$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa File: e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa (raw, json) Hash identifier: rD903RNn0yty9sZS3N+4RHNFV3PhmgfU+Rx7vV4AvVk= Subject key identifier: A2:6D:57:1A:41:F7:36:0D:D9:E3:8D:AA:D8:C4:38:A0:80:7B:23:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 42C51DC460CDA596F2C592BFAAF5318975FE2164 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa Signing time: Tue 17 Jun 2025 00:21:12 +0000 ROA not before: Tue 17 Jun 2025 00:21:12 +0000 ROA not after: Tue 22 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fef:a400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:c5:1d:c4:60:cd:a5:96:f2:c5:92:bf:aa:f5:31:89:75:fe:21:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Jun 17 00:21:12 2025 GMT Not After : Jul 22 23:59:59 2025 GMT Subject: serialNumber=312201482fcd8626a4b033282e524aa6aa43caeba31f634ea01dff0736e9b013, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:0b:7a:8c:29:9a:b9:a5:08:42:c7:9c:f7:50: 6a:21:66:74:a8:2f:c2:a5:54:04:79:92:55:5b:1f: 10:23:b8:f3:f3:72:81:50:bb:8f:a0:c8:36:07:79: c2:d5:c8:1c:c7:32:f1:96:14:20:2a:59:13:82:e9: 04:bc:57:62:06:6b:20:c2:ae:a4:c8:e5:08:da:d3: 1e:e0:6f:54:b6:5b:89:7b:ea:1b:93:9d:d9:6a:4d: b4:a0:38:79:84:e9:2f:4d:4b:bf:27:e3:aa:04:89: bc:1c:c5:ff:f5:ea:05:60:2c:df:a3:74:33:b9:f7: da:e8:f5:c7:8f:17:41:d7:e5:bf:bc:8e:06:1b:41: 95:04:dc:50:b0:78:b6:e6:c3:20:62:22:7c:44:65: af:22:f4:a0:70:fe:e1:54:35:9d:d9:93:55:a1:02: a1:82:97:8d:5f:7b:42:88:49:70:9f:17:9e:83:cc: ac:c0:bb:fd:d9:bf:63:01:2a:f1:3a:ec:30:85:bc: a2:ff:35:8f:ce:ae:0c:2e:b1:15:01:f0:d8:72:07: d3:3d:62:48:86:ba:f7:9d:d2:ca:b7:70:40:81:5a: d2:87:9a:f3:ab:e5:dc:88:b7:22:30:2c:4d:2d:44: a7:90:95:9f:06:e1:71:96:bd:24:75:5e:b7:00:65: 85:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:6D:57:1A:41:F7:36:0D:D9:E3:8D:AA:D8:C4:38:A0:80:7B:23:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e26cb5df-5e86-4ccb-a96a-cb08ad75a489.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:a400::/40 Signature Algorithm: sha256WithRSAEncryption 35:8b:0e:1d:98:12:11:72:9c:05:64:e9:67:62:a9:ae:89:02: 5c:ee:26:e3:c8:bd:53:e5:ce:96:47:95:71:46:e6:f6:a8:6b: 4b:63:85:b3:dd:ce:4f:1d:7e:45:5c:36:4b:3c:fc:d7:23:e1: a8:2f:7c:0c:ee:18:73:55:33:aa:02:88:6d:58:ba:49:6e:b7: 43:d8:a3:2a:d7:99:ae:89:15:f1:f4:8b:0b:ff:24:c3:3d:6a: 4b:21:11:33:0a:52:48:c7:56:89:b5:88:9d:67:cd:be:f5:90: c5:bf:cd:21:d7:13:29:7c:cc:ef:d8:28:42:43:3a:ae:fb:54: 83:a7:08:92:49:d3:e1:5f:cb:5b:b9:4d:6c:46:af:e3:9c:5e: 03:1d:dd:b3:2c:e1:10:db:eb:1a:b3:b5:7b:84:e8:0e:fa:fa: 04:27:cd:cb:f9:fe:52:3d:b4:74:01:ea:68:28:bc:ca:0e:3a: 40:c8:6d:58:08:0a:00:7a:80:f7:a3:61:d0:72:5b:1f:b2:e6: 33:81:79:cf:17:b8:27:79:bd:7c:1f:f7:bd:d6:1a:5a:34:25: 20:80:99:b9:31:34:01:d5:b1:40:d9:bb:0f:a6:69:8f:47:44: 0e:49:b5:12:c7:db:8d:be:b3:1a:ee:e5:1d:27:14:ed:55:b6: 85:8e:2d:61 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUQsUdxGDNpZbyxZK/qvUxiXX+IWQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNjE3MDAyMTEyWhcNMjUwNzIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTIyMDE0ODJmY2Q4NjI2YTRiMDMzMjgyZTUyNGFhNmFh NDNjYWViYTMxZjYzNGVhMDFkZmYwNzM2ZTliMDEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYC3qMKZq5pQhCx5z3UGohZnSoL8KlVAR5klVbHxAjuPPz coFQu4+gyDYHecLVyBzHMvGWFCAqWROC6QS8V2IGayDCrqTI5Qja0x7gb1S2W4l7 6huTndlqTbSgOHmE6S9NS78n46oEibwcxf/16gVgLN+jdDO599ro9cePF0HX5b+8 jgYbQZUE3FCweLbmwyBiInxEZa8i9KBw/uFUNZ3Zk1WhAqGCl41fe0KISXCfF56D zKzAu/3Zv2MBKvE67DCFvKL/NY/OrgwusRUB8NhyB9M9YkiGuved0sq3cECBWtKH mvOr5dyItyIwLE0tRKeQlZ8G4XGWvSR1XrcAZYV9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUom1XGkH3Ng3Z442q2MQ4oIB7I1IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyNmNiNWRmLTVlODYtNGNjYi1hOTZhLWNiMDhhZDc1YTQ4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vpDANBgkqhkiG9w0BAQsFAAOCAQEANYsOHZgSEXKcBWTpZ2KprokC XO4m48i9U+XOlkeVcUbm9qhrS2OFs93OTx1+RVw2Szz81yPhqC98DO4Yc1UzqgKI bVi6SW63Q9ijKteZrokV8fSLC/8kwz1qSyERMwpSSMdWibWInWfNvvWQxb/NIdcT KXzM79goQkM6rvtUg6cIkknT4V/LW7lNbEav45xeAx3dsyzhENvrGrO1e4ToDvr6 BCfNy/n+Uj20dAHqaCi8yg46QMhtWAgKAHqA96Nh0HJbH7LmM4F5zxe4J3m9fB/3 vdYaWjQlIICZuTE0AdWxQNm7D6Zpj0dEDkm1Esfbjb6zGu7lHScU7VW2hY4tYQ== -----END CERTIFICATE-----Generated at Wed Jul 2 15:11:14 2025 by rpki-client