$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa File: 9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa (raw, json) Hash identifier: lly9G+rQ3FrcWahbBpwnlq6B5432hysmSTjsmz0DmZA= Subject key identifier: 71:3D:A2:AA:14:D1:2C:F5:B3:19:DB:C7:32:88:C7:D2:29:55:B6:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A57654002CEF799A7EDDEEB10A1B65E5101BBD6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa Signing time: Mon 07 Jul 2025 17:02:04 +0000 ROA not before: Mon 07 Jul 2025 17:02:04 +0000 ROA not after: Mon 11 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f61:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:57:65:40:02:ce:f7:99:a7:ed:de:eb:10:a1:b6:5e:51:01:bb:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 7 17:02:04 2025 GMT Not After : Aug 11 23:59:59 2025 GMT Subject: serialNumber=7f32209e31f46a047883d540c7054e0c591fd7909ff30b0925b2f55cdc9d2e7c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:2a:0c:48:c6:ec:09:8e:a3:d1:b2:e5:1e:d9: 7c:9d:bc:44:11:d6:4a:de:2c:de:e1:0e:fe:6a:58: 79:9e:3c:9c:b0:7c:d8:76:17:4d:c8:ec:34:ab:10: 83:7e:e1:fb:0d:6b:29:72:86:eb:1c:1c:f9:16:84: 0f:e0:dc:47:ba:2f:cc:d8:c1:01:61:5c:b3:eb:a8: 1f:60:2c:93:e3:9f:6a:c1:89:73:53:98:a4:75:b8: 19:49:c7:4e:71:b5:c4:70:76:1d:5f:1e:c0:94:01: 57:2c:05:d7:d8:38:aa:c3:cc:25:5a:71:9b:d9:a8: 43:20:7a:c2:ee:60:5c:50:e4:b8:db:5b:02:44:34: 76:77:0e:42:02:58:08:d0:4a:24:7e:57:bb:ed:d1: ed:4c:1d:62:e8:cf:68:e1:75:89:09:c2:ad:3b:ca: ac:ba:cd:37:ab:be:a2:2b:57:81:79:17:3e:1b:0a: ac:27:96:a6:7f:92:59:65:2d:b8:d6:b5:7b:c0:17: b1:76:4e:ef:68:aa:db:6c:ca:ae:f7:0e:c3:77:7a: f8:b4:47:84:30:cc:6a:ba:ab:36:02:22:74:a9:11: e7:70:ae:7c:1a:39:b5:90:05:3d:10:56:8d:9c:74: 7a:ef:1f:29:04:dd:ed:71:aa:a6:e3:be:db:d1:9c: fd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:3D:A2:AA:14:D1:2C:F5:B3:19:DB:C7:32:88:C7:D2:29:55:B6:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9de59557-6a5a-4eb0-b7c2-2a2666d4db6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:8080::/48 Signature Algorithm: sha256WithRSAEncryption 09:d9:63:4b:d4:ad:1c:d3:e2:12:e1:9f:01:df:11:db:8b:2f: 2b:c2:a6:89:2a:32:e1:6e:97:33:e6:8f:33:f6:14:b8:db:8d: 59:64:29:57:14:2f:f7:b6:cb:8d:b6:16:28:c1:d0:a5:a3:7a: 08:a1:f2:40:91:df:ad:43:14:f9:db:67:2f:6a:bd:45:ed:1f: 93:3b:aa:8f:46:e5:91:d6:5b:5a:64:c9:c3:44:7f:bd:83:2c: 02:4b:17:51:27:28:a8:fb:10:58:1a:4d:e0:08:45:38:36:03: 9a:60:cd:b8:51:82:5d:20:e8:ac:4d:7f:e8:52:ea:5b:48:c3: 49:70:ca:d4:cd:88:2a:3c:dd:31:c8:20:bd:30:9f:3c:59:90: 4f:cf:ef:35:c5:38:8b:56:d5:15:36:3b:56:fe:9d:5a:7d:46: 6d:5c:b1:c2:1b:c0:33:c5:b1:7b:b9:53:9e:28:ea:53:33:33: 8f:eb:5b:e4:c6:e7:34:d6:e1:7d:6d:ba:b9:48:d0:6b:40:5d: 9b:47:80:eb:6e:a8:55:e7:2a:57:bc:f0:ef:13:13:f6:b2:2b: b6:21:21:67:97:ff:46:6f:49:aa:10:88:61:78:e0:e0:e3:9b: c2:49:53:06:e7:db:6c:a3:79:b4:86:a7:26:4f:a8:cd:19:18: c3:af:83:d8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSldlQALO95mn7d7rEKG2XlEBu9YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzA3MTcwMjA0WhcNMjUwODExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZjMyMjA5ZTMxZjQ2YTA0Nzg4M2Q1NDBjNzA1NGUwYzU5 MWZkNzkwOWZmMzBiMDkyNWIyZjU1Y2RjOWQyZTdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEKgxIxuwJjqPRsuUe2XydvEQR1kreLN7hDv5qWHmePJyw fNh2F03I7DSrEIN+4fsNaylyhuscHPkWhA/g3Ee6L8zYwQFhXLPrqB9gLJPjn2rB iXNTmKR1uBlJx05xtcRwdh1fHsCUAVcsBdfYOKrDzCVacZvZqEMgesLuYFxQ5Ljb WwJENHZ3DkICWAjQSiR+V7vt0e1MHWLoz2jhdYkJwq07yqy6zTervqIrV4F5Fz4b CqwnlqZ/klllLbjWtXvAF7F2Tu9oqttsyq73DsN3evi0R4QwzGq6qzYCInSpEedw rnwaObWQBT0QVo2cdHrvHykE3e1xqqbjvtvRnP2fAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcT2iqhTRLPWzGdvHMojH0ilVtvkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkZTU5NTU3LTZhNWEtNGViMC1iN2MyLTJhMjY2NmQ0ZGI2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hgIAwDQYJKoZIhvcNAQELBQADggEBAAnZY0vUrRzT4hLhnwHfEduL LyvCpokqMuFulzPmjzP2FLjbjVlkKVcUL/e2y422FijB0KWjegih8kCR361DFPnb Zy9qvUXtH5M7qo9G5ZHWW1pkycNEf72DLAJLF1EnKKj7EFgaTeAIRTg2A5pgzbhR gl0g6KxNf+hS6ltIw0lwytTNiCo83THIIL0wnzxZkE/P7zXFOItW1RU2O1b+nVp9 Rm1cscIbwDPFsXu5U54o6lMzM4/rW+TG5zTW4X1turlI0GtAXZtHgOtuqFXnKle8 8O8TE/ayK7YhIWeX/0ZvSaoQiGF44ODjm8JJUwbn22yjebSGpyZPqM0ZGMOvg9g= -----END CERTIFICATE-----Generated at Thu Jul 31 01:10:53 2025 by rpki-client