$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa File: c2c6afd4-768e-4ed4-82e9-013c34669118.roa (raw, json) Hash identifier: BN6tFIyrDkYvg1GvJNf94nZDZnqpWOcSLLu9zuinoj0= Subject key identifier: 02:2F:4E:D4:EA:8A:1B:AC:78:CB:3F:7E:FE:0F:E6:40:11:CE:35:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 529B1D08F8C8EEE50EFE4296FA4F2B01968829CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa Signing time: Fri 01 Aug 2025 15:30:28 +0000 ROA not before: Fri 01 Aug 2025 15:30:28 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:c0c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:9b:1d:08:f8:c8:ee:e5:0e:fe:42:96:fa:4f:2b:01:96:88:29:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:30:28 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=3ea2a5b1534289976ac132a76e2f24f0fdd0e00b8a24f10e7e11ec67fac08241, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f3:3c:06:38:ae:80:52:87:db:58:38:0d:a7: b1:38:2a:c1:f7:9c:f8:fc:cb:f0:87:be:2f:d8:96: b9:9a:42:a5:94:4f:f6:05:bc:c4:75:5d:73:04:08: 35:b5:7c:10:31:65:15:51:ac:f6:c9:7e:af:a6:b3: 48:3e:8e:fe:fb:5a:c5:dc:f6:1a:2c:fd:31:c0:09: db:ed:b6:1e:8c:68:cd:56:d7:dd:92:ac:34:60:29: 8d:b8:87:02:a7:45:ab:30:4e:0f:07:d5:1a:2c:c8: 84:0c:c4:75:8d:59:2d:3f:01:c4:c2:60:a2:03:0d: fb:c3:58:24:03:d5:81:4a:d8:35:ee:37:d9:67:64: 01:d7:0e:8d:6d:1a:70:1a:a6:07:64:c6:c9:b4:c8: ee:a1:49:61:23:99:6d:d7:59:e8:6b:9a:d4:2f:17: ed:a5:68:0c:c9:24:19:e2:8e:ee:bf:b1:0e:d4:37: 13:1b:2f:5c:86:72:51:67:77:c7:58:f4:3b:ae:f7: 66:b0:9c:f4:01:e2:15:a6:3d:eb:6f:25:88:21:b5: cd:70:b7:18:40:35:e0:d2:2c:bd:4a:56:50:bd:11: f6:bf:02:50:7b:f8:64:c0:f5:bf:07:88:23:fd:91: ee:0e:5c:80:04:e3:14:8a:55:e6:c8:dc:4a:43:60: d4:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:2F:4E:D4:EA:8A:1B:AC:78:CB:3F:7E:FE:0F:E6:40:11:CE:35:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c2c6afd4-768e-4ed4-82e9-013c34669118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:c0c0::/48 Signature Algorithm: sha256WithRSAEncryption 36:3f:3c:e0:a7:21:e3:97:73:6f:e0:96:8d:67:46:41:9f:16: 22:a3:d3:31:5e:5a:e4:9a:12:e7:42:29:d5:b6:90:11:8e:56: 3c:f3:75:cf:01:6b:74:5d:fc:e3:c5:c9:0a:a4:f6:6a:15:be: 26:3c:dc:f9:d6:c5:28:24:ee:91:36:e2:72:63:c8:6d:d9:a8: 42:6d:33:c3:5d:8b:60:bd:8b:53:c6:f3:50:a0:1d:71:3b:56: f8:4c:2f:35:1e:67:c9:ea:64:cb:2a:e8:39:8f:e5:a0:39:3f: 7d:24:49:ef:85:96:8c:62:9e:51:fd:7f:dd:ad:2a:b3:36:6c: d1:cd:83:64:18:3d:13:a8:a2:fa:12:e9:38:e6:4d:88:9a:67: 8a:22:89:2e:dd:9f:91:c4:08:4a:9a:e6:5c:9b:cb:a4:02:d2: 4b:5a:55:86:c4:7b:56:70:46:82:86:de:76:39:7e:26:97:68: eb:09:f9:5f:68:58:e8:4a:da:81:ec:12:7a:ea:0d:43:88:26: 43:60:8e:53:9d:b6:84:dd:b9:08:86:bb:07:f7:5b:8f:c2:1e: 55:2d:cb:3d:b6:eb:78:36:2b:72:ac:f9:b3:1f:ff:eb:5a:21: f0:2d:75:7d:da:3c:58:1e:9c:2f:67:99:3a:1e:46:aa:10:83: 30:48:d8:d6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUpsdCPjI7uUO/kKW+k8rAZaIKc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTUzMDI4WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZWEyYTViMTUzNDI4OTk3NmFjMTMyYTc2ZTJmMjRmMGZk ZDBlMDBiOGEyNGYxMGU3ZTExZWM2N2ZhYzA4MjQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ8zwGOK6AUofbWDgNp7E4KsH3nPj8y/CHvi/YlrmaQqWU T/YFvMR1XXMECDW1fBAxZRVRrPbJfq+ms0g+jv77WsXc9hos/THACdvtth6MaM1W 192SrDRgKY24hwKnRaswTg8H1RosyIQMxHWNWS0/AcTCYKIDDfvDWCQD1YFK2DXu N9lnZAHXDo1tGnAapgdkxsm0yO6hSWEjmW3XWehrmtQvF+2laAzJJBniju6/sQ7U NxMbL1yGclFnd8dY9Duu92awnPQB4hWmPetvJYghtc1wtxhANeDSLL1KVlC9Efa/ AlB7+GTA9b8HiCP9ke4OXIAE4xSKVebI3EpDYNS9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAi9O1OqKG6x4yz9+/g/mQBHONWwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyYzZhZmQ0LTc2OGUtNGVkNC04MmU5LTAxM2MzNDY2OTExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//wMAwDQYJKoZIhvcNAQELBQADggEBADY/POCnIeOXc2/glo1nRkGf FiKj0zFeWuSaEudCKdW2kBGOVjzzdc8Ba3Rd/OPFyQqk9moVviY83PnWxSgk7pE2 4nJjyG3ZqEJtM8Ndi2C9i1PG81CgHXE7VvhMLzUeZ8nqZMsq6DmP5aA5P30kSe+F loxinlH9f92tKrM2bNHNg2QYPROoovoS6TjmTYiaZ4oiiS7dn5HECEqa5lyby6QC 0ktaVYbEe1ZwRoKG3nY5fiaXaOsJ+V9oWOhK2oHsEnrqDUOIJkNgjlOdtoTduQiG uwf3W4/CHlUtyz2263g2K3Ks+bMf/+taIfAtdX3aPFgenC9nmToeRqoQgzBI2NY= -----END CERTIFICATE-----Generated at Thu Aug 7 04:35:16 2025 by rpki-client