$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72a7c231-dc49-4e1e-8a38-37649f06c626.roa File: 72a7c231-dc49-4e1e-8a38-37649f06c626.roa (raw, json) Hash identifier: b3DOcOdz/h9mOqkagcCtE6IaKz9wSBFeeHJpZy3EENI= Subject key identifier: 17:63:61:56:DF:8B:87:B5:AC:A0:7D:CA:72:37:04:C0:56:33:83:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5117F7BBA089FCCB73DBDBA25A0EEF5905D491BA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72a7c231-dc49-4e1e-8a38-37649f06c626.roa Signing time: Fri 01 Aug 2025 15:50:26 +0000 ROA not before: Fri 01 Aug 2025 15:50:26 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:7480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:17:f7:bb:a0:89:fc:cb:73:db:db:a2:5a:0e:ef:59:05:d4:91:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 1 15:50:26 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=17ce6b56042af3cd55f3e9505bcf9d342a4566ed78777da8a3a52af97edcaff8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:7d:1d:a0:04:ee:b1:1d:2f:d0:cf:55:6a:e9: 39:d4:41:89:10:e8:77:af:2d:1a:36:82:c4:42:63: 7c:70:98:26:cb:44:56:15:9d:a0:7b:18:e8:b1:a0: f8:4f:bf:6b:16:c3:3b:88:57:31:de:f8:19:ca:e9: 79:6a:66:44:82:ec:01:46:62:ad:81:9e:55:0a:2c: bc:63:8e:ac:df:02:3b:c2:22:99:eb:1b:48:b6:04: e4:a1:fe:95:dc:54:1a:80:0f:ea:a4:cb:63:7a:dc: 51:c7:1c:b5:31:77:04:7a:cd:83:6e:6a:cc:0d:91: c2:4e:67:c6:67:11:85:26:f4:76:34:8e:4d:83:45: 96:ab:8e:95:30:c8:1b:b9:42:5b:f3:c6:4f:9b:28: aa:5c:51:79:68:85:6c:bd:2f:7c:a8:2e:b2:b7:4e: b1:18:d3:87:74:3f:de:ba:08:bb:48:4b:9e:b0:3f: 4f:a4:db:43:9c:38:0e:e4:98:6a:0e:69:da:f7:74: 80:db:b5:b7:29:6b:30:66:7f:d3:4f:9a:17:7d:98: 5a:14:d1:69:28:37:2d:47:9f:e7:fa:6f:58:d1:ba: 64:38:4d:b8:1b:71:a8:1b:e6:f5:4a:2c:0e:a1:40: c5:a7:aa:e4:b8:1c:42:87:b1:10:14:bd:a6:a4:bc: ea:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:63:61:56:DF:8B:87:B5:AC:A0:7D:CA:72:37:04:C0:56:33:83:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72a7c231-dc49-4e1e-8a38-37649f06c626.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:7480::/48 Signature Algorithm: sha256WithRSAEncryption ba:61:b7:3f:49:cd:73:83:38:c7:a3:df:40:6c:15:a5:e2:d4: aa:e6:e4:fa:88:46:2d:4a:10:d6:39:6c:68:2a:c9:11:41:b6: 55:c7:ba:f0:65:f6:6a:4d:31:d2:b6:ae:b8:75:e5:90:68:56: d7:9c:86:87:e0:ee:1e:21:c6:3c:c1:64:94:db:2e:78:38:5c: 91:7d:b5:67:65:3f:2b:c8:f6:41:b1:60:65:90:14:1f:d2:75: 89:64:7e:6d:5d:ca:50:5a:a5:b5:3d:3b:d2:e6:17:c8:da:ef: 78:60:b3:7e:e4:f2:bc:9e:bd:a0:bc:56:a8:a6:6e:29:11:91: 71:65:a2:e4:83:d0:24:5b:cf:c1:fe:41:be:b1:05:5e:c9:bc: 4a:3d:f9:a2:ba:d8:5f:8f:cb:4f:dd:de:da:fb:32:a5:05:86: 43:0f:4d:1c:ae:35:98:a7:82:b9:c4:ae:0b:70:2f:c8:45:6f: d2:8e:b1:33:92:eb:0e:24:d1:d4:11:fb:0c:3c:fe:a7:f5:51: fb:b9:46:74:0c:7f:47:95:f1:ef:9d:a7:c8:5c:e5:5d:95:93: 20:85:64:a0:ef:e4:8e:84:d0:d1:28:61:5f:91:e9:f4:d2:2f: 22:37:5d:7c:38:42:27:a9:c9:d7:4e:de:73:c8:be:c8:15:78: a4:49:f0:6b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUURf3u6CJ/Mtz29uiWg7vWQXUkbowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODAxMTU1MDI2WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2NlNmI1NjA0MmFmM2NkNTVmM2U5NTA1YmNmOWQzNDJh NDU2NmVkNzg3NzdkYThhM2E1MmFmOTdlZGNhZmY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDfR2gBO6xHS/Qz1Vq6TnUQYkQ6HevLRo2gsRCY3xwmCbL RFYVnaB7GOixoPhPv2sWwzuIVzHe+BnK6XlqZkSC7AFGYq2BnlUKLLxjjqzfAjvC IpnrG0i2BOSh/pXcVBqAD+qky2N63FHHHLUxdwR6zYNuaswNkcJOZ8ZnEYUm9HY0 jk2DRZarjpUwyBu5Qlvzxk+bKKpcUXlohWy9L3yoLrK3TrEY04d0P966CLtIS56w P0+k20OcOA7kmGoOadr3dIDbtbcpazBmf9NPmhd9mFoU0WkoNy1Hn+f6b1jRumQ4 Tbgbcagb5vVKLA6hQMWnquS4HEKHsRAUvaakvOp/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUF2NhVt+Lh7WsoH3KcjcEwFYzg7YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyYTdjMjMxLWRjNDktNGUxZS04YTM4LTM3NjQ5ZjA2YzYyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84dIAwDQYJKoZIhvcNAQELBQADggEBALphtz9JzXODOMej30BsFaXi 1Krm5PqIRi1KENY5bGgqyRFBtlXHuvBl9mpNMdK2rrh15ZBoVtechofg7h4hxjzB ZJTbLng4XJF9tWdlPyvI9kGxYGWQFB/SdYlkfm1dylBapbU9O9LmF8ja73hgs37k 8ryevaC8VqimbikRkXFlouSD0CRbz8H+Qb6xBV7JvEo9+aK62F+Py0/d3tr7MqUF hkMPTRyuNZingrnErgtwL8hFb9KOsTOS6w4k0dQR+ww8/qf1Ufu5RnQMf0eV8e+d p8hc5V2VkyCFZKDv5I6E0NEoYV+R6fTSLyI3XXw4QiepyddO3nPIvsgVeKRJ8Gs= -----END CERTIFICATE-----Generated at Sat Aug 23 08:31:08 2025 by rpki-client