$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa File: ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa (raw, json) Hash identifier: cL7+o4iq0lmS0+meo//tl3JiQm76TNrX33d3uizm7lw= Subject key identifier: D6:50:06:E1:EC:4A:66:0C:C6:64:50:50:20:A8:2A:FB:71:68:FC:A3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B314005ADB6793001DDC652BD2BF3C8F6602EFF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa Signing time: Tue 05 Aug 2025 18:30:11 +0000 ROA not before: Tue 05 Aug 2025 18:30:11 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:31:40:05:ad:b6:79:30:01:dd:c6:52:bd:2b:f3:c8:f6:60:2e:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:11 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=ecc17bd15d98defedfb67e25ae1b063b75f624fd9fa945c75df4b2e430950439, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b8:97:39:8a:57:54:73:3e:a4:44:15:dc:93: 0b:0b:0f:4e:39:68:8d:e0:c5:85:6e:94:be:54:a3: b5:62:38:62:62:e9:f6:42:d8:4c:59:dc:fe:28:87: d1:0d:78:d9:82:de:a9:ef:75:95:d3:d3:b8:09:ed: 0b:aa:b6:d0:eb:6f:d9:68:af:b8:57:67:b6:ad:0a: aa:09:e8:99:4a:29:2f:72:c7:46:88:1f:c8:90:70: 8e:ba:d6:6b:71:94:91:34:25:3e:1a:88:2b:74:19: b8:d2:7b:34:77:8b:2f:08:6b:57:1b:61:95:48:ca: 7e:6d:63:61:60:b1:0c:b2:23:a8:d9:f3:28:61:75: b2:17:24:b5:ee:37:1d:4d:4a:1e:32:ca:09:48:ba: b0:24:85:92:97:95:82:c2:00:51:ed:ad:f5:31:af: aa:09:b5:5b:ba:c0:f6:ab:94:e4:d0:ab:11:68:2e: f4:f9:d9:f7:bc:59:f1:db:cc:cf:dc:57:2f:42:52: 0e:17:5f:d6:44:ea:8c:21:a5:c0:d9:f5:d0:91:84: 85:21:f9:cc:77:a0:95:87:70:9c:ee:f4:51:ba:83: 24:02:13:91:1e:fa:81:69:65:5d:03:a4:a1:cc:d6: 0c:f1:c1:f4:f7:99:99:e9:79:17:19:71:a7:2b:50: f8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:50:06:E1:EC:4A:66:0C:C6:64:50:50:20:A8:2A:FB:71:68:FC:A3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ffd2c3e2-4d89-41a3-b450-b53f95a9dcd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/40 Signature Algorithm: sha256WithRSAEncryption 33:0c:97:d3:2a:c4:ed:47:6e:4d:df:64:6c:6b:8b:62:65:ac: 0b:db:9d:69:92:67:47:40:bf:a1:b2:9c:24:1d:7e:78:b2:c2: 59:0c:9d:ae:67:c5:aa:da:cb:c7:69:25:d7:73:90:e0:8b:b5: ab:be:36:a5:f0:62:01:f5:ee:e1:71:59:f9:35:8b:07:b9:ab: a6:b3:26:72:9f:27:7e:b2:b0:ec:e5:8f:ec:96:0a:3e:01:f8: a8:eb:49:44:9e:ea:25:be:f3:6d:d5:a5:af:8e:63:af:e4:1f: 19:83:b3:51:a3:89:ba:94:6a:43:09:ed:31:c0:71:68:85:fc: 74:35:c5:a5:75:ee:2b:70:68:74:1f:3a:87:f6:80:2a:50:4b: 2a:34:7e:ff:c0:6d:11:0f:41:43:3d:a9:de:b8:6d:a2:ec:a8: f9:b6:c2:ff:87:93:30:9e:b4:66:39:c2:c8:4d:41:0e:ff:24: 3f:8e:a2:a0:bc:e3:c1:27:f4:98:9d:92:b4:7d:98:db:db:e6: fc:72:33:9a:13:85:23:d6:c4:47:84:8e:16:dc:d9:2a:fb:7a: 4d:c7:fc:56:e5:5b:5d:83:f3:a6:1a:d2:6a:38:94:b5:70:15: a0:17:f1:56:d9:2e:a9:eb:e8:76:7a:9a:b7:da:e5:66:43:7a: 3d:18:49:24 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUezFABa22eTAB3cZSvSvzyPZgLv8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDExWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2MxN2JkMTVkOThkZWZlZGZiNjdlMjVhZTFiMDYzYjc1 ZjYyNGZkOWZhOTQ1Yzc1ZGY0YjJlNDMwOTUwNDM5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5uJc5ildUcz6kRBXckwsLD045aI3gxYVulL5Uo7ViOGJi 6fZC2ExZ3P4oh9ENeNmC3qnvdZXT07gJ7QuqttDrb9lor7hXZ7atCqoJ6JlKKS9y x0aIH8iQcI661mtxlJE0JT4aiCt0GbjSezR3iy8Ia1cbYZVIyn5tY2FgsQyyI6jZ 8yhhdbIXJLXuNx1NSh4yyglIurAkhZKXlYLCAFHtrfUxr6oJtVu6wParlOTQqxFo LvT52fe8WfHbzM/cVy9CUg4XX9ZE6owhpcDZ9dCRhIUh+cx3oJWHcJzu9FG6gyQC E5Ee+oFpZV0DpKHM1gzxwfT3mZnpeRcZcacrUPg3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1lAG4exKZgzGZFBQIKgq+3Fo/KMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZmZDJjM2UyLTRkODktNDFhMy1iNDUwLWI1M2Y5NWE5ZGNkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74jANBgkqhkiG9w0BAQsFAAOCAQEAMwyX0yrE7UduTd9kbGuLYmWs C9udaZJnR0C/obKcJB1+eLLCWQydrmfFqtrLx2kl13OQ4Iu1q742pfBiAfXu4XFZ +TWLB7mrprMmcp8nfrKw7OWP7JYKPgH4qOtJRJ7qJb7zbdWlr45jr+QfGYOzUaOJ upRqQwntMcBxaIX8dDXFpXXuK3BodB86h/aAKlBLKjR+/8BtEQ9BQz2p3rhtouyo +bbC/4eTMJ60ZjnCyE1BDv8kP46ioLzjwSf0mJ2StH2Y29vm/HIzmhOFI9bER4SO FtzZKvt6Tcf8VuVbXYPzphrSajiUtXAVoBfxVtkuqevodnqat9rlZkN6PRhJJA== -----END CERTIFICATE-----Generated at Wed Aug 6 09:40:03 2025 by rpki-client