$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d875efc-9c2f-4d49-87e6-ad3ebee32018.roa File: 1d875efc-9c2f-4d49-87e6-ad3ebee32018.roa (raw, json) Hash identifier: 8r1eKhIYdZj7N4H2H+YjpQrxfjWdOKHKr6EMvbB35Bo= Subject key identifier: 87:83:C2:28:DE:61:52:78:7C:82:F8:F3:6F:31:C6:C1:A4:5B:FB:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 477E142B48B9BBDEDD35763ADA96CB05532470BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d875efc-9c2f-4d49-87e6-ad3ebee32018.roa Signing time: Fri 29 Aug 2025 15:01:13 +0000 ROA not before: Fri 29 Aug 2025 15:01:13 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:7e:14:2b:48:b9:bb:de:dd:35:76:3a:da:96:cb:05:53:24:70:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:01:13 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=182c24fdb76b09a50fd133f14af761d78cee656fe8d8eca2b99cb87ce9696bb0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:c2:4e:ca:5e:35:08:58:59:19:48:7e:77:3b: ca:90:dc:97:e9:f7:27:b3:da:db:c1:2a:69:ba:fd: 85:24:f9:a0:17:d0:11:25:8e:e2:b9:2c:24:cf:3f: ab:38:53:68:86:b2:34:5f:4d:e6:49:47:f8:cc:e6: e7:63:35:a1:f5:2c:91:bf:37:85:88:80:ef:dd:88: 47:0a:93:1e:18:f4:d2:4e:8a:a5:46:85:a0:83:dd: a2:47:7b:d2:ee:48:cb:5a:22:ea:6f:af:d3:48:fb: 54:6d:85:c7:f8:40:c1:44:5b:79:d5:94:13:be:25: a3:c1:a7:ec:96:7f:a7:04:d1:60:40:b3:f6:01:88: 8f:b8:2e:65:81:35:dc:8a:49:21:65:ef:b1:aa:35: e0:14:2e:c0:64:d7:c1:b2:00:7a:42:20:98:9c:b8: bf:e9:5c:f0:18:e0:e7:9e:c4:a2:60:bd:72:06:11: 51:99:fd:23:ad:37:a1:06:73:af:97:2b:e0:fd:11: a9:a9:c1:ba:ab:90:69:36:92:7d:1f:18:05:df:b7: ca:5a:31:a5:39:17:f8:c6:5c:e4:2f:c2:4c:e3:91: 1d:83:6e:f8:e1:73:87:0e:f3:6e:9b:73:fc:08:10: c2:5e:e5:87:b7:28:d1:c5:36:db:b8:2d:61:b2:be: 16:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:83:C2:28:DE:61:52:78:7C:82:F8:F3:6F:31:C6:C1:A4:5B:FB:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d875efc-9c2f-4d49-87e6-ad3ebee32018.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:6000::/40 Signature Algorithm: sha256WithRSAEncryption 65:6d:8c:cd:e3:da:72:30:32:46:44:e9:1e:0b:66:c2:f8:bd: 62:9d:b1:05:8b:eb:f6:57:a6:6d:16:44:be:e8:97:22:b4:3f: c2:91:70:f3:5c:87:e4:11:ef:69:8a:cc:c3:27:0c:ee:ec:10: e7:fd:1f:a1:2e:ff:b7:6b:23:cf:46:d3:dc:8b:4f:b7:9c:f4: 90:00:e9:a9:14:95:ef:83:61:62:7b:44:59:82:51:dd:a1:9d: 7f:5d:42:c1:d0:71:1a:62:43:cc:ee:52:db:cb:20:bc:95:3d: 11:25:92:44:7d:31:5e:9c:52:02:64:6f:79:d7:54:5e:df:8f: 9c:8a:38:b7:06:00:cd:6a:02:64:39:fb:f2:be:7e:49:ba:49: 98:a2:90:d7:42:ad:b6:24:a8:5b:c7:e0:ec:17:a7:bc:6c:2b: 50:21:a3:9d:ed:5a:0c:04:4c:5a:3a:f6:41:fb:ad:69:bd:7b: 91:78:53:c1:e0:e5:ad:87:50:9f:64:33:69:31:fe:c0:50:f8: c9:54:c2:fb:67:07:10:e5:84:c6:c6:e3:0e:7d:6b:2e:25:19: 8a:5c:51:db:eb:6d:9d:f7:e6:be:66:58:c6:6b:d2:0d:1e:ae: 0f:ce:b7:c8:85:cc:28:bb:5e:d8:f0:15:95:7e:7c:33:1b:d2: c1:4d:7e:78 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUR34UK0i5u97dNXY62pbLBVMkcL4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTUwMTEzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODJjMjRmZGI3NmIwOWE1MGZkMTMzZjE0YWY3NjFkNzhj ZWU2NTZmZThkOGVjYTJiOTljYjg3Y2U5Njk2YmIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvwk7KXjUIWFkZSH53O8qQ3Jfp9yez2tvBKmm6/YUk+aAX 0BEljuK5LCTPP6s4U2iGsjRfTeZJR/jM5udjNaH1LJG/N4WIgO/diEcKkx4Y9NJO iqVGhaCD3aJHe9LuSMtaIupvr9NI+1Rthcf4QMFEW3nVlBO+JaPBp+yWf6cE0WBA s/YBiI+4LmWBNdyKSSFl77GqNeAULsBk18GyAHpCIJicuL/pXPAY4OeexKJgvXIG EVGZ/SOtN6EGc6+XK+D9EampwbqrkGk2kn0fGAXft8paMaU5F/jGXOQvwkzjkR2D bvjhc4cO826bc/wIEMJe5Ye3KNHFNtu4LWGyvhYPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUh4PCKN5hUnh8gvjzbzHGwaRb+9swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkODc1ZWZjLTljMmYtNGQ0OS04N2U2LWFkM2ViZWUzMjAxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+5YDANBgkqhkiG9w0BAQsFAAOCAQEAZW2MzePacjAyRkTpHgtmwvi9 Yp2xBYvr9lembRZEvuiXIrQ/wpFw81yH5BHvaYrMwycM7uwQ5/0foS7/t2sjz0bT 3ItPt5z0kADpqRSV74NhYntEWYJR3aGdf11CwdBxGmJDzO5S28sgvJU9ESWSRH0x XpxSAmRveddUXt+PnIo4twYAzWoCZDn78r5+SbpJmKKQ10KttiSoW8fg7BenvGwr UCGjne1aDARMWjr2Qfutab17kXhTweDlrYdQn2QzaTH+wFD4yVTC+2cHEOWExsbj Dn1rLiUZilxR2+ttnffmvmZYxmvSDR6uD863yIXMKLte2PAVlX58MxvSwU1+eA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:18 2025 by rpki-client