$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa File: ceb67e80-419a-468c-9de9-477adbe51133.roa (raw, json) Hash identifier: Jl8oHMUAvjVOD7iBd3CjiCxxVn6ptT4nGH7gczggnCw= Subject key identifier: 58:0D:10:F7:24:9B:D1:85:53:08:64:7F:14:F8:B4:C8:EA:B4:6D:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58A8357A7902C2E44ED2109DF1D4D7E72EF4A708 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa Signing time: Mon 23 Jun 2025 15:12:20 +0000 ROA not before: Mon 23 Jun 2025 15:12:20 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffa:5000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a8:35:7a:79:02:c2:e4:4e:d2:10:9d:f1:d4:d7:e7:2e:f4:a7:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 23 15:12:20 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=bb284e77cb423a6268c6a175f84b1ad9a457fd21497770d9c1ae44b2deb238e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d9:78:9e:7c:66:03:79:3c:42:be:48:36:9c: f9:70:ea:91:b3:17:7f:0f:fe:82:97:84:9f:25:57: 1e:76:ca:55:0d:00:b7:b3:14:cf:7b:05:a2:47:9c: 27:79:9a:2f:4e:5c:2d:6c:f7:1e:72:b3:a9:3e:d9: 65:1b:59:32:6e:39:f8:26:b8:88:d7:20:96:54:0a: 45:7b:c0:81:18:2a:53:ef:30:25:47:2d:79:2e:b5: 69:f6:b3:16:e0:00:7d:d3:a1:cd:74:27:ea:67:37: 14:b3:3c:73:c9:cc:ff:ec:97:33:27:8a:b8:fc:78: 62:d5:e5:57:ca:c6:b6:e9:e7:24:97:9f:82:1d:e1: ba:86:cf:75:4c:6b:8e:7d:54:1e:19:6d:03:a8:2d: b3:62:6d:1e:c6:ad:0c:b4:a2:3c:dd:b9:81:89:b8: 54:46:8f:d0:a2:bf:e6:04:35:18:af:9f:77:a9:82: e3:8d:40:98:72:99:4e:36:69:87:af:bc:60:64:1c: b4:8e:be:5a:a3:10:1d:09:be:4e:da:e1:40:b0:d6: f3:57:8c:4d:cd:57:ec:47:8b:c0:26:a0:16:50:13: 7d:85:fe:84:31:40:34:c0:8c:45:7f:e5:b3:4f:59: 39:20:7a:f4:2e:5a:17:c5:45:fb:5a:27:1a:7d:9d: 6a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:0D:10:F7:24:9B:D1:85:53:08:64:7F:14:F8:B4:C8:EA:B4:6D:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ceb67e80-419a-468c-9de9-477adbe51133.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffa:5000::/40 Signature Algorithm: sha256WithRSAEncryption 57:33:13:6e:13:95:ee:e5:32:8d:16:91:bd:06:49:c8:d6:4a: 1d:2f:4e:34:ab:8b:f5:58:73:57:71:a7:b6:40:0c:2a:92:2d: b9:4f:dc:c0:43:5c:cb:fe:69:1d:85:b7:d2:be:78:7a:c2:1f: ff:70:eb:70:29:43:77:0b:b8:64:c1:61:67:11:b4:b8:36:c2: 82:35:97:98:46:38:a6:b5:6f:f6:db:a9:cc:77:bc:e8:73:e2: 6c:65:d3:0d:45:8e:47:6f:79:e6:34:7d:a0:36:32:e6:fe:fe: ae:70:de:60:97:48:36:75:ed:d5:3f:dd:46:58:41:e4:dd:88: 34:3f:17:c1:6a:90:9d:e2:fb:17:43:d8:d7:b9:97:43:8e:f2: 95:45:d3:c7:0e:81:ed:66:c4:05:53:ae:d0:62:3a:2e:04:b5: 5d:72:da:23:b2:85:33:93:47:98:4b:75:8b:9b:fe:60:d9:a0: c0:dc:87:27:09:71:75:90:5a:21:4a:28:81:29:a7:67:a8:ae: 55:64:21:ba:5e:f8:48:05:1b:e6:11:d9:d9:fc:b9:da:6e:44: 9e:87:6b:74:4b:54:83:97:e3:fd:f5:cd:8e:d3:b0:15:1a:3b: 1a:32:4b:a4:b2:9a:7c:9a:82:c8:2c:90:af:90:20:45:9c:b1: b3:ec:42:62 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWKg1enkCwuRO0hCd8dTX5y70pwgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjIzMTUxMjIwWhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYjI4NGU3N2NiNDIzYTYyNjhjNmExNzVmODRiMWFkOWE0 NTdmZDIxNDk3NzcwZDljMWFlNDRiMmRlYjIzOGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS2XiefGYDeTxCvkg2nPlw6pGzF38P/oKXhJ8lVx52ylUN ALezFM97BaJHnCd5mi9OXC1s9x5ys6k+2WUbWTJuOfgmuIjXIJZUCkV7wIEYKlPv MCVHLXkutWn2sxbgAH3Toc10J+pnNxSzPHPJzP/slzMnirj8eGLV5VfKxrbp5ySX n4Id4bqGz3VMa459VB4ZbQOoLbNibR7GrQy0ojzduYGJuFRGj9Civ+YENRivn3ep guONQJhymU42aYevvGBkHLSOvlqjEB0Jvk7a4UCw1vNXjE3NV+xHi8AmoBZQE32F /oQxQDTAjEV/5bNPWTkgevQuWhfFRftaJxp9nWoHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUWA0Q9ySb0YVTCGR/FPi0yOq0beUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlYjY3ZTgwLTQxOWEtNDY4Yy05ZGU5LTQ3N2FkYmU1MTEzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/6UDANBgkqhkiG9w0BAQsFAAOCAQEAVzMTbhOV7uUyjRaRvQZJyNZK HS9ONKuL9VhzV3GntkAMKpItuU/cwENcy/5pHYW30r54esIf/3DrcClDdwu4ZMFh ZxG0uDbCgjWXmEY4prVv9tupzHe86HPibGXTDUWOR2955jR9oDYy5v7+rnDeYJdI NnXt1T/dRlhB5N2IND8XwWqQneL7F0PY17mXQ47ylUXTxw6B7WbEBVOu0GI6LgS1 XXLaI7KFM5NHmEt1i5v+YNmgwNyHJwlxdZBaIUoogSmnZ6iuVWQhul74SAUb5hHZ 2fy52m5EnodrdEtUg5fj/fXNjtOwFRo7GjJLpLKafJqCyCyQr5AgRZyxs+xCYg== -----END CERTIFICATE-----Generated at Mon Jun 30 17:31:46 2025 by rpki-client