$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/538d0377-3611-4c1a-a172-2e35b6509d3f.roa File: 538d0377-3611-4c1a-a172-2e35b6509d3f.roa (raw, json) Hash identifier: FFjJRCvRidpk/wP8NCyQxd2nNfQsetLk2oVzulLRA1E= Subject key identifier: 73:92:3B:67:49:AD:00:8A:F8:06:D6:04:F7:69:C5:B7:A2:E1:92:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 354DD4F52DED68F8F79AF3C15F4D4D51FCD6F4F1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/538d0377-3611-4c1a-a172-2e35b6509d3f.roa Signing time: Tue 26 Aug 2025 15:32:13 +0000 ROA not before: Tue 26 Aug 2025 15:32:13 +0000 ROA not after: Tue 30 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:80a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4d:d4:f5:2d:ed:68:f8:f7:9a:f3:c1:5f:4d:4d:51:fc:d6:f4:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 26 15:32:13 2025 GMT Not After : Sep 30 23:59:59 2025 GMT Subject: serialNumber=e586ff11c0bcf7892667079e40f51863e32fdcdaf44383d0c12f6a92a3e6010f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b1:86:01:fe:a7:d7:ca:c9:f7:25:48:aa:2b: 8c:30:41:6b:c2:bd:b9:15:89:c4:d5:4c:a0:d2:c8: f9:e7:05:b8:e9:a8:76:4a:c5:78:08:c2:1d:cf:9a: 56:92:d8:1c:f3:4d:0c:40:a7:ed:08:a0:90:97:bb: 53:5f:2b:e4:3a:9e:b7:68:99:05:e9:bc:57:c3:8c: f9:87:50:3e:5a:c1:39:37:2b:a5:d9:64:8e:5f:14: 55:c9:03:3e:f7:ab:3b:d8:6f:0e:c2:54:4c:50:61: b2:17:59:da:e4:85:2d:dc:71:31:36:2a:6b:5f:c5: 8e:0c:03:5f:0d:ac:d3:7d:19:71:88:fa:e4:1e:0b: 68:07:ba:52:f7:05:81:f0:80:94:4c:03:ac:b2:71: 0f:38:7a:32:8c:34:61:4c:96:61:b0:c9:b0:17:d8: ec:49:a5:8c:04:29:1b:af:ac:03:f2:e9:40:9b:89: 8d:d7:68:d1:1d:c0:56:10:7f:22:97:fb:03:0e:4d: f4:29:2f:c7:ad:1e:e2:d8:80:d6:4b:7c:09:e9:5a: 33:33:61:fe:9a:a4:66:53:a9:85:0e:b0:1f:43:ae: f1:25:37:11:c0:a0:35:d4:2c:89:66:17:b6:7b:33: 8a:1b:a6:16:f5:bc:09:d5:86:41:85:c9:af:2a:83: eb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:92:3B:67:49:AD:00:8A:F8:06:D6:04:F7:69:C5:B7:A2:E1:92:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/538d0377-3611-4c1a-a172-2e35b6509d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:80a0::/48 Signature Algorithm: sha256WithRSAEncryption 60:9e:2a:2d:55:72:6d:18:ed:10:91:38:0f:01:ec:99:5d:5e: 7a:d7:4c:bf:d9:04:f8:f3:b3:b6:d1:3f:2f:e3:6b:5c:a1:ca: 3d:1f:55:e7:a5:8f:2e:5d:fb:55:2b:1b:8d:6e:b5:59:a9:fb: 72:e7:0a:7e:10:1a:a9:50:e0:1d:c4:b9:cb:ce:e3:d0:e3:09: 39:b0:d9:85:a0:01:b1:88:e6:c9:4e:bc:46:22:82:20:02:85: 66:15:76:ad:0c:5c:cb:a8:e9:1d:81:10:a6:b6:0b:2a:a4:ad: 45:a0:0a:0f:7d:50:fc:7c:a7:6f:cf:09:99:e3:c5:bb:db:fe: 2c:45:fb:3f:20:8f:30:70:db:4e:3c:1d:1e:68:50:bd:e6:49: 0c:4f:8f:47:5a:50:2a:e3:f9:80:b9:a1:34:c1:72:37:d3:9b: 20:03:63:cd:e8:6c:99:72:bf:a1:1c:6b:37:25:0a:9f:8e:a5: 97:05:34:f1:b0:57:85:89:55:3f:1d:3d:d6:b0:db:24:d0:40: 19:27:af:4d:39:a0:ca:a2:5d:d4:47:a8:97:fc:2e:be:44:70: 0c:77:93:8a:52:cd:32:6e:78:9f:4d:d4:3d:da:5b:f0:8f:49: d0:7a:f3:d9:72:33:da:bd:41:18:52:be:65:82:99:be:f6:1e: 67:bb:89:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNU3U9S3taPj3mvPBX01NUfzW9PEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI2MTUzMjEzWhcNMjUwOTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTg2ZmYxMWMwYmNmNzg5MjY2NzA3OWU0MGY1MTg2M2Uz MmZkY2RhZjQ0MzgzZDBjMTJmNmE5MmEzZTYwMTBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCsYYB/qfXysn3JUiqK4wwQWvCvbkVicTVTKDSyPnnBbjp qHZKxXgIwh3PmlaS2BzzTQxAp+0IoJCXu1NfK+Q6nrdomQXpvFfDjPmHUD5awTk3 K6XZZI5fFFXJAz73qzvYbw7CVExQYbIXWdrkhS3ccTE2KmtfxY4MA18NrNN9GXGI +uQeC2gHulL3BYHwgJRMA6yycQ84ejKMNGFMlmGwybAX2OxJpYwEKRuvrAPy6UCb iY3XaNEdwFYQfyKX+wMOTfQpL8etHuLYgNZLfAnpWjMzYf6apGZTqYUOsB9DrvEl NxHAoDXULIlmF7Z7M4obphb1vAnVhkGFya8qg+sdAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUc5I7Z0mtAIr4BtYE92nFt6LhkhswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzOGQwMzc3LTM2MTEtNGMxYS1hMTcyLTJlMzViNjUwOWQzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gKAwDQYJKoZIhvcNAQELBQADggEBAGCeKi1Vcm0Y7RCROA8B7Jld XnrXTL/ZBPjzs7bRPy/ja1yhyj0fVeeljy5d+1UrG41utVmp+3LnCn4QGqlQ4B3E ucvO49DjCTmw2YWgAbGI5slOvEYigiAChWYVdq0MXMuo6R2BEKa2CyqkrUWgCg99 UPx8p2/PCZnjxbvb/ixF+z8gjzBw2048HR5oUL3mSQxPj0daUCrj+YC5oTTBcjfT myADY83obJlyv6EcazclCp+OpZcFNPGwV4WJVT8dPdaw2yTQQBknr005oMqiXdRH qJf8Lr5EcAx3k4pSzTJueJ9N1D3aW/CPSdB689lyM9q9QRhSvmWCmb72Hme7iZ4= -----END CERTIFICATE-----Generated at Sat Sep 6 14:14:02 2025 by rpki-client