$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa File: 402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa (raw, json) Hash identifier: /PejmyRKHwcU09etWd7V5YuWNoqdWk2eyAzOvNZWrP4= Subject key identifier: 21:26:0C:74:F0:33:DC:F2:D1:EB:2D:07:C5:20:A4:29:D2:88:2F:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D87529C241C7340D2BB0C1A2893F4DA2CFADE76 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa Signing time: Mon 04 Aug 2025 15:10:33 +0000 ROA not before: Mon 04 Aug 2025 15:10:33 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:7400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:87:52:9c:24:1c:73:40:d2:bb:0c:1a:28:93:f4:da:2c:fa:de:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:10:33 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=938c333816963f6a2645f8d722ac2f2d2ca8cd55502ca26708900906581ec258, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:d6:ff:36:c1:3c:e8:cd:b0:c3:28:f5:f9:96: 6d:1e:a9:b1:e9:8e:7b:c3:7f:76:fe:05:96:2f:9c: 2c:c1:90:9f:8d:0e:0f:78:8b:0b:ef:68:a6:ce:80: a2:86:06:b9:e0:1d:85:2e:c0:38:cc:5a:c1:7e:f9: 2c:01:56:fe:2d:3f:b7:ac:4a:34:3b:06:02:e4:1b: ea:c7:d4:ee:37:60:f2:bb:02:59:ed:8b:a9:2d:7e: d8:05:6d:77:7b:d7:47:a1:ae:a0:05:c8:84:7c:42: 76:0b:3e:9a:50:d6:0c:5f:aa:86:52:30:4f:23:e8: 29:e6:d8:24:24:1f:78:30:0b:66:b7:8e:af:1c:4c: 1b:59:90:ac:1b:bd:8f:85:4c:7c:65:ab:03:7b:ab: b3:e6:5a:25:b5:05:a0:67:0e:80:1b:d7:4f:6e:57: df:f0:aa:d4:79:15:ba:5d:0c:1a:8c:22:d7:08:c3: 4e:28:24:4d:db:5f:10:01:3d:b5:0d:7d:8c:cd:62: 33:e9:59:5d:cd:61:2b:a0:14:54:b1:d9:85:56:d7: 6c:ba:2e:2d:6e:ec:49:0b:a2:4e:5f:aa:d4:f8:88: 3a:8c:a8:60:57:3f:21:3c:59:2c:98:a9:7e:e1:02: 80:73:68:a7:09:b4:f6:48:fd:23:15:b3:58:a8:40: 5c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:26:0C:74:F0:33:DC:F2:D1:EB:2D:07:C5:20:A4:29:D2:88:2F:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/402c7a3a-8627-4d6d-9145-42e2b1f544cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:7400::/40 Signature Algorithm: sha256WithRSAEncryption 9d:1b:0b:74:53:d2:d1:92:4b:82:9e:da:0c:e0:51:c2:4a:cd: ce:3e:b7:e6:a7:3f:06:bf:cc:30:0e:7b:0c:c5:a5:1c:5b:35: f6:1e:04:55:e3:ba:ff:e5:d4:1d:60:97:1a:33:58:37:b5:b8: 97:a7:3d:51:92:75:4e:64:1a:78:87:54:7d:eb:60:47:9e:07: b6:04:e3:c0:5d:06:2d:95:7a:6b:90:5d:aa:29:9d:bf:6d:3b: cb:21:50:ad:42:99:87:d7:0d:ae:56:11:ed:ca:1d:92:99:a4: c8:37:c6:d4:cd:18:e6:fa:55:be:50:94:8d:cf:22:4f:ba:e5: 88:2a:23:a9:3d:e1:61:bd:b9:83:e6:05:3b:b3:5f:54:05:d6: 51:5b:57:08:fe:ad:55:eb:28:6e:63:72:8b:d7:48:15:86:64: fd:c6:24:d4:a5:fc:c3:a5:58:86:2a:76:2b:6a:bc:a1:f5:08: 3e:1d:e1:8a:9e:34:13:fc:c5:92:cb:7a:ef:7c:f0:54:a5:55: 61:64:db:fc:1a:f1:56:fc:89:87:6c:3b:b8:44:35:4f:84:b9: 02:11:d5:29:60:a6:4f:e0:e9:15:39:38:39:a9:d7:34:27:84: a5:8b:26:f2:b4:a0:e3:8c:ad:34:45:ea:73:bf:3a:d3:63:f3: 50:54:c7:64 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULYdSnCQcc0DSuwwaKJP02iz63nYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUxMDMzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzhjMzMzODE2OTYzZjZhMjY0NWY4ZDcyMmFjMmYyZDJj YThjZDU1NTAyY2EyNjcwODkwMDkwNjU4MWVjMjU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv1v82wTzozbDDKPX5lm0eqbHpjnvDf3b+BZYvnCzBkJ+N Dg94iwvvaKbOgKKGBrngHYUuwDjMWsF++SwBVv4tP7esSjQ7BgLkG+rH1O43YPK7 Alnti6ktftgFbXd710ehrqAFyIR8QnYLPppQ1gxfqoZSME8j6Cnm2CQkH3gwC2a3 jq8cTBtZkKwbvY+FTHxlqwN7q7PmWiW1BaBnDoAb109uV9/wqtR5FbpdDBqMItcI w04oJE3bXxABPbUNfYzNYjPpWV3NYSugFFSx2YVW12y6Li1u7EkLok5fqtT4iDqM qGBXPyE8WSyYqX7hAoBzaKcJtPZI/SMVs1ioQFwrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUISYMdPAz3PLR6y0HxSCkKdKIL+YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwMmM3YTNhLTg2MjctNGQ2ZC05MTQ1LTQyZTJiMWY1NDRjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/ydDANBgkqhkiG9w0BAQsFAAOCAQEAnRsLdFPS0ZJLgp7aDOBRwkrN zj635qc/Br/MMA57DMWlHFs19h4EVeO6/+XUHWCXGjNYN7W4l6c9UZJ1TmQaeIdU fetgR54HtgTjwF0GLZV6a5Bdqimdv207yyFQrUKZh9cNrlYR7codkpmkyDfG1M0Y 5vpVvlCUjc8iT7rliCojqT3hYb25g+YFO7NfVAXWUVtXCP6tVesobmNyi9dIFYZk /cYk1KX8w6VYhip2K2q8ofUIPh3hip40E/zFkst673zwVKVVYWTb/BrxVvyJh2w7 uEQ1T4S5AhHVKWCmT+DpFTk4OanXNCeEpYsm8rSg44ytNEXqc78602PzUFTHZA== -----END CERTIFICATE-----Generated at Fri Aug 8 20:53:36 2025 by rpki-client