$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa File: 87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa (raw, json) Hash identifier: QB9NArxPIzzTHSMRqou/gEI5El1PSNTYuB0lzctJ160= Subject key identifier: 5F:3A:96:7F:D4:74:8F:94:DE:F4:02:4B:37:55:F3:73:6C:EB:6B:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 21FB8AF1951B061EF09FCFDCB30AC6869541D211 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa Signing time: Tue 05 Aug 2025 18:31:18 +0000 ROA not before: Tue 05 Aug 2025 18:31:18 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 24 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:fb:8a:f1:95:1b:06:1e:f0:9f:cf:dc:b3:0a:c6:86:95:41:d2:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:18 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=c6218dded7ef41807fd04dbfb0b7e0a6f639eac407089c96d175010ca34f64d9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:a0:b5:49:1a:8d:23:2f:78:66:3f:a5:98:7d: 49:3e:0f:5f:98:e3:e5:be:fc:1e:27:7f:11:ae:7b: 24:b9:c6:05:1d:55:78:0a:2a:52:5c:a3:3d:a3:1e: 1d:46:ab:ca:26:05:04:08:7e:54:42:48:97:3d:67: ff:5f:74:47:e3:26:0f:da:12:e6:17:50:8c:77:49: fc:de:21:97:b9:f2:a9:77:66:41:74:76:97:22:72: 87:00:73:6b:da:bb:24:a1:db:cf:73:35:1d:18:f7: f5:7c:2d:87:f1:a4:87:16:a2:99:53:a0:c3:09:1b: 4c:cc:63:56:36:84:d3:0a:b9:08:7b:18:dd:2d:8b: b9:2d:62:fb:f8:c1:ed:a2:93:96:34:0b:fc:9d:82: 96:09:c9:ef:b4:a6:be:b4:4d:f3:8a:03:52:f6:9d: f5:d5:7b:8b:c3:2d:1e:68:67:58:c3:d7:04:34:27: 9c:0f:50:14:28:e0:e1:07:0c:40:a4:df:56:80:e2: 13:c6:b1:50:20:c9:f9:e3:62:cc:76:47:37:73:f7: 19:b5:74:3e:f3:b4:31:15:f8:60:8f:84:7f:3e:09: a0:6e:08:6a:08:35:15:73:a4:69:03:35:6e:d5:d6: e7:c1:16:d3:8f:42:c6:40:d8:13:21:d0:9a:5a:31: 9a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3A:96:7F:D4:74:8F:94:DE:F4:02:4B:37:55:F3:73:6C:EB:6B:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/87bafb0d-7cec-4331-8a09-4a4d56abf7d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 97:f0:73:10:5a:2f:c7:7d:03:52:d8:df:68:3e:c3:a8:13:5d: fc:86:52:13:7f:06:91:f7:8d:5a:1a:84:08:bc:e3:b9:84:df: 59:b9:6f:59:7e:19:50:5c:5f:38:76:e5:69:e1:05:e2:05:63: da:50:7c:ab:e9:f6:c2:0f:56:16:70:89:09:52:55:78:81:8f: 03:10:86:72:e4:33:00:65:2b:12:c6:72:d8:42:49:dd:79:53: fc:a2:96:09:8c:29:c3:5a:fb:3b:b4:7a:8a:27:bb:b8:d9:b0: 9a:7b:e7:30:c9:4e:90:f5:90:c4:6e:ec:e5:16:f2:d6:e7:09: 5d:1c:6f:e6:b1:ae:d8:2c:33:cc:f0:d9:ca:37:42:1f:19:0b: a2:4d:36:37:87:12:de:a9:5b:b9:54:10:4b:7a:e9:8f:84:86: ce:f9:91:2f:54:44:44:73:97:b4:47:f7:ed:ae:21:ed:05:e8: c9:00:3f:30:ce:54:e5:b2:17:9b:8a:2d:77:47:66:4c:5d:83: 03:9f:0c:f2:03:b0:57:c7:40:44:7b:44:87:03:71:2c:56:70: fa:88:03:c7:9c:0e:8a:df:5c:0f:c9:10:9c:a0:a0:96:e4:47: c2:ae:6f:65:75:70:7f:cd:59:f4:df:53:f3:0b:db:1a:f4:51: 80:c3:86:fd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIfuK8ZUbBh7wn8/cswrGhpVB0hEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTE4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNjIxOGRkZWQ3ZWY0MTgwN2ZkMDRkYmZiMGI3ZTBhNmY2 MzllYWM0MDcwODljOTZkMTc1MDEwY2EzNGY2NGQ5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQoLVJGo0jL3hmP6WYfUk+D1+Y4+W+/B4nfxGueyS5xgUd VXgKKlJcoz2jHh1Gq8omBQQIflRCSJc9Z/9fdEfjJg/aEuYXUIx3SfzeIZe58ql3 ZkF0dpcicocAc2vauySh289zNR0Y9/V8LYfxpIcWoplToMMJG0zMY1Y2hNMKuQh7 GN0ti7ktYvv4we2ik5Y0C/ydgpYJye+0pr60TfOKA1L2nfXVe4vDLR5oZ1jD1wQ0 J5wPUBQo4OEHDECk31aA4hPGsVAgyfnjYsx2Rzdz9xm1dD7ztDEV+GCPhH8+CaBu CGoINRVzpGkDNW7V1ufBFtOPQsZA2BMh0JpaMZrpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXzqWf9R0j5Te9AJLN1Xzc2zrax4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzg3YmFmYjBkLTdjZWMtNDMzMS04YTA5LTRhNGQ1NmFiZjdkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAJfwcxBaL8d9A1LY32g+w6gT XfyGUhN/BpH3jVoahAi847mE31m5b1l+GVBcXzh25WnhBeIFY9pQfKvp9sIPVhZw iQlSVXiBjwMQhnLkMwBlKxLGcthCSd15U/yilgmMKcNa+zu0eoonu7jZsJp75zDJ TpD1kMRu7OUW8tbnCV0cb+axrtgsM8zw2co3Qh8ZC6JNNjeHEt6pW7lUEEt66Y+E hs75kS9URERzl7RH9+2uIe0F6MkAPzDOVOWyF5uKLXdHZkxdgwOfDPIDsFfHQER7 RIcDcSxWcPqIA8ecDorfXA/JEJygoJbkR8Kub2V1cH/NWfTfU/ML2xr0UYDDhv0= -----END CERTIFICATE-----Generated at Sat Aug 23 08:09:24 2025 by rpki-client