$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5befdd2f-22ab-473f-936e-ffcd9943d082.roa File: 5befdd2f-22ab-473f-936e-ffcd9943d082.roa (raw, json) Hash identifier: A73850VIxfGNhxz9PAJmB2qojeo3e4XmslQZjyuTRZ0= Subject key identifier: 6B:37:03:70:C5:16:7E:8A:59:1E:FD:F9:87:97:C5:24:6D:41:A5:A5 Certificate issuer: /CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Certificate serial: 7532101CEBBAEA6B05BF1120D5C596018741C5CE Authority key identifier: BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5befdd2f-22ab-473f-936e-ffcd9943d082.roa Signing time: Fri 11 Jul 2025 18:01:45 +0000 ROA not before: Fri 11 Jul 2025 18:01:45 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2605:9cc0:310::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 01:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:32:10:1c:eb:ba:ea:6b:05:bf:11:20:d5:c5:96:01:87:41:c5:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424 Validity Not Before: Jul 11 18:01:45 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=038d6c592f59c002780be78767e3726b2b98aeaf3a0d337d8482cb2b42e2e04d, CN=f7243785-46de-414b-9b8f-7a9699e979e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bb:bd:d8:14:8d:f3:31:38:67:86:00:c3:20: c9:71:e7:13:75:60:a8:cd:a7:25:62:9b:03:0e:df: f3:df:8e:58:f3:f0:44:12:d3:b8:f7:38:d1:71:1e: eb:3d:43:13:d4:7a:16:e9:af:2a:7e:fa:d8:9d:58: b4:b2:e4:9d:2d:f2:e4:0b:ad:a9:4d:cb:fe:52:89: 3e:59:d2:c4:ca:c4:14:52:42:4d:62:c7:3d:51:1f: f4:91:be:ca:6c:25:51:bc:16:4b:29:8b:95:c1:1d: 0c:02:b5:2c:9a:ef:a6:ed:47:be:0f:2e:c0:41:b8: 11:5a:25:ac:3a:42:ec:ef:27:b0:92:b0:0c:c5:2c: 6f:e2:18:d9:0c:7a:dc:6a:0a:f1:ae:4e:73:66:9a: 4b:c1:e6:b1:d0:f7:0d:5e:df:70:7b:6a:5d:d1:3d: ee:99:5c:15:4f:44:3b:d1:3d:28:57:28:4c:d6:b2: e7:1d:bf:50:f5:b0:f2:4a:39:e8:7a:30:83:b3:34: 24:19:74:1a:b1:bf:7b:a2:55:1a:87:61:8a:4b:06: a7:69:c2:ed:fc:18:39:fe:9a:68:ec:58:9c:48:46: 66:79:b5:42:3c:2f:b1:49:e2:5d:62:a9:53:f9:b2: 30:a5:af:f9:a9:a0:73:c9:e9:cf:1c:be:a8:25:bc: 58:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:37:03:70:C5:16:7E:8A:59:1E:FD:F9:87:97:C5:24:6D:41:A5:A5 X509v3 Authority Key Identifier: keyid:BA:0C:E1:7E:23:3F:BC:71:D4:30:AB:DA:C2:C3:0C:79:04:B6:A0:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/d3ea6eab-f41f-4e46-a8f6-3da4a128d78c/97ac0028d6efbddafb7d9c71e29eb71c005e34fc19f1f7c424.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/5befdd2f-22ab-473f-936e-ffcd9943d082.