$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa File: f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa (raw, json) Hash identifier: CnAhmoPeF42m+l2QyMldWWlY9tV1JJL3pFuPUpRLYzc= Subject key identifier: 38:94:B0:D0:51:E1:C6:17:8C:40:B9:41:86:F8:E1:AD:60:DB:3A:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EBDF1B25AC4657BEB8DCC9A4237EAB84CB8803C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa Signing time: Mon 18 Aug 2025 15:31:29 +0000 ROA not before: Mon 18 Aug 2025 15:31:29 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:81b0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:bd:f1:b2:5a:c4:65:7b:eb:8d:cc:9a:42:37:ea:b8:4c:b8:80:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Aug 18 15:31:29 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=aaaed5f8fa99e2f09e8029035019a3f44c15faf286fd80b0e16b836b6f160bee, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e2:24:5e:a2:44:8d:48:38:02:ff:19:e6:51: 1b:4c:81:65:6d:3a:0b:4f:57:c5:89:55:0f:6d:33: 24:f9:db:3a:d8:24:09:a9:79:7b:8a:14:50:4e:7a: 9c:2a:dc:ea:f5:a2:56:b3:ef:07:ed:c4:10:69:a0: 19:c7:54:38:7e:01:4d:73:98:65:6b:1a:ab:a9:be: 46:44:7c:45:c8:ef:44:7f:a9:c1:2d:e1:c6:07:00: a7:8a:52:72:4b:b1:fe:6c:25:91:a1:4f:3a:9c:26: fe:d3:af:ee:40:45:94:fa:91:87:64:10:62:b4:67: fe:67:61:6d:fd:24:36:03:94:56:fe:6c:2d:19:71: 25:1b:c8:f9:c5:c2:3e:d6:c2:d4:9c:7c:f3:54:9c: 3e:a4:1c:7d:0b:c1:82:50:cc:b0:76:66:20:d7:2d: 2e:cd:b1:e3:1d:f7:f2:b4:d6:2f:cb:46:c6:9d:a1: 8f:96:aa:43:32:1f:2f:65:13:4e:7e:5e:e7:02:0e: a7:91:fd:a0:e9:8d:73:74:c6:28:2b:27:56:21:00: 3f:b4:b0:e7:c1:d3:18:31:81:cc:a8:92:27:7d:b2: d0:cd:7c:27:63:aa:28:24:1c:8b:35:19:b4:38:d4: ae:eb:54:61:95:db:41:32:9b:14:76:bd:91:e3:35: 42:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:94:B0:D0:51:E1:C6:17:8C:40:B9:41:86:F8:E1:AD:60:DB:3A:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189e5be-37a6-4672-9a92-e8d2041c8b2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:81b0::/48 Signature Algorithm: sha256WithRSAEncryption a8:74:ec:d4:dd:6d:cb:55:ce:10:98:03:9b:d1:b2:d0:58:a9: ca:c5:ca:ea:45:a7:bd:d8:32:ec:e1:7e:31:92:d8:8d:a6:e9: a4:d9:6b:af:5f:1b:45:b3:88:a1:03:38:70:aa:fb:05:5b:db: 7e:5c:0d:99:87:47:bf:6d:16:51:89:5c:67:e8:8a:1f:ed:5d: 2d:55:7c:aa:2d:bf:b7:fb:8b:a4:17:eb:66:3f:2b:d8:1d:14: f7:4e:52:74:28:4c:da:ee:7b:c6:6f:ae:ef:5d:13:67:c4:8b: 79:1d:47:1e:2b:3a:c6:be:7e:9f:96:34:8b:f7:b7:73:23:15: 09:ed:9f:fa:8e:cf:ab:b2:b3:e9:89:85:c7:01:f0:44:16:ee: a8:e0:d9:ad:d0:9f:4f:b4:be:3c:e5:71:e3:f5:a0:7a:82:ba: 82:e1:b9:58:1b:bb:c5:92:68:69:f6:87:d1:a8:27:d5:23:1f: 55:c7:7f:b0:57:fc:60:f1:6b:a2:41:c2:49:12:2f:ac:6a:3a: df:3d:c3:20:77:a2:69:20:f1:32:e4:f4:18:11:ee:6f:0e:48: 22:5e:a2:c7:32:fa:79:dc:65:fa:de:ff:50:c0:92:a7:e7:99: 65:8e:f2:72:d5:f4:4a:c4:fb:88:c6:84:23:a1:43:6a:e4:c2: a4:b1:d8:51 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfr3xslrEZXvrjcyaQjfquEy4gDwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwODE4MTUzMTI5WhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWFlZDVmOGZhOTllMmYwOWU4MDI5MDM1MDE5YTNmNDRj MTVmYWYyODZmZDgwYjBlMTZiODM2YjZmMTYwYmVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQ4iReokSNSDgC/xnmURtMgWVtOgtPV8WJVQ9tMyT52zrY JAmpeXuKFFBOepwq3Or1olaz7wftxBBpoBnHVDh+AU1zmGVrGqupvkZEfEXI70R/ qcEt4cYHAKeKUnJLsf5sJZGhTzqcJv7Tr+5ARZT6kYdkEGK0Z/5nYW39JDYDlFb+ bC0ZcSUbyPnFwj7WwtScfPNUnD6kHH0LwYJQzLB2ZiDXLS7NseMd9/K01i/LRsad oY+WqkMyHy9lE05+XucCDqeR/aDpjXN0xigrJ1YhAD+0sOfB0xgxgcyokid9stDN fCdjqigkHIs1GbQ41K7rVGGV20EymxR2vZHjNUKjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOJSw0FHhxheMQLlBhvjhrWDbOoowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxODllNWJlLTM3YTYtNDY3Mi05YTkyLWU4ZDIwNDFjOGIyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//gbAwDQYJKoZIhvcNAQELBQADggEBAKh07NTdbctVzhCYA5vRstBY qcrFyupFp73YMuzhfjGS2I2m6aTZa69fG0WziKEDOHCq+wVb235cDZmHR79tFlGJ XGfoih/tXS1VfKotv7f7i6QX62Y/K9gdFPdOUnQoTNrue8Zvru9dE2fEi3kdRx4r Osa+fp+WNIv3t3MjFQntn/qOz6uys+mJhccB8EQW7qjg2a3Qn0+0vjzlceP1oHqC uoLhuVgbu8WSaGn2h9GoJ9UjH1XHf7BX/GDxa6JBwkkSL6xqOt89wyB3omkg8TLk 9BgR7m8OSCJeoscy+nncZfre/1DAkqfnmWWO8nLV9ErE+4jGhCOhQ2rkwqSx2FE= -----END CERTIFICATE-----Generated at Sat Aug 23 06:53:46 2025 by rpki-client