$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa File: 5752ffaa-9565-4fe4-90d6-617594e92fe1.roa (raw, json) Hash identifier: eNEt8g4rq4fY5InRTxKkfpiYKLl0InJYLgylkKutsW8= Subject key identifier: CF:9C:EA:9A:53:DC:70:7B:07:73:6A:A5:7D:FD:F5:71:E7:60:B6:84 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3574709B1670FAE77BB4C052F18F6E67F48CDA18 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa Signing time: Tue 24 Jun 2025 00:20:59 +0000 ROA not before: Tue 24 Jun 2025 00:20:59 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff8:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:74:70:9b:16:70:fa:e7:7b:b4:c0:52:f1:8f:6e:67:f4:8c:da:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:20:59 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=3e54b68ea9388e7535c937427109b5b8a77f76598454bc5e4cea878387bff8b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a6:98:6d:19:0d:b8:fb:5a:ef:f1:39:6f:07: db:05:bc:ef:26:ef:27:2e:ab:ed:5c:ce:90:86:5a: fe:88:fc:24:9d:3c:1f:de:c6:76:1e:2e:b2:07:38: e1:11:8c:a6:69:f1:66:b1:0f:55:2d:89:50:e3:a9: 51:f1:13:4b:d2:bc:91:11:08:cb:0b:d6:69:4e:c0: 33:e6:04:44:3f:69:a6:28:3e:50:5f:30:60:03:3f: c8:67:44:36:d5:3b:13:de:19:1f:08:13:c0:4c:93: b7:0c:05:11:26:da:cc:f3:40:f7:56:ed:52:0c:c2: ff:8b:c8:74:05:55:b7:02:e4:8d:c8:c8:08:57:cd: 01:c3:ba:35:58:11:e6:ff:b8:40:09:6c:18:a9:a2: 1a:bb:f2:f5:78:2a:91:22:7b:c2:d5:cb:df:5e:60: 5b:73:08:e5:c6:91:25:63:7a:0a:64:44:15:83:3e: 9a:76:5d:73:78:40:a1:32:58:24:e9:1d:38:16:15: c1:b2:4a:1e:6a:b6:8c:6f:ac:9a:ae:e0:45:47:80: 3f:86:7d:32:1b:db:f2:b6:53:93:aa:6c:70:79:18: 78:3f:d0:d6:f7:48:a7:e0:bb:73:06:57:6f:a3:cd: be:89:7e:62:bb:99:1f:42:78:5c:bb:e4:86:66:2f: 8e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:9C:EA:9A:53:DC:70:7B:07:73:6A:A5:7D:FD:F5:71:E7:60:B6:84 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752ffaa-9565-4fe4-90d6-617594e92fe1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff8:c000::/40 Signature Algorithm: sha256WithRSAEncryption 01:58:3c:a4:b3:95:d4:d9:53:15:ee:b4:7e:52:66:9d:e3:b0: 74:2f:e4:9d:92:d0:c6:8f:81:fc:ae:64:41:c1:94:8b:5a:f7: e1:d3:66:c8:a4:50:44:2c:aa:78:c4:b3:08:eb:61:cb:90:4e: d0:16:84:e6:a5:fd:00:22:b4:96:09:fe:89:06:e3:b1:21:9d: 7a:dd:c6:c7:54:24:90:f9:b2:6e:b3:d4:cc:e7:7c:54:83:64: c1:03:98:bc:f7:cd:76:88:d8:82:76:7d:ba:20:d3:05:7a:e9: 23:54:aa:b0:71:07:f5:c9:2b:a4:4b:52:cf:31:22:2d:24:62: 4c:41:f8:a7:1e:05:d7:76:56:78:d5:2c:51:35:b0:e4:71:ed: 2a:14:58:77:0a:c8:d2:79:5c:21:9d:95:04:19:58:f5:ea:5a: d2:e9:79:b1:aa:ae:c0:7c:68:35:42:78:9f:e4:0f:11:68:18: 9e:2a:87:9f:2e:de:d9:e2:29:99:3b:ce:f9:93:93:56:6f:11: 49:43:d2:84:08:94:31:74:6f:b6:c4:42:01:ca:90:7c:16:31: bf:14:87:61:8f:d4:9a:a2:8d:66:95:e3:07:4d:cb:c7:f6:de: 39:af:8a:e6:89:8a:21:d0:08:e7:95:2f:01:9d:ff:72:9b:75: f6:96:f0:7d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNXRwmxZw+ud7tMBS8Y9uZ/SM2hgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAyMDU5WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZTU0YjY4ZWE5Mzg4ZTc1MzVjOTM3NDI3MTA5YjViOGE3 N2Y3NjU5ODQ1NGJjNWU0Y2VhODc4Mzg3YmZmOGI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwpphtGQ24+1rv8TlvB9sFvO8m7ycuq+1czpCGWv6I/CSd PB/exnYeLrIHOOERjKZp8WaxD1UtiVDjqVHxE0vSvJERCMsL1mlOwDPmBEQ/aaYo PlBfMGADP8hnRDbVOxPeGR8IE8BMk7cMBREm2szzQPdW7VIMwv+LyHQFVbcC5I3I yAhXzQHDujVYEeb/uEAJbBipohq78vV4KpEie8LVy99eYFtzCOXGkSVjegpkRBWD Ppp2XXN4QKEyWCTpHTgWFcGySh5qtoxvrJqu4EVHgD+GfTIb2/K2U5OqbHB5GHg/ 0Nb3SKfgu3MGV2+jzb6JfmK7mR9CeFy75IZmL45lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUz5zqmlPccHsHc2qlff31cedgtoQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NTJmZmFhLTk1NjUtNGZlNC05MGQ2LTYxNzU5NGU5MmZlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/4wDANBgkqhkiG9w0BAQsFAAOCAQEAAVg8pLOV1NlTFe60flJmneOw dC/knZLQxo+B/K5kQcGUi1r34dNmyKRQRCyqeMSzCOthy5BO0BaE5qX9ACK0lgn+ iQbjsSGdet3Gx1QkkPmybrPUzOd8VINkwQOYvPfNdojYgnZ9uiDTBXrpI1SqsHEH 9ckrpEtSzzEiLSRiTEH4px4F13ZWeNUsUTWw5HHtKhRYdwrI0nlcIZ2VBBlY9epa 0ul5saquwHxoNUJ4n+QPEWgYniqHny7e2eIpmTvO+ZOTVm8RSUPShAiUMXRvtsRC AcqQfBYxvxSHYY/UmqKNZpXjB03Lx/beOa+K5omKIdAI55UvAZ3/cpt19pbwfQ== -----END CERTIFICATE-----Generated at Fri Jul 4 04:02:52 2025 by rpki-client