$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa File: 66edf542-bd09-43ab-8640-a67a7cbe5a17.roa (raw, json) Hash identifier: ou0g24PMffA4LCwylaTCVBDyeIPRLSfy8dhK00411s4= Subject key identifier: 60:16:BB:EF:3B:50:A1:F8:08:D1:9A:C7:52:CD:1E:F7:60:A4:29:14 Certificate issuer: /CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Certificate serial: 4E269B4EDD802769F808372F7CFEA9DCCF48B0D3 Authority key identifier: 7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa Signing time: Wed 20 Aug 2025 00:20:19 +0000 ROA not before: Wed 20 Aug 2025 00:20:19 +0000 ROA not after: Wed 24 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:b140::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/b4e4fec5-3510-4017-90ef-8391412ecd6c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:26:9b:4e:dd:80:27:69:f8:08:37:2f:7c:fe:a9:dc:cf:48:b0:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d Validity Not Before: Aug 20 00:20:19 2025 GMT Not After : Sep 24 23:59:59 2025 GMT Subject: serialNumber=afb8b18351f3d5eb257527616e0ba49191a42134c3af88a28ab8f98cf1209fc6, CN=b0dbbb6a-5472-4b68-ae4d-401518603039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c5:11:e4:62:43:83:16:fa:dd:cb:98:b6:31: c5:cd:d3:96:f4:d8:9b:6e:c0:3a:9b:fd:ef:00:16: c9:69:bb:2f:91:18:2f:a4:7f:a0:e7:80:8d:c2:a1: 7c:f8:a8:72:95:a6:e7:9c:e8:9f:22:be:a8:0d:fe: 1b:e0:4a:c1:36:30:f1:2d:41:62:b8:29:e8:0b:d4: a8:dd:5f:f2:dd:50:56:9c:19:8a:7d:1c:3e:44:7a: 49:f0:8c:e1:5f:1c:6e:e3:c1:18:49:c9:ad:af:42: f6:15:d3:12:36:81:61:6e:36:b0:29:7d:2a:4c:e8: 9e:9f:31:e4:dd:85:d8:db:c7:ca:2f:9b:67:ff:df: 13:87:52:32:2b:91:45:de:79:fd:41:86:88:07:cf: e2:cb:26:c1:ff:a3:b7:80:30:e3:ab:60:3e:fc:7e: 9f:a0:98:4f:2d:20:75:89:ab:91:96:17:32:91:b0: 37:08:3a:95:8d:be:70:12:08:1c:d3:4d:b0:53:d5: d6:4e:62:4d:5c:e4:3d:de:af:82:ed:c5:08:02:a1: 3d:73:47:ff:70:67:cb:a6:a2:57:2c:53:50:a7:ea: 60:9c:db:40:9d:65:f6:f9:a0:20:88:ff:e8:d2:25: a5:02:94:c5:b0:19:37:d6:3d:07:78:66:d7:8a:c4: 18:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:16:BB:EF:3B:50:A1:F8:08:D1:9A:C7:52:CD:1E:F7:60:A4:29:14 X509v3 Authority Key Identifier: keyid:7D:84:47:C4:97:8A:0B:4C:73:9B:EB:F6:92:E2:4C:75:DD:3F:BC:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/b4e4fec5-3510-4017-90ef-8391412ecd6c/0ee4583d84d9b4f0824cb80ba8fc1240b4794b515071e9751d.