$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f10161a9-03c9-4394-92e9-a28a5699752e.roa File: f10161a9-03c9-4394-92e9-a28a5699752e.roa (raw, json) Hash identifier: PtOp30e7oFoPsh5kNk7giRTdOnXAi6VeIjx09YA3EXI= Subject key identifier: 06:CB:5A:85:F4:96:E2:3F:DC:57:6E:88:24:0D:92:8B:2D:AE:76:35 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5FDE1DEFB1A1C215F2C5DAC7317195E11C22C970 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f10161a9-03c9-4394-92e9-a28a5699752e.roa Signing time: Fri 13 Jun 2025 15:22:39 +0000 ROA not before: Fri 13 Jun 2025 15:22:39 +0000 ROA not after: Fri 18 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:10c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 15 Jun 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:de:1d:ef:b1:a1:c2:15:f2:c5:da:c7:31:71:95:e1:1c:22:c9:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 13 15:22:39 2025 GMT Not After : Jul 18 23:59:59 2025 GMT Subject: serialNumber=df6b47f29d70fd083f1a22bbf7a3bb92a5df5c22e4ac55c46576e9593cb413d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:d5:43:f2:36:5f:4c:b8:f4:21:ee:4b:ea:ff: d2:0f:69:ef:d3:77:0d:2e:b6:df:d9:45:4f:77:5c: 09:1a:87:e1:73:79:d9:a6:81:51:0a:3a:16:b0:53: 37:34:6b:55:25:a7:d0:19:fb:54:f8:2b:4b:82:23: b2:97:59:94:aa:cf:f7:06:9b:aa:ca:24:7a:20:f7: 9f:28:de:a8:e1:03:0f:9f:c0:6f:f5:ca:c0:c8:7e: b1:13:57:fa:19:88:d7:f1:ed:e3:e5:52:ee:d4:5d: 8c:d4:25:8d:f8:a6:86:12:23:89:de:f9:d4:c2:c1: ff:85:a1:1c:2a:f8:ad:83:4b:47:42:7b:3d:9d:63: 8a:a9:1e:89:4b:df:11:50:30:fb:c7:18:ba:5f:40: bd:00:4e:ce:c5:20:35:81:94:af:0c:f9:8a:9b:c1: 72:50:38:c8:ed:7b:1d:71:04:85:c9:97:35:21:1c: 64:3e:1a:61:ed:b4:2f:f0:c6:50:11:26:c1:cd:6a: 90:44:77:e3:21:d4:0d:d2:d3:d4:e5:c7:69:17:de: 7c:be:06:de:ed:32:06:55:2b:c0:b2:4b:fd:e5:ec: b6:4c:8c:4d:9b:38:c4:71:47:ec:2f:f6:53:6e:6c: 16:d1:58:c6:ed:7a:ae:0f:4d:13:3e:fe:74:a2:39: c1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:CB:5A:85:F4:96:E2:3F:DC:57:6E:88:24:0D:92:8B:2D:AE:76:35 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f10161a9-03c9-4394-92e9-a28a5699752e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:10c0::/46 Signature Algorithm: sha256WithRSAEncryption 6b:be:f6:dd:35:1e:9f:d9:b7:b4:13:13:5b:22:55:5d:92:05: 00:00:d9:ec:27:f7:6a:f5:0f:c5:af:36:4a:5c:21:be:4c:d0: 21:bf:23:72:1a:7b:a4:92:e3:05:f2:0c:2b:99:87:ea:e6:ee: 73:b6:e6:a3:5b:e0:2a:58:46:6f:ea:26:28:c0:31:77:51:ab: a2:f2:39:63:da:b2:13:0b:2c:f5:fc:c9:fb:7b:cf:ba:95:5b: f9:a7:6e:f9:04:92:ed:9f:39:c6:01:b6:31:6a:e8:de:86:c4: f8:a9:99:cf:26:9e:8f:eb:95:de:81:49:5d:f7:ee:2e:c9:30: 61:50:c8:c6:32:53:66:cc:c9:25:07:2d:3c:f2:58:3a:74:ec: 11:0f:8f:a0:9e:8e:fa:cc:01:e6:d0:10:f1:2e:4f:d6:53:4e: 14:47:41:4e:44:28:b8:82:8e:88:e9:c2:ac:42:48:99:e3:90: 2e:38:59:67:22:74:30:ad:a8:5b:a2:f1:72:16:fc:25:f9:eb: 95:c4:f4:3b:07:a1:ad:d8:c2:61:10:84:a0:a2:5b:56:85:bd: 19:c5:84:ac:89:58:90:36:d0:fd:8d:55:3d:3a:1d:45:55:80: 26:a4:ee:58:98:ff:a9:7e:d8:b3:32:5f:cb:08:c1:ab:fb:77: cb:f3:e8:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUX94d77GhwhXyxdrHMXGV4RwiyXAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEzMTUyMjM5WhcNMjUwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjZiNDdmMjlkNzBmZDA4M2YxYTIyYmJmN2EzYmI5MmE1 ZGY1YzIyZTRhYzU1YzQ2NTc2ZTk1OTNjYjQxM2Q1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCd1UPyNl9MuPQh7kvq/9IPae/Tdw0utt/ZRU93XAkah+Fz edmmgVEKOhawUzc0a1Ulp9AZ+1T4K0uCI7KXWZSqz/cGm6rKJHog958o3qjhAw+f wG/1ysDIfrETV/oZiNfx7ePlUu7UXYzUJY34poYSI4ne+dTCwf+FoRwq+K2DS0dC ez2dY4qpHolL3xFQMPvHGLpfQL0ATs7FIDWBlK8M+YqbwXJQOMjtex1xBIXJlzUh HGQ+GmHttC/wxlARJsHNapBEd+Mh1A3S09Tlx2kX3ny+Bt7tMgZVK8CyS/3l7LZM jE2bOMRxR+wv9lNubBbRWMbteq4PTRM+/nSiOcFhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBstahfSW4j/cV26IJA2Siy2udjUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxMDE2MWE5LTAzYzktNDM5NC05MmU5LWEyOGE1Njk5NzUyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/7EMAwDQYJKoZIhvcNAQELBQADggEBAGu+9t01Hp/Zt7QTE1siVV2S BQAA2ewn92r1D8WvNkpcIb5M0CG/I3Iae6SS4wXyDCuZh+rm7nO25qNb4CpYRm/q JijAMXdRq6LyOWPashMLLPX8yft7z7qVW/mnbvkEku2fOcYBtjFq6N6GxPipmc8m no/rld6BSV337i7JMGFQyMYyU2bMySUHLTzyWDp07BEPj6CejvrMAebQEPEuT9ZT ThRHQU5EKLiCjojpwqxCSJnjkC44WWcidDCtqFui8XIW/CX565XE9DsHoa3YwmEQ hKCiW1aFvRnFhKyJWJA20P2NVT06HUVVgCak7liY/6l+2LMyX8sIwav7d8vz6FE= -----END CERTIFICATE-----Generated at Sat Jun 14 06:45:39 2025 by rpki-client