$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa File: 06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa (raw, json) Hash identifier: s4tI+GwpkvAB0q24CECs/bkfNYVVu1hjvdaWheC2o44= Subject key identifier: C2:25:90:04:48:EA:02:5A:1C:B7:B5:0E:D1:54:6D:6B:49:33:F4:59 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7FABEC4E2F8DA4C01731869F1651565A17E80A03 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa Signing time: Mon 16 Jun 2025 19:20:18 +0000 ROA not before: Mon 16 Jun 2025 19:20:18 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:ab:ec:4e:2f:8d:a4:c0:17:31:86:9f:16:51:56:5a:17:e8:0a:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:20:18 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=4858e54d44de88ec33c6daca5c57571c0afd12817c0d22f6c585b74b39a90007, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e1:e0:86:b1:fc:c3:d6:9b:65:43:8b:a8:3b: b3:b1:13:2e:13:2f:3f:42:fc:f8:47:79:fa:42:fd: cf:9e:a9:f1:95:4c:17:80:13:c8:7b:95:da:64:df: 93:43:5d:98:8e:c5:fb:9e:2f:ba:bf:5f:0c:d3:f2: 0e:fa:46:93:c2:a6:64:4a:c6:5a:62:a4:61:23:5b: 81:c3:b0:08:52:0f:81:e2:50:aa:98:1d:ba:71:23: 36:98:24:b5:bb:8c:98:d6:9f:00:65:00:bb:fc:84: 32:e2:e4:45:56:63:38:1e:9a:76:38:e0:18:79:57: 60:ff:c5:ae:7d:42:50:46:ca:5e:78:d4:95:d0:3c: ee:68:30:74:80:c0:53:3d:37:c3:a7:04:8b:4f:cf: b5:8b:03:62:6c:37:39:10:c2:9b:77:04:56:22:9f: 2b:61:c2:b8:bd:df:30:ab:56:5c:90:2c:35:bf:4d: 4e:66:91:d0:e7:e9:77:a1:47:8d:fc:cd:e9:19:16: 0a:38:9d:b7:fb:9d:2e:fd:c0:12:25:54:a1:fe:e2: 79:51:6c:f8:44:be:f6:6c:fb:6c:a6:19:4a:1c:9d: 84:66:90:c6:92:a0:d5:77:46:65:87:7f:33:39:45: a8:9c:56:ea:b7:6f:48:0d:bd:e2:e4:a3:fe:d6:7e: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:25:90:04:48:EA:02:5A:1C:B7:B5:0E:D1:54:6D:6B:49:33:F4:59 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/06ea2b4a-6dfc-489d-b8f1-dc7f93cac1c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 12:0f:e9:6c:28:97:5a:32:92:35:17:68:a1:e5:c4:7c:e7:98: 70:32:bc:26:39:f2:63:3e:f2:6a:bb:81:c9:e4:f5:f5:ab:4f: 17:82:54:4c:41:1e:a1:80:a5:fc:f9:43:17:aa:2c:f2:dd:c6: d0:57:7c:41:3a:75:e6:51:89:6d:cc:45:3e:67:ac:4f:6b:9f: ac:fe:50:a4:27:16:b2:29:12:68:2f:f4:24:78:25:d7:8f:3a: bc:d1:8a:0d:38:7e:90:e7:7a:b7:e6:f1:c1:b0:a8:39:b3:aa: 06:52:2c:62:2a:87:99:c0:5b:e8:8c:60:77:e1:7e:be:4b:ce: 67:54:76:9d:34:b5:33:da:05:ed:d4:32:13:31:a0:6f:4f:d2: ae:5d:5c:b6:34:dd:5d:ce:3f:62:61:9f:ca:2f:3d:10:91:78: 00:c4:25:af:0a:90:4b:d5:1c:d0:47:f0:96:73:a2:1f:a0:33: 75:a0:86:ea:82:b2:df:21:66:71:b2:7a:c4:6a:9f:4f:72:ec: 20:d3:18:10:14:c8:d1:e8:02:4f:db:1a:c7:df:fd:13:0e:9a: 2c:d2:1e:b8:be:a6:d3:ed:ba:99:49:c8:79:7e:da:37:5b:3f: bb:bd:25:c6:1d:3a:b1:5a:9f:96:39:19:10:db:25:df:c8:44: 2a:76:ed:2b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUf6vsTi+NpMAXMYafFlFWWhfoCgMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMDE4WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODU4ZTU0ZDQ0ZGU4OGVjMzNjNmRhY2E1YzU3NTcxYzBh ZmQxMjgxN2MwZDIyZjZjNTg1Yjc0YjM5YTkwMDA3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi4eCGsfzD1ptlQ4uoO7OxEy4TLz9C/PhHefpC/c+eqfGV TBeAE8h7ldpk35NDXZiOxfueL7q/XwzT8g76RpPCpmRKxlpipGEjW4HDsAhSD4Hi UKqYHbpxIzaYJLW7jJjWnwBlALv8hDLi5EVWYzgemnY44Bh5V2D/xa59QlBGyl54 1JXQPO5oMHSAwFM9N8OnBItPz7WLA2JsNzkQwpt3BFYinythwri93zCrVlyQLDW/ TU5mkdDn6XehR438zekZFgo4nbf7nS79wBIlVKH+4nlRbPhEvvZs+2ymGUocnYRm kMaSoNV3RmWHfzM5RaicVuq3b0gNveLko/7WfvFfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUwiWQBEjqAloct7UO0VRta0kz9FkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzA2ZWEyYjRhLTZkZmMtNDg5ZC1iOGYxLWRjN2Y5M2NhYzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBABIP6Wwol1oykjUXaKHlxHzn mHAyvCY58mM+8mq7gcnk9fWrTxeCVExBHqGApfz5QxeqLPLdxtBXfEE6deZRiW3M RT5nrE9rn6z+UKQnFrIpEmgv9CR4JdePOrzRig04fpDnerfm8cGwqDmzqgZSLGIq h5nAW+iMYHfhfr5LzmdUdp00tTPaBe3UMhMxoG9P0q5dXLY03V3OP2Jhn8ovPRCR eADEJa8KkEvVHNBH8JZzoh+gM3WghuqCst8hZnGyesRqn09y7CDTGBAUyNHoAk/b Gsff/RMOmizSHri+ptPtuplJyHl+2jdbP7u9JcYdOrFan5Y5GRDbJd/IRCp27Ss= -----END CERTIFICATE-----Generated at Sun Jun 29 01:15:23 2025 by rpki-client