$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa File: f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa (raw, json) Hash identifier: lwt/cV6srlDQL9+pyZr+3wsR5FseftN2O82eNzMWzn4= Subject key identifier: 40:DC:F4:A4:E7:39:06:D1:50:D5:3F:23:84:1E:A0:23:DF:32:3F:C2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4981259ED6531C2192F2D8CC690506D3197EE880 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa Signing time: Tue 05 Aug 2025 18:30:49 +0000 ROA not before: Tue 05 Aug 2025 18:30:49 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:8000::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:81:25:9e:d6:53:1c:21:92:f2:d8:cc:69:05:06:d3:19:7e:e8:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:49 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d2b1cd1aa424fc33fd6990497d13355e841b186c30ffca158b162077b0b21053, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:13:54:f3:b5:44:da:eb:62:d6:8b:17:45:fa: 22:5e:0f:13:69:af:b8:83:ba:ab:1f:5b:7b:09:a2: 01:53:bd:bf:74:0f:10:8f:7f:9d:8c:54:3e:52:c9: 44:2e:68:e4:9f:de:0b:fe:c1:57:de:fa:5c:ab:3d: f0:8a:6e:c4:90:56:f2:77:f7:9e:6a:2c:94:9d:df: df:64:37:31:fc:1a:ee:d4:4b:1d:da:22:96:a2:cd: e9:2c:63:ef:95:da:3b:4a:fd:56:4c:98:5c:ac:c9: d0:e0:dc:36:10:30:58:a5:30:6b:b5:f2:62:bd:d0: eb:e4:b1:99:46:72:da:fc:c6:c7:f2:13:e2:73:5f: 05:1e:e0:22:bc:8d:6b:17:ba:b2:73:f3:06:25:18: cd:2a:55:6c:38:58:0b:a8:9a:4f:58:e3:28:3c:d0: 54:ff:b6:85:a1:a4:f8:49:35:1a:e4:23:72:89:ed: fa:b1:71:4c:25:03:8c:98:ea:dd:09:a0:2e:00:5f: 53:98:f0:f4:31:c9:49:8e:46:94:63:e5:9a:42:66: 0b:84:25:f9:1c:da:a5:a4:25:4f:89:5c:a5:f8:da: cb:d8:ee:41:d5:23:b5:5e:13:87:30:2d:6f:bb:e5: 12:b7:fa:54:88:62:ee:5b:a0:0f:e6:b5:ca:c8:8f: fe:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:DC:F4:A4:E7:39:06:D1:50:D5:3F:23:84:1E:A0:23:DF:32:3F:C2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f37c8633-aaf3-4a49-bfa6-775ab7724d36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:8000::/42 Signature Algorithm: sha256WithRSAEncryption 1e:4b:83:68:ac:db:d0:aa:77:b6:8d:58:9a:11:ae:6d:cf:1b: 69:8c:b0:bd:f6:29:10:ef:54:6f:4b:4f:a5:7c:34:6a:19:5d: 93:e5:19:13:fa:73:69:ff:22:47:d7:dd:a4:f3:41:36:06:c1: e4:0a:0e:ba:aa:5c:d9:48:dc:2f:08:d2:83:76:fc:74:a8:2b: 45:ad:7c:a1:ad:4f:ef:d1:f7:81:d8:66:45:74:7d:6d:49:51: 19:0b:a7:61:03:72:cd:e4:a5:6a:06:b5:26:ad:43:4a:02:37: f6:66:62:bb:ba:4b:c5:46:2b:dc:38:fb:a8:5c:c5:dd:62:0d: 6c:cd:89:21:8f:33:63:f7:9a:56:49:62:b9:4a:16:2b:b1:19: e3:19:4a:d6:24:af:d5:78:7d:6e:1b:a2:15:4d:a2:39:36:17: f8:cb:8f:cd:66:28:73:1a:4e:1e:5e:50:69:13:91:bf:74:b8: 05:c9:35:4f:be:40:fe:16:1e:ec:74:04:f4:ce:c8:3c:01:81: 49:d5:01:f7:9b:cb:93:06:f9:0e:17:7a:52:e5:d5:61:d1:49: 56:c3:33:67:a7:d0:e2:e6:ca:6a:82:50:79:42:54:12:b8:37: e8:7a:93:10:c9:91:bc:a9:20:c7:c8:68:66:f6:d3:bb:f4:72: 47:15:47:af -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSYElntZTHCGS8tjMaQUG0xl+6IAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDQ5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmIxY2QxYWE0MjRmYzMzZmQ2OTkwNDk3ZDEzMzU1ZTg0 MWIxODZjMzBmZmNhMTU4YjE2MjA3N2IwYjIxMDUzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChE1TztUTa62LWixdF+iJeDxNpr7iDuqsfW3sJogFTvb90 DxCPf52MVD5SyUQuaOSf3gv+wVfe+lyrPfCKbsSQVvJ3955qLJSd399kNzH8Gu7U Sx3aIpaizeksY++V2jtK/VZMmFysydDg3DYQMFilMGu18mK90OvksZlGctr8xsfy E+JzXwUe4CK8jWsXurJz8wYlGM0qVWw4WAuomk9Y4yg80FT/toWhpPhJNRrkI3KJ 7fqxcUwlA4yY6t0JoC4AX1OY8PQxyUmORpRj5ZpCZguEJfkc2qWkJU+JXKX42svY 7kHVI7VeE4cwLW+75RK3+lSIYu5boA/mtcrIj/7RAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUQNz0pOc5BtFQ1T8jhB6gI98yP8IwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzN2M4NjMzLWFhZjMtNGE0OS1iZmE2LTc3NWFiNzcyNGQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD7gAAwDQYJKoZIhvcNAQELBQADggEBAB5Lg2is29Cqd7aNWJoRrm3P G2mMsL32KRDvVG9LT6V8NGoZXZPlGRP6c2n/IkfX3aTzQTYGweQKDrqqXNlI3C8I 0oN2/HSoK0WtfKGtT+/R94HYZkV0fW1JURkLp2EDcs3kpWoGtSatQ0oCN/ZmYru6 S8VGK9w4+6hcxd1iDWzNiSGPM2P3mlZJYrlKFiuxGeMZStYkr9V4fW4bohVNojk2 F/jLj81mKHMaTh5eUGkTkb90uAXJNU++QP4WHux0BPTOyDwBgUnVAfeby5MG+Q4X elLl1WHRSVbDM2en0OLmymqCUHlCVBK4N+h6kxDJkbypIMfIaGb207v0ckcVR68= -----END CERTIFICATE-----Generated at Fri Aug 8 00:49:38 2025 by rpki-client