$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d89855d3-ea99-4c70-9ca7-6599aed127bd.roa File: d89855d3-ea99-4c70-9ca7-6599aed127bd.roa (raw, json) Hash identifier: 1lmh6OjMOded4mgGHvQaAqtO0Cv7xfmSGZJ4H69wRvA= Subject key identifier: 53:8C:6E:F0:F0:B7:67:4B:8E:DC:75:1E:72:75:E4:C5:DD:C9:CF:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FF427ACD6FA1F1B7D39ED8CBE7D4BE095944131 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d89855d3-ea99-4c70-9ca7-6599aed127bd.roa Signing time: Fri 13 Jun 2025 16:30:29 +0000 ROA not before: Fri 13 Jun 2025 16:30:29 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff5:8000::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:f4:27:ac:d6:fa:1f:1b:7d:39:ed:8c:be:7d:4b:e0:95:94:41:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 16:30:29 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=21947c579aeb71753d8f42cd69437fa6121c1d2a6c1b4ebbdc0f1f8d7acb6b80, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:27:ba:cc:80:c6:1e:d5:ee:d2:9d:45:d4:4b: d0:b3:17:23:bd:f5:ed:1c:97:8c:41:85:21:a2:a8: 53:99:0d:fc:cf:9a:6b:08:d0:63:17:bd:ef:64:7c: c6:00:ab:a9:44:7c:c6:3f:8f:13:75:8c:3e:d4:81: 98:28:f8:b7:09:03:3d:12:43:62:21:e6:93:52:3c: 0f:ba:c7:d6:2d:83:4f:fc:d6:fa:7e:f7:5f:e8:78: 84:f6:bd:e5:f6:5f:29:d9:7f:f3:42:4c:6d:8a:a9: 20:62:91:1f:1d:b7:39:67:3b:76:1e:94:d8:a8:7c: 65:64:6d:bb:f9:51:98:3d:99:6e:2b:e5:77:ff:33: be:b4:09:38:fd:90:df:d5:86:5c:9e:9b:50:af:cd: 77:25:55:c1:9a:3f:75:68:19:cf:33:2c:6d:60:95: c8:fe:90:20:78:c3:06:0d:02:f2:d2:62:80:9e:48: 7b:68:ca:64:ee:04:5e:7d:8e:0e:cb:e4:e5:ea:a3: 77:bd:1f:93:a2:e5:97:8b:c5:1b:5b:09:ea:4e:cc: 3f:76:87:c6:e6:55:3e:d0:66:cb:b2:f0:8a:06:6b: 04:68:41:8d:58:cb:66:1c:78:07:f5:6e:ce:8a:2e: 01:67:38:c2:ed:2e:3e:c6:a5:6f:c0:47:79:be:23: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:8C:6E:F0:F0:B7:67:4B:8E:DC:75:1E:72:75:E4:C5:DD:C9:CF:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d89855d3-ea99-4c70-9ca7-6599aed127bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:8000::/39 Signature Algorithm: sha256WithRSAEncryption 76:f0:50:4f:41:66:c6:cc:b8:44:d8:87:32:49:72:c1:84:91: 29:c3:f6:05:8b:6a:74:cb:f0:88:72:ba:20:8f:22:e9:f5:8a: d0:a2:41:91:26:68:36:da:cc:cd:5f:0c:9e:47:1a:6b:f9:3f: 24:e6:b1:a7:a8:39:52:5c:29:03:25:2d:4c:6a:54:67:3e:84: 3b:78:cc:f0:58:72:06:74:2a:7f:64:33:81:31:d6:d3:67:4c: 1e:de:e0:d9:ec:67:0c:02:99:16:b3:e0:d3:f2:30:a3:ad:47: 2e:56:73:58:69:b7:c5:08:e8:dd:5d:9b:15:8a:aa:b8:73:8c: 1f:5a:ce:a5:c9:0a:92:15:ce:a3:30:f3:c6:bc:ac:6e:e3:b5: 27:c7:79:fb:b0:ea:7b:8f:cb:cf:4c:38:fd:54:90:34:f7:ea: f6:64:dc:e9:4a:7e:89:5c:87:40:34:b9:e6:f0:d9:ed:cb:df: 15:93:11:e8:3b:7a:c9:36:b1:59:60:35:f8:62:4c:2e:8b:01: a3:bd:c1:51:26:71:56:38:1f:a7:ea:60:a4:60:51:f6:66:69: eb:c3:69:b3:e5:b3:3a:c5:ad:da:05:8e:9f:bc:09:6c:30:b3: fa:bc:22:8b:64:1d:1f:5a:68:87:cf:74:39:3b:da:7a:02:b5: 09:e1:20:48 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUf/QnrNb6Hxt9Oe2Mvn1L4JWUQTEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTYzMDI5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMTk0N2M1NzlhZWI3MTc1M2Q4ZjQyY2Q2OTQzN2ZhNjEy MWMxZDJhNmMxYjRlYmJkYzBmMWY4ZDdhY2I2YjgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDrJ7rMgMYe1e7SnUXUS9CzFyO99e0cl4xBhSGiqFOZDfzP mmsI0GMXve9kfMYAq6lEfMY/jxN1jD7UgZgo+LcJAz0SQ2Ih5pNSPA+6x9Ytg0/8 1vp+91/oeIT2veX2XynZf/NCTG2KqSBikR8dtzlnO3YelNiofGVkbbv5UZg9mW4r 5Xf/M760CTj9kN/Vhlyem1CvzXclVcGaP3VoGc8zLG1glcj+kCB4wwYNAvLSYoCe SHtoymTuBF59jg7L5OXqo3e9H5Oi5ZeLxRtbCepOzD92h8bmVT7QZsuy8IoGawRo QY1Yy2YceAf1bs6KLgFnOMLtLj7GpW/AR3m+I/w9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUU4xu8PC3Z0uO3HUecnXkxd3Jz0YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4OTg1NWQzLWVhOTktNGM3MC05Y2E3LTY1OTlhZWQxMjdiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB/1gDANBgkqhkiG9w0BAQsFAAOCAQEAdvBQT0Fmxsy4RNiHMklywYSR KcP2BYtqdMvwiHK6II8i6fWK0KJBkSZoNtrMzV8Mnkcaa/k/JOaxp6g5UlwpAyUt TGpUZz6EO3jM8FhyBnQqf2QzgTHW02dMHt7g2exnDAKZFrPg0/Iwo61HLlZzWGm3 xQjo3V2bFYqquHOMH1rOpckKkhXOozDzxrysbuO1J8d5+7Dqe4/Lz0w4/VSQNPfq 9mTc6Up+iVyHQDS55vDZ7cvfFZMR6Dt6yTaxWWA1+GJMLosBo73BUSZxVjgfp+pg pGBR9mZp68Nps+WzOsWt2gWOn7wJbDCz+rwii2QdH1poh890OTvaegK1CeEgSA== -----END CERTIFICATE-----Generated at Sat Jun 14 06:49:55 2025 by rpki-client