$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f5b9b5-7986-48f5-b8ca-65770c13d249.roa File: 51f5b9b5-7986-48f5-b8ca-65770c13d249.roa (raw, json) Hash identifier: 2sz1V31IbTBp1VwfCcSeXSZpagvsqyRm6CDfXeTGajY= Subject key identifier: 86:37:58:DB:B2:24:2D:49:3D:86:84:F8:D5:8B:78:3B:44:C7:AE:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5787A8EC9A153946A2FF44FE60F9F6BACDA8D5BC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f5b9b5-7986-48f5-b8ca-65770c13d249.roa Signing time: Wed 13 Aug 2025 00:22:08 +0000 ROA not before: Wed 13 Aug 2025 00:22:08 +0000 ROA not after: Wed 17 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f68:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:87:a8:ec:9a:15:39:46:a2:ff:44:fe:60:f9:f6:ba:cd:a8:d5:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 13 00:22:08 2025 GMT Not After : Sep 17 23:59:59 2025 GMT Subject: serialNumber=f44e4ec7df36a167310a345bf1e9a3bac87b51cd2b955b9567b2281053d89b99, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a4:74:97:a9:d9:53:22:ce:02:16:59:25:2e: 6f:3a:fa:ff:a2:c4:68:4b:89:51:1e:53:fe:ce:5a: 64:64:b9:3d:21:dc:3e:e9:37:91:86:4f:6f:e7:70: 13:84:d0:e2:f7:65:6b:a3:05:de:db:ff:8c:fc:3c: 6c:8e:fb:f5:75:fe:2a:ed:29:d1:92:c4:7b:ed:8a: 7a:4c:95:60:ba:87:ea:4b:92:7b:16:b1:d5:c9:f9: 0c:bd:e9:0d:ed:1f:db:ac:28:03:7f:42:37:b4:2e: 4f:ea:e1:65:2d:00:af:de:4a:d2:cc:2b:58:0e:5f: bf:79:56:cd:38:25:02:6d:2b:d7:42:02:51:10:fb: 04:61:fc:df:3b:5b:29:3b:96:43:61:52:fe:8a:80: 86:7b:c9:70:35:23:93:20:59:a6:a9:e0:54:7d:6c: 5c:d3:7f:6d:c4:25:53:2e:ba:5c:7e:6a:75:6d:73: 19:74:47:62:96:50:e6:22:f1:88:07:2e:21:05:ea: 95:fb:5c:35:99:f9:57:89:0c:b6:89:d8:22:cb:3b: cb:22:66:62:58:7d:c9:5f:89:3c:93:d1:48:e3:6e: d2:f2:e0:3a:7c:08:e4:90:d4:18:a1:e1:8b:33:64: 18:d1:9c:d1:58:c6:76:cb:81:74:4b:7f:dd:a1:cc: 84:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:37:58:DB:B2:24:2D:49:3D:86:84:F8:D5:8B:78:3B:44:C7:AE:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/51f5b9b5-7986-48f5-b8ca-65770c13d249.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f68:6000::/40 Signature Algorithm: sha256WithRSAEncryption 02:fe:5d:af:66:3f:a4:61:6c:aa:62:5f:f3:76:fc:c5:61:5a: 95:62:be:7e:f7:e5:89:c6:c4:a2:60:d7:3d:b6:17:0e:de:7d: e3:29:99:ef:86:b5:f1:39:ce:03:f9:91:3c:d3:ed:a7:35:d8: 31:12:69:04:d3:33:62:ec:13:06:95:20:35:00:3f:8f:fa:e5: 1a:0e:62:25:4f:43:cb:50:ab:ba:ea:db:3b:e9:95:5d:3f:bc: 97:75:82:6f:8e:0c:2b:59:bb:73:3a:f6:7f:fc:8e:f9:6c:46: 73:a7:94:48:48:3e:38:b3:89:9f:b4:5d:f5:07:b3:1d:57:3c: f2:70:46:b3:3d:b9:bb:54:57:0b:84:7b:03:74:5c:a2:6c:ed: b3:7a:d2:33:9d:47:98:00:f0:ad:de:5a:37:cb:fb:ff:29:ce: b7:b4:d5:18:c0:3a:1d:ce:99:14:4b:a2:48:52:73:52:9a:b0: 99:ed:24:d1:a7:a1:2b:bb:72:1a:9c:82:4e:7b:2b:86:64:ef: 76:7a:88:fb:ec:ba:40:54:3c:b9:54:c6:97:24:8b:e7:ec:49: 35:93:34:d0:98:7d:33:c9:4f:d9:60:37:3c:6e:66:a8:9e:70: b5:af:ba:de:37:bd:1e:a1:d4:a6:a0:ac:07:90:39:ab:7b:0b: 16:51:ac:f8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUV4eo7JoVOUai/0T+YPn2us2o1bwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODEzMDAyMjA4WhcNMjUwOTE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDRlNGVjN2RmMzZhMTY3MzEwYTM0NWJmMWU5YTNiYWM4 N2I1MWNkMmI5NTViOTU2N2IyMjgxMDUzZDg5Yjk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCepHSXqdlTIs4CFlklLm86+v+ixGhLiVEeU/7OWmRkuT0h 3D7pN5GGT2/ncBOE0OL3ZWujBd7b/4z8PGyO+/V1/irtKdGSxHvtinpMlWC6h+pL knsWsdXJ+Qy96Q3tH9usKAN/Qje0Lk/q4WUtAK/eStLMK1gOX795Vs04JQJtK9dC AlEQ+wRh/N87Wyk7lkNhUv6KgIZ7yXA1I5MgWaap4FR9bFzTf23EJVMuulx+anVt cxl0R2KWUOYi8YgHLiEF6pX7XDWZ+VeJDLaJ2CLLO8siZmJYfclfiTyT0UjjbtLy 4Dp8COSQ1Bih4YszZBjRnNFYxnbLgXRLf92hzIRJAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhjdY27IkLUk9hoT41Yt4O0THrk4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUxZjViOWI1LTc5ODYtNDhmNS1iOGNhLTY1NzcwYzEzZDI0OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB9oYDANBgkqhkiG9w0BAQsFAAOCAQEAAv5dr2Y/pGFsqmJf83b8xWFa lWK+fvflicbEomDXPbYXDt594ymZ74a18TnOA/mRPNPtpzXYMRJpBNMzYuwTBpUg NQA/j/rlGg5iJU9Dy1CruurbO+mVXT+8l3WCb44MK1m7czr2f/yO+WxGc6eUSEg+ OLOJn7Rd9QezHVc88nBGsz25u1RXC4R7A3Rcomzts3rSM51HmADwrd5aN8v7/ynO t7TVGMA6Hc6ZFEuiSFJzUpqwme0k0aehK7tyGpyCTnsrhmTvdnqI++y6QFQ8uVTG lySL5+xJNZM00Jh9M8lP2WA3PG5mqJ5wta+63je9HqHUpqCsB5A5q3sLFlGs+A== -----END CERTIFICATE-----Generated at Sat Aug 23 09:06:43 2025 by rpki-client