$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa File: 7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa (raw, json) Hash identifier: jTOdYzXN3n/ecqRri/X5fcYW+Mox3s7dTI8VkU12FBo= Subject key identifier: 6C:8B:B9:3B:2E:74:62:C5:68:53:AA:A8:75:97:4E:B6:23:61:62:0E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 354B0723BF8F52C42E7405230FAE003CCE6C7749 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa Signing time: Mon 30 Jun 2025 17:50:08 +0000 ROA not before: Mon 30 Jun 2025 17:50:08 +0000 ROA not after: Mon 04 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4b:07:23:bf:8f:52:c4:2e:74:05:23:0f:ae:00:3c:ce:6c:77:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 30 17:50:08 2025 GMT Not After : Aug 4 23:59:59 2025 GMT Subject: serialNumber=7435f0c9e764b896dc23b88579cc12db0d3de62f60aa1e8cc4f8238b3eec6bce, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:51:b7:d7:86:84:ea:d1:c3:ce:d8:17:6d:eb: 11:37:d7:2c:ac:ca:89:15:7c:e9:9c:d7:91:83:23: 4e:78:ac:0a:fe:12:39:68:67:98:84:55:cf:de:ab: 0b:9e:48:cd:58:7f:94:29:d7:f8:ea:ca:3c:39:e8: 1a:95:a5:42:49:93:bf:47:e7:e4:f4:68:5a:18:64: 0a:5f:85:1c:d6:07:30:85:41:e6:24:b0:fb:30:ec: 3e:d5:f3:06:5e:dc:e4:c7:1b:23:51:38:28:51:d6: 36:e0:2f:70:c4:cd:8d:1e:38:32:24:4d:46:ef:37: 9a:fd:56:c2:66:51:0e:ea:d7:1d:11:38:34:d7:4b: 5b:17:f6:39:ae:ce:cb:07:63:a2:0d:e1:7e:ab:8d: 1b:2e:ad:75:27:74:ba:9b:c9:b7:6b:44:d3:1d:f0: f7:e0:5f:b5:c3:77:83:c6:a4:73:60:9b:da:27:0a: 43:f7:1b:73:b6:c8:78:f7:f7:07:2c:e4:f9:1d:ca: a1:89:63:98:1e:63:70:67:a8:88:a0:98:75:c7:58: 5b:32:29:8f:b7:5e:27:27:dc:20:0e:e5:c4:98:1e: 5a:65:10:5f:ef:1b:f2:46:49:bc:85:2d:74:a8:07: 47:3f:3f:59:41:a7:0f:0a:28:b6:87:0d:0b:0b:a6: 81:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:8B:B9:3B:2E:74:62:C5:68:53:AA:A8:75:97:4E:B6:23:61:62:0E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7980d2a9-9ad0-487c-82a5-834ec5af0a39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a::/47 Signature Algorithm: sha256WithRSAEncryption 9c:cb:1f:3b:b1:27:ed:0a:0d:cd:79:75:a6:d8:e4:4a:c9:5d: fe:f7:ff:0b:76:3e:02:9d:cd:3e:9b:b2:8c:48:23:c2:35:cf: a0:da:4f:fa:09:83:8e:8f:31:1a:b0:72:63:d5:7b:4f:39:4b: 63:d0:f6:91:46:9e:d3:fe:0e:02:bc:02:59:57:a6:4b:f6:29: 18:6a:30:aa:4b:ee:fc:2f:82:6a:c5:d6:24:3a:0d:26:a9:51: 6c:61:3b:98:c4:fa:16:81:8a:15:28:2b:70:01:fb:16:d6:0e: fb:fb:51:c4:00:53:d7:90:95:9a:09:97:b8:4d:03:4a:af:97: d3:a2:a9:2b:16:ce:32:06:36:e1:43:f7:84:6d:45:7d:f5:f8: 27:81:b5:bd:43:34:47:de:6c:64:a9:ff:08:2c:3d:2f:6e:0a: ee:0e:9d:62:c1:d4:bf:5d:3e:2d:57:e2:0c:b1:44:5d:33:e4: b3:f0:eb:c1:6b:b0:6f:16:39:c4:a5:2b:23:f4:2b:d3:e3:6a: 65:60:5a:a8:ae:a1:40:fe:c0:ff:60:1f:8c:af:bb:34:ad:33: 13:fd:b8:19:9f:fe:b9:83:e6:79:02:be:bf:67:22:b7:83:64: 85:8c:0a:ec:9f:a3:f1:3c:36:c6:b0:73:a4:38:f9:5a:ab:94: d5:6f:5b:b1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNUsHI7+PUsQudAUjD64APM5sd0kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjMwMTc1MDA4WhcNMjUwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDM1ZjBjOWU3NjRiODk2ZGMyM2I4ODU3OWNjMTJkYjBk M2RlNjJmNjBhYTFlOGNjNGY4MjM4YjNlZWM2YmNlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDUbfXhoTq0cPO2Bdt6xE31yysyokVfOmc15GDI054rAr+ EjloZ5iEVc/eqwueSM1Yf5Qp1/jqyjw56BqVpUJJk79H5+T0aFoYZApfhRzWBzCF QeYksPsw7D7V8wZe3OTHGyNROChR1jbgL3DEzY0eODIkTUbvN5r9VsJmUQ7q1x0R ODTXS1sX9jmuzssHY6IN4X6rjRsurXUndLqbybdrRNMd8PfgX7XDd4PGpHNgm9on CkP3G3O2yHj39wcs5PkdyqGJY5geY3BnqIigmHXHWFsyKY+3Xicn3CAO5cSYHlpl EF/vG/JGSbyFLXSoB0c/P1lBpw8KKLaHDQsLpoFvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUbIu5Oy50YsVoU6qodZdOtiNhYg4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc5ODBkMmE5LTlhZDAtNDg3Yy04MmE1LTgzNGVjNWFmMGEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAAowDQYJKoZIhvcNAQELBQADggEBAJzLHzuxJ+0KDc15dabY5ErJ Xf73/wt2PgKdzT6bsoxII8I1z6DaT/oJg46PMRqwcmPVe085S2PQ9pFGntP+DgK8 AllXpkv2KRhqMKpL7vwvgmrF1iQ6DSapUWxhO5jE+haBihUoK3AB+xbWDvv7UcQA U9eQlZoJl7hNA0qvl9OiqSsWzjIGNuFD94RtRX31+CeBtb1DNEfebGSp/wgsPS9u Cu4OnWLB1L9dPi1X4gyxRF0z5LPw68FrsG8WOcSlKyP0K9PjamVgWqiuoUD+wP9g H4yvuzStMxP9uBmf/rmD5nkCvr9nIreDZIWMCuyfo/E8Nsawc6Q4+VqrlNVvW7E= -----END CERTIFICATE-----Generated at Mon Jun 30 21:26:04 2025 by rpki-client