$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d33bfeb9-0b50-443e-8a06-3a81baa27766.roa File: d33bfeb9-0b50-443e-8a06-3a81baa27766.roa (raw, json) Hash identifier: DfKqxxw8ZMn4GzBOLwrH0NyboQa9ILd1qqGO0YBJ3U4= Subject key identifier: B3:2F:07:C6:D1:E5:71:42:96:08:48:C2:16:CC:73:89:40:1E:E5:EE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BCA51BEBDDD67E78ED416B28C28FBC38BD782D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d33bfeb9-0b50-443e-8a06-3a81baa27766.roa Signing time: Sat 26 Jul 2025 00:12:29 +0000 ROA not before: Sat 26 Jul 2025 00:12:29 +0000 ROA not after: Sat 30 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff4:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ca:51:be:bd:dd:67:e7:8e:d4:16:b2:8c:28:fb:c3:8b:d7:82:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 26 00:12:29 2025 GMT Not After : Aug 30 23:59:59 2025 GMT Subject: serialNumber=7d91d481d3ce521f3af2b41e8ce89bf0a7945ff16e21c3515d6561dbc375229d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e2:ff:94:2b:5d:c0:aa:29:10:91:0d:c0:c4: d0:a9:e1:90:06:dd:b8:c0:76:1e:3d:0d:56:c7:0a: f7:83:c0:8b:00:02:73:be:47:8a:99:bd:f0:80:9a: f1:ab:6d:4a:8c:38:2a:a0:ee:df:83:da:59:95:89: 31:8b:54:3b:45:af:bd:72:b2:f2:9e:7c:a3:32:ef: 62:d6:a5:b0:d4:a5:1a:7d:27:3c:98:cb:28:d0:44: 0a:a7:ed:d5:f3:52:4b:ea:b4:0d:36:4e:3c:bc:0e: 64:8c:2c:d5:23:5e:9c:7b:e2:91:38:23:03:9b:f7: 19:7d:90:8d:ce:18:13:7f:a2:6a:07:d5:38:11:06: bf:84:b2:5c:00:f8:61:2c:d9:2d:10:25:0a:27:b9: b6:1e:70:5d:3a:a8:5f:cd:3d:7e:a6:e4:b2:8a:d7: ff:8c:63:16:90:71:99:df:b6:12:8f:a7:18:31:60: e3:f3:6a:d1:7e:20:d3:bf:4a:e8:58:f1:3e:a0:74: a8:6a:1a:64:84:6a:a7:8b:e0:67:1e:80:16:fd:d3: d8:1b:d4:b0:ef:32:38:39:49:6b:ad:2a:e2:97:2e: e2:b3:b4:12:42:f4:a8:97:02:79:24:a8:3d:49:ec: 3d:56:02:8b:b1:62:ba:af:8b:bf:db:88:ac:bf:7a: cd:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:2F:07:C6:D1:E5:71:42:96:08:48:C2:16:CC:73:89:40:1E:E5:EE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d33bfeb9-0b50-443e-8a06-3a81baa27766.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff4:c000::/40 Signature Algorithm: sha256WithRSAEncryption 8e:25:94:f6:5a:33:c3:41:8c:4e:60:f3:6e:22:bf:a2:81:28: 3b:58:8d:49:ef:d2:81:3f:c3:ae:f8:44:d9:b4:97:74:36:3d: 29:de:80:5f:86:6a:da:44:05:8b:3b:85:dc:b1:c8:d2:21:d9: ea:50:71:42:e7:9a:e2:64:43:0b:64:04:31:95:66:ea:23:a9: 16:a3:8a:69:12:1a:bc:19:b3:94:34:61:d9:2f:4d:58:ae:65: 2e:55:6f:a4:a6:6b:6d:ec:a7:39:cb:02:16:33:3e:db:aa:6f: 39:26:3e:af:4e:a4:7f:94:86:00:ef:ee:ee:88:5e:62:c6:f6: 7d:06:6d:c2:f3:ff:e4:8f:d4:90:94:b6:fa:7b:20:93:1f:02: ac:cf:18:48:5e:78:a4:72:43:f4:4f:10:69:5b:87:58:2a:36: 42:23:c5:96:a0:50:da:6d:68:ee:47:0b:2e:b1:c6:08:7a:53: 9b:86:aa:72:91:da:61:a9:12:10:0e:8b:6d:f5:ee:ea:89:39: 4c:d1:16:95:b1:fd:3e:ee:1c:34:d9:fd:ee:6a:c1:11:e1:db: b2:6b:3b:e6:0b:f4:96:5d:c4:99:97:e8:ca:48:d1:2f:d5:92: 14:7f:8d:0c:ab:c3:f0:2d:7f:db:68:83:0a:ec:7e:49:9d:c4: 76:8a:27:34 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUS8pRvr3dZ+eO1BayjCj7w4vXgtYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzI2MDAxMjI5WhcNMjUwODMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDkxZDQ4MWQzY2U1MjFmM2FmMmI0MWU4Y2U4OWJmMGE3 OTQ1ZmYxNmUyMWMzNTE1ZDY1NjFkYmMzNzUyMjlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC34v+UK13AqikQkQ3AxNCp4ZAG3bjAdh49DVbHCveDwIsA AnO+R4qZvfCAmvGrbUqMOCqg7t+D2lmViTGLVDtFr71ysvKefKMy72LWpbDUpRp9 JzyYyyjQRAqn7dXzUkvqtA02Tjy8DmSMLNUjXpx74pE4IwOb9xl9kI3OGBN/omoH 1TgRBr+EslwA+GEs2S0QJQonubYecF06qF/NPX6m5LKK1/+MYxaQcZnfthKPpxgx YOPzatF+INO/SuhY8T6gdKhqGmSEaqeL4GcegBb909gb1LDvMjg5SWutKuKXLuKz tBJC9KiXAnkkqD1J7D1WAouxYrqvi7/biKy/es3dAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUsy8HxtHlcUKWCEjCFsxziUAe5e4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzM2JmZWI5LTBiNTAtNDQzZS04YTA2LTNhODFiYWEyNzc2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/0wDANBgkqhkiG9w0BAQsFAAOCAQEAjiWU9lozw0GMTmDzbiK/ooEo O1iNSe/SgT/DrvhE2bSXdDY9Kd6AX4Zq2kQFizuF3LHI0iHZ6lBxQuea4mRDC2QE MZVm6iOpFqOKaRIavBmzlDRh2S9NWK5lLlVvpKZrbeynOcsCFjM+26pvOSY+r06k f5SGAO/u7oheYsb2fQZtwvP/5I/UkJS2+nsgkx8CrM8YSF54pHJD9E8QaVuHWCo2 QiPFlqBQ2m1o7kcLLrHGCHpTm4aqcpHaYakSEA6LbfXu6ok5TNEWlbH9Pu4cNNn9 7mrBEeHbsms75gv0ll3EmZfoykjRL9WSFH+NDKvD8C1/22iDCux+SZ3EdoonNA== -----END CERTIFICATE-----Generated at Wed Aug 6 14:20:32 2025 by rpki-client