$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13c765a-2620-4adf-afc8-71c523da0fe2.roa File: f13c765a-2620-4adf-afc8-71c523da0fe2.roa (raw, json) Hash identifier: 5Mclb1Jf5sPohRKlLJLk0PY1Up3qp2EZL39UrCs1Zms= Subject key identifier: 96:8C:83:5A:A4:04:0F:89:CB:F9:97:09:F9:06:A9:24:8B:0B:81:64 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31EC0416E5DD1E5DFCBA8561DC4579698F15F2A7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13c765a-2620-4adf-afc8-71c523da0fe2.roa Signing time: Wed 30 Jul 2025 19:07:14 +0000 ROA not before: Wed 30 Jul 2025 19:07:14 +0000 ROA not after: Wed 03 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff7::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:ec:04:16:e5:dd:1e:5d:fc:ba:85:61:dc:45:79:69:8f:15:f2:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jul 30 19:07:14 2025 GMT Not After : Sep 3 23:59:59 2025 GMT Subject: serialNumber=b48f88880062dd9ac4c1bed7e92fc88443b4e3e8ec48650ffb902a4152b44ff8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:11:5e:7b:cb:ab:3c:cd:15:a9:68:f7:13:ff: 3e:f7:f9:46:d9:4b:77:a6:db:2b:f2:a3:15:9b:81: ac:f2:bf:20:78:a1:a9:65:86:9b:6c:9a:f2:15:81: e2:99:5e:1c:aa:f6:d3:f8:2f:37:87:cd:e9:f5:76: 9b:1d:51:ce:b4:50:6c:05:c8:17:aa:d1:a8:3d:70: d0:43:48:f3:34:de:2a:fc:fa:0b:16:d4:2e:50:24: a0:c4:5e:5f:08:f0:fe:d6:88:20:90:76:be:e7:8c: d6:cb:2c:38:fb:58:0b:e8:db:ea:aa:c0:ab:6e:ce: 30:10:d2:9f:3b:d1:60:8a:36:45:4b:41:6f:d7:f4: b8:35:44:f5:f0:55:a5:fa:90:8a:1b:57:b9:4d:c8: 4e:be:f7:be:63:f2:45:57:eb:5d:02:4a:ca:26:9c: a9:46:14:e7:fd:4b:c8:2e:7d:0a:33:53:d5:3d:29: 6d:1b:ef:c5:a9:52:62:4a:0e:46:3d:99:d6:61:dc: 46:57:82:31:0e:4d:37:a9:7a:2b:5d:6c:24:4c:20: 18:55:b3:2d:e7:cb:74:3a:30:bb:54:98:3b:5a:59: de:2a:b4:0b:9f:83:5a:12:88:09:e7:38:a2:28:18: 24:a2:44:9e:69:75:96:ad:07:9c:d8:85:06:77:e4: 36:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:8C:83:5A:A4:04:0F:89:CB:F9:97:09:F9:06:A9:24:8B:0B:81:64 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f13c765a-2620-4adf-afc8-71c523da0fe2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff7::/32 Signature Algorithm: sha256WithRSAEncryption 69:90:4e:58:ee:c9:10:d0:5b:9c:ef:58:9c:25:e8:d1:7a:57: 0d:4d:f6:75:31:dc:4b:49:0b:b1:99:f2:bd:63:1b:a9:1b:86: cc:dd:53:62:0e:f3:fa:96:a2:ba:a5:fd:30:d7:41:89:9f:43: 6b:1d:da:a7:3e:e9:bc:7c:3d:80:3a:22:11:93:b6:7f:02:e4: b6:b3:d1:b0:d6:0f:ce:b0:a9:8a:32:25:e1:e5:c5:89:b9:8c: 5f:ee:cf:d1:3e:bb:58:e8:a3:3b:a8:16:9e:2b:d3:a7:87:10: ee:bc:fd:f6:59:49:69:3f:87:ac:66:e4:45:c2:32:a0:a7:12: 7e:9c:43:c0:63:fd:fb:a7:9c:1b:af:df:3b:43:ec:e6:a9:69: b5:be:53:7d:c9:15:af:10:e5:91:53:f9:59:4b:13:b6:72:2f: 70:2b:21:f6:e7:b7:1c:6b:aa:08:18:6e:fd:5b:4f:de:63:7a: 30:7a:de:bf:12:74:8d:44:e8:d4:f5:14:77:23:5e:46:25:6f: ff:ef:f8:70:8a:f6:fc:fa:ee:28:53:7a:21:74:20:3a:af:19: 4c:59:bf:7d:7c:c3:62:e6:86:09:cd:4b:03:ce:8a:11:fc:f4: 77:7a:79:23:8c:a8:d2:67:4e:6e:c3:91:97:df:cb:c4:18:32: c7:34:78:d2 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUMewEFuXdHl38uoVh3EV5aY8V8qcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNzMwMTkwNzE0WhcNMjUwOTAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiNDhmODg4ODAwNjJkZDlhYzRjMWJlZDdlOTJmYzg4NDQz YjRlM2U4ZWM0ODY1MGZmYjkwMmE0MTUyYjQ0ZmY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsEV57y6s8zRWpaPcT/z73+UbZS3em2yvyoxWbgazyvyB4 oallhptsmvIVgeKZXhyq9tP4LzeHzen1dpsdUc60UGwFyBeq0ag9cNBDSPM03ir8 +gsW1C5QJKDEXl8I8P7WiCCQdr7njNbLLDj7WAvo2+qqwKtuzjAQ0p870WCKNkVL QW/X9Lg1RPXwVaX6kIobV7lNyE6+975j8kVX610CSsomnKlGFOf9S8gufQozU9U9 KW0b78WpUmJKDkY9mdZh3EZXgjEOTTepeitdbCRMIBhVsy3ny3Q6MLtUmDtaWd4q tAufg1oSiAnnOKIoGCSiRJ5pdZatB5zYhQZ35DblAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUloyDWqQED4nL+ZcJ+QapJIsLgWQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxM2M3NjVhLTI2MjAtNGFkZi1hZmM4LTcxYzUyM2RhMGZlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB/3MA0GCSqGSIb3DQEBCwUAA4IBAQBpkE5Y7skQ0Fuc71icJejRelcN TfZ1MdxLSQuxmfK9YxupG4bM3VNiDvP6lqK6pf0w10GJn0NrHdqnPum8fD2AOiIR k7Z/AuS2s9Gw1g/OsKmKMiXh5cWJuYxf7s/RPrtY6KM7qBaeK9OnhxDuvP32WUlp P4esZuRFwjKgpxJ+nEPAY/37p5wbr987Q+zmqWm1vlN9yRWvEOWRU/lZSxO2ci9w KyH257cca6oIGG79W0/eY3owet6/EnSNROjU9RR3I15GJW//7/hwivb8+u4oU3oh dCA6rxlMWb99fMNi5oYJzUsDzooR/PR3enkjjKjSZ05uw5GX38vEGDLHNHjS -----END CERTIFICATE-----Generated at Tue Aug 5 20:03:57 2025 by rpki-client