$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5355c6-97b6-474a-b0c9-01e3e2980cc1.roa File: bf5355c6-97b6-474a-b0c9-01e3e2980cc1.roa (raw, json) Hash identifier: Sovsgp1WKk8HzZa/XDCVCR3BmCcs6OjRt/UdVCiuYdQ= Subject key identifier: 96:F0:93:EE:FE:8C:74:8A:DE:C8:0C:F7:0B:DC:8D:46:03:15:1B:BD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06837D085ABB04B44D5DC30CC01EB8F09C687DE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5355c6-97b6-474a-b0c9-01e3e2980cc1.roa Signing time: Fri 29 Aug 2025 15:50:33 +0000 ROA not before: Fri 29 Aug 2025 15:50:33 +0000 ROA not after: Fri 03 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f2c:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Sep 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:83:7d:08:5a:bb:04:b4:4d:5d:c3:0c:c0:1e:b8:f0:9c:68:7d:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 29 15:50:33 2025 GMT Not After : Oct 3 23:59:59 2025 GMT Subject: serialNumber=305b435e7533c01cbaa821d919b021211f43f5a39b02dd0659983c6aca1d6075, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:59:5e:0d:b9:fd:ca:2a:e5:15:f8:67:2e:d0: 91:4b:2a:2b:cc:0b:31:d7:d4:44:ed:0f:a2:78:ca: d1:4a:b3:1a:1f:53:f7:1b:fa:bb:4a:9c:8c:dd:76: 08:fe:de:5a:34:90:f1:94:84:fa:19:d2:29:e4:02: 60:77:69:22:a8:30:ab:54:85:36:ee:69:a5:55:fc: b1:10:d5:ba:d5:3a:66:8f:c4:45:39:2b:8a:c8:90: e7:e3:b1:d4:b4:c1:1e:a2:df:48:47:2a:dd:fd:5e: c2:68:e6:d3:cd:1c:5c:0f:90:6c:5c:fc:85:16:77: 8a:32:f3:66:8a:d9:9f:78:0c:b7:7f:cf:8d:0e:43: 8f:e9:80:e8:b3:95:7d:55:0b:f3:c6:86:a7:66:3d: d5:8f:98:b6:b3:f6:b6:fc:84:b2:54:e2:47:e8:d6: 26:20:e4:77:e9:30:45:73:46:0f:f7:5d:b2:e5:b4: 65:eb:27:8c:04:f6:e9:c6:14:05:7e:78:5f:9d:18: 13:55:a3:76:58:dc:d3:b6:34:72:40:8b:26:48:8c: 44:45:f7:ec:cb:e4:fc:4d:20:da:31:99:66:b0:10: eb:66:b6:d6:f1:0e:ef:aa:27:ab:71:39:7a:a0:fc: e9:fb:96:d5:12:5e:ad:a9:e0:53:32:97:d5:d2:ca: 0a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F0:93:EE:FE:8C:74:8A:DE:C8:0C:F7:0B:DC:8D:46:03:15:1B:BD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bf5355c6-97b6-474a-b0c9-01e3e2980cc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2c:c000::/36 Signature Algorithm: sha256WithRSAEncryption 3c:f5:45:34:95:f2:12:26:ed:b1:76:ca:b0:27:44:c0:10:58: 17:fb:69:a6:96:f4:f5:f0:d4:fd:68:20:87:ff:d6:8d:24:ab: 12:50:aa:7e:4f:5c:02:2f:b1:c3:ce:94:ed:58:be:3a:27:59: 11:4a:26:c6:a8:d8:67:24:02:29:c2:7a:8f:f0:b5:6e:83:38: 31:8e:a3:59:dd:c6:55:02:7d:93:fd:ba:06:a8:d2:cb:08:f1: 9f:14:33:87:7a:d7:8e:9f:ea:06:20:cf:2a:a6:f5:73:27:e3: d7:59:58:46:fd:8e:ce:95:0a:70:be:e7:de:00:f8:d3:12:f4: 9e:f4:26:97:6e:1c:73:95:f6:39:f0:ce:fb:90:f2:5b:2c:13: 79:fb:07:55:24:ab:cf:c4:5c:7f:a4:c7:de:c3:af:b3:1a:e0: e6:37:c8:0a:01:de:92:53:f9:fd:47:ac:12:cd:d3:60:18:6a: 1a:37:c6:ed:f8:e7:0b:b8:7c:b1:e6:21:ea:a0:4f:74:11:d8: b5:f9:54:15:70:83:22:55:1a:56:fd:27:62:d8:60:95:e4:bb: e9:4c:cc:04:12:b7:54:02:49:1f:af:b6:36:3b:07:9c:b7:53: 3a:ee:58:68:9b:47:05:73:bf:57:64:42:9c:ae:39:74:b5:e6: 9b:55:20:b4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBoN9CFq7BLRNXcMMwB648JxofeUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODI5MTU1MDMzWhcNMjUxMDAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDViNDM1ZTc1MzNjMDFjYmFhODIxZDkxOWIwMjEyMTFm NDNmNWEzOWIwMmRkMDY1OTk4M2M2YWNhMWQ2MDc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpWV4Nuf3KKuUV+Gcu0JFLKivMCzHX1ETtD6J4ytFKsxof U/cb+rtKnIzddgj+3lo0kPGUhPoZ0inkAmB3aSKoMKtUhTbuaaVV/LEQ1brVOmaP xEU5K4rIkOfjsdS0wR6i30hHKt39XsJo5tPNHFwPkGxc/IUWd4oy82aK2Z94DLd/ z40OQ4/pgOizlX1VC/PGhqdmPdWPmLaz9rb8hLJU4kfo1iYg5HfpMEVzRg/3XbLl tGXrJ4wE9unGFAV+eF+dGBNVo3ZY3NO2NHJAiyZIjERF9+zL5PxNINoxmWawEOtm ttbxDu+qJ6txOXqg/On7ltUSXq2p4FMyl9XSygrXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUlvCT7v6MdIreyAz3C9yNRgMVG70wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JmNTM1NWM2LTk3YjYtNDc0YS1iMGM5LTAxZTNlMjk4MGNjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8swDANBgkqhkiG9w0BAQsFAAOCAQEAPPVFNJXyEibtsXbKsCdEwBBY F/tpppb09fDU/Wggh//WjSSrElCqfk9cAi+xw86U7Vi+OidZEUomxqjYZyQCKcJ6 j/C1boM4MY6jWd3GVQJ9k/26BqjSywjxnxQzh3rXjp/qBiDPKqb1cyfj11lYRv2O zpUKcL7n3gD40xL0nvQml24cc5X2OfDO+5DyWywTefsHVSSrz8Rcf6TH3sOvsxrg 5jfICgHeklP5/UesEs3TYBhqGjfG7fjnC7h8seYh6qBPdBHYtflUFXCDIlUaVv0n YthgleS76UzMBBK3VAJJH6+2NjsHnLdTOu5YaJtHBXO/V2RCnK45dLXmm1UgtA== -----END CERTIFICATE-----Generated at Sat Sep 6 14:18:32 2025 by rpki-client