$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa File: dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa (raw, json) Hash identifier: F70pZ/5kVxUHHRz5Lo2RoEGJDaF7U7G9g3PuTMbvslw= Subject key identifier: 58:48:39:B0:3B:9A:08:F0:66:F1:B5:3D:BD:B8:A8:0D:AE:FA:40:B9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 61055692C0D636ABA092E76F3C491BD70BAF0B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa Signing time: Tue 05 Aug 2025 18:30:26 +0000 ROA not before: Tue 05 Aug 2025 18:30:26 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:05:56:92:c0:d6:36:ab:a0:92:e7:6f:3c:49:1b:d7:0b:af:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:26 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=b3039b5b78399c59aec32c0fcb3c20709b3006071e0f964645d7042bceea341f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:76:eb:56:37:78:64:ac:16:1d:29:34:fd:34: 17:69:3d:3e:a4:ac:8f:cc:36:d4:f2:e6:00:52:83: 2c:b2:d2:2e:16:33:36:4e:18:b3:5d:b7:0f:bb:32: eb:11:45:b6:03:3e:7e:81:43:b9:20:a2:3f:ca:48: 00:4f:87:11:0c:7f:a2:95:71:16:38:83:39:60:f0: 9d:40:b1:1f:65:54:9a:cc:26:ea:16:8a:49:78:20: b4:8c:7c:df:ff:5c:d3:04:13:25:df:67:c0:32:41: 18:3e:f1:6d:71:aa:d4:f9:d2:e4:c1:f8:0c:e1:b3: 22:f4:94:14:e6:7f:62:ee:cb:e8:56:52:1a:bd:7f: c3:ea:8f:37:1b:3c:5d:c1:b1:58:77:d4:ee:68:2b: ff:35:b3:01:0c:77:d4:27:3c:77:6d:d1:b0:68:0e: 08:62:c4:0b:99:32:8e:82:39:1b:37:97:41:14:90: 18:d9:75:5e:8e:44:41:7c:dc:90:06:d4:9a:82:67: 0d:26:93:3e:b6:0b:22:ad:04:c1:90:25:c7:b8:14: 66:17:ab:cd:a9:cd:ec:76:fc:81:e9:c1:6d:11:e4: 15:ae:91:d8:bc:88:ac:54:45:97:2a:ac:17:38:a9: b6:41:6d:ad:86:cf:41:2f:3b:e9:cc:b3:b9:91:af: 2a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:48:39:B0:3B:9A:08:F0:66:F1:B5:3D:BD:B8:A8:0D:AE:FA:40:B9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/dc0e0e73-bbbe-4170-b733-4904ecc27f99.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/40 Signature Algorithm: sha256WithRSAEncryption 6f:2a:90:9d:6a:fe:00:42:b2:15:37:25:5e:30:00:8c:2a:30: 4b:57:53:5f:4a:b3:11:0d:09:fb:b3:c2:5e:a7:34:0d:fe:78: 97:55:70:4c:c4:67:6c:44:c8:35:ab:c3:eb:e2:3a:05:32:21: 88:cb:10:70:ba:c4:8d:a5:83:e5:34:84:ef:2d:e0:ce:a0:47: 01:36:8c:69:82:ed:ee:48:c2:d1:67:7a:8d:62:9f:ed:3c:e2: d7:89:0e:c7:f4:ef:c5:0a:db:fe:9d:5f:40:3b:55:b7:2a:a0: 7e:f3:bb:47:5d:13:24:70:fa:bd:24:cf:c8:8f:dd:2b:71:b9: fe:1b:89:91:a0:b5:f5:49:05:99:ca:1c:46:7c:19:b1:ba:76: b5:7f:25:25:ee:1a:5f:57:e4:c2:04:37:1d:b2:7b:a9:cb:7d: 51:1e:a7:da:d0:ec:8c:2e:af:19:fa:bf:26:f7:e8:ea:f8:89: 11:61:c7:98:aa:bf:d8:d6:49:60:eb:69:fc:8e:30:98:86:8d: 6d:1b:96:2c:07:a6:b3:57:d5:8e:14:1f:63:ee:7a:9a:e7:99: 90:87:04:ff:60:c9:eb:32:5a:f5:af:9b:0f:3a:26:13:00:26: 14:88:87:c2:2b:46:7e:00:38:46:74:9c:34:06:73:a7:3f:ca: 6d:4c:7c:f8 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITYQVWksDWNqugkudvPEkb1wuvCzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTA4MDUxODMwMjZaFw0yNTA5MDkyMzU5NTla MHoxSTBHBgNVBAUTQGIzMDM5YjViNzgzOTljNTlhZWMzMmMwZmNiM2MyMDcwOWIz MDA2MDcxZTBmOTY0NjQ1ZDcwNDJiY2VlYTM0MWYxLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMt261Y3eGSsFh0pNP00F2k9PqSsj8w21PLmAFKDLLLSLhYz Nk4Ys123D7sy6xFFtgM+foFDuSCiP8pIAE+HEQx/opVxFjiDOWDwnUCxH2VUmswm 6haKSXggtIx83/9c0wQTJd9nwDJBGD7xbXGq1PnS5MH4DOGzIvSUFOZ/Yu7L6FZS Gr1/w+qPNxs8XcGxWHfU7mgr/zWzAQx31Cc8d23RsGgOCGLEC5kyjoI5GzeXQRSQ GNl1Xo5EQXzckAbUmoJnDSaTPrYLIq0EwZAlx7gUZherzanN7Hb8genBbRHkFa6R 2LyIrFRFlyqsFziptkFtrYbPQS876cyzuZGvKmECAwEAAaOCArMwggKvMB0GA1Ud DgQWBBRYSDmwO5oI8GbxtT29uKgNrvpAuTAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvZGMwZTBlNzMtYmJiZS00MTcwLWI3MzMtNDkwNGVjYzI3Zjk5LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGACYA8PvgMA0GCSqGSIb3DQEBCwUAA4IBAQBvKpCdav4AQrIVNyVeMACMKjBL V1NfSrMRDQn7s8JepzQN/niXVXBMxGdsRMg1q8Pr4joFMiGIyxBwusSNpYPlNITv LeDOoEcBNoxpgu3uSMLRZ3qNYp/tPOLXiQ7H9O/FCtv+nV9AO1W3KqB+87tHXRMk cPq9JM/Ij90rcbn+G4mRoLX1SQWZyhxGfBmxuna1fyUl7hpfV+TCBDcdsnupy31R Hqfa0OyMLq8Z+r8m9+jq+IkRYceYqr/Y1klg62n8jjCYho1tG5YsB6azV9WOFB9j 7nqa55mQhwT/YMnrMlr1r5sPOiYTACYUiIfCK0Z+ADhGdJw0BnOnP8ptTHz4 -----END CERTIFICATE-----Generated at Sat Aug 9 01:18:23 2025 by rpki-client