$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa File: 3562da89-c8ff-4159-8f92-365721d94405.roa (raw, json) Hash identifier: 9DeT09fCigByCFI23VtxvE6vfxLnXnl6spoqROdTdVE= Subject key identifier: 95:85:CB:89:36:CA:23:66:70:39:E1:DF:85:C7:04:1B:52:A5:76:0B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A525D54DE43835B6615D83F08187C4D1B686B63 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa Signing time: Tue 24 Jun 2025 15:00:08 +0000 ROA not before: Tue 24 Jun 2025 15:00:08 +0000 ROA not after: Tue 29 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f030::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:52:5d:54:de:43:83:5b:66:15:d8:3f:08:18:7c:4d:1b:68:6b:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 24 15:00:08 2025 GMT Not After : Jul 29 23:59:59 2025 GMT Subject: serialNumber=c84112cac9630c87b6ab040f001189b19cac83b7540a599fe1da9d2da4dd3a88, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:12:34:74:25:d1:be:e9:68:85:61:6c:0a:19: 7a:7c:ef:26:eb:88:a1:3a:21:96:64:20:2a:c3:87: fa:be:3f:d6:b6:d8:1b:32:ec:bf:29:3b:5a:b3:65: 97:29:b2:1a:01:ef:f6:d4:5f:6a:20:56:cf:83:43: 55:1e:66:08:38:b4:b4:ff:66:ba:09:cb:e2:cf:f8: f2:e7:a8:63:6d:f1:76:0a:be:ce:44:80:9c:be:2c: b3:b7:a3:aa:5b:68:88:61:3f:68:77:c6:aa:59:10: d5:e4:4d:a4:44:39:9b:a3:8e:24:17:3f:9a:db:32: e0:69:79:43:9a:ca:4f:3f:6f:d2:67:1e:02:48:b2: 31:e5:09:60:c4:d5:d3:56:18:7f:54:30:6a:47:51: 60:d9:62:13:b7:ef:13:84:5b:1e:52:58:22:d2:44: 69:ae:6b:c4:6a:ac:4a:eb:6d:d6:7d:b5:39:30:d3: 44:66:73:68:44:99:e5:68:b5:ae:03:6d:9e:29:c2: ea:90:fc:86:ec:7c:be:12:1f:d9:b2:0c:7b:17:38: 60:01:f8:43:86:a8:66:80:84:e3:ce:c4:f1:7e:51: f4:ec:9b:98:65:34:4a:21:7d:2e:3e:c8:7f:1a:b6: 05:25:8b:3d:b9:5e:94:13:65:6a:91:e1:5d:b0:c6: 4f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:85:CB:89:36:CA:23:66:70:39:E1:DF:85:C7:04:1B:52:A5:76:0B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3562da89-c8ff-4159-8f92-365721d94405.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f030::/44 Signature Algorithm: sha256WithRSAEncryption 4d:50:6e:ab:6e:87:d1:2c:d8:75:a1:a2:4a:f7:0f:fa:39:b0: a6:03:d6:d0:7f:7f:f7:09:33:b1:4f:32:6c:89:fb:be:cc:22: d2:5f:cf:81:e8:7b:9a:56:9a:ec:dd:c8:cd:3a:73:aa:99:f1: 49:25:6e:c5:00:4d:9d:87:a5:eb:7b:f1:62:90:46:a3:16:eb: 39:3f:f2:27:1b:08:15:83:90:22:27:4d:a3:e5:e5:44:16:d0: 5b:e3:00:57:76:7a:d3:17:e3:6e:80:0c:54:8e:e7:b0:55:13: 4b:d1:a3:e9:8b:82:45:62:fb:a2:ad:2b:b4:1e:91:a3:6d:92: ff:a0:90:80:a8:59:60:5e:f9:53:4c:43:11:97:85:61:ef:03: 5a:cc:e0:4e:8a:91:05:62:7e:d4:f3:97:3d:d9:03:f9:35:79: 76:c6:4b:78:59:75:90:06:de:56:29:74:4f:67:17:ca:c4:3a: 80:39:c7:33:30:4e:fb:c7:84:c6:44:97:b2:f7:30:74:1c:34: 58:b9:db:6b:aa:22:f7:1a:23:10:4a:27:f7:32:b4:01:cd:c2: c5:64:0c:c7:62:79:db:b3:b4:12:2c:da:af:d9:99:67:93:5d: d0:1c:6a:c8:cc:96:2a:e0:f6:51:e2:8d:6c:7d:33:9b:98:6c: 5f:4a:74:7a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUClJdVN5Dg1tmFdg/CBh8TRtoa2MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjI0MTUwMDA4WhcNMjUwNzI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjODQxMTJjYWM5NjMwYzg3YjZhYjA0MGYwMDExODliMTlj YWM4M2I3NTQwYTU5OWZlMWRhOWQyZGE0ZGQzYTg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDEjR0JdG+6WiFYWwKGXp87ybriKE6IZZkICrDh/q+P9a2 2Bsy7L8pO1qzZZcpshoB7/bUX2ogVs+DQ1UeZgg4tLT/ZroJy+LP+PLnqGNt8XYK vs5EgJy+LLO3o6pbaIhhP2h3xqpZENXkTaREOZujjiQXP5rbMuBpeUOayk8/b9Jn HgJIsjHlCWDE1dNWGH9UMGpHUWDZYhO37xOEWx5SWCLSRGmua8RqrErrbdZ9tTkw 00Rmc2hEmeVota4DbZ4pwuqQ/IbsfL4SH9myDHsXOGAB+EOGqGaAhOPOxPF+UfTs m5hlNEohfS4+yH8atgUliz25XpQTZWqR4V2wxk/FAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUlYXLiTbKI2ZwOeHfhccEG1KldgswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM1NjJkYTg5LWM4ZmYtNDE1OS04ZjkyLTM2NTcyMWQ5NDQwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78DAwDQYJKoZIhvcNAQELBQADggEBAE1Qbqtuh9Es2HWhokr3D/o5 sKYD1tB/f/cJM7FPMmyJ+77MItJfz4Hoe5pWmuzdyM06c6qZ8UklbsUATZ2Hpet7 8WKQRqMW6zk/8icbCBWDkCInTaPl5UQW0FvjAFd2etMX426ADFSO57BVE0vRo+mL gkVi+6KtK7QekaNtkv+gkICoWWBe+VNMQxGXhWHvA1rM4E6KkQViftTzlz3ZA/k1 eXbGS3hZdZAG3lYpdE9nF8rEOoA5xzMwTvvHhMZEl7L3MHQcNFi522uqIvcaIxBK J/cytAHNwsVkDMdieduztBIs2q/ZmWeTXdAcasjMlirg9lHijWx9M5uYbF9KdHo= -----END CERTIFICATE-----Generated at Wed Jul 2 22:43:26 2025 by rpki-client