$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977eb9d-099b-4d38-9530-e53860d229d8.roa File: c977eb9d-099b-4d38-9530-e53860d229d8.roa (raw, json) Hash identifier: tDkDH/APzat1GdwU5z1ID9cwrXLy24gT/WPvoeFFG3k= Subject key identifier: 61:70:FF:9D:A1:31:A1:76:50:BA:17:03:1A:82:85:3C:0E:F6:00:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5CAE147AB7AE260CB5F13284D27363E976B62848 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977eb9d-099b-4d38-9530-e53860d229d8.roa Signing time: Mon 04 Aug 2025 15:31:33 +0000 ROA not before: Mon 04 Aug 2025 15:31:33 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:3440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:ae:14:7a:b7:ae:26:0c:b5:f1:32:84:d2:73:63:e9:76:b6:28:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 4 15:31:33 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=ec7da0e7b7d20c3f585282333412f002d71831a7c015d9812547e98404b45dcd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d3:ec:2b:d7:99:e0:c3:6e:3f:85:d2:b0:84: ae:45:2e:f8:ea:2b:88:25:12:1a:cb:75:93:5c:87: 89:61:b4:38:5b:33:74:a2:bf:9a:c5:4e:19:5a:e4: 14:f3:7c:bf:51:32:d8:53:ec:40:16:67:98:bc:a7: 66:86:98:c6:f0:41:59:7d:74:1a:44:44:60:dc:91: e7:fd:f3:a6:9f:8a:fb:08:e2:89:8d:05:99:7d:02: 7a:fd:a0:7a:e9:e8:99:53:51:94:46:40:9a:43:f1: 18:3b:94:68:da:f6:77:03:17:4c:24:0f:19:1f:87: 67:38:cb:cc:21:63:17:86:38:4e:6e:79:1e:62:91: d8:40:e0:9c:20:ee:a2:9c:fe:46:5c:82:9e:81:78: 0f:91:c3:74:b9:87:68:55:e2:9a:4a:7b:15:a6:f1: a8:96:36:19:e8:34:58:10:2a:78:41:b6:ec:fd:32: 4c:ac:0c:60:13:b9:a2:17:2b:35:cc:00:66:9d:61: fc:b1:3c:e0:be:ee:bf:69:54:95:ba:8e:16:aa:71: fe:53:f4:32:5f:d7:14:a7:21:bb:2c:42:eb:ec:e3: 6d:bc:84:ad:42:70:b5:29:d5:82:a8:86:4b:e9:3b: a7:11:48:4a:23:15:28:4e:1f:ce:5c:82:20:ac:0e: 48:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:70:FF:9D:A1:31:A1:76:50:BA:17:03:1A:82:85:3C:0E:F6:00:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c977eb9d-099b-4d38-9530-e53860d229d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:3440::/48 Signature Algorithm: sha256WithRSAEncryption 09:22:e0:e9:db:84:d9:70:f1:f4:df:9c:82:92:7f:f6:85:e2: d8:07:0b:5d:4f:b9:e5:49:2b:dc:bf:d8:aa:21:f6:ad:c2:05: 28:82:ca:f2:b7:b3:5c:51:cc:ac:71:7d:f7:e2:f5:54:ef:58: cf:db:7f:ba:d4:be:fc:15:a7:53:d8:ab:de:c3:5e:7c:ec:c7: b5:e0:52:f1:72:09:01:90:34:ec:6f:f2:53:43:63:0a:d9:9b: a9:d0:f2:c6:f9:ba:a4:25:d1:08:62:9f:ef:65:16:10:64:7b: fd:8c:65:fd:02:2e:2c:4a:0b:c0:a4:ea:8b:21:1a:c7:a3:73: c2:f8:81:93:dc:d6:e6:df:6e:0a:00:34:8d:ca:17:d8:fd:9d: c4:aa:12:66:8d:8a:00:7d:38:78:d5:05:ac:47:e3:81:1a:2c: cd:e1:a7:97:92:02:af:ac:ae:3a:84:73:92:8e:2d:a5:25:4e: d5:d3:0b:6d:cb:08:b1:f1:73:90:a2:1a:71:be:33:2d:ba:18: 14:77:60:48:85:e5:50:ad:ec:38:61:8c:4e:a8:55:03:88:e2: b8:57:60:83:55:d1:26:29:d5:48:fd:50:45:62:93:2f:4b:57: 90:c9:3d:f5:13:82:fe:fa:77:fd:8e:0c:63:69:2f:08:0c:45: 06:14:a5:76 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXK4UereuJgy18TKE0nNj6Xa2KEgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODA0MTUzMTMzWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYzdkYTBlN2I3ZDIwYzNmNTg1MjgyMzMzNDEyZjAwMmQ3 MTgzMWE3YzAxNWQ5ODEyNTQ3ZTk4NDA0YjQ1ZGNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/0+wr15ngw24/hdKwhK5FLvjqK4glEhrLdZNch4lhtDhb M3Siv5rFThla5BTzfL9RMthT7EAWZ5i8p2aGmMbwQVl9dBpERGDckef986afivsI 4omNBZl9Anr9oHrp6JlTUZRGQJpD8Rg7lGja9ncDF0wkDxkfh2c4y8whYxeGOE5u eR5ikdhA4Jwg7qKc/kZcgp6BeA+Rw3S5h2hV4ppKexWm8aiWNhnoNFgQKnhBtuz9 MkysDGATuaIXKzXMAGadYfyxPOC+7r9pVJW6jhaqcf5T9DJf1xSnIbssQuvs4228 hK1CcLUp1YKohkvpO6cRSEojFShOH85cgiCsDkiTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUYXD/naExoXZQuhcDGoKFPA72ABgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5NzdlYjlkLTA5OWItNGQzOC05NTMwLWU1Mzg2MGQyMjlkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8ANEAwDQYJKoZIhvcNAQELBQADggEBAAki4OnbhNlw8fTfnIKSf/aF 4tgHC11PueVJK9y/2Koh9q3CBSiCyvK3s1xRzKxxfffi9VTvWM/bf7rUvvwVp1PY q97DXnzsx7XgUvFyCQGQNOxv8lNDYwrZm6nQ8sb5uqQl0Qhin+9lFhBke/2MZf0C LixKC8Ck6oshGsejc8L4gZPc1ubfbgoANI3KF9j9ncSqEmaNigB9OHjVBaxH44Ea LM3hp5eSAq+srjqEc5KOLaUlTtXTC23LCLHxc5CiGnG+My26GBR3YEiF5VCt7Dhh jE6oVQOI4rhXYINV0SYp1Uj9UEViky9LV5DJPfUTgv76d/2ODGNpLwgMRQYUpXY= -----END CERTIFICATE-----Generated at Thu Aug 7 02:03:38 2025 by rpki-client