$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa File: 21c12458-40e0-4368-b79a-97b69e7070f9.roa (raw, json) Hash identifier: gzlNHGz56tgpGIoAchIYRIvR534JN9lHIDUS8Q0b44g= Subject key identifier: 68:54:6F:61:EF:39:91:D7:5C:2E:EE:98:04:11:75:6A:B8:10:67:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19D76634EB26FA880420E7372AD19983523C4A1B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa Signing time: Mon 04 Aug 2025 16:40:54 +0000 ROA not before: Mon 04 Aug 2025 16:40:54 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f11::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:d7:66:34:eb:26:fa:88:04:20:e7:37:2a:d1:99:83:52:3c:4a:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:40:54 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=baa2d4877a03a0f98012ec956982f75176b53ab98844ba76c3e757fe2d8fec6b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c5:53:27:0c:42:dd:79:7c:dc:e6:3a:6b:28: 19:21:70:a3:9c:a2:36:38:4e:46:ad:56:74:9b:cb: 35:2c:bb:e1:7c:49:f9:c8:ee:3a:0c:bc:d4:7b:90: c8:52:f2:a6:81:91:b1:ed:54:9b:96:3e:27:5b:b7: 0e:9f:1b:78:7c:ee:ba:61:56:c8:60:f2:88:ca:bd: ba:9c:81:51:4d:0e:96:05:9e:94:b9:a5:13:2b:38: f7:48:7b:cf:0e:33:01:90:2c:15:a5:aa:39:22:69: 94:d8:84:03:bd:d6:3e:cb:a7:bd:a0:ae:b0:44:0f: b3:6a:fa:49:71:cd:30:3e:c8:f8:4f:4c:67:65:da: 67:ba:ba:b7:c7:1a:3f:2c:76:b5:46:81:c5:c9:6c: 50:50:e0:a0:40:a7:9b:db:1b:c2:62:25:90:6b:32: d9:c0:ef:67:f7:89:c0:9a:12:70:26:b6:ea:26:fb: d6:da:3b:7f:f0:93:e7:fd:af:bf:ff:29:18:74:5a: 73:45:3e:26:eb:a7:cc:ea:b4:8b:51:65:39:a6:4e: f3:21:49:5f:8b:bc:26:da:03:8e:af:2a:88:e5:ef: 5e:b9:70:d1:f4:fe:0d:5a:40:f5:d8:fd:80:62:bb: f8:08:0f:81:53:23:ad:2d:70:dd:5a:bd:8e:61:4d: fa:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:54:6F:61:EF:39:91:D7:5C:2E:EE:98:04:11:75:6A:B8:10:67:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21c12458-40e0-4368-b79a-97b69e7070f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f11::/36 Signature Algorithm: sha256WithRSAEncryption 6f:a9:6e:17:5b:1b:3c:38:47:2c:49:d2:93:8c:8a:bd:3c:38: 12:47:9c:cc:d5:ec:b1:be:23:41:35:1a:ac:59:b7:1a:57:81: 3a:01:3b:54:79:af:79:c4:24:93:42:b8:a5:be:d7:3f:23:30: 54:3a:7e:00:10:9a:e9:78:db:ba:78:ab:d5:91:50:94:07:00: 18:ba:64:71:c5:e7:e0:3a:3b:78:93:87:de:bf:f7:c1:d3:68: f4:90:d8:3b:eb:6f:eb:23:d3:db:c4:ab:07:3e:26:62:74:25: 21:ae:b6:89:38:1f:ac:d7:e5:8b:4f:dd:89:58:4d:8b:9a:d2: 03:d7:37:e0:0b:92:58:c2:16:88:d7:ce:01:9a:e0:56:2a:70: 7b:6c:d6:8b:8f:3d:81:cb:77:30:bd:e1:01:75:21:a4:05:da: 0b:0b:a1:03:2e:fb:03:96:7c:40:4a:06:f1:eb:36:80:59:27: cd:67:b0:91:79:fe:07:de:e3:ef:45:6f:c6:f2:c5:c9:ba:35: e7:73:1a:8a:47:f0:b6:61:2d:6a:c2:ef:2c:0c:d1:4d:83:29: d5:52:4f:10:e2:93:a2:37:d2:7e:fc:dc:8b:29:9a:d9:aa:c4: 53:35:51:6e:f0:da:6a:2b:8f:3e:80:75:23:fe:3b:24:ac:03: 6d:37:9e:c7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUGddmNOsm+ogEIOc3KtGZg1I8ShswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTY0MDU0WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWEyZDQ4NzdhMDNhMGY5ODAxMmVjOTU2OTgyZjc1MTc2 YjUzYWI5ODg0NGJhNzZjM2U3NTdmZTJkOGZlYzZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmxVMnDELdeXzc5jprKBkhcKOcojY4TkatVnSbyzUsu+F8 SfnI7joMvNR7kMhS8qaBkbHtVJuWPidbtw6fG3h87rphVshg8ojKvbqcgVFNDpYF npS5pRMrOPdIe88OMwGQLBWlqjkiaZTYhAO91j7Lp72grrBED7Nq+klxzTA+yPhP TGdl2me6urfHGj8sdrVGgcXJbFBQ4KBAp5vbG8JiJZBrMtnA72f3icCaEnAmtuom +9baO3/wk+f9r7//KRh0WnNFPibrp8zqtItRZTmmTvMhSV+LvCbaA46vKojl7165 cNH0/g1aQPXY/YBiu/gID4FTI60tcN1avY5hTfq7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUaFRvYe85kddcLu6YBBF1argQZ+UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYzEyNDU4LTQwZTAtNDM2OC1iNzlhLTk3YjY5ZTcwNzBmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8RADANBgkqhkiG9w0BAQsFAAOCAQEAb6luF1sbPDhHLEnSk4yKvTw4 EkeczNXssb4jQTUarFm3GleBOgE7VHmvecQkk0K4pb7XPyMwVDp+ABCa6Xjbunir 1ZFQlAcAGLpkccXn4Do7eJOH3r/3wdNo9JDYO+tv6yPT28SrBz4mYnQlIa62iTgf rNfli0/diVhNi5rSA9c34AuSWMIWiNfOAZrgVipwe2zWi489gct3ML3hAXUhpAXa CwuhAy77A5Z8QEoG8es2gFknzWewkXn+B97j70VvxvLFybo153MaikfwtmEtasLv LAzRTYMp1VJPEOKTojfSfvzciyma2arEUzVRbvDaaiuPPoB1I/47JKwDbTeexw== -----END CERTIFICATE-----Generated at Fri Aug 8 10:12:52 2025 by rpki-client