$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e02de776-a04d-4a5d-b952-e46865070f9c.roa File: e02de776-a04d-4a5d-b952-e46865070f9c.roa (raw, json) Hash identifier: OXkCbDMzgtV33gM9aPy+yTR9TsTbz0EmA/prY7f8LHI= Subject key identifier: 09:B0:5D:00:FA:72:75:E3:DD:76:A0:A5:24:70:32:F8:0B:57:46:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0ECCDC162203508C8C5A7A2E69B9034B6E174B43 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e02de776-a04d-4a5d-b952-e46865070f9c.roa Signing time: Mon 21 Jul 2025 15:41:15 +0000 ROA not before: Mon 21 Jul 2025 15:41:15 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3:3480::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:cc:dc:16:22:03:50:8c:8c:5a:7a:2e:69:b9:03:4b:6e:17:4b:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 21 15:41:15 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=86a2f7bd511c5d15cd38e003888af029031dc53b8495270f4900a7ffe7660731, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:b2:83:9a:0a:76:a1:43:cb:36:37:da:3d:a7: 76:af:b0:40:1d:62:67:a3:37:2f:33:97:07:26:10: b1:08:1f:37:09:7c:6b:d8:33:e6:d7:54:f5:16:88: 16:95:63:46:ec:44:42:27:5a:1b:a1:9b:2c:05:45: 43:8e:ce:90:ce:26:de:90:33:cf:13:33:e1:f6:9d: 1e:5d:f2:08:5c:64:ad:ba:6e:29:ed:3a:ec:5f:c0: 9e:46:3f:aa:0d:e2:18:ec:7a:f8:04:7f:a0:6b:b2: 90:15:42:94:b3:47:11:16:9c:c4:fe:d8:f9:46:07: 72:89:91:3e:c2:72:f4:69:13:8e:3b:a7:3e:4c:96: 75:47:f7:90:ad:32:48:9b:92:1d:6e:4d:12:ba:d8: c9:4f:08:a0:e6:34:5f:56:43:b4:5d:f4:90:fa:7c: 4a:74:c5:ca:84:b9:2e:58:bf:f7:4c:27:b2:fd:19: 4d:82:48:11:36:60:a3:e3:84:90:16:12:42:26:da: fa:95:6b:71:9d:d5:e2:08:23:a0:cb:be:4f:79:72: f3:57:2f:31:e5:ae:c6:72:38:e1:e2:ba:1c:bf:53: 9d:3b:06:68:b7:2b:30:bf:d1:9a:08:eb:dc:c6:fe: dc:06:f1:49:fc:52:19:7b:ff:28:8c:1e:66:2d:bd: f6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B0:5D:00:FA:72:75:E3:DD:76:A0:A5:24:70:32:F8:0B:57:46:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e02de776-a04d-4a5d-b952-e46865070f9c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:3480::/46 Signature Algorithm: sha256WithRSAEncryption 8a:0f:7a:a2:fe:ec:bb:1b:c0:4a:59:02:69:fd:9d:0e:ad:4a: 98:fe:a7:a5:36:6f:b2:ba:cc:7c:c2:2c:56:bd:3f:dd:b8:4d: b3:44:fa:ee:4b:5a:01:e6:31:24:25:02:f3:ee:f8:84:16:43: 8e:63:d4:be:3f:1b:e6:33:17:e8:f4:29:7f:c7:59:5f:25:ab: c2:ce:f2:a0:1b:e0:a5:1d:22:49:b1:a2:90:2a:67:72:f0:f2: 25:c2:00:40:52:b0:ad:2f:ec:ca:69:5e:d8:44:32:51:b7:77: 92:73:ce:35:03:be:93:72:27:d4:f1:c1:28:a4:fa:fd:ae:d9: 13:e6:f8:7f:13:e2:11:10:c1:24:1f:92:dd:cb:a7:e5:b3:cd: 6f:d8:96:0c:1a:8c:77:3c:b8:d4:9e:17:76:fc:eb:b2:40:73: f7:cf:a3:60:e5:ad:20:b8:0f:3e:13:f6:9d:2e:81:19:ec:50: e4:f3:e4:29:e0:ea:b2:72:93:ac:87:48:e0:26:c7:a7:b1:1e: 6e:fc:0a:f9:94:de:aa:fd:ac:2b:93:95:8d:c4:6f:81:94:9f: 16:27:63:2d:4c:7d:3f:72:09:23:9c:25:c4:a0:56:47:09:92: d6:ad:79:58:5c:a0:50:b0:1e:ef:44:f6:d0:3e:48:c4:d9:ab: 22:cf:34:b7 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDszcFiIDUIyMWnouabkDS24XS0MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzIxMTU0MTE1WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NmEyZjdiZDUxMWM1ZDE1Y2QzOGUwMDM4ODhhZjAyOTAz MWRjNTNiODQ5NTI3MGY0OTAwYTdmZmU3NjYwNzMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWsoOaCnahQ8s2N9o9p3avsEAdYmejNy8zlwcmELEIHzcJ fGvYM+bXVPUWiBaVY0bsREInWhuhmywFRUOOzpDOJt6QM88TM+H2nR5d8ghcZK26 bintOuxfwJ5GP6oN4hjsevgEf6BrspAVQpSzRxEWnMT+2PlGB3KJkT7CcvRpE447 pz5MlnVH95CtMkibkh1uTRK62MlPCKDmNF9WQ7Rd9JD6fEp0xcqEuS5Yv/dMJ7L9 GU2CSBE2YKPjhJAWEkIm2vqVa3Gd1eIII6DLvk95cvNXLzHlrsZyOOHiuhy/U507 Bmi3KzC/0ZoI69zG/twG8Un8Uhl7/yiMHmYtvfbpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCbBdAPpydePddqClJHAy+AtXRiIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwMmRlNzc2LWEwNGQtNGE1ZC1iOTUyLWU0Njg2NTA3MGY5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/zNIAwDQYJKoZIhvcNAQELBQADggEBAIoPeqL+7LsbwEpZAmn9nQ6t Spj+p6U2b7K6zHzCLFa9P924TbNE+u5LWgHmMSQlAvPu+IQWQ45j1L4/G+YzF+j0 KX/HWV8lq8LO8qAb4KUdIkmxopAqZ3Lw8iXCAEBSsK0v7MppXthEMlG3d5JzzjUD vpNyJ9TxwSik+v2u2RPm+H8T4hEQwSQfkt3Lp+WzzW/YlgwajHc8uNSeF3b867JA c/fPo2DlrSC4Dz4T9p0ugRnsUOTz5Cng6rJyk6yHSOAmx6exHm78CvmU3qr9rCuT lY3Eb4GUnxYnYy1MfT9yCSOcJcSgVkcJktateVhcoFCwHu9E9tA+SMTZqyLPNLc= -----END CERTIFICATE-----Generated at Wed Aug 6 14:22:42 2025 by rpki-client