$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa File: 2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa (raw, json) Hash identifier: n39v0QOButui3pRS2mcHUJE/7LoOawA7qSmgBwJHMO4= Subject key identifier: CE:22:24:B3:17:77:52:67:59:67:98:E2:41:5E:9C:3D:57:01:ED:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FCA25BF644324A901136B36D5A627395C2DAFFA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa Signing time: Tue 12 Aug 2025 00:22:06 +0000 ROA not before: Tue 12 Aug 2025 00:22:06 +0000 ROA not after: Tue 16 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1ff0:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ca:25:bf:64:43:24:a9:01:13:6b:36:d5:a6:27:39:5c:2d:af:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 12 00:22:06 2025 GMT Not After : Sep 16 23:59:59 2025 GMT Subject: serialNumber=2649130c50866a57c687544f7ef9165c16b8eaa7808b5ae59aeacae8582f77f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:67:e6:e7:9a:b6:6c:11:73:13:fe:36:78:3f: 6e:41:c1:44:6c:b9:09:21:f5:7d:8c:4c:6e:3e:97: 61:11:83:78:9e:0f:5e:85:60:9b:e0:48:e1:6e:e8: 64:9a:71:f2:7c:e2:7e:a9:c1:96:e4:d9:5b:bd:11: 2f:b7:dc:be:a0:90:73:30:32:5d:00:1c:2a:77:de: ee:5f:6b:6f:ee:c4:73:93:0a:59:5c:c8:85:51:d0: fe:65:ce:1a:cc:82:9d:56:fe:ce:78:fe:a4:8f:88: 77:05:f4:51:8d:cf:cb:12:d4:1e:13:e6:a1:81:e5: 36:35:cb:60:87:4d:c3:67:25:31:ba:81:37:a1:58: 36:84:9c:16:e0:46:41:6f:43:40:ca:66:56:02:39: c4:54:f7:fe:8b:fb:1a:2d:da:7c:0f:d5:f6:42:f9: 79:bc:21:28:13:a7:db:6a:ff:a2:88:79:7c:13:b1: 82:3c:2c:79:a7:95:c4:f6:47:7c:57:92:82:31:0f: f7:79:0b:99:a7:e0:f1:8b:72:e2:d3:12:91:6f:f1: d5:0f:15:ba:a0:19:8a:c5:84:77:26:f1:56:fe:c7: 07:59:28:66:fd:86:6a:8e:a6:17:f0:60:55:d4:c0: 95:68:34:25:00:79:35:f3:bb:53:88:a6:db:35:0c: 92:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:22:24:B3:17:77:52:67:59:67:98:E2:41:5E:9C:3D:57:01:ED:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ff10bcf-a0d1-4f40-b79c-d84b07d3c7bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff0:5000::/40 Signature Algorithm: sha256WithRSAEncryption 60:eb:11:e7:6e:e4:43:04:42:64:ed:a1:7c:cf:24:3c:0b:12: 78:92:54:79:f2:e4:53:20:1a:a8:7a:97:52:59:f7:59:6b:98: 84:4a:ff:6a:8f:af:5e:45:99:e8:67:e0:19:08:cd:d4:33:87: 10:ca:5f:23:61:f9:a0:8f:f6:9d:77:4e:b4:c0:8e:28:65:7f: 7e:ae:e2:5d:f4:35:05:37:12:73:4a:39:d8:11:06:7e:02:f3: 85:b4:63:cc:3d:34:ef:41:f7:c7:4a:99:ee:60:a4:c9:3a:e4: 3f:01:c6:cd:45:a9:be:a9:04:8c:aa:3a:a9:60:27:9d:5b:23: bc:17:68:a0:72:0e:71:cd:31:38:86:38:ee:fc:23:20:69:92: 74:62:7e:26:75:42:be:31:cd:e9:49:6b:62:e6:52:d6:2d:95: 6e:74:5a:75:61:88:0c:fc:76:5f:07:52:2b:ce:70:58:5f:75: a9:2c:21:07:33:1e:1d:de:dc:66:e4:9e:d3:22:d2:58:fd:87: e8:3a:f4:f2:e1:3f:5e:18:d5:d8:d1:23:e6:c0:c4:e3:a3:aa: ac:0f:b0:d8:0f:02:77:be:9c:b8:68:d8:61:8a:cb:6b:ea:c8: c8:db:dd:a9:2d:50:83:82:d8:b6:8d:54:0f:99:74:ce:a2:d1: b3:84:14:bd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUT8olv2RDJKkBE2s21aYnOVwtr/owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEyMDAyMjA2WhcNMjUwOTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjQ5MTMwYzUwODY2YTU3YzY4NzU0NGY3ZWY5MTY1YzE2 YjhlYWE3ODA4YjVhZTU5YWVhY2FlODU4MmY3N2YxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnZ+bnmrZsEXMT/jZ4P25BwURsuQkh9X2MTG4+l2ERg3ie D16FYJvgSOFu6GSacfJ84n6pwZbk2Vu9ES+33L6gkHMwMl0AHCp33u5fa2/uxHOT CllcyIVR0P5lzhrMgp1W/s54/qSPiHcF9FGNz8sS1B4T5qGB5TY1y2CHTcNnJTG6 gTehWDaEnBbgRkFvQ0DKZlYCOcRU9/6L+xot2nwP1fZC+Xm8ISgTp9tq/6KIeXwT sYI8LHmnlcT2R3xXkoIxD/d5C5mn4PGLcuLTEpFv8dUPFbqgGYrFhHcm8Vb+xwdZ KGb9hmqOphfwYFXUwJVoNCUAeTXzu1OIpts1DJKnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUziIksxd3UmdZZ5jiQV6cPVcB7QowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmZjEwYmNmLWEwZDEtNGY0MC1iNzljLWQ4NGIwN2QzYzdiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/wUDANBgkqhkiG9w0BAQsFAAOCAQEAYOsR527kQwRCZO2hfM8kPAsS eJJUefLkUyAaqHqXUln3WWuYhEr/ao+vXkWZ6GfgGQjN1DOHEMpfI2H5oI/2nXdO tMCOKGV/fq7iXfQ1BTcSc0o52BEGfgLzhbRjzD0070H3x0qZ7mCkyTrkPwHGzUWp vqkEjKo6qWAnnVsjvBdooHIOcc0xOIY47vwjIGmSdGJ+JnVCvjHN6UlrYuZS1i2V bnRadWGIDPx2XwdSK85wWF91qSwhBzMeHd7cZuSe0yLSWP2H6Dr08uE/XhjV2NEj 5sDE46OqrA+w2A8Cd76cuGjYYYrLa+rIyNvdqS1Qg4LYto1UD5l0zqLRs4QUvQ== -----END CERTIFICATE-----Generated at Sat Aug 23 16:49:47 2025 by rpki-client