$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa File: b711b513-e0f0-4a59-a188-036dda4ade5a.roa (raw, json) Hash identifier: ZdWkxX1N+U7tHbYWdsotHC0NczK8ECwvqViiPf33vTw= Subject key identifier: 33:CC:3E:A7:4B:6C:9F:97:59:23:25:5A:81:A2:33:4F:F0:F2:89:73 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A99D3CDAD788644CA153443AEED724DD31D8A4B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa Signing time: Tue 05 Aug 2025 18:30:59 +0000 ROA not before: Tue 05 Aug 2025 18:30:59 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ef00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:99:d3:cd:ad:78:86:44:ca:15:34:43:ae:ed:72:4d:d3:1d:8a:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:59 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5055b3e68153c4cf937df6bda0dad156fa0290fba3fc7e553f11d1d39a2603fc, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:1b:dd:c7:1a:86:ce:e4:52:51:b9:49:ed:0c: b1:5d:b4:d1:55:7d:91:25:38:f1:b1:d0:27:14:d8: 98:e6:6a:dd:91:ec:8a:05:e8:02:af:5f:46:50:59: 7b:21:fc:4d:c3:46:1d:05:1d:21:e7:57:48:6d:35: c8:a7:a7:2e:e2:75:d3:a6:ec:1b:3c:ab:6c:d5:aa: 3c:41:e1:ec:a0:c4:31:ed:97:b6:41:c6:e1:dc:16: ab:29:ca:67:1f:6d:9c:86:f2:f4:3e:74:a3:ad:0b: a1:76:54:19:bc:55:7d:58:9e:d8:6a:9e:55:8e:38: 3b:51:e9:c0:95:99:34:7b:2a:bb:5a:90:3f:7f:aa: a3:3c:bf:f1:b8:78:d1:e3:01:8d:8c:af:47:ce:27: 35:0f:76:5d:59:89:5d:e0:a3:a5:a2:59:d8:3f:7f: ea:b5:9c:b3:c4:73:b1:5c:7c:a2:c6:41:35:e3:12: 80:bb:92:0d:b8:e7:d7:b1:91:7f:33:46:bd:0b:9b: 58:2c:04:05:c8:2c:1a:ca:04:6d:ec:1c:c1:bb:4c: 1b:6f:23:92:f7:65:56:25:86:62:9b:8e:4f:96:22: 74:23:ee:37:2e:5c:00:58:ef:90:c8:06:d7:79:1d: a3:cb:86:9e:ee:bd:e5:38:37:fa:7e:59:3c:b3:49: 0d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CC:3E:A7:4B:6C:9F:97:59:23:25:5A:81:A2:33:4F:F0:F2:89:73 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b711b513-e0f0-4a59-a188-036dda4ade5a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ef00::/40 Signature Algorithm: sha256WithRSAEncryption 12:a2:e3:09:3e:ef:29:ea:f2:1c:c4:40:06:5d:0d:13:57:f8: 37:7e:59:41:5e:42:e8:c2:1c:b6:c7:7a:10:cf:9b:05:d3:6a: a1:c9:cf:9d:13:21:a9:3b:61:62:00:27:00:3e:85:8e:33:d2: 24:09:da:54:8f:f4:67:b0:e4:37:65:cc:4f:b4:23:6a:1d:71: 80:ee:99:5f:12:ef:46:0b:cd:68:96:5f:ae:c9:06:18:44:73: 58:44:eb:5e:31:15:1d:ac:0c:cd:95:98:2d:f7:66:3b:b0:cf: 7b:4e:20:a7:4d:5b:24:e9:1d:c6:44:fc:3b:90:dc:7e:05:d8: 20:63:6b:f5:92:37:ad:bd:cf:7b:2a:9d:4b:2e:1e:ff:d7:98: 72:71:1b:81:9e:f1:c7:b5:d5:bb:23:97:ab:ec:f1:2e:c7:01: 88:16:d7:ad:6f:36:27:bc:95:b0:50:0d:f3:44:fc:af:9d:43: 99:65:b7:5a:80:aa:68:e2:78:4b:92:9b:8f:1e:54:a7:83:ba: 05:aa:87:1f:d4:85:b1:1b:8b:fe:99:9e:84:23:12:6c:fd:d3: 48:1d:49:50:d9:87:58:05:f0:08:14:27:60:45:a9:2f:b3:d9: 02:dd:8e:ab:4b:66:1d:bf:b2:f6:53:a9:ab:fd:79:cc:76:de: 67:b6:ac:58 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCpnTza14hkTKFTRDru1yTdMdikswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDU5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MDU1YjNlNjgxNTNjNGNmOTM3ZGY2YmRhMGRhZDE1NmZh MDI5MGZiYTNmYzdlNTUzZjExZDFkMzlhMjYwM2ZjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNG93HGobO5FJRuUntDLFdtNFVfZElOPGx0CcU2Jjmat2R 7IoF6AKvX0ZQWXsh/E3DRh0FHSHnV0htNcinpy7iddOm7Bs8q2zVqjxB4eygxDHt l7ZBxuHcFqspymcfbZyG8vQ+dKOtC6F2VBm8VX1YnthqnlWOODtR6cCVmTR7Krta kD9/qqM8v/G4eNHjAY2Mr0fOJzUPdl1ZiV3go6WiWdg/f+q1nLPEc7FcfKLGQTXj EoC7kg2459exkX8zRr0Lm1gsBAXILBrKBG3sHMG7TBtvI5L3ZVYlhmKbjk+WInQj 7jcuXABY75DIBtd5HaPLhp7uveU4N/p+WTyzSQ0fAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUM8w+p0tsn5dZIyVagaIzT/DyiXMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3MTFiNTEzLWUwZjAtNGE1OS1hMTg4LTAzNmRkYTRhZGU1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77zANBgkqhkiG9w0BAQsFAAOCAQEAEqLjCT7vKeryHMRABl0NE1f4 N35ZQV5C6MIctsd6EM+bBdNqocnPnRMhqTthYgAnAD6FjjPSJAnaVI/0Z7DkN2XM T7Qjah1xgO6ZXxLvRgvNaJZfrskGGERzWETrXjEVHawMzZWYLfdmO7DPe04gp01b JOkdxkT8O5DcfgXYIGNr9ZI3rb3PeyqdSy4e/9eYcnEbgZ7xx7XVuyOXq+zxLscB iBbXrW82J7yVsFAN80T8r51DmWW3WoCqaOJ4S5Kbjx5Up4O6BaqHH9SFsRuL/pme hCMSbP3TSB1JUNmHWAXwCBQnYEWpL7PZAt2Oq0tmHb+y9lOpq/15zHbeZ7asWA== -----END CERTIFICATE-----Generated at Wed Aug 6 11:20:42 2025 by rpki-client