$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/279a14e6-acd1-40ed-a2e4-0c100e001705.roa File: 279a14e6-acd1-40ed-a2e4-0c100e001705.roa (raw, json) Hash identifier: 1lXA3ccmdMIRq3qhUrAEUO8+OZt5QWxaq7M0XBOBQMA= Subject key identifier: 5C:3C:82:05:E1:B9:C8:C8:30:1F:7C:21:A0:3A:72:0B:53:E9:55:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68F39464EEDE75908F7C9BF475BA4C2249B0D461 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/279a14e6-acd1-40ed-a2e4-0c100e001705.roa Signing time: Tue 12 Aug 2025 00:20:19 +0000 ROA not before: Tue 12 Aug 2025 00:20:19 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f2c::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:f3:94:64:ee:de:75:90:8f:7c:9b:f4:75:ba:4c:22:49:b0:d4:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:20:19 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=288dc625b1958c7d49cf419c92f561367674d3b5f40af8bc93e0966475fe808e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:00:49:77:3b:81:19:b2:52:d2:0d:3e:8c:8b: ab:00:65:c6:f9:e0:1a:20:91:df:0a:b0:d0:39:0a: f3:09:7a:16:20:ac:53:60:04:bf:35:36:99:1a:4f: 39:57:90:ab:79:8c:e9:98:89:ff:5d:83:65:49:f0: 87:e6:31:c9:bf:d1:86:0e:73:2a:05:8c:10:2a:d8: e1:3d:57:ac:c6:97:fc:1d:8e:75:9f:b3:97:a8:08: 94:94:e9:9e:fc:b4:eb:48:28:4a:d8:9a:28:f8:dd: 25:f3:18:80:aa:73:3e:a0:4d:de:02:9f:5c:3e:57: 02:8d:83:3d:43:65:42:a1:a8:bb:7c:80:5c:c9:b5: 71:33:12:ea:7e:0d:9c:55:bd:7a:f3:6e:85:7a:41: 67:50:76:57:dc:b8:b0:57:b4:8f:c9:74:63:a8:3e: fd:d0:a0:6c:98:6d:c0:fd:9f:2e:df:a7:4c:2e:33: a0:71:cb:f1:4e:82:67:72:23:70:43:68:17:9f:ed: bc:0d:28:06:7c:27:74:89:2b:ba:f7:5f:7e:4e:23: 6a:90:e4:02:8f:dd:49:d1:7f:89:13:b3:c1:4b:4b: 7b:a9:e6:a3:53:58:3c:cd:ed:9a:49:7e:20:65:de: 02:a7:1d:e1:7a:39:d4:bd:62:ba:1a:41:69:b8:67: 6a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:3C:82:05:E1:B9:C8:C8:30:1F:7C:21:A0:3A:72:0B:53:E9:55:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/279a14e6-acd1-40ed-a2e4-0c100e001705.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2c::/36 Signature Algorithm: sha256WithRSAEncryption 3a:22:89:16:a4:0a:a7:d0:26:d0:d4:37:e3:dc:3d:46:ae:68: 65:3e:90:3a:66:2e:26:99:a0:c9:69:90:a7:a5:64:8e:9d:af: 14:ba:49:89:fa:bc:f2:07:3c:74:54:42:69:72:3f:d6:48:d7: 6c:98:1e:02:65:ac:76:3c:56:88:83:55:72:64:b5:5e:d8:7c: 3e:73:fe:f1:7e:88:24:6d:fc:3c:bd:6c:83:f7:d1:61:08:27: 4a:ed:0b:f3:96:f6:da:d0:fd:4d:fe:f8:11:df:d5:32:32:ea: 64:3b:00:4e:c9:d8:2a:34:b4:91:f5:bc:b0:cc:2a:22:1a:80: a6:e3:5c:bd:fb:5a:cf:a0:16:cd:ed:d0:0f:6e:1b:4d:28:9f: a4:bb:16:c2:78:18:c2:08:36:44:40:01:6a:bd:36:29:81:d1: 56:87:0e:bd:0e:39:b7:75:4a:38:59:50:e2:d6:44:d1:c1:58: fb:93:59:64:f9:e4:fc:ac:be:31:9a:d9:68:59:9f:e5:69:b9: 7f:fe:71:28:5d:00:bd:07:1b:fe:bd:d8:60:1a:89:66:d7:19: f9:c2:b5:53:99:98:14:92:4e:89:ec:c0:23:49:b4:05:60:b0: 9f:66:65:cb:53:22:aa:ba:e4:39:87:91:31:72:17:b5:f0:91: 91:dd:d7:09 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaPOUZO7edZCPfJv0dbpMIkmw1GEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAyMDE5WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODhkYzYyNWIxOTU4YzdkNDljZjQxOWM5MmY1NjEzNjc2 NzRkM2I1ZjQwYWY4YmM5M2UwOTY2NDc1ZmU4MDhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSAEl3O4EZslLSDT6Mi6sAZcb54Bogkd8KsNA5CvMJehYg rFNgBL81NpkaTzlXkKt5jOmYif9dg2VJ8IfmMcm/0YYOcyoFjBAq2OE9V6zGl/wd jnWfs5eoCJSU6Z78tOtIKErYmij43SXzGICqcz6gTd4Cn1w+VwKNgz1DZUKhqLt8 gFzJtXEzEup+DZxVvXrzboV6QWdQdlfcuLBXtI/JdGOoPv3QoGyYbcD9ny7fp0wu M6Bxy/FOgmdyI3BDaBef7bwNKAZ8J3SJK7r3X35OI2qQ5AKP3UnRf4kTs8FLS3up 5qNTWDzN7ZpJfiBl3gKnHeF6OdS9YroaQWm4Z2plAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUXDyCBeG5yMgwH3whoDpyC1PpVZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3OWExNGU2LWFjZDEtNDBlZC1hMmU0LTBjMTAwZTAwMTcwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8sADANBgkqhkiG9w0BAQsFAAOCAQEAOiKJFqQKp9Am0NQ349w9Rq5o ZT6QOmYuJpmgyWmQp6Vkjp2vFLpJifq88gc8dFRCaXI/1kjXbJgeAmWsdjxWiINV cmS1Xth8PnP+8X6IJG38PL1sg/fRYQgnSu0L85b22tD9Tf74Ed/VMjLqZDsATsnY KjS0kfW8sMwqIhqApuNcvftaz6AWze3QD24bTSifpLsWwngYwgg2REABar02KYHR VocOvQ45t3VKOFlQ4tZE0cFY+5NZZPnk/Ky+MZrZaFmf5Wm5f/5xKF0AvQcb/r3Y YBqJZtcZ+cK1U5mYFJJOiezAI0m0BWCwn2Zly1MiqrrkOYeRMXIXtfCRkd3XCQ== -----END CERTIFICATE-----Generated at Sat Aug 23 06:52:01 2025 by rpki-client