$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa File: 4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa (raw, json) Hash identifier: IZf6PP5Lq0n2gkNaJwZuhbgcPAl6WbSQou4JYV+lD2U= Subject key identifier: C5:0C:DD:92:8E:16:92:20:66:3D:CA:D4:65:61:8D:E9:93:B8:F9:09 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6536371105B354528BC1D8B0C701A298511878 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa Signing time: Fri 01 Aug 2025 17:10:18 +0000 ROA not before: Fri 01 Aug 2025 17:10:18 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:36:37:11:05:b3:54:52:8b:c1:d8:b0:c7:01:a2:98:51:18:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 1 17:10:18 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=009c4b657b271802b678a4b76447ea3828683c16b7d5bde7cd12257b24e95727, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:06:7b:25:97:11:63:44:1d:eb:c4:11:20:f0: 67:9c:88:9a:2e:60:ab:1c:e2:01:7f:77:b9:d2:b0: 7e:29:4c:1f:06:d0:db:ee:20:1c:be:9c:d1:a8:fa: 7f:63:1d:09:1d:2e:8e:e3:16:47:fd:b7:88:b2:1c: 05:63:b5:3e:d4:28:18:62:fd:ae:de:e7:ce:91:6f: db:7f:30:6e:6a:e2:40:97:af:75:a6:65:e2:1d:43: bd:9b:d5:4f:88:07:73:0e:e2:fe:0c:9c:d3:f9:9e: 5f:4c:e8:7b:65:a8:2a:57:dd:ce:88:1f:72:bc:12: 76:80:cf:6b:43:00:c0:d8:9e:58:92:c8:a1:2e:09: f8:d3:90:88:93:a6:75:ae:84:8a:97:93:39:58:9c: 28:56:e5:1e:41:44:77:16:2e:8e:66:99:5b:97:cc: 52:a0:38:85:45:31:78:68:4b:ef:9d:62:bd:f6:c0: 6d:36:78:d9:c7:b0:dc:05:0d:cf:17:ad:4d:2c:0a: 90:b2:eb:e9:f7:0b:3c:2f:1e:02:8e:6a:69:96:4d: 18:b5:a2:ab:c5:61:84:27:6d:95:18:9e:6f:df:f6: 59:46:22:0d:0b:f9:cf:48:48:3c:57:ba:2e:63:cf: ab:8f:4c:05:06:8c:24:32:d5:01:01:3a:d6:a1:91: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:0C:DD:92:8E:16:92:20:66:3D:CA:D4:65:61:8D:E9:93:B8:F9:09 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4b04bc90-cc5c-48b6-be4f-8c1e0fa64617.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/40 Signature Algorithm: sha256WithRSAEncryption 74:85:95:a5:df:9f:75:5e:dd:00:27:18:c3:f2:1f:df:10:e7: ad:82:7c:d5:0b:2f:63:69:6b:88:15:19:60:85:20:8d:96:85: 43:bd:5b:7c:ab:01:e5:a4:b6:5a:f2:ce:e3:02:51:34:d3:42: 56:3d:8d:c8:76:40:41:90:f8:af:f0:9a:82:35:aa:4a:ad:d6: 58:39:f2:af:94:d0:1b:f3:b4:ca:e2:dd:21:eb:7f:83:4e:de: 25:75:24:34:d8:8d:0d:cd:76:91:41:8b:55:e3:41:37:24:46: ce:fc:95:1c:8e:fc:98:9c:6f:f0:6b:8f:12:ae:12:cc:a2:b3: 13:38:60:6a:9f:2c:98:ca:94:4a:e2:bf:7f:ac:59:4a:a6:66: e9:e6:77:a2:11:dc:bf:a3:98:92:c7:b4:6f:33:f8:05:e7:5f: ea:0d:58:15:02:f7:5e:a4:84:83:74:bf:5d:70:46:10:69:ba: c2:fa:8b:7b:a6:f1:59:14:b6:33:1f:28:7e:46:cc:7c:ab:19: 62:34:69:00:bb:83:70:7c:3a:88:74:f2:aa:ad:b6:4b:47:52: e5:a3:e7:95:1d:06:f1:04:bd:96:06:0b:e6:01:0b:07:83:01: 53:d6:df:2d:54:25:44:e5:cf:7e:5f:f9:f2:00:af:9f:6e:27: c9:44:98:08 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITZTY3EQWzVFKLwdiwxwGimFEYeDANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTA4MDExNzEwMThaFw0yNTA5MDUyMzU5NTla MHoxSTBHBgNVBAUTQDAwOWM0YjY1N2IyNzE4MDJiNjc4YTRiNzY0NDdlYTM4Mjg2 ODNjMTZiN2Q1YmRlN2NkMTIyNTdiMjRlOTU3MjcxLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOkGeyWXEWNEHevEESDwZ5yImi5gqxziAX93udKwfilMHwbQ 2+4gHL6c0aj6f2MdCR0ujuMWR/23iLIcBWO1PtQoGGL9rt7nzpFv238wbmriQJev daZl4h1DvZvVT4gHcw7i/gyc0/meX0zoe2WoKlfdzogfcrwSdoDPa0MAwNieWJLI oS4J+NOQiJOmda6EipeTOVicKFblHkFEdxYujmaZW5fMUqA4hUUxeGhL751ivfbA bTZ42cew3AUNzxetTSwKkLLr6fcLPC8eAo5qaZZNGLWiq8VhhCdtlRieb9/2WUYi DQv5z0hIPFe6LmPPq49MBQaMJDLVAQE61qGRA1sCAwEAAaOCArMwggKvMB0GA1Ud DgQWBBTFDN2SjhaSIGY9ytRlYY3pk7j5CTAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvNGIwNGJjOTAtY2M1Yy00OGI2LWJlNGYtOGMxZTBmYTY0NjE3LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACYA8PGLMA0GCSqGSIb3DQEBCwUAA4IBAQB0hZWl3591Xt0AJxjD8h/fEOet gnzVCy9jaWuIFRlghSCNloVDvVt8qwHlpLZa8s7jAlE000JWPY3IdkBBkPiv8JqC NapKrdZYOfKvlNAb87TK4t0h63+DTt4ldSQ02I0NzXaRQYtV40E3JEbO/JUcjvyY nG/wa48SrhLMorMTOGBqnyyYypRK4r9/rFlKpmbp5neiEdy/o5iSx7RvM/gF51/q DVgVAvdepISDdL9dcEYQabrC+ot7pvFZFLYzHyh+Rsx8qxliNGkAu4NwfDqIdPKq rbZLR1Llo+eVHQbxBL2WBgvmAQsHgwFT1t8tVCVE5c9+X/nyAK+fbifJRJgI -----END CERTIFICATE-----Generated at Wed Aug 6 06:04:09 2025 by rpki-client