$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa File: 8998c883-9e67-4bcf-a61e-660dce0482d2.roa (raw, json) Hash identifier: fECKWJbHREeepGPajASK/5CH7K67YvrjuIqgDi31T6k= Subject key identifier: DD:9C:96:C0:01:38:46:98:15:26:62:FC:D7:4B:15:4D:A1:9D:99:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0706D2A9ED0FD0424A7921602AA78BA1C2A30F3B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa Signing time: Fri 13 Jun 2025 15:10:17 +0000 ROA not before: Fri 13 Jun 2025 15:10:17 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:e040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:06:d2:a9:ed:0f:d0:42:4a:79:21:60:2a:a7:8b:a1:c2:a3:0f:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:10:17 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=5782c87ce0b0921a6e841e9444d8f0f16f2e0fec35d8bee427f005777ae94788, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ce:d6:82:6d:57:a0:a9:67:c1:ed:c9:f9:08: 62:47:1d:80:1f:18:a5:41:1b:7b:23:53:78:4f:25: 99:92:f1:93:b6:ea:05:f3:11:24:4a:72:f6:59:a7: 1f:cb:5e:7b:fc:ee:f9:af:98:df:bb:17:60:3c:77: 89:35:77:17:f7:c7:fd:d7:56:cb:8a:b8:8b:2e:d6: 97:3f:fa:ce:2a:d4:b1:34:40:60:8c:a2:5d:36:30: 9a:85:56:65:95:e2:e8:5f:de:82:c9:84:cd:f3:59: d4:52:2a:fd:8d:af:1f:ee:c5:7a:06:ce:9c:f4:24: 3a:28:53:c9:00:da:b1:41:30:4a:2c:8e:01:63:7e: 6e:00:64:9a:bd:ec:3b:40:d8:35:0e:6f:1b:96:62: b5:c6:55:f6:e4:0e:53:92:a9:e2:17:fb:49:47:e5: 01:9d:6f:13:83:21:56:b1:6d:cb:0c:fa:cf:71:f8: d9:c9:49:16:02:d2:5d:55:5b:f5:24:9a:98:a2:74: 67:2f:9c:45:44:70:fc:ac:a3:58:b5:00:05:52:9b: 45:91:71:c6:73:d9:e2:b3:48:03:38:40:06:82:f4: 77:67:c6:b6:fb:19:13:b0:d3:37:e5:60:87:52:a3: c3:b5:6f:4b:43:36:99:21:69:4f:fb:ed:94:87:b7: c7:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:9C:96:C0:01:38:46:98:15:26:62:FC:D7:4B:15:4D:A1:9D:99:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8998c883-9e67-4bcf-a61e-660dce0482d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:e040::/48 Signature Algorithm: sha256WithRSAEncryption 9f:fd:15:2d:be:3c:81:15:32:08:0f:95:81:35:37:82:2b:4d: 20:41:a4:a4:3f:16:04:95:64:36:70:bc:52:9b:23:bc:56:7e: 6c:e3:86:b1:36:67:d7:3d:ad:98:f7:3c:3d:e5:42:df:9b:03: 59:27:12:a6:94:b6:bf:80:ac:34:4b:bf:7e:98:5f:f0:a4:eb: c0:d8:3d:ff:d9:19:e1:7f:1f:18:95:cf:be:a6:ec:c6:a1:dc: 79:76:89:06:8b:f7:47:22:0c:cc:7e:71:51:83:db:88:1d:53: e0:31:24:ba:31:c9:49:9a:01:7c:5d:96:75:31:67:26:4c:41: f2:0a:aa:4f:bc:5f:0b:40:cd:94:fe:61:69:0f:08:3c:99:a9: 0b:b9:e8:7e:59:c2:cc:4b:25:c1:9e:7e:9b:8f:be:e0:92:21: de:54:9d:e5:a7:81:d9:97:bd:89:61:d3:1e:e3:f1:4a:87:42: 35:e5:b9:20:45:1f:c0:b1:fb:52:1e:b1:05:6b:cf:7e:56:b8: 0f:15:85:c2:f3:d6:9d:1d:d1:42:ba:64:60:a5:65:c1:0d:cf: 7b:4a:0a:51:8c:e9:fd:bc:60:e1:e7:16:2b:af:76:54:a6:ef: 90:d9:b0:7c:6d:47:87:3f:1d:91:60:16:09:21:99:e0:4e:01: a4:26:6d:c6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBwbSqe0P0EJKeSFgKqeLocKjDzswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUxMDE3WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzgyYzg3Y2UwYjA5MjFhNmU4NDFlOTQ0NGQ4ZjBmMTZm MmUwZmVjMzVkOGJlZTQyN2YwMDU3NzdhZTk0Nzg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeztaCbVegqWfB7cn5CGJHHYAfGKVBG3sjU3hPJZmS8ZO2 6gXzESRKcvZZpx/LXnv87vmvmN+7F2A8d4k1dxf3x/3XVsuKuIsu1pc/+s4q1LE0 QGCMol02MJqFVmWV4uhf3oLJhM3zWdRSKv2Nrx/uxXoGzpz0JDooU8kA2rFBMEos jgFjfm4AZJq97DtA2DUObxuWYrXGVfbkDlOSqeIX+0lH5QGdbxODIVaxbcsM+s9x +NnJSRYC0l1VW/UkmpiidGcvnEVEcPyso1i1AAVSm0WRccZz2eKzSAM4QAaC9Hdn xrb7GROw0zflYIdSo8O1b0tDNpkhaU/77ZSHt8e9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU3ZyWwAE4RpgVJmL810sVTaGdmRkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5OThjODgzLTllNjctNGJjZi1hNjFlLTY2MGRjZTA0ODJkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9h4EAwDQYJKoZIhvcNAQELBQADggEBAJ/9FS2+PIEVMggPlYE1N4Ir TSBBpKQ/FgSVZDZwvFKbI7xWfmzjhrE2Z9c9rZj3PD3lQt+bA1knEqaUtr+ArDRL v36YX/Ck68DYPf/ZGeF/HxiVz76m7Mah3Hl2iQaL90ciDMx+cVGD24gdU+AxJLox yUmaAXxdlnUxZyZMQfIKqk+8XwtAzZT+YWkPCDyZqQu56H5ZwsxLJcGefpuPvuCS Id5UneWngdmXvYlh0x7j8UqHQjXluSBFH8Cx+1IesQVrz35WuA8VhcLz1p0d0UK6 ZGClZcENz3tKClGM6f28YOHnFiuvdlSm75DZsHxtR4c/HZFgFgkhmeBOAaQmbcY= -----END CERTIFICATE-----Generated at Sat Jun 14 06:47:33 2025 by rpki-client