$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa File: b4c6cd78-6139-435b-a258-a601228d052a.roa (raw, json) Hash identifier: kIw0faQINgmDxHRcPWSOWy/XuEAUTNgr+n/oalQDT2A= Subject key identifier: FB:B4:66:DF:6A:8D:96:F8:3E:F6:3D:5A:11:2F:12:55:CD:E9:09:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B47E79EDB0F9C4779A33B00FD7F7B72D861D59D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa Signing time: Fri 29 Aug 2025 00:50:34 +0000 ROA not before: Fri 29 Aug 2025 00:50:34 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:47:e7:9e:db:0f:9c:47:79:a3:3b:00:fd:7f:7b:72:d8:61:d5:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 00:50:34 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=e5f83029e17cc3108725142f6026b112a757360b13f2d23885c5751f0ce0ebbb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2b:dc:08:87:1e:94:c9:4a:56:fe:90:6c:4d: da:31:6c:3b:76:81:2c:9f:8d:0e:8b:a6:be:6f:2a: bc:4c:a0:b0:6b:b5:d7:0d:f9:8b:0b:31:11:c9:56: 16:78:a4:8b:97:72:66:28:d9:8c:c3:6a:1f:47:46: 32:a5:0e:73:d3:02:91:e9:b3:bc:a7:0d:0c:4b:16: 73:00:91:07:e8:65:39:dc:4f:68:93:a9:52:ea:d3: fa:a1:91:5a:a9:e5:79:b1:e5:1a:37:36:e1:ed:b5: c0:8b:b9:92:3d:62:40:a6:31:10:3c:bc:a6:98:38: 1c:1d:75:d2:2a:08:0f:e0:88:2f:1d:7b:8f:97:f5: e9:70:e2:0a:c7:72:ea:93:b8:81:8c:16:29:86:34: 5d:f8:69:83:52:5e:5c:5d:93:11:e7:78:5c:24:d9: 7a:eb:8e:b6:9f:05:53:2d:9c:d2:8d:e7:1f:9b:08: ff:a9:1d:91:1f:60:96:6d:f5:0c:9f:f3:51:fc:76: f2:61:fc:37:27:64:3b:f8:70:77:dd:1e:f6:0a:f0: 84:f3:12:2a:53:38:da:e1:a6:db:22:87:24:4c:8f: a8:fa:4d:fc:24:9f:3a:96:d5:c0:2e:85:a2:c7:e3: 6d:fe:15:fc:61:f2:f7:04:22:0e:94:d6:8c:af:86: 6f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B4:66:DF:6A:8D:96:F8:3E:F6:3D:5A:11:2F:12:55:CD:E9:09:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:6000::/40 Signature Algorithm: sha256WithRSAEncryption 21:ff:fd:21:70:df:90:db:ff:3a:69:81:27:1e:79:fa:d5:9e: 35:e2:44:0b:75:8e:52:ae:1a:82:ac:cf:59:4c:96:18:ac:9b: 46:65:99:53:df:21:22:52:33:fa:f8:40:63:de:3e:21:ec:b0: e8:ab:58:f8:e8:71:a4:fd:e9:b4:5b:8f:76:71:d8:e5:c6:b5: 5c:89:13:0c:44:f8:f6:de:a6:e3:4d:6e:07:9a:a4:4d:f6:5a: 53:0e:f7:a3:a6:00:4b:a3:82:58:87:f2:f1:74:07:ad:a5:25: fe:a9:70:fd:49:dd:88:61:bf:0d:98:60:1b:da:13:50:7d:ec: 3c:e6:97:d0:5f:c4:f0:b5:41:28:e3:65:72:2f:01:bb:92:e0: ac:79:a7:c6:6c:0a:c6:99:67:25:83:d5:76:6f:df:95:56:c1: 10:88:c5:5a:16:3f:84:82:c4:47:ce:d5:84:3e:c6:f3:e2:80: 3d:cc:f0:f4:0e:c6:54:9b:3c:d4:4a:c1:ec:4c:26:46:12:51: f9:6b:4c:7b:5d:fb:b0:56:7e:22:cc:b0:0d:72:0b:c0:09:f6: 43:ee:83:1b:8f:bc:92:04:b5:44:a9:cd:93:e4:61:af:d1:6d: 31:89:1f:cc:1e:7c:21:a7:a2:70:d5:c0:8e:9d:bb:bf:25:36: cc:ba:46:00 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUa0fnntsPnEd5ozsA/X97cthh1Z0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MDA1MDM0WhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWY4MzAyOWUxN2NjMzEwODcyNTE0MmY2MDI2YjExMmE3 NTczNjBiMTNmMmQyMzg4NWM1NzUxZjBjZTBlYmJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFK9wIhx6UyUpW/pBsTdoxbDt2gSyfjQ6Lpr5vKrxMoLBr tdcN+YsLMRHJVhZ4pIuXcmYo2YzDah9HRjKlDnPTApHps7ynDQxLFnMAkQfoZTnc T2iTqVLq0/qhkVqp5Xmx5Ro3NuHttcCLuZI9YkCmMRA8vKaYOBwdddIqCA/giC8d e4+X9elw4grHcuqTuIGMFimGNF34aYNSXlxdkxHneFwk2XrrjrafBVMtnNKN5x+b CP+pHZEfYJZt9Qyf81H8dvJh/DcnZDv4cHfdHvYK8ITzEipTONrhptsihyRMj6j6 TfwknzqW1cAuhaLH423+Ffxh8vcEIg6U1oyvhm+1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+7Rm32qNlvg+9j1aES8SVc3pCX4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0YzZjZDc4LTYxMzktNDM1Yi1hMjU4LWE2MDEyMjhkMDUyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82YDANBgkqhkiG9w0BAQsFAAOCAQEAIf/9IXDfkNv/OmmBJx55+tWe NeJEC3WOUq4agqzPWUyWGKybRmWZU98hIlIz+vhAY94+Ieyw6KtY+OhxpP3ptFuP dnHY5ca1XIkTDET49t6m401uB5qkTfZaUw73o6YAS6OCWIfy8XQHraUl/qlw/Und iGG/DZhgG9oTUH3sPOaX0F/E8LVBKONlci8Bu5LgrHmnxmwKxplnJYPVdm/flVbB EIjFWhY/hILER87VhD7G8+KAPczw9A7GVJs81ErB7EwmRhJR+WtMe137sFZ+Isyw DXILwAn2Q+6DG4+8kgS1RKnNk+Rhr9FtMYkfzB58IaeicNXAjp27vyU2zLpGAA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:12:06 2025 by rpki-client