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/66edf542-bd09-43ab-8640-a67a7cbe5a17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/dfd7f6d3-e6e9-4987-9ae7-d052c5353898/2bTwgky4C6j8EkC0eUtRUHHpdR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:b140::/32 Signature Algorithm: sha256WithRSAEncryption 26:be:95:6c:70:05:9a:6c:cf:3e:56:58:cc:a5:2f:3b:55:bd: 18:ab:25:1e:47:a2:58:d3:af:d3:90:15:7a:12:38:99:fd:46: fb:ce:03:b4:4c:0e:88:41:4f:7c:67:f4:4f:99:14:42:27:9b: b5:fb:01:1c:ec:77:43:99:14:f3:34:a6:e0:91:55:a0:db:53: b2:dc:8d:50:3a:dc:79:b7:f4:43:94:cb:90:57:e8:5c:55:ae: e0:32:d0:f9:90:c3:15:ca:0d:08:c8:a9:a8:eb:0e:dd:be:f1: ef:12:32:9c:66:52:0b:c6:02:ce:d0:bc:08:7f:34:e2:9b:71: 2a:71:2a:36:d8:e7:d6:57:bc:89:cb:ff:77:dc:2c:01:10:1d: 3c:b4:15:d1:2f:a8:58:71:e5:ab:28:9f:f8:c6:6a:69:f1:af: 5e:12:92:23:cf:15:2f:fe:a1:c1:3a:d6:d0:a2:85:70:4e:c6: 56:b6:6f:1f:8e:7c:5f:e2:d4:31:b6:ea:5f:51:1e:9c:0e:9d: 6d:d3:b5:2f:7d:bb:ce:ee:c9:f8:ec:a9:53:b8:59:b3:c1:3f: 19:38:87:19:9c:d3:ba:9d:d4:46:89:31:d8:73:2d:2e:a5:f7: 5c:d2:4c:c8:8c:dc:e8:19:22:31:b9:69:99:b2:4e:40:82:22: 58:7c:99:20 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUTiabTt2AJ2n4CDcvfP6p3M9IsNMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyMGVlNDU4M2Q4NGQ5YjRmMDgyNGNiODBiYThmYzEyNDBi NDc5NGI1MTUwNzFlOTc1MWQwHhcNMjUwODIwMDAyMDE5WhcNMjUwOTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmI4YjE4MzUxZjNkNWViMjU3NTI3NjE2ZTBiYTQ5MTkx YTQyMTM0YzNhZjg4YTI4YWI4Zjk4Y2YxMjA5ZmM2MS0wKwYDVQQDEyRiMGRiYmI2 YS01NDcyLTRiNjgtYWU0ZC00MDE1MTg2MDMwMzkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNxRHkYkODFvrdy5i2McXN05b02JtuwDqb/e8AFslpuy+R GC+kf6DngI3CoXz4qHKVpuec6J8ivqgN/hvgSsE2MPEtQWK4KegL1KjdX/LdUFac GYp9HD5EeknwjOFfHG7jwRhJya2vQvYV0xI2gWFuNrApfSpM6J6fMeTdhdjbx8ov m2f/3xOHUjIrkUXeef1BhogHz+LLJsH/o7eAMOOrYD78fp+gmE8tIHWJq5GWFzKR sDcIOpWNvnASCBzTTbBT1dZOYk1c5D3er4LtxQgCoT1zR/9wZ8umolcsU1Cn6mCc 20CdZfb5oCCI/+jSJaUClMWwGTfWPQd4ZteKxBiPAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUYBa77ztQofgI0ZrHUs0e92CkKRQwHwYDVR0jBBgwFoAUfYRHxJeKC0xz m+v2kuJMdd0/vK4wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS9iNGU0ZmVjNS0z NTEwLTQwMTctOTBlZi04MzkxNDEyZWNkNmMvMGVlNDU4M2Q4NGQ5YjRmMDgyNGNi ODBiYThmYzEyNDBiNDc5NGI1MTUwNzFlOTc1MWQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZGZkN2Y2ZDMtZTZlOS00OTg3LTlhZTctZDA1 MmM1MzUzODk4LzY2ZWRmNTQyLWJkMDktNDNhYi04NjQwLWE2N2E3Y2JlNWExNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2RmZDdmNmQzLWU2ZTktNDk4Ny05YWU3 LWQwNTJjNTM1Mzg5OC8yYlR3Z2t5NEM2ajhFa0MwZVV0UlVISHBkUjAuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBbFAMA0GCSqGSIb3DQEBCwUAA4IBAQAmvpVscAWabM8+VljMpS87Vb0Y qyUeR6JY06/TkBV6EjiZ/Ub7zgO0TA6IQU98Z/RPmRRCJ5u1+wEc7HdDmRTzNKbg kVWg21Oy3I1QOtx5t/RDlMuQV+hcVa7gMtD5kMMVyg0IyKmo6w7dvvHvEjKcZlIL xgLO0LwIfzTim3EqcSo22OfWV7yJy/933CwBEB08tBXRL6hYceWrKJ/4xmpp8a9e EpIjzxUv/qHBOtbQooVwTsZWtm8fjnxf4tQxtupfUR6cDp1t07UvfbvO7sn47KlT uFmzwT8ZOIcZnNO6ndRGiTHYcy0upfdc0kzIjNzoGSIxuWmZsk5AgiJYfJkg -----END CERTIFICATE-----Generated at Sat Aug 23 06:47:02 2025 by rpki-client