$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa File: b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa (raw, json) Hash identifier: RnbsTut3ekzKWtjkOWhXZEf0ERfqTHwchQRLECnFlgo= Subject key identifier: F2:44:7A:3C:1F:3F:16:0A:7A:7C:95:B2:5B:74:58:57:B1:FA:68:37 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2E8BF8FFF025466D4908BA5A8F147818CDBF1327 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa Signing time: Wed 06 Aug 2025 00:40:17 +0000 ROA not before: Wed 06 Aug 2025 00:40:17 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0::/28 maxlen: 28 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:8b:f8:ff:f0:25:46:6d:49:08:ba:5a:8f:14:78:18:cd:bf:13:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 6 00:40:17 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=c71e4fe7ee803f9d53c4f552079dcd52eacea0212fc8ceb16b577f6230b1c676, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d9:75:4f:16:c0:ed:17:59:14:4b:6c:c7:20: dc:67:e4:15:a8:54:e1:78:c5:40:17:70:2d:28:cc: e8:3f:b1:03:34:f6:10:c1:22:f6:23:06:3d:94:54: 6a:c6:ca:1f:68:2c:bc:00:50:63:fe:a2:ea:bf:10: 31:ff:e9:2b:d8:2c:98:fe:b1:52:61:8d:07:c7:04: 9d:b2:02:40:b7:3f:cc:e8:ff:f1:4e:50:a7:80:b3: a3:a7:ad:dc:e1:20:6e:92:38:40:63:82:27:9f:3e: 9c:52:cc:ba:27:c9:8d:0c:01:68:b8:72:6c:0b:f0: 77:4c:13:a7:3f:80:4e:bc:28:79:f8:ef:97:84:ad: 38:75:27:fd:9c:1d:20:2c:6f:08:ee:00:a6:31:ee: 51:0e:04:38:37:c2:48:c7:49:25:45:04:9d:6f:43: 64:31:42:45:6a:a3:ef:d1:6f:83:ef:fd:2a:59:7d: 4d:db:44:a7:73:e2:74:6f:49:d2:09:79:e9:1e:b2: a3:39:37:3d:e3:1b:ec:9d:09:f7:ea:fe:ab:93:8f: e7:b5:1d:98:a4:ca:ea:dd:a2:a2:14:be:bd:a3:27: 76:08:90:92:a1:d0:53:15:e2:70:1a:77:a6:64:f9: a4:dc:e7:38:9a:87:72:03:95:49:66:e5:08:e3:0f: 58:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:44:7A:3C:1F:3F:16:0A:7A:7C:95:B2:5B:74:58:57:B1:FA:68:37 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b7bbafbf-e6d4-4487-9ebb-cbd72b3d6c73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0::/28 Signature Algorithm: sha256WithRSAEncryption 49:ad:b0:63:3f:30:af:a7:76:cd:39:91:fe:b9:de:8d:99:5e: 7e:30:16:c7:09:2f:c3:79:b4:c1:7b:54:77:40:d8:99:21:bd: dc:b5:91:a9:c8:c9:60:1f:6b:f1:68:81:ac:e1:0a:0a:a5:0a: 2f:c7:42:b0:2b:36:a3:51:d5:39:6a:1a:99:5e:b6:3c:8c:b9: 46:7a:9d:3f:dd:26:99:bc:3d:b3:d4:17:ab:fe:45:52:6a:41: fb:5c:12:bb:20:45:1d:71:43:5a:bd:e2:00:a4:14:95:db:0d: 52:fe:b7:89:c3:3a:99:a4:71:cd:c0:02:03:08:97:d1:b1:d8: df:72:f7:1b:d9:06:4e:7d:66:12:48:3a:b1:16:c5:a8:79:00: b4:d5:ba:d7:8f:56:69:bc:82:18:18:22:61:d7:24:d4:b1:b3: d7:bd:83:0c:d2:a7:18:63:47:fc:18:24:1d:23:35:b5:94:55: 65:e7:95:e2:05:5b:6b:08:ad:5d:39:ec:0c:3e:57:d6:ab:ed: c8:57:db:b4:27:b4:ae:3b:ce:d3:95:33:2a:b6:8c:fb:d9:3c: 57:23:ff:bf:ee:b3:40:36:31:2b:17:f8:59:4a:70:6b:1f:c8: 06:6d:79:aa:a3:5a:72:0e:61:1b:ee:ea:80:e3:86:87:a0:dd: 6f:c7:b3:aa -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIULov4//AlRm1JCLpajxR4GM2/EycwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA2MDA0MDE3WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzFlNGZlN2VlODAzZjlkNTNjNGY1NTIwNzlkY2Q1MmVh Y2VhMDIxMmZjOGNlYjE2YjU3N2Y2MjMwYjFjNjc2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP2XVPFsDtF1kUS2zHINxn5BWoVOF4xUAXcC0ozOg/sQM0 9hDBIvYjBj2UVGrGyh9oLLwAUGP+ouq/EDH/6SvYLJj+sVJhjQfHBJ2yAkC3P8zo //FOUKeAs6OnrdzhIG6SOEBjgiefPpxSzLonyY0MAWi4cmwL8HdME6c/gE68KHn4 75eErTh1J/2cHSAsbwjuAKYx7lEOBDg3wkjHSSVFBJ1vQ2QxQkVqo+/Rb4Pv/SpZ fU3bRKdz4nRvSdIJeekesqM5Nz3jG+ydCffq/quTj+e1HZikyurdoqIUvr2jJ3YI kJKh0FMV4nAad6Zk+aTc5ziah3IDlUlm5QjjD1gRAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQU8kR6PB8/Fgp6fJWyW3RYV7H6aDcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2I3YmJhZmJmLWU2ZDQtNDQ4Ny05ZWJiLWNiZDcyYjNkNmM3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQQmAPDwMA0GCSqGSIb3DQEBCwUAA4IBAQBJrbBjPzCvp3bNOZH+ud6NmV5+ MBbHCS/DebTBe1R3QNiZIb3ctZGpyMlgH2vxaIGs4QoKpQovx0KwKzajUdU5ahqZ XrY8jLlGep0/3SaZvD2z1Ber/kVSakH7XBK7IEUdcUNaveIApBSV2w1S/reJwzqZ pHHNwAIDCJfRsdjfcvcb2QZOfWYSSDqxFsWoeQC01brXj1ZpvIIYGCJh1yTUsbPX vYMM0qcYY0f8GCQdIzW1lFVl55XiBVtrCK1dOewMPlfWq+3IV9u0J7SuO87TlTMq toz72TxXI/+/7rNANjErF/hZSnBrH8gGbXmqo1pyDmEb7uqA44aHoN1vx7Oq -----END CERTIFICATE-----Generated at Wed Aug 6 11:08:18 2025 by rpki-client