$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa File: a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa (raw, json) Hash identifier: 8ybkBs8EkF44UCPwtufH0XHWIXjOBgLGbXjgdlJLZQ4= Subject key identifier: E1:4E:B8:0E:1E:CA:1E:57:00:03:99:35:49:9A:33:D1:99:72:91:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3158EEBB432626D3F4DA1E0D4B75190BF9D1CB22 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa Signing time: Wed 04 Jun 2025 00:11:44 +0000 ROA not before: Wed 04 Jun 2025 00:11:44 +0000 ROA not after: Wed 09 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f60:3400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 16 Jun 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:58:ee:bb:43:26:26:d3:f4:da:1e:0d:4b:75:19:0b:f9:d1:cb:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 4 00:11:44 2025 GMT Not After : Jul 9 23:59:59 2025 GMT Subject: serialNumber=92c96240d92f1c9af16a66d78805bb10ea7bc257c48c4d34fba278dc6aeb950a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3b:e9:64:c9:e4:ef:e1:67:0f:31:f7:59:81: 63:d0:92:bc:29:e7:d0:19:40:e3:d9:e7:46:61:26: 82:2c:96:59:24:8d:53:9c:21:0d:17:1a:1c:bd:36: 42:f9:b9:ad:f9:1d:30:87:fb:ce:40:be:e5:38:ca: 52:19:30:e2:2c:8b:50:2d:f9:b0:69:88:28:52:1a: 16:49:75:85:c2:5e:1c:fd:bf:f4:47:38:4e:76:e2: 96:35:69:c2:ed:bf:55:8d:de:ec:c6:f0:77:0e:dd: 15:cc:07:9b:10:9a:a4:71:28:39:54:9e:41:e6:cc: 9d:b6:a2:c5:a3:9b:bf:a2:1e:e2:6d:22:a2:2b:e2: 40:e7:63:bb:db:a1:31:ce:53:33:59:31:21:3b:29: 71:9a:2c:6a:14:ba:8b:76:fb:bb:61:38:bf:15:9e: 01:44:92:c9:26:1d:8c:cc:49:ba:58:0b:29:8b:0f: 2b:49:ca:09:02:6f:83:5e:57:49:88:79:87:fa:72: 5f:7e:b3:4e:20:e5:ac:1a:59:09:10:c5:a0:8b:b8: f9:e2:0d:5e:43:3c:2f:98:7e:2f:0d:d7:e3:87:43: 0e:67:b3:0f:8f:bd:7e:d9:c2:06:03:53:63:b2:0b: 4f:20:18:b4:6e:8e:36:3f:0f:b7:d1:a3:4a:2d:c5: 03:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4E:B8:0E:1E:CA:1E:57:00:03:99:35:49:9A:33:D1:99:72:91:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7ffda98-bd67-4a18-9797-35aa2e04a2b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:3400::/40 Signature Algorithm: sha256WithRSAEncryption 7f:d9:83:c8:42:45:50:93:87:bb:b1:fa:7b:44:c7:af:c6:ef: 5a:2a:fc:37:89:95:1e:f2:44:8a:3c:34:12:a2:f0:37:39:e3: d6:f4:67:0f:8e:97:53:8b:b6:fb:95:e3:1d:be:ea:35:48:e8: db:25:45:b0:2e:b2:aa:8c:5e:74:c1:b2:46:53:45:e2:66:ea: a5:b2:03:57:5b:a4:97:a9:80:41:c5:4f:51:47:f4:b2:57:bf: 46:61:28:d6:b2:f8:e9:7f:f5:b7:dc:54:dd:6e:03:f2:e8:51: 04:d9:f7:87:8e:25:95:d7:b6:de:1a:e5:94:78:c1:82:dd:fb: 3f:63:00:11:bf:bf:db:f5:fb:85:33:f1:4d:7d:13:f5:76:46: 7a:b0:58:74:5c:ab:39:ef:41:d5:80:9a:27:c8:6a:b0:5e:a7: 7d:64:df:72:58:fd:71:64:4b:da:a3:c0:e3:37:0a:98:0d:74: b4:11:8d:c6:5c:74:9b:b0:7f:c0:9c:19:6d:b2:f2:77:44:1c: 7a:22:45:f2:73:8e:5d:6c:36:c0:38:e4:3b:42:0f:cb:55:ab: 4b:df:86:21:d7:54:29:e0:d0:be:d8:f6:4c:0a:a9:57:0f:7c: 5f:fe:d5:69:f8:e3:a9:6a:f9:b1:87:98:5e:30:84:41:18:6b: 35:f1:1d:f3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMVjuu0MmJtP02h4NS3UZC/nRyyIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjA0MDAxMTQ0WhcNMjUwNzA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmM5NjI0MGQ5MmYxYzlhZjE2YTY2ZDc4ODA1YmIxMGVh N2JjMjU3YzQ4YzRkMzRmYmEyNzhkYzZhZWI5NTBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWO+lkyeTv4WcPMfdZgWPQkrwp59AZQOPZ50ZhJoIsllkk jVOcIQ0XGhy9NkL5ua35HTCH+85AvuU4ylIZMOIsi1At+bBpiChSGhZJdYXCXhz9 v/RHOE524pY1acLtv1WN3uzG8HcO3RXMB5sQmqRxKDlUnkHmzJ22osWjm7+iHuJt IqIr4kDnY7vboTHOUzNZMSE7KXGaLGoUuot2+7thOL8VngFEkskmHYzMSbpYCymL DytJygkCb4NeV0mIeYf6cl9+s04g5awaWQkQxaCLuPniDV5DPC+Yfi8N1+OHQw5n sw+PvX7ZwgYDU2OyC08gGLRujjY/D7fRo0otxQN/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU4U64Dh7KHlcAA5k1SZoz0Zlykd8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZmZkYTk4LWJkNjctNGExOC05Nzk3LTM1YWEyZTA0YTJiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9gNDANBgkqhkiG9w0BAQsFAAOCAQEAf9mDyEJFUJOHu7H6e0THr8bv Wir8N4mVHvJEijw0EqLwNznj1vRnD46XU4u2+5XjHb7qNUjo2yVFsC6yqoxedMGy RlNF4mbqpbIDV1ukl6mAQcVPUUf0sle/RmEo1rL46X/1t9xU3W4D8uhRBNn3h44l lde23hrllHjBgt37P2MAEb+/2/X7hTPxTX0T9XZGerBYdFyrOe9B1YCaJ8hqsF6n fWTfclj9cWRL2qPA4zcKmA10tBGNxlx0m7B/wJwZbbLyd0QceiJF8nOOXWw2wDjk O0IPy1WrS9+GIddUKeDQvtj2TAqpVw98X/7VafjjqWr5sYeYXjCEQRhrNfEd8w== -----END CERTIFICATE-----Generated at Sun Jun 15 00:51:42 2025 by rpki-client