$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa21079-0b9a-4fa2-aa2f-8706b125633e.roa File: daa21079-0b9a-4fa2-aa2f-8706b125633e.roa (raw, json) Hash identifier: CwVQQ/nIpcljexyoLqMr11h8L0366xgBVxna45HAnCg= Subject key identifier: 7B:0C:7E:65:1A:AA:7C:09:71:76:E8:A4:BF:79:11:7D:3C:CE:C5:7A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54D10129B8F5BC00373390D1D99B4FED53F891D7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa21079-0b9a-4fa2-aa2f-8706b125633e.roa Signing time: Tue 10 Jun 2025 17:01:54 +0000 ROA not before: Tue 10 Jun 2025 17:01:54 +0000 ROA not after: Tue 15 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:40e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:d1:01:29:b8:f5:bc:00:37:33:90:d1:d9:9b:4f:ed:53:f8:91:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 10 17:01:54 2025 GMT Not After : Jul 15 23:59:59 2025 GMT Subject: serialNumber=e97f6f839a00f3d73830be4ea44915b7f3ed63280f96bf320a2cb8a74bc7897d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:5c:40:b2:5d:a4:63:bb:06:d6:66:e6:01:3d: 0e:ef:d7:13:f7:88:49:65:9d:cd:d0:44:2b:5e:2f: 87:15:06:24:43:1e:56:d3:6b:b5:4d:95:e6:0f:b3: 60:51:0f:7f:d9:78:a9:1a:87:31:79:6a:e3:8c:ed: 2b:d8:3e:d5:f9:c2:03:49:bc:92:23:7e:87:5f:8f: 3e:2a:bc:12:88:db:f9:ab:f8:22:cf:c1:a4:92:0e: 27:68:d8:bd:82:10:d5:5b:90:e2:9e:69:01:ac:41: d4:72:e7:67:03:ad:4c:3d:9f:00:26:f3:0e:bc:fc: b4:f6:71:96:ba:0a:d6:3f:d5:6e:2c:98:88:be:10: f7:42:0f:3d:41:cb:d6:64:8b:ee:2c:0c:e0:ea:f5: 35:89:21:f8:d3:e9:1e:88:3c:a4:31:98:21:a2:bd: 58:68:76:e9:1d:5b:b6:41:b2:9c:a0:80:e1:7c:e7: 43:82:a1:16:be:61:38:51:47:b6:a0:e3:6e:2f:af: 61:04:dd:95:14:70:86:9b:df:33:73:c6:e3:20:1d: 2a:a6:ca:8e:e8:7e:dd:c5:18:b3:e4:a8:27:f6:37: 9f:d0:fe:0d:79:9d:fe:55:7f:8f:00:85:ef:07:f5: 4f:9a:b5:13:8e:4e:82:15:ec:b3:17:79:9d:37:f2: 4f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:0C:7E:65:1A:AA:7C:09:71:76:E8:A4:BF:79:11:7D:3C:CE:C5:7A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/daa21079-0b9a-4fa2-aa2f-8706b125633e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:40e0::/48 Signature Algorithm: sha256WithRSAEncryption c4:92:b2:7c:50:62:32:bc:67:ca:87:a0:11:50:79:78:64:a5: 2d:4c:73:c8:02:aa:4f:b5:72:c0:b6:a4:c5:b2:06:22:c6:b4: fe:33:51:92:9e:30:65:f0:9d:18:8b:cf:08:78:8c:dd:8b:1f: d9:ad:8e:59:a8:fe:e1:9e:e2:c2:e4:e1:ad:25:48:7f:26:3b: 67:26:1f:fd:d5:74:ec:d9:e7:10:b0:f6:23:a5:10:5b:1e:ea: 34:11:57:67:41:07:a0:78:dd:4b:36:09:3a:7d:ec:5b:d1:9c: 00:83:c0:6f:13:f0:67:45:ce:48:4d:50:ef:00:78:75:e7:c1: ce:ae:37:c8:69:61:00:07:df:89:a5:9d:ad:f5:5f:d1:3c:32: be:84:09:b7:6c:b8:6b:90:69:29:27:a0:e4:b4:e9:bd:4a:8f: 84:49:3a:00:41:d8:05:54:2f:07:db:1c:24:0e:05:c3:ac:ae: 5d:04:47:61:b1:1e:48:9a:fc:e4:cb:d4:e5:a0:4f:62:d2:81: f9:0c:1a:a9:21:c0:f3:2f:e5:d6:eb:9a:c9:16:ed:e0:67:65: 3e:fa:2e:e8:e7:6d:3d:a2:47:9d:a3:9d:ad:7b:70:d6:29:27: 7e:b0:a5:14:94:4c:55:7b:f3:2b:c2:39:59:08:0f:f3:5a:b6: 7e:51:2e:10 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVNEBKbj1vAA3M5DR2ZtP7VP4kdcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjEwMTcwMTU0WhcNMjUwNzE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTdmNmY4MzlhMDBmM2Q3MzgzMGJlNGVhNDQ5MTViN2Yz ZWQ2MzI4MGY5NmJmMzIwYTJjYjhhNzRiYzc4OTdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLXECyXaRjuwbWZuYBPQ7v1xP3iEllnc3QRCteL4cVBiRD HlbTa7VNleYPs2BRD3/ZeKkahzF5auOM7SvYPtX5wgNJvJIjfodfjz4qvBKI2/mr +CLPwaSSDido2L2CENVbkOKeaQGsQdRy52cDrUw9nwAm8w68/LT2cZa6CtY/1W4s mIi+EPdCDz1By9Zki+4sDODq9TWJIfjT6R6IPKQxmCGivVhodukdW7ZBspyggOF8 50OCoRa+YThRR7ag424vr2EE3ZUUcIab3zNzxuMgHSqmyo7oft3FGLPkqCf2N5/Q /g15nf5Vf48Ahe8H9U+atROOToIV7LMXeZ038k8hAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUewx+ZRqqfAlxduikv3kRfTzOxXowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhYTIxMDc5LTBiOWEtNGZhMi1hYTJmLTg3MDZiMTI1NjMzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//QOAwDQYJKoZIhvcNAQELBQADggEBAMSSsnxQYjK8Z8qHoBFQeXhk pS1Mc8gCqk+1csC2pMWyBiLGtP4zUZKeMGXwnRiLzwh4jN2LH9mtjlmo/uGe4sLk 4a0lSH8mO2cmH/3VdOzZ5xCw9iOlEFse6jQRV2dBB6B43Us2CTp97FvRnACDwG8T 8GdFzkhNUO8AeHXnwc6uN8hpYQAH34mlna31X9E8Mr6ECbdsuGuQaSknoOS06b1K j4RJOgBB2AVULwfbHCQOBcOsrl0ER2GxHkia/OTL1OWgT2LSgfkMGqkhwPMv5dbr mskW7eBnZT76LujnbT2iR52jna17cNYpJ36wpRSUTFV78yvCOVkID/Natn5RLhA= -----END CERTIFICATE-----Generated at Mon Jun 30 15:33:56 2025 by rpki-client