$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa File: 37e5da86-98ab-4d9c-889e-6ab6e277d866.roa (raw, json) Hash identifier: C4k/nyqzfsa7rTlOYajZB3mm6rnwKwVatHcrh9Hio2M= Subject key identifier: 13:11:8B:F1:7C:F2:C8:05:A5:CB:97:81:E5:51:86:98:6F:02:73:BD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 608C50B1F683E38AC27CB1386EDBC3656CA2EC84 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa Signing time: Tue 05 Aug 2025 18:20:47 +0000 ROA not before: Tue 05 Aug 2025 18:20:47 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:8c:50:b1:f6:83:e3:8a:c2:7c:b1:38:6e:db:c3:65:6c:a2:ec:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:47 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=cc009109901041c685a16e1052120a5cb599ec8d6105229d1ba1940637201be3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8d:32:86:ec:23:9a:89:e8:c7:fc:30:b3:1b: 57:9f:b5:9a:86:2e:90:bf:69:87:a0:0f:73:d2:3d: 3f:6c:6d:4c:00:a5:b8:2e:63:de:99:28:61:e8:66: a9:77:5d:77:04:ce:c1:48:00:21:b4:c1:4d:02:7b: 62:e4:52:6b:ea:f2:a2:85:38:4c:de:f3:e0:d8:3b: 65:6f:b6:4e:cf:74:83:3e:bf:0d:9d:e9:7a:11:b4: 6a:9d:99:85:18:2f:1d:a6:08:85:56:d4:0a:99:3d: eb:6d:4e:0b:03:2e:87:d1:e4:ab:d5:2a:43:86:6e: a0:13:3e:28:17:59:ff:12:f6:5e:04:1b:bf:e1:53: ec:f7:aa:93:13:96:5e:8e:e6:95:80:40:81:08:8a: 29:24:07:7d:f4:71:55:75:d7:f6:e1:1d:b5:a8:cd: 6b:30:17:44:73:f8:c1:ff:d4:ca:f7:3b:d6:b5:a3: b7:9a:45:27:a4:0e:db:6f:bc:c4:04:46:ad:d1:a8: 60:a7:93:10:c0:fd:84:74:d9:1e:44:98:2a:cf:a5: ce:c8:42:fa:a1:1c:84:0e:91:0b:51:e2:41:2e:33: 56:b2:c4:8b:1c:4e:ea:10:c1:dc:37:c0:2b:ab:ac: 95:a2:8b:3d:99:6e:5e:de:fe:d8:1b:ff:e8:49:76: 3e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:11:8B:F1:7C:F2:C8:05:A5:CB:97:81:E5:51:86:98:6F:02:73:BD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37e5da86-98ab-4d9c-889e-6ab6e277d866.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1::/48 Signature Algorithm: sha256WithRSAEncryption 80:5c:7e:44:ac:fb:73:1e:ce:34:9f:1e:20:38:2e:0f:c3:ce: c6:6d:04:e0:f9:04:64:17:1c:87:b7:1c:1a:b1:97:64:98:c1: bc:bf:d6:2d:42:5c:33:39:f3:f9:57:ed:82:1f:d1:e1:65:25: 4a:32:1b:33:3c:3b:64:0d:bb:8d:d3:4e:f3:47:79:ca:0a:46: d9:e9:16:96:8c:03:b8:ec:5f:0d:18:5d:02:a5:ab:f9:5e:45: 4d:75:eb:7a:6c:22:e3:22:65:02:1f:23:6e:d4:4f:28:ef:a1: 7b:3a:f1:09:52:53:ca:4e:92:50:62:82:a4:6e:2c:84:26:42: b4:1a:8a:4c:9b:7f:c7:68:7d:2a:01:32:fe:b1:5e:f3:ea:cc: 4a:5c:94:ba:4a:0a:9a:16:ff:2a:f0:5c:20:5d:9e:bf:7d:2c: 2e:90:82:9f:7c:d4:29:20:04:d7:bf:19:39:d8:79:8c:6a:c4: 91:66:3f:9e:8f:4b:b4:e1:d5:f6:69:f8:60:33:02:a6:89:c9: e2:6f:46:28:72:ca:0d:44:4c:23:af:83:c8:21:07:94:1b:91: d4:6a:50:cf:6d:ab:fe:5e:db:a4:84:df:80:a5:69:77:82:fb: dd:8f:79:88:82:20:50:1c:91:69:3e:79:f9:2f:02:a2:fc:49: 7a:00:5b:9e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYIxQsfaD44rCfLE4btvDZWyi7IQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDQ3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzAwOTEwOTkwMTA0MWM2ODVhMTZlMTA1MjEyMGE1Y2I1 OTllYzhkNjEwNTIyOWQxYmExOTQwNjM3MjAxYmUzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJjTKG7COaiejH/DCzG1eftZqGLpC/aYegD3PSPT9sbUwA pbguY96ZKGHoZql3XXcEzsFIACG0wU0Ce2LkUmvq8qKFOEze8+DYO2Vvtk7PdIM+ vw2d6XoRtGqdmYUYLx2mCIVW1AqZPettTgsDLofR5KvVKkOGbqATPigXWf8S9l4E G7/hU+z3qpMTll6O5pWAQIEIiikkB330cVV11/bhHbWozWswF0Rz+MH/1Mr3O9a1 o7eaRSekDttvvMQERq3RqGCnkxDA/YR02R5EmCrPpc7IQvqhHIQOkQtR4kEuM1ay xIscTuoQwdw3wCurrJWiiz2Zbl7e/tgb/+hJdj69AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUExGL8XzyyAWly5eB5VGGmG8Cc70wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3ZTVkYTg2LTk4YWItNGQ5Yy04ODllLTZhYjZlMjc3ZDg2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAEwDQYJKoZIhvcNAQELBQADggEBAIBcfkSs+3MezjSfHiA4Lg/D zsZtBOD5BGQXHIe3HBqxl2SYwby/1i1CXDM58/lX7YIf0eFlJUoyGzM8O2QNu43T TvNHecoKRtnpFpaMA7jsXw0YXQKlq/leRU1163psIuMiZQIfI27UTyjvoXs68QlS U8pOklBigqRuLIQmQrQaikybf8dofSoBMv6xXvPqzEpclLpKCpoW/yrwXCBdnr99 LC6Qgp981CkgBNe/GTnYeYxqxJFmP56PS7Th1fZp+GAzAqaJyeJvRihyyg1ETCOv g8ghB5QbkdRqUM9tq/5e26SE34ClaXeC+92PeYiCIFAckWk+efkvAqL8SXoAW54= -----END CERTIFICATE-----Generated at Wed Aug 6 05:57:26 2025 by rpki-client