$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa File: 4b128b97-197d-4126-9887-73a31ea7479b.roa (raw, json) Hash identifier: LlfaTyF2M+xDLvGHeSx1x/hQshtJIkJt1IkZ6vUMAOQ= Subject key identifier: 5B:E6:2C:95:8D:02:94:B1:A0:FA:44:2A:09:C6:68:FC:F9:9A:60:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 404FED85493E26284C4139680C5EC3FC1F35418C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa Signing time: Mon 30 Jun 2025 15:11:05 +0000 ROA not before: Mon 30 Jun 2025 15:11:05 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f60:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4f:ed:85:49:3e:26:28:4c:41:39:68:0c:5e:c3:fc:1f:35:41:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 30 15:11:05 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=919c86dadfb3b2f2aad2b9d6aa802e5c326c5679bd96f41c4c5bae2613166ecf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0b:30:bd:35:e3:f5:01:14:9a:12:d4:3f:cc: 38:ef:18:61:84:7c:66:15:31:2a:a7:56:cb:6c:af: ef:5b:ba:7b:f0:7e:f7:01:7d:a5:04:82:77:62:f2: bd:2d:ca:33:46:c0:6c:96:6a:b2:f9:d1:6f:66:51: 31:80:69:00:02:b1:5d:e8:9d:c0:64:9c:3d:f2:4e: f7:7d:02:d2:cb:01:67:43:e1:0f:a6:e2:cc:4c:6a: 32:87:51:6a:5e:3d:f5:47:a1:ef:db:35:da:e8:07: f2:4d:71:e8:5b:62:20:41:d1:1f:b3:ee:b9:82:44: 24:67:23:29:b0:a9:1a:74:10:78:30:b5:1e:ae:da: cb:31:68:9d:0e:6e:7e:04:bd:15:82:aa:be:fe:36: 98:25:91:cf:de:a1:c8:7e:41:85:63:e3:82:68:30: 8e:1b:77:f2:fc:69:41:ae:61:60:53:20:96:e0:95: fe:06:b0:e4:75:39:af:f9:a9:02:60:dc:3c:32:ad: 0c:a5:e3:a0:6f:f3:8e:a4:08:a7:5b:86:ac:14:a9: 33:16:8b:8b:16:79:21:4e:34:e7:05:20:1f:be:c9: 0e:be:b8:25:1f:ef:bb:41:21:59:7a:4e:c5:f6:0e: 47:77:53:d7:ee:cc:3b:68:dd:f5:83:9c:45:ac:9c: 07:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E6:2C:95:8D:02:94:B1:A0:FA:44:2A:09:C6:68:FC:F9:9A:60:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b128b97-197d-4126-9887-73a31ea7479b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f60:e000::/40 Signature Algorithm: sha256WithRSAEncryption 4f:c4:76:4c:41:83:e3:b5:01:c8:63:0e:9f:3b:85:ed:23:80: bb:35:9d:02:af:54:ce:ff:de:52:9b:fb:cc:34:36:1b:b4:33: 0d:e3:70:72:11:c5:0a:93:b6:09:4d:70:02:3c:fd:f1:02:24: 81:bc:f4:a2:c9:49:16:2a:68:45:92:26:15:80:d2:cb:38:43: 04:ca:19:6b:27:bc:26:e5:53:51:61:df:30:89:46:81:04:91: 84:25:8c:31:10:21:df:d8:b7:02:99:36:31:8c:d0:14:73:9f: 29:a4:6d:f4:41:97:cb:da:16:3e:69:55:2e:83:3b:7c:f5:d4: 4a:14:5e:86:e2:6e:ef:39:65:21:3a:2e:ff:da:4d:8c:66:51: 87:78:c5:7d:9d:69:0d:7f:98:13:da:d1:55:d5:6f:51:4a:52: 3d:88:fe:01:41:be:22:d2:9d:c0:40:cc:04:4a:2e:b8:1e:18: 69:19:4c:9a:89:48:57:12:20:57:b8:5d:53:d8:de:aa:b3:fb: 00:4c:6c:86:01:85:94:4e:41:48:76:42:71:16:cd:96:82:86: 38:85:c5:9f:3d:d3:25:72:f0:e5:c9:c2:6f:74:62:f6:e1:13: 4b:28:a8:4b:36:77:18:a5:56:d3:16:80:0f:0b:bc:be:47:24: 2a:76:4b:f7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQE/thUk+JihMQTloDF7D/B81QYwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjMwMTUxMTA1WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTljODZkYWRmYjNiMmYyYWFkMmI5ZDZhYTgwMmU1YzMy NmM1Njc5YmQ5NmY0MWM0YzViYWUyNjEzMTY2ZWNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqCzC9NeP1ARSaEtQ/zDjvGGGEfGYVMSqnVstsr+9bunvw fvcBfaUEgndi8r0tyjNGwGyWarL50W9mUTGAaQACsV3oncBknD3yTvd9AtLLAWdD 4Q+m4sxMajKHUWpePfVHoe/bNdroB/JNcehbYiBB0R+z7rmCRCRnIymwqRp0EHgw tR6u2ssxaJ0Obn4EvRWCqr7+Npglkc/eoch+QYVj44JoMI4bd/L8aUGuYWBTIJbg lf4GsOR1Oa/5qQJg3DwyrQyl46Bv846kCKdbhqwUqTMWi4sWeSFONOcFIB++yQ6+ uCUf77tBIVl6TsX2Dkd3U9fuzDto3fWDnEWsnAfLAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUW+YslY0ClLGg+kQqCcZo/PmaYC4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiMTI4Yjk3LTE5N2QtNDEyNi05ODg3LTczYTMxZWE3NDc5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9g4DANBgkqhkiG9w0BAQsFAAOCAQEAT8R2TEGD47UByGMOnzuF7SOA uzWdAq9Uzv/eUpv7zDQ2G7QzDeNwchHFCpO2CU1wAjz98QIkgbz0oslJFipoRZIm FYDSyzhDBMoZaye8JuVTUWHfMIlGgQSRhCWMMRAh39i3Apk2MYzQFHOfKaRt9EGX y9oWPmlVLoM7fPXUShRehuJu7zllITou/9pNjGZRh3jFfZ1pDX+YE9rRVdVvUUpS PYj+AUG+ItKdwEDMBEouuB4YaRlMmolIVxIgV7hdU9jeqrP7AExshgGFlE5BSHZC cRbNloKGOIXFnz3TJXLw5cnCb3Ri9uETSyioSzZ3GKVW0xaADwu8vkckKnZL9w== -----END CERTIFICATE-----Generated at Thu Jul 3 02:01:48 2025 by rpki-client