5:25:47:94:17:af:85:98: 40:47:5f:51:af:67:10:33:b6:19:29:6c:f7:2d:f7:2b:6c:18: 11:0e:9b:dd:d9:0b:21:14:14:97:04:50:94:8b:0e:3f:4e:aa: 82:16:32:ef -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXegf2N8bBRNBWnaNfOvPwpF20UcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA4MTU0MTE1WhcNMjUwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDNmMmIzYzAzNGZhZTc3YzM5NzgwZjY1MTc2ZGI1ZDVm NzJmZDIwNTNkMGMzMGQ1YzY0NDYwMzg5OTU4MTk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeWfsB8nKuLdclR+idN6HsOPHDMssXJmiiiZ5TLayp7KQW rYjMercYiXe5TAaAvDkfOvTdFZPzjjWwZ4Dwrv16/tU+p287lnHhfOBzWAS6R6MG B3F8BQ97B02aaUbbK8DwLN9Z7gWZNbY3OvCG74Yyk21LvpgpiNJMXQpB8Wo7Qef3 6Y99Znm9+Yzv39EU1vThuOLHrESZQR6Ci83aGyYAYyBdmhqTnEaMJ4KQ9o/pZs5q Hc1xeod6gnWlStYXJjbA89dVgxo4wTzPwb6P8dOUOe57eJcmjRB1pnNVECTZA8Np cVjyxcPvL5z83/etbK8EZOJBuycalwFrqNwOigi1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUithJSkuWHdKrOpnLE/U0HYXPav0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5YmU3MGQ4LTQ0NjktNDc3Ny05ZDI2LWI0Y2I5MTg3MzNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/7gIAwDQYJKoZIhvcNAQELBQADggEBABvoNxsR4/i7bVxFql3aj2cL wBGI5iwIyoBlQo1uRYXJhNF5lcE/aqanfI+iAHsb1YtCmcqkBev/oGlznKZrgj7+ sOTfLPG7AoxT+JGZeDZE4hubFtobA/ADZZn4/TUeGTmBdQICZRkz1cgNyOTHd4eV mXVuXKTv1kc2/qBzP1+VsMcvaw5D7zzrow7mEBmkOE4AkpJnUBGmgSSdYHwkHGjb DtoMnaUEOBHdvz/D3c65qqkape5GDue1aY69IMBdT01gB61AWwwiDyKLVvW91oi1 JUeUF6+FmEBHX1GvZxAzthkpbPct9ytsGBEOm93ZCyEUFJcEUJSLDj9OqoIWMu8= -----END CERTIFICATE-----Generated at Tue Jul 22 04:36:57 2025 by rpki-client