$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/59630120-022f-4db2-870c-b5a5f46ee77a.roa File: 59630120-022f-4db2-870c-b5a5f46ee77a.roa (raw, json) Hash identifier: Qfx/McMvf+nWt6XNAJWgqQdOfSk/qh9iHHdBX9SJtvw= Subject key identifier: 66:D5:32:96:D0:8D:6F:B7:E5:F5:E1:27:84:46:A1:2C:57:9F:80:F6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 06C186C29B5152A2C96173AE97E25E7B4D6784EF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/59630120-022f-4db2-870c-b5a5f46ee77a.roa Signing time: Mon 23 Jun 2025 02:37:04 +0000 ROA not before: Mon 23 Jun 2025 02:37:04 +0000 ROA not after: Mon 28 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f2:7101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:c1:86:c2:9b:51:52:a2:c9:61:73:ae:97:e2:5e:7b:4d:67:84:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 23 02:37:04 2025 GMT Not After : Jul 28 23:59:59 2025 GMT Subject: serialNumber=53e6e9424d8d02ee1d52e479547ecc33bd815a675bde711f4231768337d9224d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:14:fa:e7:f2:76:b2:6d:04:d4:35:95:70:bd: d1:97:7f:7c:d6:e8:a2:f0:47:a5:58:52:08:ce:83: ea:c7:bf:72:1e:ef:68:11:24:01:8b:7c:be:09:36: 21:16:6a:64:7f:57:b4:25:d1:3a:55:54:99:d4:3d: cb:89:02:36:21:6a:13:af:fa:a2:97:00:18:ae:32: 2e:d7:7c:41:07:51:32:82:f5:d0:7d:db:19:f1:07: 31:58:e1:89:3a:b0:fb:ec:6a:3d:22:d6:1c:a1:fd: 95:99:44:0b:90:70:cf:a3:d0:1e:f5:df:2c:5f:21: c7:5b:3d:3c:53:a6:6c:d5:c4:78:0f:ec:ab:c6:e5: 25:04:9d:eb:59:a6:f4:e4:48:7a:66:4a:b0:8e:82: c6:a4:d8:dc:6e:8c:d4:58:4c:60:20:af:14:7b:71: 12:ee:2c:1a:ba:7c:16:c9:9a:f7:64:93:8b:a1:9b: a7:3f:62:2d:27:f1:f7:84:0f:24:36:79:85:9e:f6: 64:f1:38:32:25:e7:25:ec:cd:99:88:32:16:74:72: ef:af:ab:24:96:dc:9b:af:e9:cf:f6:62:e5:bf:df: 57:df:ad:85:0d:86:5c:d8:93:bf:00:b3:b9:f1:ca: d0:b5:e4:08:ff:06:83:e3:b0:e1:06:81:78:e8:3e: a2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:D5:32:96:D0:8D:6F:B7:E5:F5:E1:27:84:46:A1:2C:57:9F:80:F6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/59630120-022f-4db2-870c-b5a5f46ee77a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7101::/48 Signature Algorithm: sha256WithRSAEncryption 0f:c7:bd:79:b3:5f:c5:ed:5c:a3:7e:ae:fd:90:83:95:33:67: 3d:5d:94:89:5e:0e:67:0d:5a:24:2e:a0:cb:6b:9a:7b:f5:55: 93:f6:ba:6c:30:e0:e4:9d:11:0b:f6:12:1f:ad:2c:31:b1:04: 29:d4:49:43:d9:19:2a:65:e2:84:ec:c7:dc:3d:6b:59:aa:3b: 31:36:fa:97:1b:e3:38:4a:20:69:d3:ef:a9:06:22:ea:fe:3f: 1b:1e:df:ba:fb:5f:d9:45:b6:92:06:0b:7a:14:65:87:42:ba: c6:d7:ee:e0:5f:4e:5c:a0:88:ef:33:cc:ae:e8:92:10:20:58: af:91:8a:94:aa:36:ba:05:f2:10:66:8c:46:22:96:67:88:d3: e9:c8:7e:b6:78:f6:49:59:2d:92:06:d6:b6:a8:4f:03:a1:29: cc:15:5d:d2:3b:11:72:6c:9a:38:8f:0c:f6:74:5e:d7:c1:dc: 75:39:2a:2c:7e:29:48:83:9f:c5:e3:89:1a:45:b8:bf:bf:0b: a1:f7:d7:8d:28:a0:33:da:c3:b0:5d:9c:c2:54:94:9e:fa:c1: ae:c2:9c:41:07:06:60:29:7b:6f:b6:7c:29:57:7b:81:eb:da: cc:12:ca:b1:1e:d5:f3:67:1d:54:f1:22:e3:18:26:72:7d:ec: c7:e1:01:b9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBsGGwptRUqLJYXOul+Jee01nhO8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjIzMDIzNzA0WhcNMjUwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1M2U2ZTk0MjRkOGQwMmVlMWQ1MmU0Nzk1NDdlY2MzM2Jk ODE1YTY3NWJkZTcxMWY0MjMxNzY4MzM3ZDkyMjRkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLFPrn8naybQTUNZVwvdGXf3zW6KLwR6VYUgjOg+rHv3Ie 72gRJAGLfL4JNiEWamR/V7Ql0TpVVJnUPcuJAjYhahOv+qKXABiuMi7XfEEHUTKC 9dB92xnxBzFY4Yk6sPvsaj0i1hyh/ZWZRAuQcM+j0B713yxfIcdbPTxTpmzVxHgP 7KvG5SUEnetZpvTkSHpmSrCOgsak2NxujNRYTGAgrxR7cRLuLBq6fBbJmvdkk4uh m6c/Yi0n8feEDyQ2eYWe9mTxODIl5yXszZmIMhZ0cu+vqySW3Juv6c/2YuW/31ff rYUNhlzYk78As7nxytC15Aj/BoPjsOEGgXjoPqItAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUZtUyltCNb7fl9eEnhEahLFefgPYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU5NjMwMTIwLTAyMmYtNGRiMi04NzBjLWI1YTVmNDZlZTc3YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycQEwDQYJKoZIhvcNAQELBQADggEBAA/HvXmzX8XtXKN+rv2Qg5Uz Zz1dlIleDmcNWiQuoMtrmnv1VZP2umww4OSdEQv2Eh+tLDGxBCnUSUPZGSpl4oTs x9w9a1mqOzE2+pcb4zhKIGnT76kGIur+Pxse37r7X9lFtpIGC3oUZYdCusbX7uBf TlygiO8zzK7okhAgWK+RipSqNroF8hBmjEYilmeI0+nIfrZ49klZLZIG1raoTwOh KcwVXdI7EXJsmjiPDPZ0XtfB3HU5Kix+KUiDn8XjiRpFuL+/C6H3140ooDPaw7Bd nMJUlJ76wa7CnEEHBmApe2+2fClXe4Hr2swSyrEe1fNnHVTxIuMYJnJ97MfhAbk= -----END CERTIFICATE-----Generated at Sun Jun 29 06:33:22 2025 by rpki-client