$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa File: 8979840e-82a9-441b-924a-93b9c7ea006b.roa (raw, json) Hash identifier: RQVG61H9FfF4+iT1DCNGKqR3P4TqrGl6C8a/RcipnpI= Subject key identifier: 7A:54:03:03:69:71:B9:F0:D1:86:D8:F3:FD:9D:6C:1F:72:34:F6:74 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 70F58234984CB038568F5B83A4532204B7E1727D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa Signing time: Tue 05 Aug 2025 18:20:59 +0000 ROA not before: Tue 05 Aug 2025 18:20:59 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:f5:82:34:98:4c:b0:38:56:8f:5b:83:a4:53:22:04:b7:e1:72:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:59 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=c1fcad76e7e57c536d4c307d4ae2784c7e94cb3c5ee4bf7cdba65c7d7622f3dd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:71:b2:72:6b:bf:d0:1f:8c:47:ed:55:67:41: 2a:be:4c:92:88:27:78:36:e5:19:33:83:6a:45:19: da:b8:81:ed:d9:6b:68:ed:a7:40:f4:38:91:af:f7: b1:d7:c9:45:ad:de:1a:84:0b:a0:15:ba:8f:50:14: 31:15:45:87:fe:43:f9:cf:07:8c:1a:fc:f1:a0:8b: 8c:25:48:13:d2:58:33:94:57:54:7e:14:ae:c7:a2: b5:ba:76:76:0e:25:19:2b:92:9c:c0:93:17:87:d0: 41:27:dd:fa:2c:e0:7f:cc:27:c5:94:f3:f3:4e:d0: 92:81:1a:ab:6f:fa:77:f7:b8:9e:9d:45:82:08:83: 49:ce:c6:00:4f:96:1a:49:ed:89:7d:ca:00:ab:64: 7a:2e:7d:01:7b:db:92:b5:79:74:4d:9b:81:a2:7e: 9b:d2:7b:f0:57:8c:1a:23:01:88:3b:2a:95:8c:56: c2:3d:02:cc:1a:f3:2f:1e:f6:32:4f:04:22:37:31: e0:45:14:16:b7:85:cb:14:f9:95:4f:44:c6:e2:01: 8d:0c:73:d9:b4:0e:4b:27:19:8f:b8:a1:2e:43:1f: 37:2b:ea:52:ad:32:78:ae:c6:ab:dd:22:c1:c7:41: 3a:57:8b:30:6f:39:d4:23:93:a8:e9:b4:a5:8e:71: 0f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:54:03:03:69:71:B9:F0:D1:86:D8:F3:FD:9D:6C:1F:72:34:F6:74 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8979840e-82a9-441b-924a-93b9c7ea006b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 97:d7:03:aa:ef:6d:f7:dd:54:be:f0:4e:d5:16:21:3b:6d:97: 04:74:82:98:4e:94:ea:ba:47:90:53:8f:57:8c:e0:7e:d1:ab: 4b:69:18:ff:3b:8c:7f:ee:dc:6e:ef:11:5d:48:7f:0a:0d:f3: 9a:77:89:19:09:2e:03:d9:56:ae:f1:2f:d1:75:81:19:1a:87: b9:9a:62:5e:1d:8a:c7:18:62:d5:5b:40:61:c0:f1:89:a7:ea: 53:11:01:8c:8f:db:87:8d:91:f2:83:4c:97:16:4f:82:c6:75: b1:0d:9d:6f:a1:78:4b:a3:c7:82:b0:fd:23:d9:5c:30:01:89: 99:8c:3d:0a:58:7b:00:a8:4e:af:fa:a2:6f:e2:8f:38:85:9b: 30:f5:06:d5:84:d1:09:34:24:41:fc:fc:3b:54:ed:34:e5:a5: ce:4b:5f:6a:4f:9f:fa:55:97:a9:cc:68:ac:a4:f2:ce:e6:40: 29:5b:a9:62:18:7b:27:7e:a2:5e:c8:3a:99:71:ea:88:14:ff: 94:c0:d3:3b:0e:53:59:69:7d:2d:c9:8f:9d:97:89:12:7b:c0: 64:c0:d6:c3:79:37:b5:08:e0:7f:b1:af:55:ff:2e:b3:49:2c: 63:7b:d2:05:ec:36:e8:2e:b6:f6:ac:2d:76:68:ef:d2:ed:31: ae:3d:0c:f2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcPWCNJhMsDhWj1uDpFMiBLfhcn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDU5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMWZjYWQ3NmU3ZTU3YzUzNmQ0YzMwN2Q0YWUyNzg0Yzdl OTRjYjNjNWVlNGJmN2NkYmE2NWM3ZDc2MjJmM2RkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDycbJya7/QH4xH7VVnQSq+TJKIJ3g25Rkzg2pFGdq4ge3Z a2jtp0D0OJGv97HXyUWt3hqEC6AVuo9QFDEVRYf+Q/nPB4wa/PGgi4wlSBPSWDOU V1R+FK7HorW6dnYOJRkrkpzAkxeH0EEn3fos4H/MJ8WU8/NO0JKBGqtv+nf3uJ6d RYIIg0nOxgBPlhpJ7Yl9ygCrZHoufQF725K1eXRNm4GifpvSe/BXjBojAYg7KpWM VsI9Aswa8y8e9jJPBCI3MeBFFBa3hcsU+ZVPRMbiAY0Mc9m0DksnGY+4oS5DHzcr 6lKtMniuxqvdIsHHQTpXizBvOdQjk6jptKWOcQ+lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUelQDA2lxufDRhtjz/Z1sH3I09nQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg5Nzk4NDBlLTgyYTktNDQxYi05MjRhLTkzYjljN2VhMDA2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBAJfXA6rvbffdVL7wTtUWITtt lwR0gphOlOq6R5BTj1eM4H7Rq0tpGP87jH/u3G7vEV1IfwoN85p3iRkJLgPZVq7x L9F1gRkah7maYl4discYYtVbQGHA8Ymn6lMRAYyP24eNkfKDTJcWT4LGdbENnW+h eEujx4Kw/SPZXDABiZmMPQpYewCoTq/6om/ijziFmzD1BtWE0Qk0JEH8/DtU7TTl pc5LX2pPn/pVl6nMaKyk8s7mQClbqWIYeyd+ol7IOplx6ogU/5TA0zsOU1lpfS3J j52XiRJ7wGTA1sN5N7UI4H+xr1X/LrNJLGN70gXsNugutvasLXZo79LtMa49DPI= -----END CERTIFICATE-----Generated at Thu Aug 7 02:04:44 2025 by rpki-client