$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa File: e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa (raw, json) Hash identifier: 4IUvNbsgI1TuenvjyyVGp4GCUPwYQ2cLhPwgaIZjEic= Subject key identifier: 2E:CD:B4:62:F3:6C:8B:C0:F8:89:F9:D2:24:74:9B:96:D6:2D:FB:E8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5FBE81E6FA613A7A0AB9D9B67C683BF2143B1987 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa Signing time: Fri 25 Jul 2025 16:50:13 +0000 ROA not before: Fri 25 Jul 2025 16:50:13 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:be:81:e6:fa:61:3a:7a:0a:b9:d9:b6:7c:68:3b:f2:14:3b:19:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 25 16:50:13 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=00f181ce263d368dd11e5282ec3d511b4f527d5eebac608e9d0925cd9fa61023, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:98:da:dd:67:08:e3:c6:86:89:04:fe:fb:f2: 91:b8:68:80:39:36:bb:06:0f:f0:2c:7b:5a:7b:51: 21:62:74:1e:3b:71:bd:07:d0:ec:51:04:a2:64:81: 8c:8a:db:cb:89:25:70:70:b5:85:0f:c8:db:7b:4e: 4f:6b:94:a7:ec:02:69:c4:b3:a9:53:8a:75:d0:0e: 01:12:8f:50:6a:bb:43:83:fd:3c:bd:31:be:43:f9: 05:1d:1e:50:7f:c1:f0:59:9f:dd:65:1e:bd:21:28: 93:56:69:97:03:e7:75:b0:13:d5:0d:54:9a:54:08: fd:11:36:e7:61:3c:06:c1:05:f9:e4:ee:38:c1:7a: 08:68:f1:7c:e4:cd:4a:04:9e:24:e7:b1:34:95:8f: e2:d4:e4:b0:9f:dc:53:8c:2d:74:26:47:b3:9f:5f: 37:f0:75:c0:cd:98:c5:59:40:07:53:d0:75:38:48: 6a:b2:a2:84:e7:96:5c:2a:4e:25:3a:d0:b3:d6:de: 37:96:92:87:4a:df:19:bb:8d:5b:0b:09:85:52:00: e3:bd:80:bb:8e:45:ff:59:81:b4:70:ff:36:53:1e: 4b:c0:4c:94:1a:23:08:ff:b5:95:ba:8f:9d:33:85: 84:91:23:a3:88:e4:f4:02:0e:1b:78:05:27:80:34: 9e:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:CD:B4:62:F3:6C:8B:C0:F8:89:F9:D2:24:74:9B:96:D6:2D:FB:E8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e1a441b9-24e5-41e9-91e8-5e7d14fbdeff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5400::/40 Signature Algorithm: sha256WithRSAEncryption 1b:4f:0a:68:cd:05:44:25:64:e3:86:c0:29:4b:ff:0d:36:e6: 66:3b:a2:96:d0:f5:5a:02:f6:4c:3d:aa:78:a0:10:cf:ce:8c: fe:f8:a1:68:ae:7d:be:a0:3e:28:ea:1d:e2:fc:ae:25:0f:74: 33:4f:80:2c:fe:09:bc:b1:d4:3a:00:fb:53:b7:35:1d:d4:00: d1:22:f0:c1:0f:7f:0c:03:4f:ee:55:19:46:fa:84:32:b2:29: 7d:47:1b:77:f9:fc:65:5e:4e:16:63:83:42:13:1f:22:a8:c0: a2:49:fe:5b:1e:65:f4:05:c5:43:40:a4:c0:77:0a:39:bd:63: 6f:55:dc:d3:98:b6:6a:90:2a:57:a0:a1:9f:5e:26:04:ab:bb: 10:b0:4b:ef:40:ba:e9:f3:6c:25:f0:ba:9b:25:ca:fa:bf:db: 27:c6:f9:5a:e8:6a:2b:4b:69:68:c7:b1:9c:5c:f2:61:50:74: 88:63:c1:71:c6:a4:24:6d:47:6e:24:83:df:af:48:ee:6b:be: b6:9d:38:78:c8:d8:50:82:b0:63:0b:06:8e:6a:7d:23:a7:94: d4:10:9a:50:21:99:38:32:f9:13:69:07:1c:5b:01:91:fd:19: 05:d0:ce:ee:9a:71:4d:10:f9:10:c3:c2:fb:34:2f:5a:49:e7: e6:6a:87:6a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUX76B5vphOnoKudm2fGg78hQ7GYcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzI1MTY1MDEzWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGYxODFjZTI2M2QzNjhkZDExZTUyODJlYzNkNTExYjRm NTI3ZDVlZWJhYzYwOGU5ZDA5MjVjZDlmYTYxMDIzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLmNrdZwjjxoaJBP778pG4aIA5NrsGD/Ase1p7USFidB47 cb0H0OxRBKJkgYyK28uJJXBwtYUPyNt7Tk9rlKfsAmnEs6lTinXQDgESj1Bqu0OD /Ty9Mb5D+QUdHlB/wfBZn91lHr0hKJNWaZcD53WwE9UNVJpUCP0RNudhPAbBBfnk 7jjBegho8XzkzUoEniTnsTSVj+LU5LCf3FOMLXQmR7OfXzfwdcDNmMVZQAdT0HU4 SGqyooTnllwqTiU60LPW3jeWkodK3xm7jVsLCYVSAOO9gLuORf9ZgbRw/zZTHkvA TJQaIwj/tZW6j50zhYSRI6OI5PQCDht4BSeANJ55AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQULs20YvNsi8D4ifnSJHSbltYt++gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UxYTQ0MWI5LTI0ZTUtNDFlOS05MWU4LTVlN2QxNGZiZGVmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwVDANBgkqhkiG9w0BAQsFAAOCAQEAG08KaM0FRCVk44bAKUv/DTbm ZjuiltD1WgL2TD2qeKAQz86M/vihaK59vqA+KOod4vyuJQ90M0+ALP4JvLHUOgD7 U7c1HdQA0SLwwQ9/DANP7lUZRvqEMrIpfUcbd/n8ZV5OFmODQhMfIqjAokn+Wx5l 9AXFQ0CkwHcKOb1jb1Xc05i2apAqV6Chn14mBKu7ELBL70C66fNsJfC6myXK+r/b J8b5WuhqK0tpaMexnFzyYVB0iGPBccakJG1HbiSD369I7mu+tp04eMjYUIKwYwsG jmp9I6eU1BCaUCGZODL5E2kHHFsBkf0ZBdDO7ppxTRD5EMPC+zQvWknn5mqHag== -----END CERTIFICATE-----Generated at Tue Aug 5 08:22:28 2025 by rpki-client