$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/438e3de2-0641-433c-813f-9cab4fe3328d.roa File: 438e3de2-0641-433c-813f-9cab4fe3328d.roa (raw, json) Hash identifier: JekykXeye6uHLBwvnGl1JNyzEnN/kf7AwPZXCOkm+YA= Subject key identifier: F2:CC:7F:3B:4F:A0:D3:0D:97:1A:79:5A:2A:1F:4E:13:36:57:97:78 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1243499541B81A86B39342170795432A1FFB599B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/438e3de2-0641-433c-813f-9cab4fe3328d.roa Signing time: Fri 01 Aug 2025 15:41:08 +0000 ROA not before: Fri 01 Aug 2025 15:41:08 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:43:49:95:41:b8:1a:86:b3:93:42:17:07:95:43:2a:1f:fb:59:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:41:08 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=297b32cd3d54415ba0f93bf8dd022a49da639d482633e62cc7e22153a70a0849, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:7e:ce:7a:23:cb:3d:ea:85:ef:13:11:1c:63: f5:89:18:37:7a:37:c6:d2:37:17:cf:14:f8:46:a0: f0:b8:ca:d6:85:f9:57:29:51:b5:46:af:93:a9:52: a3:de:5b:93:43:77:55:b2:f3:80:58:f7:d2:3d:f8: ac:75:f9:2c:86:18:eb:54:89:78:57:9f:da:bd:62: 4c:c0:a2:53:94:59:e1:69:4a:de:59:f0:fb:1c:23: c5:7d:22:4e:47:50:01:7b:c9:b9:35:52:80:5c:2d: fd:2a:f2:c3:13:8e:a5:00:6f:9a:fd:94:6d:13:92: dd:c3:3b:3e:ec:fd:79:9d:aa:3e:0c:6c:aa:b6:0a: 5d:52:89:87:43:e3:e3:c6:39:c9:47:ab:d1:6d:44: 3c:cd:11:13:04:3e:18:aa:fd:52:2a:27:1b:de:44: de:69:f6:57:c7:47:c7:8a:d6:a0:80:91:2c:e1:0d: bc:73:e2:3e:50:a8:23:7d:01:bc:d9:9e:7a:84:ad: 13:9a:89:fd:46:9e:7c:1d:36:26:d5:e6:47:76:ef: 4b:a7:f5:1d:a7:bd:8a:6f:69:25:29:12:a0:3b:80: 60:dc:cc:5b:2a:78:d5:0d:d9:89:79:04:6d:97:30: d9:1f:a4:dd:30:2d:f9:06:51:28:c2:bb:3b:5f:cb: 4c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:CC:7F:3B:4F:A0:D3:0D:97:1A:79:5A:2A:1F:4E:13:36:57:97:78 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/438e3de2-0641-433c-813f-9cab4fe3328d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8080::/48 Signature Algorithm: sha256WithRSAEncryption d7:13:14:06:e2:56:76:ec:f3:90:06:b0:3f:fd:f3:97:94:0e: b1:b3:c8:fc:2a:3b:9f:e3:1c:f6:37:8b:9f:8f:5c:69:2f:32: 68:c2:14:0b:bc:94:2b:cb:91:ff:3a:d3:c3:c6:a0:ee:2a:25: 2c:cb:af:0d:5d:a4:71:e0:29:33:46:8f:56:fc:55:b1:1a:0a: 4b:ce:23:01:d2:39:6f:32:8d:ef:af:3b:75:52:9f:2a:a1:99: 2f:f2:58:00:0d:70:24:fb:07:a9:fe:4b:b1:b2:9f:25:d4:f4: c4:21:f7:30:41:9d:fb:23:ee:09:15:55:c7:23:d9:c4:e1:2d: 38:31:ef:a0:d3:03:88:88:92:5f:05:66:f6:0e:a0:f5:8a:82: 8d:69:02:4a:be:a6:d4:50:80:04:3e:ac:fa:23:fd:05:ca:3d: 6b:0d:65:07:9a:c8:86:2c:4d:d7:fa:ec:6f:08:73:12:55:6c: de:5c:f9:1f:02:1c:7a:42:69:11:92:86:dc:05:e7:aa:e1:cb: 67:52:33:a5:86:51:66:db:d4:d1:1a:a3:50:38:35:02:2a:ac: 68:b8:4c:6c:b7:f7:c8:42:55:d3:2c:15:c7:52:d3:2d:cd:d7: 84:6f:69:84:03:cb:72:cd:c6:12:a3:c3:a1:a3:be:c0:78:6b: 99:fb:c9:79 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEkNJlUG4Goazk0IXB5VDKh/7WZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTU0MTA4WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTdiMzJjZDNkNTQ0MTViYTBmOTNiZjhkZDAyMmE0OWRh NjM5ZDQ4MjYzM2U2MmNjN2UyMjE1M2E3MGEwODQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXfs56I8s96oXvExEcY/WJGDd6N8bSNxfPFPhGoPC4ytaF +VcpUbVGr5OpUqPeW5NDd1Wy84BY99I9+Kx1+SyGGOtUiXhXn9q9YkzAolOUWeFp St5Z8PscI8V9Ik5HUAF7ybk1UoBcLf0q8sMTjqUAb5r9lG0Tkt3DOz7s/Xmdqj4M bKq2Cl1SiYdD4+PGOclHq9FtRDzNERMEPhiq/VIqJxveRN5p9lfHR8eK1qCAkSzh Dbxz4j5QqCN9AbzZnnqErROaif1GnnwdNibV5kd270un9R2nvYpvaSUpEqA7gGDc zFsqeNUN2Yl5BG2XMNkfpN0wLfkGUSjCuztfy0xJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8sx/O0+g0w2XGnlaKh9OEzZXl3gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOGUzZGUyLTA2NDEtNDMzYy04MTNmLTljYWI0ZmUzMzI4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ygIAwDQYJKoZIhvcNAQELBQADggEBANcTFAbiVnbs85AGsD/985eU DrGzyPwqO5/jHPY3i5+PXGkvMmjCFAu8lCvLkf8608PGoO4qJSzLrw1dpHHgKTNG j1b8VbEaCkvOIwHSOW8yje+vO3VSnyqhmS/yWAANcCT7B6n+S7GynyXU9MQh9zBB nfsj7gkVVccj2cThLTgx76DTA4iIkl8FZvYOoPWKgo1pAkq+ptRQgAQ+rPoj/QXK PWsNZQeayIYsTdf67G8IcxJVbN5c+R8CHHpCaRGShtwF56rhy2dSM6WGUWbb1NEa o1A4NQIqrGi4TGy398hCVdMsFcdS0y3N14RvaYQDy3LNxhKjw6GjvsB4a5n7yXk= -----END CERTIFICATE-----Generated at Wed Aug 6 05:58:06 2025 by rpki-client