$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6912c7e5-41f4-4b82-9db8-51bac2912f50.roa File: 6912c7e5-41f4-4b82-9db8-51bac2912f50.roa (raw, json) Hash identifier: B+W2XLrxbl2nJ3P6dO8OS4Wmsado3nJlUj9DjdIX6qk= Subject key identifier: D4:41:6C:5C:58:97:5A:27:AC:C6:1E:C0:22:2E:35:1D:AE:32:99:1F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4934327CF74D56D2FA4BA036BE9E19D250BC194C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6912c7e5-41f4-4b82-9db8-51bac2912f50.roa Signing time: Fri 08 Aug 2025 00:30:46 +0000 ROA not before: Fri 08 Aug 2025 00:30:46 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:34:32:7c:f7:4d:56:d2:fa:4b:a0:36:be:9e:19:d2:50:bc:19:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 8 00:30:46 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=da4a96c8ea48a286289e9301cfadf8089a64a34b2c0724ab3e247145e22fa27b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:25:2a:56:16:11:87:58:33:b1:36:7e:7a:28: 45:d0:05:09:48:60:10:ad:38:61:10:13:90:04:7e: 88:52:48:18:56:81:0e:6e:35:3f:39:50:15:18:44: 21:df:41:b1:5d:50:d0:8f:92:43:aa:67:5f:b3:ef: 31:43:9e:53:59:41:68:f5:68:7f:0b:b2:c9:22:9f: bc:77:60:8a:15:6b:e1:d9:9b:6f:79:69:17:31:b3: 32:cb:38:fc:8b:cb:72:e8:c4:4a:4d:e9:b6:f8:9a: 80:25:d9:74:0f:2e:8a:e1:9f:16:1e:bb:4f:cb:e2: a0:22:18:7c:7a:47:d9:64:0f:9a:5a:4c:f4:70:26: 62:1c:f0:4a:bc:f9:4e:fb:77:8a:a0:41:7a:2b:55: 81:42:97:fc:3a:29:f3:d7:7d:92:11:a6:f8:b4:62: 3e:3c:fc:a5:2a:7f:88:17:5e:f1:7c:02:d2:37:fa: df:07:66:0e:f8:91:c8:be:0d:cc:50:65:f9:25:25: c7:da:b7:5d:08:b0:7e:17:ca:e2:57:b9:7e:30:a1: 97:ec:13:51:dd:87:73:9f:0d:96:4f:6c:ed:00:4a: 4c:12:5b:c9:4e:f7:ed:79:63:36:62:4c:29:14:79: b5:7c:2b:d6:a4:97:60:a8:3b:b8:65:07:80:ff:36: 49:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:41:6C:5C:58:97:5A:27:AC:C6:1E:C0:22:2E:35:1D:AE:32:99:1F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/6912c7e5-41f4-4b82-9db8-51bac2912f50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 52:03:3f:9b:3c:07:4a:23:dd:08:67:61:b3:5e:e5:ec:5c:fb: 46:2b:2f:0c:62:8c:b7:12:0e:80:b5:5d:38:4a:76:b7:96:f4: c5:62:0d:8e:f6:f5:8b:b6:d8:43:70:bd:72:a9:f0:61:82:84: af:66:fb:a6:8e:12:67:2a:de:83:4c:be:82:fd:5b:9c:0b:c6: e4:85:07:76:eb:fa:b1:63:b1:fd:ce:67:c4:42:28:f7:b0:45: 59:a8:03:5a:17:bf:81:b2:d9:73:f5:0c:b6:b3:56:38:a1:27: a6:37:2c:73:35:f5:c0:66:dc:c4:1c:23:1f:7a:c2:bd:81:fb: af:55:90:da:bf:72:c2:56:8c:05:95:2e:de:9d:e8:1f:58:36: ae:23:5e:94:4c:8a:14:b7:55:85:b8:be:92:94:98:37:b2:46: 10:c8:e9:c5:25:98:51:7f:f0:01:ae:bb:75:34:30:79:ad:89: 91:44:cc:44:df:3d:81:db:db:e9:4f:87:08:36:88:a2:2e:04: 34:cf:4d:3e:a1:22:85:1a:59:42:c0:c7:04:62:2b:c6:5f:87: f5:fe:3f:64:90:46:02:b2:65:da:19:32:f5:52:bc:8d:38:d3: 03:10:be:37:9f:1a:99:fc:e0:6a:0d:b1:43:70:3c:05:9c:a8: e1:17:8a:65 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSTQyfPdNVtL6S6A2vp4Z0lC8GUwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA4MDAzMDQ2WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTRhOTZjOGVhNDhhMjg2Mjg5ZTkzMDFjZmFkZjgwODlh NjRhMzRiMmMwNzI0YWIzZTI0NzE0NWUyMmZhMjdiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjJSpWFhGHWDOxNn56KEXQBQlIYBCtOGEQE5AEfohSSBhW gQ5uNT85UBUYRCHfQbFdUNCPkkOqZ1+z7zFDnlNZQWj1aH8Lsskin7x3YIoVa+HZ m295aRcxszLLOPyLy3LoxEpN6bb4moAl2XQPLorhnxYeu0/L4qAiGHx6R9lkD5pa TPRwJmIc8Eq8+U77d4qgQXorVYFCl/w6KfPXfZIRpvi0Yj48/KUqf4gXXvF8AtI3 +t8HZg74kci+DcxQZfklJcfat10IsH4XyuJXuX4woZfsE1Hdh3OfDZZPbO0ASkwS W8lO9+15YzZiTCkUebV8K9akl2CoO7hlB4D/NknVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1EFsXFiXWiesxh7AIi41Ha4ymR8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY5MTJjN2U1LTQxZjQtNGI4Mi05ZGI4LTUxYmFjMjkxMmY1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBAFIDP5s8B0oj3QhnYbNe5exc +0YrLwxijLcSDoC1XThKdreW9MViDY729Yu22ENwvXKp8GGChK9m+6aOEmcq3oNM voL9W5wLxuSFB3br+rFjsf3OZ8RCKPewRVmoA1oXv4Gy2XP1DLazVjihJ6Y3LHM1 9cBm3MQcIx96wr2B+69VkNq/csJWjAWVLt6d6B9YNq4jXpRMihS3VYW4vpKUmDey RhDI6cUlmFF/8AGuu3U0MHmtiZFEzETfPYHb2+lPhwg2iKIuBDTPTT6hIoUaWULA xwRiK8Zfh/X+P2SQRgKyZdoZMvVSvI040wMQvjefGpn84GoNsUNwPAWcqOEXimU= -----END CERTIFICATE-----Generated at Sat Aug 23 08:07:34 2025 by rpki-client