$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa File: 4492468d-ade8-4955-9c65-98cc7b723380.roa (raw, json) Hash identifier: FXwxT82Q5cFCLj28QQEzb3WtBxscvj1FEMLCr2I7Wp0= Subject key identifier: 75:BF:B9:39:FE:4A:42:C3:0F:09:C8:44:24:A5:0A:66:CF:48:AD:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E383A807899F154F6B127C144E9EE7FF81A1D3C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa Signing time: Fri 13 Jun 2025 15:31:55 +0000 ROA not before: Fri 13 Jun 2025 15:31:55 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:38:3a:80:78:99:f1:54:f6:b1:27:c1:44:e9:ee:7f:f8:1a:1d:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:31:55 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=4f63772e116b0a0af30d8ffec388bfcd0ee913224ba535544164baa653e57c79, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:94:ad:f6:3c:4f:1f:56:3b:0a:ad:49:0e:3b: c0:ea:cb:83:cf:9b:15:c9:9c:4a:76:3a:79:99:e6: 48:fc:21:46:72:32:64:5e:ab:c6:98:b8:cf:13:93: c6:f0:33:ca:2f:8d:c1:b8:a8:f0:2e:4c:d4:bb:a1: 8c:bd:5a:88:69:5e:f7:00:e3:0f:3f:0f:05:f3:80: cc:a9:88:a2:3b:38:c4:82:24:e6:0d:bd:d3:8d:c7: 57:81:8d:8d:a7:56:7b:13:b5:e8:6f:3c:c0:69:d6: 44:55:d6:0d:99:82:77:3a:24:d8:ce:c6:79:f1:4d: e7:1c:22:18:8d:35:81:63:2b:5a:d3:11:c8:7f:80: c7:f4:0a:8d:49:cf:63:41:c1:e2:04:15:b4:83:41: fb:30:33:23:b7:ce:1a:1f:ce:9c:2b:7e:2d:36:3f: 27:66:d2:9d:59:99:89:e0:83:25:ce:f1:ca:27:72: ba:af:bd:6e:6e:4c:8f:78:d9:5a:31:10:88:9e:90: 04:a5:01:fd:f9:13:79:3a:a2:92:a8:8a:61:a8:48: 6c:77:81:78:b7:8b:4c:be:24:e1:b9:be:c1:21:8f: a9:83:80:1d:d7:18:8f:6b:00:52:00:41:bc:64:9c: ef:5a:18:b7:a5:b3:07:b3:75:27:5f:47:7e:74:10: ee:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BF:B9:39:FE:4A:42:C3:0F:09:C8:44:24:A5:0A:66:CF:48:AD:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4492468d-ade8-4955-9c65-98cc7b723380.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 47:81:71:ae:f0:1d:e6:4f:cf:f0:ff:ea:8f:21:b2:66:fb:31: d7:99:7c:67:c4:cb:95:51:d6:cc:ea:66:20:31:86:91:ff:40: 0e:50:c6:cc:51:67:9b:28:77:b6:1b:5a:94:23:a8:ee:f6:f1: 78:81:03:ab:cc:a1:54:b4:9f:26:f0:15:31:f5:5d:dc:cc:17: d6:21:a7:02:d4:12:c8:fe:9e:58:ba:ba:27:d0:14:82:e6:59: a7:45:54:a5:ca:51:f6:5c:f6:b5:b4:b0:d1:6c:e8:44:7b:7f: 7d:00:6b:e2:08:53:1b:b0:f1:4e:af:90:0b:0c:af:77:68:b8: 4d:7e:c7:20:c0:0e:15:a5:e5:2c:4d:3c:16:7f:e1:da:28:86: 84:6c:b9:91:f3:45:28:4a:d9:55:db:59:90:a4:44:49:48:99: 78:46:f5:58:1b:e8:fb:23:f2:bc:ec:bd:cf:6e:b6:88:25:a0: 0f:cd:7b:f5:b6:53:e5:7f:37:c1:42:11:22:5e:c4:79:9d:d0: dc:5d:55:f8:c4:7c:27:ab:5e:7e:4d:73:6f:ad:b8:d7:43:3d: 32:8f:1b:d9:ef:ed:6c:a0:76:d2:83:d7:af:a7:fc:d7:2d:9f: 33:bf:89:c4:14:6e:bd:95:dc:2f:a9:1d:21:ce:3a:ee:26:c5: e9:e1:90:3a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXjg6gHiZ8VT2sSfBROnuf/gaHTwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUzMTU1WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjYzNzcyZTExNmIwYTBhZjMwZDhmZmVjMzg4YmZjZDBl ZTkxMzIyNGJhNTM1NTQ0MTY0YmFhNjUzZTU3Yzc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKlK32PE8fVjsKrUkOO8Dqy4PPmxXJnEp2OnmZ5kj8IUZy MmReq8aYuM8Tk8bwM8ovjcG4qPAuTNS7oYy9WohpXvcA4w8/DwXzgMypiKI7OMSC JOYNvdONx1eBjY2nVnsTtehvPMBp1kRV1g2Zgnc6JNjOxnnxTeccIhiNNYFjK1rT Ech/gMf0Co1Jz2NBweIEFbSDQfswMyO3zhofzpwrfi02Pydm0p1ZmYnggyXO8con crqvvW5uTI942VoxEIiekASlAf35E3k6opKoimGoSGx3gXi3i0y+JOG5vsEhj6mD gB3XGI9rAFIAQbxknO9aGLelswezdSdfR350EO5XAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUdb+5Of5KQsMPCchEJKUKZs9IrRswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0OTI0NjhkLWFkZTgtNDk1NS05YzY1LTk4Y2M3YjcyMzM4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//gDANBgkqhkiG9w0BAQsFAAOCAQEAR4FxrvAd5k/P8P/qjyGyZvsx 15l8Z8TLlVHWzOpmIDGGkf9ADlDGzFFnmyh3thtalCOo7vbxeIEDq8yhVLSfJvAV MfVd3MwX1iGnAtQSyP6eWLq6J9AUguZZp0VUpcpR9lz2tbSw0WzoRHt/fQBr4ghT G7DxTq+QCwyvd2i4TX7HIMAOFaXlLE08Fn/h2iiGhGy5kfNFKErZVdtZkKRESUiZ eEb1WBvo+yPyvOy9z262iCWgD8179bZT5X83wUIRIl7EeZ3Q3F1V+MR8J6tefk1z b62410M9Mo8b2e/tbKB20oPXr6f81y2fM7+JxBRuvZXcL6kdIc467ibF6eGQOg== -----END CERTIFICATE-----Generated at Sun Jun 15 09:51:03 2025 by rpki-client