$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa File: c0ba95f7-f662-491c-8d5f-68532e494cdd.roa (raw, json) Hash identifier: q8T8yLE50TueblUah70P4sxI1jNkBv6H4JSzGq3vXSA= Subject key identifier: 3D:6F:5D:3B:9F:1C:B0:11:4B:FA:41:47:46:D4:3A:9D:DE:FC:A2:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: DE6A78A6647CF4DA7B872D58474CF04B7EEEFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa Signing time: Fri 13 Jun 2025 16:52:13 +0000 ROA not before: Fri 13 Jun 2025 16:52:13 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: de:6a:78:a6:64:7c:f4:da:7b:87:2d:58:47:4c:f0:4b:7e:ee:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:52:13 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=a64d74fad13ceca9cc77834cd6429dd413517b5b77ece7b5f0e5fbef9e8c51ab, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:8f:25:4c:9b:63:10:37:ff:b2:d2:99:46:62: 46:9e:5b:24:1b:65:a4:ad:f9:4a:b0:2f:80:12:57: 01:46:91:a0:33:c9:a9:33:4a:3c:60:e0:34:de:b4: fe:66:d3:66:90:66:06:d4:c6:15:cd:9e:85:a2:f2: 2e:5d:2e:39:a6:b3:bb:45:58:f7:96:76:db:d9:94: e5:6d:4e:b8:88:af:62:a4:bf:29:3a:1e:6e:2d:d1: 48:f3:45:4d:c6:ef:50:bb:28:3f:0f:bd:04:3c:59: 04:c7:7d:ef:ec:47:d0:73:87:4a:41:b5:69:e2:95: 45:01:41:34:ff:ad:2e:2f:77:d3:93:c1:e2:e3:b2: 7f:18:f9:be:86:2d:0e:70:a2:3c:b9:f9:cd:36:cc: 71:36:77:74:0d:1e:60:3f:c8:41:96:33:0a:0c:25: 2e:99:fa:fe:41:88:45:83:b9:48:9f:f1:0e:af:6d: cf:f3:25:f4:95:b6:f6:3b:a5:c7:76:47:41:77:8f: 60:fc:e1:24:4d:ef:cf:08:b3:20:d2:aa:fd:e4:92: 27:95:e6:fd:db:36:ec:f1:c0:e0:7c:4c:f0:c5:87: bf:77:25:eb:0a:ef:88:df:4b:8e:7d:bd:ca:4f:5e: 4a:20:44:c7:6f:11:44:50:5d:14:55:66:88:62:7f: aa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:6F:5D:3B:9F:1C:B0:11:4B:FA:41:47:46:D4:3A:9D:DE:FC:A2:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0ba95f7-f662-491c-8d5f-68532e494cdd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4000::/36 Signature Algorithm: sha256WithRSAEncryption 2c:84:ec:fe:27:f4:24:7f:0c:e5:d4:6a:a1:75:0b:d9:dc:15: 26:c0:92:37:72:b9:87:2d:9b:65:7d:bd:86:4e:2f:b4:e3:ce: b4:33:81:7f:19:04:10:dc:14:4d:de:57:8b:12:e7:39:1b:e7: 7c:28:d8:6a:11:10:b5:7c:9b:55:b8:02:b5:14:6d:a2:a1:b8: 63:a2:53:9c:9a:33:88:ae:26:38:93:d8:df:53:34:4a:65:44: 61:ba:97:eb:a8:9a:31:3c:ec:83:6f:fc:6a:c7:ab:0a:43:9a: 01:d7:06:63:7f:c4:28:e0:cd:7d:6b:33:aa:4a:dd:a2:c4:51: 62:9a:a7:0e:d1:5f:b9:19:7a:42:5c:7f:f9:01:12:28:dd:9f: 01:bb:93:0c:e1:92:97:7f:eb:e6:2e:a5:15:af:0c:09:1b:09: 0e:01:a1:01:d9:fa:5d:ec:d3:b0:0c:f4:ab:d2:c9:76:53:53: 9d:45:e1:f4:78:ad:ae:3c:9a:cf:4d:44:13:cb:c9:68:d7:fa: 58:b2:bc:fd:ad:1b:5e:c0:4b:14:94:89:0c:f1:cf:a4:2b:cd: 3e:74:fc:01:59:34:4d:fe:7e:9e:77:12:fc:80:c6:bb:3b:6a: 47:e3:a5:42:5b:da:7e:23:03:18:8f:18:68:d9:93:98:9c:ec: e6:d7:d3:b8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAN5qeKZkfPTae4ctWEdM8Et+7v8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTY1MjEzWhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNjRkNzRmYWQxM2NlY2E5Y2M3NzgzNGNkNjQyOWRkNDEz NTE3YjViNzdlY2U3YjVmMGU1ZmJlZjllOGM1MWFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfjyVMm2MQN/+y0plGYkaeWyQbZaSt+UqwL4ASVwFGkaAz yakzSjxg4DTetP5m02aQZgbUxhXNnoWi8i5dLjmms7tFWPeWdtvZlOVtTriIr2Kk vyk6Hm4t0UjzRU3G71C7KD8PvQQ8WQTHfe/sR9Bzh0pBtWnilUUBQTT/rS4vd9OT weLjsn8Y+b6GLQ5wojy5+c02zHE2d3QNHmA/yEGWMwoMJS6Z+v5BiEWDuUif8Q6v bc/zJfSVtvY7pcd2R0F3j2D84SRN788IsyDSqv3kkieV5v3bNuzxwOB8TPDFh793 JesK74jfS459vcpPXkogRMdvEURQXRRVZohif6rnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUPW9dO58csBFL+kFHRtQ6nd78ov8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwYmE5NWY3LWY2NjItNDkxYy04ZDVmLTY4NTMyZTQ5NGNkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8XQDANBgkqhkiG9w0BAQsFAAOCAQEALITs/if0JH8M5dRqoXUL2dwV JsCSN3K5hy2bZX29hk4vtOPOtDOBfxkEENwUTd5XixLnORvnfCjYahEQtXybVbgC tRRtoqG4Y6JTnJoziK4mOJPY31M0SmVEYbqX66iaMTzsg2/8aserCkOaAdcGY3/E KODNfWszqkrdosRRYpqnDtFfuRl6Qlx/+QESKN2fAbuTDOGSl3/r5i6lFa8MCRsJ DgGhAdn6XezTsAz0q9LJdlNTnUXh9Hitrjyaz01EE8vJaNf6WLK8/a0bXsBLFJSJ DPHPpCvNPnT8AVk0Tf5+nncS/IDGuztqR+OlQlvafiMDGI8YaNmTmJzs5tfTuA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:41:31 2025 by rpki-client