$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa File: b4c6cd78-6139-435b-a258-a601228d052a.roa (raw, json) Hash identifier: E1YYkm5to4+h7fIPk7/ivutzUf6EAsPFw8JiXml0Zn0= Subject key identifier: 29:10:51:CB:C8:74:D2:2B:A7:54:C2:B3:24:6B:71:D7:8C:17:F4:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35B5D0059803F0E31960998518C3BC758D132BE5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa Signing time: Fri 13 Jun 2025 16:32:19 +0000 ROA not before: Fri 13 Jun 2025 16:32:19 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:b5:d0:05:98:03:f0:e3:19:60:99:85:18:c3:bc:75:8d:13:2b:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:32:19 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=2ade1f3cfc6e16aa219fcb1e63f015c92e15ea9073ffc7613199ac363ebfc9d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:15:d4:de:dd:f7:57:6a:ce:66:1f:be:c7:d5: 94:6e:56:4e:3e:c2:f5:ce:07:05:0d:82:11:cf:23: 1e:65:51:a8:b3:b6:3e:80:65:c4:fa:8f:0b:39:e7: 94:10:a7:b0:1a:a9:3e:51:8f:6b:13:0d:16:5c:b0: 4a:9a:80:8b:f5:0b:35:25:ff:cb:98:60:a5:1b:06: 99:20:5b:00:11:4c:ff:53:d3:42:32:54:6b:cf:42: 97:83:49:6e:dc:01:61:5f:90:72:3e:9f:cf:12:58: a6:13:4f:8c:ce:f0:8f:dd:af:29:87:aa:66:b7:75: d9:9a:cc:fc:75:ee:f3:8f:ca:16:2d:b7:00:60:66: fb:0a:05:08:cd:a5:e4:9c:b8:97:f2:d9:42:ad:65: a6:c6:f0:63:56:56:6c:ef:06:3a:3c:39:d6:9a:74: 1a:08:fc:ac:2d:02:f2:f3:c6:11:39:5f:f0:1a:3b: 8f:b4:bc:97:41:b4:21:a2:ea:15:0f:82:36:8e:3d: 69:45:cd:31:4a:5b:fc:95:7b:ab:83:58:fe:d6:27: 8f:41:9f:8d:b7:3c:58:78:7d:74:db:d5:2b:d5:53: bb:27:88:8e:30:78:c9:5e:87:7c:34:6f:da:ec:72: 9f:b9:fc:49:19:7f:b8:51:f6:1b:42:25:e1:18:44: 0d:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:10:51:CB:C8:74:D2:2B:A7:54:C2:B3:24:6B:71:D7:8C:17:F4:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b4c6cd78-6139-435b-a258-a601228d052a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:6000::/40 Signature Algorithm: sha256WithRSAEncryption 99:58:e4:83:53:58:6e:42:bd:b2:f6:2b:cd:08:89:e9:65:67: 99:3a:0a:c0:6b:1c:3d:7d:62:04:09:94:30:5c:7a:95:b5:22: f3:0e:5a:b8:cd:64:62:db:d8:3a:0f:43:28:f4:37:d1:c4:30: 99:0c:31:04:35:0b:a4:c3:5c:29:64:9e:ab:f6:4c:a9:53:ed: c8:57:02:89:86:22:92:ac:7b:f7:46:88:cc:00:d7:8d:14:2f: 9c:3b:9e:d1:ce:d1:e2:dd:52:61:f1:a3:aa:4b:90:fb:b0:47: 1e:ac:ac:4f:50:a3:7d:1c:82:09:11:74:a5:f9:2e:a0:42:84: 59:27:c3:04:df:51:41:71:58:e0:36:ef:be:c6:5f:ee:30:92: 3d:fc:af:d5:28:33:64:a5:69:48:9f:b2:68:0e:cb:9e:16:a8: 1b:22:94:32:d3:59:ce:50:5a:ad:c4:f3:68:b4:d0:28:bb:d7: 46:dd:de:a5:10:e5:51:72:15:1e:cb:fd:88:2e:fc:72:49:41: 26:cf:69:2b:45:01:b2:fe:03:03:aa:15:44:6e:ad:08:f6:52: c3:14:e0:d9:04:90:fd:ed:7e:98:74:35:0c:7b:c5:8f:e1:d6: c6:c7:73:93:88:62:31:7b:ac:0d:21:79:78:7e:9d:b0:29:63: 8b:a6:d9:50 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUNbXQBZgD8OMZYJmFGMO8dY0TK+UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYzMjE5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWRlMWYzY2ZjNmUxNmFhMjE5ZmNiMWU2M2YwMTVjOTJl MTVlYTkwNzNmZmM3NjEzMTk5YWMzNjNlYmZjOWQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNFdTe3fdXas5mH77H1ZRuVk4+wvXOBwUNghHPIx5lUaiz tj6AZcT6jws555QQp7AaqT5Rj2sTDRZcsEqagIv1CzUl/8uYYKUbBpkgWwARTP9T 00IyVGvPQpeDSW7cAWFfkHI+n88SWKYTT4zO8I/drymHqma3ddmazPx17vOPyhYt twBgZvsKBQjNpeScuJfy2UKtZabG8GNWVmzvBjo8OdaadBoI/KwtAvLzxhE5X/Aa O4+0vJdBtCGi6hUPgjaOPWlFzTFKW/yVe6uDWP7WJ49Bn423PFh4fXTb1SvVU7sn iI4weMleh3w0b9rscp+5/EkZf7hR9htCJeEYRA09AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUKRBRy8h00iunVMKzJGtx14wX9E8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0YzZjZDc4LTYxMzktNDM1Yi1hMjU4LWE2MDEyMjhkMDUyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82YDANBgkqhkiG9w0BAQsFAAOCAQEAmVjkg1NYbkK9svYrzQiJ6WVn mToKwGscPX1iBAmUMFx6lbUi8w5auM1kYtvYOg9DKPQ30cQwmQwxBDULpMNcKWSe q/ZMqVPtyFcCiYYikqx790aIzADXjRQvnDue0c7R4t1SYfGjqkuQ+7BHHqysT1Cj fRyCCRF0pfkuoEKEWSfDBN9RQXFY4DbvvsZf7jCSPfyv1SgzZKVpSJ+yaA7Lnhao GyKUMtNZzlBarcTzaLTQKLvXRt3epRDlUXIVHsv9iC78cklBJs9pK0UBsv4DA6oV RG6tCPZSwxTg2QSQ/e1+mHQ1DHvFj+HWxsdzk4hiMXusDSF5eH6dsClji6bZUA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:52:54 2025 by rpki-client