$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa File: ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa (raw, json) Hash identifier: diSWeh65fo91xGZrjKKNfAbaR1FOb4ezGjQcIHsY8IE= Subject key identifier: A0:05:75:84:67:9D:3E:0D:16:53:83:40:4A:C9:2A:4E:C2:E6:21:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F2FE2E236F96FA8B78CD039AD35CAA111D00C48 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa Signing time: Mon 04 Aug 2025 16:01:17 +0000 ROA not before: Mon 04 Aug 2025 16:01:17 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f70:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:2f:e2:e2:36:f9:6f:a8:b7:8c:d0:39:ad:35:ca:a1:11:d0:0c:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 16:01:17 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=7329f35e8e07cae3fc94b7b757ed78bb9990a3a32fa35b48755e5c65b49d0506, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2b:4a:0b:e9:02:19:b1:bf:ca:c6:28:64:1f: 33:69:1f:9d:68:62:7a:a7:8c:cb:6f:8a:51:d5:a3: 1e:c2:2a:c2:95:0e:04:a1:d5:c1:3b:3c:7d:c5:3a: fb:1c:c5:e7:13:4d:b6:87:5c:b6:71:61:1e:57:d3: df:15:c1:76:7a:9a:0d:63:e3:32:b3:42:ce:85:da: 6e:b7:fa:46:08:a9:47:a0:25:ea:0f:43:d5:6d:5a: a0:55:72:bf:a4:c1:dd:47:8f:da:c1:dc:87:6d:ad: cd:1f:b7:24:87:7e:dd:d0:77:ea:d8:f2:dc:e6:53: 73:22:ff:45:39:13:77:16:69:45:e6:0e:10:d3:b2: cf:1f:2e:a2:3b:8e:68:00:a0:76:d6:71:ff:e0:33: 31:a0:b8:12:29:61:9e:4b:04:f3:d5:91:e7:cc:0e: 06:0e:43:15:40:34:ae:b2:73:07:ba:6e:a9:f5:99: 9d:3e:55:39:c5:eb:76:06:7f:77:60:60:51:cb:47: d0:dd:ea:2a:b8:ed:df:76:b5:60:61:a1:5a:af:56: 4a:1c:b0:4f:bc:7c:a1:b8:5e:bf:62:58:b9:66:73: 9d:03:26:e5:34:05:22:94:62:4d:17:5d:de:cf:35: dd:1c:c7:58:16:c0:34:10:fe:23:14:11:e5:89:02: 93:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:05:75:84:67:9D:3E:0D:16:53:83:40:4A:C9:2A:4E:C2:E6:21:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae26cc3b-4ee1-41a0-bd1f-4debb21c4972.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f70:1000::/40 Signature Algorithm: sha256WithRSAEncryption ba:21:9d:1e:b1:24:7d:a7:65:4c:3b:da:ed:c8:91:52:74:c5: de:b8:0a:c2:fb:b4:95:34:58:a5:3a:4f:f9:e7:14:90:7f:25: 98:2a:39:80:86:15:b0:cb:a1:c9:8c:06:7a:da:c1:14:84:05: 30:94:f9:9c:8c:ed:5a:d6:0e:82:b9:53:67:29:a9:fd:cd:b2: 49:3c:42:c7:38:17:c9:1c:63:d2:1d:e5:79:73:66:bc:03:c0: d1:3c:f8:77:53:36:0a:41:6a:a4:83:ab:4d:fe:9c:ec:92:c5: 31:4b:df:fd:87:6f:99:f5:e6:8d:17:7f:c9:77:bc:67:30:ed: 0a:64:5f:ba:f7:a6:28:be:ef:0b:f3:58:5b:50:cc:70:61:30: e6:7d:c6:b7:d7:63:85:22:07:4b:57:80:67:47:2d:46:5e:2b: 1a:fd:7f:a4:6c:c0:3a:ef:ac:e3:1d:b0:68:3e:b7:2e:df:d6: 50:da:17:b6:32:58:af:ee:cf:1a:03:1b:a2:5a:4b:90:52:81: d9:b8:e7:a7:d2:8f:92:3b:d4:71:20:d0:1f:19:1a:0e:e2:44: 7d:b2:5d:a8:75:ea:6b:b1:96:e0:a2:90:ac:e0:7d:9a:58:22: 33:d8:ca:97:31:ca:56:7b:44:c2:86:1f:30:1c:67:87:be:2a: 44:35:fb:0d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIULy/i4jb5b6i3jNA5rTXKoRHQDEgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTYwMTE3WhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MzI5ZjM1ZThlMDdjYWUzZmM5NGI3Yjc1N2VkNzhiYjk5 OTBhM2EzMmZhMzViNDg3NTVlNWM2NWI0OWQwNTA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLK0oL6QIZsb/KxihkHzNpH51oYnqnjMtvilHVox7CKsKV DgSh1cE7PH3FOvscxecTTbaHXLZxYR5X098VwXZ6mg1j4zKzQs6F2m63+kYIqUeg JeoPQ9VtWqBVcr+kwd1Hj9rB3Idtrc0ftySHft3Qd+rY8tzmU3Mi/0U5E3cWaUXm DhDTss8fLqI7jmgAoHbWcf/gMzGguBIpYZ5LBPPVkefMDgYOQxVANK6ycwe6bqn1 mZ0+VTnF63YGf3dgYFHLR9Dd6iq47d92tWBhoVqvVkocsE+8fKG4Xr9iWLlmc50D JuU0BSKUYk0XXd7PNd0cx1gWwDQQ/iMUEeWJApPlAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUoAV1hGedPg0WU4NASskqTsLmIWMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlMjZjYzNiLTRlZTEtNDFhMC1iZDFmLTRkZWJiMjFjNDk3Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9wEDANBgkqhkiG9w0BAQsFAAOCAQEAuiGdHrEkfadlTDva7ciRUnTF 3rgKwvu0lTRYpTpP+ecUkH8lmCo5gIYVsMuhyYwGetrBFIQFMJT5nIztWtYOgrlT Zymp/c2ySTxCxzgXyRxj0h3leXNmvAPA0Tz4d1M2CkFqpIOrTf6c7JLFMUvf/Ydv mfXmjRd/yXe8ZzDtCmRfuvemKL7vC/NYW1DMcGEw5n3Gt9djhSIHS1eAZ0ctRl4r Gv1/pGzAOu+s4x2waD63Lt/WUNoXtjJYr+7PGgMbolpLkFKB2bjnp9KPkjvUcSDQ HxkaDuJEfbJdqHXqa7GW4KKQrOB9mlgiM9jKlzHKVntEwoYfMBxnh74qRDX7DQ== -----END CERTIFICATE-----Generated at Tue Aug 5 16:40:24 2025 by rpki-client