$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa File: a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa (raw, json) Hash identifier: V/WZjCBJ/fRvtfzICCfJy2+4rf3AzyJrg2M4khxkwPQ= Subject key identifier: F8:99:EE:33:AA:E5:D2:75:E8:6D:F3:41:0E:CB:DF:6C:4D:43:7F:1C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7C39E38BF03BDB6514107BA236423E6E59DBC247 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa Signing time: Mon 28 Jul 2025 16:00:59 +0000 ROA not before: Mon 28 Jul 2025 16:00:59 +0000 ROA not after: Mon 01 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:39:e3:8b:f0:3b:db:65:14:10:7b:a2:36:42:3e:6e:59:db:c2:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 28 16:00:59 2025 GMT Not After : Sep 1 23:59:59 2025 GMT Subject: serialNumber=6d033f3d1d05e18731c2047fcbf93d2f4ebb10987c60b02829df93d7af06e3f7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:44:b8:44:12:58:6c:ed:cd:eb:1f:5a:41:e3: 17:a5:00:a1:1a:2b:85:9e:ac:6d:9f:8f:d9:eb:a4: af:60:d6:06:5c:21:77:14:fb:bb:a0:ed:b8:8d:3f: ba:4e:cd:88:ce:cb:7f:72:f0:62:36:55:ce:b1:28: 97:17:a5:45:f3:6b:cb:98:7a:8d:34:18:cf:e4:27: 5f:68:fd:95:a8:ab:c0:bb:52:46:d7:6a:0c:95:50: db:4a:89:58:4c:0a:6d:60:47:42:b5:fd:3d:a0:7e: 41:35:93:ba:22:34:fe:d8:31:63:99:11:9e:6a:f3: fb:a0:8f:9a:4c:df:29:4a:4c:b4:41:80:6b:43:0d: 97:c8:49:13:4b:f9:09:67:47:98:8d:c0:b2:5a:25: 2a:bd:ba:18:9d:6f:d5:e2:d4:40:5f:57:73:9c:bb: 63:46:88:3f:6c:3a:81:07:6e:2d:c8:41:10:7a:0b: 81:d6:c1:80:9d:e6:04:c5:da:af:68:de:33:04:ef: b3:97:48:40:24:1b:bf:04:d7:f2:06:e4:d7:54:50: 04:f0:45:63:99:69:39:f2:5d:1d:5f:20:f1:3f:24: 74:5f:3f:40:ef:af:c4:7c:4b:c9:ea:94:b5:ad:08: a2:6e:04:59:69:ef:a3:30:12:df:bb:f3:af:f8:2c: 22:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:99:EE:33:AA:E5:D2:75:E8:6D:F3:41:0E:CB:DF:6C:4D:43:7F:1C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a87721b1-51b4-405f-a72a-cabeb3cd84b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/40 Signature Algorithm: sha256WithRSAEncryption 8a:f9:70:ef:c1:97:80:ee:49:f1:b2:12:68:b6:90:62:47:43: 83:e2:06:c4:69:58:7c:b3:0a:e3:77:57:74:74:0f:35:ee:46: f0:58:55:80:3a:27:cc:92:e2:5d:a6:c5:70:d9:18:c5:17:09: 95:d0:c9:87:88:87:85:fc:ea:f5:7a:31:e9:34:9c:86:f6:08: 88:44:88:01:b7:c3:6b:cd:93:0e:b3:1b:9c:7b:40:00:3c:04: 5f:8a:30:11:bd:65:46:5a:21:f9:09:f3:0f:7f:9e:27:65:53: d7:4e:cf:6c:ea:b5:01:09:f4:58:e5:e4:6b:b2:17:09:dc:5a: d0:4a:33:37:fb:e2:ee:04:79:3c:25:bc:e7:c5:aa:c3:6e:ae: 13:db:27:b2:5f:4f:f5:ed:10:14:19:36:e0:7a:7f:1e:89:7c: 28:12:64:33:7f:57:e7:03:e5:af:98:ca:2d:24:15:57:ad:43: 01:06:e7:e1:5b:7f:1a:91:9c:0c:f8:95:f4:a2:e9:02:8c:b2: e0:f9:b8:fe:85:ef:e9:22:eb:ac:07:70:2c:c2:e7:3e:70:79: 88:bb:a8:31:9a:1d:4a:d7:bd:89:52:bb:93:9f:a9:5b:a4:f3: 58:df:8e:d4:1a:dd:f4:57:3e:91:ca:67:30:db:27:e0:04:bf: e0:4f:0e:8d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfDnji/A722UUEHuiNkI+blnbwkcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzI4MTYwMDU5WhcNMjUwOTAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDAzM2YzZDFkMDVlMTg3MzFjMjA0N2ZjYmY5M2QyZjRl YmIxMDk4N2M2MGIwMjgyOWRmOTNkN2FmMDZlM2Y3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHRLhEElhs7c3rH1pB4xelAKEaK4WerG2fj9nrpK9g1gZc IXcU+7ug7biNP7pOzYjOy39y8GI2Vc6xKJcXpUXza8uYeo00GM/kJ19o/ZWoq8C7 UkbXagyVUNtKiVhMCm1gR0K1/T2gfkE1k7oiNP7YMWOZEZ5q8/ugj5pM3ylKTLRB gGtDDZfISRNL+QlnR5iNwLJaJSq9uhidb9Xi1EBfV3Ocu2NGiD9sOoEHbi3IQRB6 C4HWwYCd5gTF2q9o3jME77OXSEAkG78E1/IG5NdUUATwRWOZaTnyXR1fIPE/JHRf P0Dvr8R8S8nqlLWtCKJuBFlp76MwEt+786/4LCJDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+JnuM6rl0nXobfNBDsvfbE1DfxwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E4NzcyMWIxLTUxYjQtNDA1Zi1hNzJhLWNhYmViM2NkODRiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxijANBgkqhkiG9w0BAQsFAAOCAQEAivlw78GXgO5J8bISaLaQYkdD g+IGxGlYfLMK43dXdHQPNe5G8FhVgDonzJLiXabFcNkYxRcJldDJh4iHhfzq9Xox 6TSchvYIiESIAbfDa82TDrMbnHtAADwEX4owEb1lRloh+QnzD3+eJ2VT107PbOq1 AQn0WOXka7IXCdxa0EozN/vi7gR5PCW858Wqw26uE9snsl9P9e0QFBk24Hp/Hol8 KBJkM39X5wPlr5jKLSQVV61DAQbn4Vt/GpGcDPiV9KLpAoyy4Pm4/oXv6SLrrAdw LMLnPnB5iLuoMZodSte9iVK7k5+pW6TzWN+O1Brd9Fc+kcpnMNsn4AS/4E8OjQ== -----END CERTIFICATE-----Generated at Wed Aug 6 14:10:34 2025 by rpki-client