$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa File: 8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa (raw, json) Hash identifier: 99tU4AkJrmXzOjnQRMYSZY84i+ceAyM8aWtRlASQgws= Subject key identifier: 66:E9:9E:42:97:DE:C0:16:27:8D:67:BE:B0:84:AC:38:E9:8A:45:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BE7241EBA62BB8CCC0F5511D20806741E60E409 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa Signing time: Mon 04 Aug 2025 16:11:27 +0000 ROA not before: Mon 04 Aug 2025 16:11:27 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fb9:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e7:24:1e:ba:62:bb:8c:cc:0f:55:11:d2:08:06:74:1e:60:e4:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:11:27 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=bbca5a8d8e8363aa49a9f4a8137130e9e3bfbee1a79e5e535c757bb034398284, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:c2:e5:7d:2a:dd:a8:8f:d9:b6:2e:3d:d1: 7d:50:cf:c4:08:f4:30:eb:31:c9:62:cd:d6:5f:4e: 7a:e7:c1:f6:a2:38:7a:92:83:38:33:ce:87:b4:89: 26:80:57:2f:e4:76:7b:92:da:31:83:98:44:1e:d9: b5:b6:33:b1:57:5e:1e:c0:0c:ba:90:f1:61:6a:9d: ed:2e:0d:a4:50:37:4b:fa:4a:71:14:28:b8:45:81: d1:2c:71:1d:b5:fd:12:7a:0d:25:00:37:96:f7:19: ea:2b:89:49:d9:85:b6:ab:09:ce:dd:a3:89:8b:d6: 04:c5:0c:80:44:f4:e9:fe:b1:13:72:fb:ad:7e:18: 35:0d:c7:d8:d8:fb:e7:15:ff:d0:3b:f6:74:69:d0: 6b:d0:e8:32:f3:87:fa:9a:30:58:63:73:38:4a:bc: 4c:a5:62:46:30:61:90:d5:f2:dd:ab:5e:56:09:a0: c3:8d:b8:f0:2a:96:1c:cb:0b:f8:62:29:55:7f:ce: 8f:9e:90:58:cc:b9:b9:c2:e7:7c:17:54:99:02:9d: 64:e1:9e:e2:81:ad:cb:9a:89:2f:03:a4:1f:a4:bf: fc:d2:79:53:32:a7:34:d5:65:04:ae:a6:24:76:36: 32:0a:03:cc:dc:03:27:87:01:6e:b6:ad:bf:b6:c5: aa:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E9:9E:42:97:DE:C0:16:27:8D:67:BE:B0:84:AC:38:E9:8A:45:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c14bc31-de03-4016-bcdd-7ffb34f33c54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb9:8000::/39 Signature Algorithm: sha256WithRSAEncryption 36:18:b3:46:e5:fd:db:1d:41:c0:90:0c:6c:81:e7:85:76:aa: 0b:b8:82:99:4e:ac:2a:c7:7a:bb:5a:21:02:c2:37:e4:8a:2e: 0f:4e:8c:e2:a8:df:53:2c:8a:9d:50:bb:03:3b:93:82:6d:e0: 88:56:c1:12:70:0b:66:8a:52:cf:a0:43:b1:fb:74:c6:22:70: 5e:27:71:ad:3e:03:a7:fc:d6:83:97:e4:5f:37:ee:f9:ee:2a: 07:79:3c:d1:d1:1d:d2:33:6c:91:9f:02:2c:30:ba:4b:cd:fc: 3c:49:78:c6:0f:d2:c0:2a:b3:68:6d:71:b8:41:60:9b:4c:24: 97:17:e6:64:65:13:c7:24:ba:b5:68:fc:5c:89:7e:e2:70:31: 8d:14:15:10:7e:fc:26:97:99:06:f9:84:39:23:f5:97:f5:60: eb:7b:fe:f3:9b:7d:fa:2d:23:df:71:40:ce:68:47:02:40:7f: d1:38:29:08:8e:f1:a5:ab:bd:62:51:b7:42:d2:da:c4:8b:73: 85:e7:b7:45:0f:f8:1e:fb:d9:d9:4c:2c:cd:82:a1:ca:cd:aa: a8:a1:06:b8:4c:b2:4c:fa:e5:a9:95:8c:9c:e3:45:3b:93:6b: a4:3c:7f:ce:75:25:95:fd:31:fd:5d:54:54:94:4a:22:99:8e: ee:91:97:37 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUa+ckHrpiu4zMD1UR0ggGdB5g5AkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYxMTI3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmNhNWE4ZDhlODM2M2FhNDlhOWY0YTgxMzcxMzBlOWUz YmZiZWUxYTc5ZTVlNTM1Yzc1N2JiMDM0Mzk4Mjg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD3MLlfSrdqI/Zti490X1Qz8QI9DDrMclizdZfTnrnwfai OHqSgzgzzoe0iSaAVy/kdnuS2jGDmEQe2bW2M7FXXh7ADLqQ8WFqne0uDaRQN0v6 SnEUKLhFgdEscR21/RJ6DSUAN5b3GeoriUnZhbarCc7do4mL1gTFDIBE9On+sRNy +61+GDUNx9jY++cV/9A79nRp0GvQ6DLzh/qaMFhjczhKvEylYkYwYZDV8t2rXlYJ oMONuPAqlhzLC/hiKVV/zo+ekFjMubnC53wXVJkCnWThnuKBrcuaiS8DpB+kv/zS eVMypzTVZQSupiR2NjIKA8zcAyeHAW62rb+2xaovAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZumeQpfewBYnjWe+sISsOOmKRZcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjMTRiYzMxLWRlMDMtNDAxNi1iY2RkLTdmZmIzNGYzM2M1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+5gDANBgkqhkiG9w0BAQsFAAOCAQEANhizRuX92x1BwJAMbIHnhXaq C7iCmU6sKsd6u1ohAsI35IouD06M4qjfUyyKnVC7AzuTgm3giFbBEnALZopSz6BD sft0xiJwXidxrT4Dp/zWg5fkXzfu+e4qB3k80dEd0jNskZ8CLDC6S838PEl4xg/S wCqzaG1xuEFgm0wklxfmZGUTxyS6tWj8XIl+4nAxjRQVEH78JpeZBvmEOSP1l/Vg 63v+85t9+i0j33FAzmhHAkB/0TgpCI7xpau9YlG3QtLaxItzhee3RQ/4HvvZ2Uws zYKhys2qqKEGuEyyTPrlqZWMnONFO5NrpDx/znUllf0x/V1UVJRKIpmO7pGXNw== -----END CERTIFICATE-----Generated at Wed Aug 6 00:53:19 2025 by rpki-client