$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98a4f4f7-0f38-4f2e-8855-ef7c11d857cb.roa File: 98a4f4f7-0f38-4f2e-8855-ef7c11d857cb.roa (raw, json) Hash identifier: YcT0Q+sgrTR1o0rtD1V0T58JTAgfQ7emj0CBuNufUXs= Subject key identifier: 25:FD:1C:01:2F:EE:D4:7D:7A:82:DA:F1:81:6F:92:2F:5A:16:54:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EDDE9499E9448A1659702389D3C36C7242726E7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98a4f4f7-0f38-4f2e-8855-ef7c11d857cb.roa Signing time: Tue 24 Jun 2025 00:20:18 +0000 ROA not before: Tue 24 Jun 2025 00:20:18 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff1::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:dd:e9:49:9e:94:48:a1:65:97:02:38:9d:3c:36:c7:24:27:26:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 24 00:20:18 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=e597998ca0bfb6dbbf78b6ac480f957550bb5ca96c3ee89cce7555be1d9f4d33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:0c:99:b9:8c:9e:d4:8e:94:24:f5:7a:17:c7: b5:0a:37:12:bb:da:6f:89:0f:4f:5a:20:52:d5:1b: 6b:62:74:92:80:a2:55:2f:0f:8f:03:92:05:4f:47: e1:1a:6c:0c:29:55:10:67:bc:59:66:ca:18:f7:be: 4c:c3:c3:e0:97:d3:22:ce:e5:06:6f:82:06:e7:4d: ea:5c:f4:f9:8f:20:96:9a:55:86:d1:17:c5:21:db: 34:6d:a4:db:05:3e:74:99:45:0b:95:9c:38:55:cc: 15:4a:37:cb:92:68:17:51:92:60:79:bf:9b:99:62: 28:d5:fc:de:33:3b:62:29:51:e5:4d:83:e3:c8:fc: d2:67:cd:62:bb:e3:d3:a3:ab:23:98:fb:55:ad:19: 89:fe:26:55:47:36:bb:80:1b:e0:d8:97:0b:02:3b: ae:84:d7:ab:de:6c:cd:7a:8e:5c:fc:7b:05:79:97: f2:0f:b3:89:34:05:80:ff:f0:16:ce:19:07:6c:b8: 51:10:b1:fb:b4:2e:e8:2e:df:55:c0:55:70:36:46: 5d:4a:e5:33:b8:e4:66:2d:c0:1d:d4:1a:30:c0:1e: c7:73:16:ea:06:5e:04:88:cd:f3:16:f2:c3:a9:b9: 0e:10:89:e0:aa:d4:09:34:7c:4d:5b:2c:91:3e:ee: ca:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:FD:1C:01:2F:EE:D4:7D:7A:82:DA:F1:81:6F:92:2F:5A:16:54:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98a4f4f7-0f38-4f2e-8855-ef7c11d857cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff1::/32 Signature Algorithm: sha256WithRSAEncryption 22:45:9f:2b:73:0d:75:16:a9:e9:76:94:77:82:de:04:1a:68: 06:c8:dc:91:d0:18:a3:de:04:72:90:40:0d:cd:d1:f2:51:a3: 5d:8c:6d:be:97:3b:db:4e:c3:1c:41:43:97:e2:c1:cd:40:29: d6:82:eb:a1:d3:56:bc:67:6d:97:73:86:91:1c:a2:27:02:d5: c4:85:ef:19:e4:c8:25:ae:cd:ac:33:b2:ac:fb:64:de:4b:13: 9a:14:ca:fe:ad:96:d1:20:1e:ca:14:7a:22:58:72:56:2f:bd: 56:27:80:82:3d:a2:1c:eb:12:95:7a:8d:14:c5:5c:07:09:51: 01:b3:11:e4:3a:9d:f2:c9:76:2d:64:ba:93:2b:fa:0c:4d:50: a0:fe:83:bc:6b:e0:59:25:4e:3e:b3:f2:ca:2b:21:1e:3b:33: d5:2a:06:bd:3e:75:40:24:f1:65:13:dd:8f:6d:d3:01:3d:d0: ea:d1:c3:9b:7e:4e:14:6a:a6:07:29:c9:b4:e3:68:f4:74:89: 53:af:dc:27:f6:f7:f4:05:2e:78:88:d6:77:f7:f2:80:2a:77: 35:25:8c:77:6c:d4:0a:55:b6:d1:0b:1f:2a:5a:29:69:bf:8b: 51:12:ef:34:2e:62:8a:ab:7c:cd:48:98:b7:eb:43:4e:c2:de: 5d:f3:c1:c4 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIULt3pSZ6USKFllwI4nTw2xyQnJucwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjI0MDAyMDE4WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTk3OTk4Y2EwYmZiNmRiYmY3OGI2YWM0ODBmOTU3NTUw YmI1Y2E5NmMzZWU4OWNjZTc1NTViZTFkOWY0ZDMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQDJm5jJ7UjpQk9XoXx7UKNxK72m+JD09aIFLVG2tidJKA olUvD48DkgVPR+EabAwpVRBnvFlmyhj3vkzDw+CX0yLO5QZvggbnTepc9PmPIJaa VYbRF8Uh2zRtpNsFPnSZRQuVnDhVzBVKN8uSaBdRkmB5v5uZYijV/N4zO2IpUeVN g+PI/NJnzWK749OjqyOY+1WtGYn+JlVHNruAG+DYlwsCO66E16vebM16jlz8ewV5 l/IPs4k0BYD/8BbOGQdsuFEQsfu0Lugu31XAVXA2Rl1K5TO45GYtwB3UGjDAHsdz FuoGXgSIzfMW8sOpuQ4QieCq1Ak0fE1bLJE+7sofAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUJf0cAS/u1H16gtrxgW+SL1oWVEYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YTRmNGY3LTBmMzgtNGYyZS04ODU1LWVmN2MxMWQ4NTdjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmAB/xMA0GCSqGSIb3DQEBCwUAA4IBAQAiRZ8rcw11FqnpdpR3gt4EGmgG yNyR0Bij3gRykEANzdHyUaNdjG2+lzvbTsMcQUOX4sHNQCnWguuh01a8Z22Xc4aR HKInAtXEhe8Z5Mglrs2sM7Ks+2TeSxOaFMr+rZbRIB7KFHoiWHJWL71WJ4CCPaIc 6xKVeo0UxVwHCVEBsxHkOp3yyXYtZLqTK/oMTVCg/oO8a+BZJU4+s/LKKyEeOzPV Kga9PnVAJPFlE92PbdMBPdDq0cObfk4UaqYHKcm042j0dIlTr9wn9vf0BS54iNZ3 9/KAKnc1JYx3bNQKVbbRCx8qWilpv4tREu80LmKKq3zNSJi360NOwt5d88HE -----END CERTIFICATE-----Generated at Wed Jul 2 02:22:44 2025 by rpki-client