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/54602fb0-a9d4-4f9f-b0ca-be2a139ea92b/773a-32cceKetxwAXjT8GfH3xCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2605:9cc0:310::/48 Signature Algorithm: sha256WithRSAEncryption 9e:49:af:19:ca:e2:ec:e6:fc:a4:bb:ab:30:fe:da:b7:39:c6: 4c:22:3e:9e:4b:d0:64:9e:a0:fa:4c:c8:a9:db:c8:89:f4:d2: 90:56:a0:b5:0e:a9:f4:f3:62:33:07:c2:c4:7f:41:e7:da:99: 1c:80:4b:2d:b8:84:b9:75:d8:0f:4a:04:2f:e6:ec:f6:a2:8e: 92:de:44:3f:f1:e4:3a:01:fa:f2:6f:9b:ef:ba:b0:17:6c:7c: 1e:0c:86:3e:33:6b:fb:2c:e7:55:c1:81:86:81:e6:f7:44:3d: fd:13:47:92:35:1d:0b:ab:f6:00:19:8d:68:c6:20:d8:03:3f: b8:d3:19:87:a2:98:66:16:7b:2e:7b:67:9e:db:c1:41:3a:32: 98:c7:45:13:66:5e:d2:62:4a:ba:5f:b6:23:6a:e5:5c:0d:9d: 8e:34:55:60:46:37:20:ea:d5:5e:ac:9d:85:48:ca:6b:d3:33: 1e:2b:7a:35:65:69:ae:bf:da:0f:a6:95:a2:f0:45:64:28:d8: f7:1d:e3:d9:84:84:f1:70:13:9a:94:93:3e:08:93:92:2e:db: ca:e8:a5:cc:44:6e:b0:48:a9:3a:46:3b:a3:97:40:c6:59:72: 1f:10:42:bf:81:95:2a:7a:52:e5:d5:66:ec:26:41:b9:46:2d: d5:5b:4b:28 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdTIQHOu66msFvxEg1cWWAYdBxc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOTdhYzAwMjhkNmVmYmRkYWZiN2Q5YzcxZTI5ZWI3MWMw MDVlMzRmYzE5ZjFmN2M0MjQwHhcNMjUwNzExMTgwMTQ1WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzhkNmM1OTJmNTljMDAyNzgwYmU3ODc2N2UzNzI2YjJi OThhZWFmM2EwZDMzN2Q4NDgyY2IyYjQyZTJlMDRkMS0wKwYDVQQDEyRmNzI0Mzc4 NS00NmRlLTQxNGItOWI4Zi03YTk2OTllOTc5ZTIwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCau73YFI3zMThnhgDDIMlx5xN1YKjNpyVimwMO3/Pfjljz 8EQS07j3ONFxHus9QxPUehbpryp++tidWLSy5J0t8uQLralNy/5SiT5Z0sTKxBRS Qk1ixz1RH/SRvspsJVG8Fkspi5XBHQwCtSya76btR74PLsBBuBFaJaw6QuzvJ7CS sAzFLG/iGNkMetxqCvGuTnNmmkvB5rHQ9w1e33B7al3RPe6ZXBVPRDvRPShXKEzW sucdv1D1sPJKOeh6MIOzNCQZdBqxv3uiVRqHYYpLBqdpwu38GDn+mmjsWJxIRmZ5 tUI8L7FJ4l1iqVP5sjClr/mpoHPJ6c8cvqglvFi1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUazcDcMUWfopZHv35h5fFJG1BpaUwHwYDVR0jBBgwFoAUugzhfiM/vHHU MKvawsMMeQS2oOcwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy9kM2VhNmVhYi1m NDFmLTRlNDYtYThmNi0zZGE0YTEyOGQ3OGMvOTdhYzAwMjhkNmVmYmRkYWZiN2Q5 YzcxZTI5ZWI3MWMwMDVlMzRmYzE5ZjFmN2M0MjQuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTQ2MDJmYjAtYTlkNC00ZjlmLWIwY2EtYmUy YTEzOWVhOTJiLzViZWZkZDJmLTIyYWItNDczZi05MzZlLWZmY2Q5OTQzZDA4Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzU0NjAyZmIwLWE5ZDQtNGY5Zi1iMGNh LWJlMmExMzllYTkyYi83NzNhLTMyY2NlS2V0eHdBWGpUOEdmSDN4Q1EuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmBZzAAxAwDQYJKoZIhvcNAQELBQADggEBAJ5JrxnK4uzm/KS7qzD+2rc5 xkwiPp5L0GSeoPpMyKnbyIn00pBWoLUOqfTzYjMHwsR/QefamRyASy24hLl12A9K BC/m7PaijpLeRD/x5DoB+vJvm++6sBdsfB4Mhj4za/ss51XBgYaB5vdEPf0TR5I1 HQur9gAZjWjGINgDP7jTGYeimGYWey57Z57bwUE6MpjHRRNmXtJiSrpftiNq5VwN nY40VWBGNyDq1V6snYVIymvTMx4rejVlaa6/2g+mlaLwRWQo2Pcd49mEhPFwE5qU kz4Ik5Iu28ropcxEbrBIqTpGO6OXQMZZch8QQr+BlSp6UuXVZuwmQblGLdVbSyg= -----END CERTIFICATE-----Generated at Mon Aug 4 21:55:43 2025 by rpki-client