$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa File: fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa (raw, json) Hash identifier: jwEYrgh9fTL/OMdemobYuV35pA9mJ+UZONm5wuw06S4= Subject key identifier: A6:1F:1B:9C:26:7D:D1:28:A2:C4:59:CA:55:68:5A:92:42:55:5A:39 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 073D5E1E2FE452B69FCB54B104A42A0E03A611C2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa Signing time: Wed 06 Aug 2025 00:40:16 +0000 ROA not before: Wed 06 Aug 2025 00:40:16 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3d:5e:1e:2f:e4:52:b6:9f:cb:54:b1:04:a4:2a:0e:03:a6:11:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 6 00:40:16 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=e8a92039b83e57fe00810f0d7220efe92e9504ef72b580ef54d959d260c5b693, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6b:b4:80:ba:8d:60:73:bc:16:9d:54:49:74: f2:81:17:90:1a:ca:e8:50:fc:0c:26:d3:e3:d1:6a: f0:b7:0b:24:a2:11:75:01:3b:0d:93:10:f0:dd:36: f1:03:90:a3:59:07:af:53:2f:4d:20:d5:b5:9a:48: d7:af:b1:dd:f3:cb:08:d0:62:a0:6e:ca:12:4d:50: 79:8c:6e:a3:9b:97:ac:5d:28:1a:38:56:6e:27:ce: d3:d3:45:83:cf:5d:0c:15:34:38:1f:ad:3c:42:c1: ab:b9:6a:2d:6d:42:09:31:a0:ec:37:9d:4b:59:f6: c5:6a:59:d2:4e:88:3e:d6:87:df:1a:7f:e4:f3:da: 85:f7:67:e9:40:46:4b:30:c6:44:8c:64:5d:c3:5c: a8:51:f1:dd:be:70:71:3e:73:2c:3e:da:5d:5a:ee: 5d:4e:a5:1c:23:7b:16:ce:0e:20:88:ed:b1:d8:14: e1:e3:ce:fc:51:60:0f:12:8c:3f:f6:ab:fb:f2:ce: 8f:9a:68:08:8d:a3:b7:d6:6b:9c:86:d7:f2:66:a3: 52:fd:6b:4d:10:52:5e:61:ec:62:78:d8:35:50:96: 17:76:e7:fd:79:a4:4a:fb:c7:09:82:53:e8:08:48: b0:1a:fd:b7:3c:42:92:6f:93:16:e6:27:c1:44:36: 26:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:1F:1B:9C:26:7D:D1:28:A2:C4:59:CA:55:68:5A:92:42:55:5A:39 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc62a4ed-a4bf-4634-b6f3-0c70bedb7068.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/24 Signature Algorithm: sha256WithRSAEncryption 84:61:b8:23:4d:e9:5a:55:7d:f2:44:7d:71:92:d3:6e:d7:d8: 8d:cb:65:24:e8:7c:94:79:cd:4c:4a:7d:8c:99:cf:4d:6e:1a: fe:3a:28:87:53:c6:c5:d3:bd:66:19:75:f8:3c:54:0f:00:97: df:22:cd:19:cb:5a:ee:a3:bc:30:03:63:65:fe:4b:39:c3:ad: 59:09:59:b5:b1:8f:3d:5d:f9:92:7d:74:b0:a0:10:d3:ac:4a: ea:f0:ff:bf:61:7e:9c:92:f4:c7:d5:90:d4:9a:28:28:07:ec: 6b:ea:73:b5:00:a2:33:11:d0:42:46:c1:2f:2e:2f:0f:85:bc: 55:a8:f9:ac:a7:f1:b6:59:80:3d:02:b8:df:f5:6b:57:d2:44: 4f:c8:1e:82:b0:0a:ad:ab:bd:33:ca:a7:f7:42:c9:d0:59:05: 41:a6:32:87:b9:aa:3c:ef:a2:9c:f9:5a:6b:fd:d6:00:88:1d: fe:6f:0f:83:08:07:84:a9:f3:4b:43:ff:d1:1e:0f:60:0c:fe: 3c:11:fa:2c:de:c3:1c:1e:42:27:8d:ee:87:bc:df:0f:9c:aa: 39:08:ae:ae:c9:40:05:e6:13:77:5e:41:d7:61:e1:15:f7:1b: 62:65:d2:30:14:c3:b6:2a:e5:c6:61:9c:ff:25:00:ff:e2:bd: 84:8c:98:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBz1eHi/kUrafy1SxBKQqDgOmEcIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA2MDA0MDE2WhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOGE5MjAzOWI4M2U1N2ZlMDA4MTBmMGQ3MjIwZWZlOTJl OTUwNGVmNzJiNTgwZWY1NGQ5NTlkMjYwYzViNjkzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDla7SAuo1gc7wWnVRJdPKBF5AayuhQ/Awm0+PRavC3CySi EXUBOw2TEPDdNvEDkKNZB69TL00g1bWaSNevsd3zywjQYqBuyhJNUHmMbqObl6xd KBo4Vm4nztPTRYPPXQwVNDgfrTxCwau5ai1tQgkxoOw3nUtZ9sVqWdJOiD7Wh98a f+Tz2oX3Z+lARkswxkSMZF3DXKhR8d2+cHE+cyw+2l1a7l1OpRwjexbODiCI7bHY FOHjzvxRYA8SjD/2q/vyzo+aaAiNo7fWa5yG1/Jmo1L9a00QUl5h7GJ42DVQlhd2 5/15pEr7xwmCU+gISLAa/bc8QpJvkxbmJ8FENibxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUph8bnCZ90SiixFnKVWhakkJVWjkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjNjJhNGVkLWE0YmYtNDYzNC1iNmYzLTBjNzBiZWRiNzA2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAC MAYDBAAmAPAwDQYJKoZIhvcNAQELBQADggEBAIRhuCNN6VpVffJEfXGS027X2I3L ZSTofJR5zUxKfYyZz01uGv46KIdTxsXTvWYZdfg8VA8Al98izRnLWu6jvDADY2X+ SznDrVkJWbWxjz1d+ZJ9dLCgENOsSurw/79hfpyS9MfVkNSaKCgH7Gvqc7UAojMR 0EJGwS8uLw+FvFWo+ayn8bZZgD0CuN/1a1fSRE/IHoKwCq2rvTPKp/dCydBZBUGm Moe5qjzvopz5Wmv91gCIHf5vD4MIB4Sp80tD/9EeD2AM/jwR+izewxweQieN7oe8 3w+cqjkIrq7JQAXmE3deQddh4RX3G2Jl0jAUw7Yq5cZhnP8lAP/ivYSMmDE= -----END CERTIFICATE-----Generated at Wed Aug 6 13:15:11 2025 by rpki-client