$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa File: a1083a01-360a-4b23-a3a3-630df82536fc.roa (raw, json) Hash identifier: gRdtjigyoxbSMBsULSrPrDXMOPIyJ770WcyN2D/Ru8c= Subject key identifier: E7:55:AE:EE:DF:A7:7D:3C:A5:BF:D2:AD:1C:5B:EB:DC:2D:EE:44:AE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 70F133CA372A5AA48188F025AE1FF167EB1A1F2F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa Signing time: Mon 16 Jun 2025 19:10:12 +0000 ROA not before: Mon 16 Jun 2025 19:10:12 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 30 Jun 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:f1:33:ca:37:2a:5a:a4:81:88:f0:25:ae:1f:f1:67:eb:1a:1f:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:10:12 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=48c2d9e76b906b2fe678865586be5df90b84276c70dcea4a1b92644cb4bdccfd, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5c:18:0f:13:34:1f:9b:57:7b:26:cf:0f:52: 28:55:5a:a9:8a:cf:fb:c4:f0:99:78:78:87:0f:63: 10:42:c3:e6:4e:13:c6:74:93:7f:98:d3:e5:6c:08: ec:98:00:f6:cb:84:d6:36:27:b8:c8:fa:0c:e1:d0: 82:15:70:04:27:4c:f8:4a:55:b8:57:77:4e:24:8c: 4b:5c:24:ce:55:78:d9:6c:dc:e7:3d:c9:cc:38:e8: f4:f3:b0:fd:b8:ef:98:5a:09:74:45:43:cc:4d:84: ff:13:c9:8e:88:a8:3c:3d:02:50:9b:78:c1:65:92: ad:6c:37:99:62:43:c4:7f:ac:74:68:35:4f:17:10: be:c4:d2:00:01:62:46:37:f0:7f:83:a5:e7:b3:ff: c7:cf:52:90:6c:20:2c:ab:02:aa:84:6d:5f:6d:48: 31:fd:70:81:3c:db:e1:cf:1f:3e:ac:e8:01:8c:4f: 10:15:09:30:31:f1:4d:c6:2c:53:a0:c4:fe:25:95: 19:c8:33:a7:69:cb:e0:73:86:fe:87:c3:b2:a1:74: 3f:03:94:70:45:09:0a:7a:7b:31:04:5f:c8:11:2e: b9:9c:cf:50:15:44:12:c5:98:ae:fc:61:de:dd:fe: 0f:67:e7:3c:b3:5e:2e:91:b8:13:37:bf:cc:7e:08: 31:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:55:AE:EE:DF:A7:7D:3C:A5:BF:D2:AD:1C:5B:EB:DC:2D:EE:44:AE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 10:ab:94:8a:e0:bd:f4:48:59:df:1f:6e:37:84:7e:77:ed:70: 4a:fd:0d:72:39:9e:ff:d4:f0:2c:c5:78:44:e2:ab:f2:0d:cb: 37:7d:3f:f6:29:c8:98:f6:2f:18:0a:83:2e:c1:18:79:e4:b3: 51:cf:a0:05:ad:80:45:6d:8a:81:b5:e0:40:f7:d8:3c:3d:db: 62:b9:70:55:fc:ed:62:fd:98:66:5c:e6:5e:4b:08:6e:b2:e9: 6f:0d:92:b8:f4:af:07:76:c0:82:84:52:20:89:f1:65:a2:7f: 6c:2c:92:6f:ed:53:b4:36:2d:0c:e5:f0:2d:62:64:36:30:8b: ba:21:c7:2d:42:08:be:31:2c:51:5d:c2:96:43:16:74:2c:57: e6:6f:ea:00:f9:d1:89:4c:76:e9:cc:4c:16:bb:94:de:14:36: 42:7a:73:ca:ec:a6:81:50:27:8c:e8:ba:22:ef:ca:37:57:3a: 37:21:66:06:44:69:c9:9d:85:0d:c1:c0:ba:50:b8:73:a2:27: a2:14:82:d0:d0:e0:f6:26:af:49:7e:fb:38:73:81:6d:63:28: c4:06:57:f1:0e:3f:1a:49:99:b6:16:47:f9:22:54:8f:c6:20: bd:49:01:f1:d1:cc:52:74:a5:db:db:4b:1d:4c:b6:ff:d6:ff: b4:0e:58:1b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcPEzyjcqWqSBiPAlrh/xZ+saHy8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkxMDEyWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGMyZDllNzZiOTA2YjJmZTY3ODg2NTU4NmJlNWRmOTBi ODQyNzZjNzBkY2VhNGExYjkyNjQ0Y2I0YmRjY2ZkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0XBgPEzQfm1d7Js8PUihVWqmKz/vE8Jl4eIcPYxBCw+ZO E8Z0k3+Y0+VsCOyYAPbLhNY2J7jI+gzh0IIVcAQnTPhKVbhXd04kjEtcJM5VeNls 3Oc9ycw46PTzsP2475haCXRFQ8xNhP8TyY6IqDw9AlCbeMFlkq1sN5liQ8R/rHRo NU8XEL7E0gABYkY38H+Dpeez/8fPUpBsICyrAqqEbV9tSDH9cIE82+HPHz6s6AGM TxAVCTAx8U3GLFOgxP4llRnIM6dpy+Bzhv6Hw7KhdD8DlHBFCQp6ezEEX8gRLrmc z1AVRBLFmK78Yd7d/g9n5zyzXi6RuBM3v8x+CDHhAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU51Wu7t+nfTylv9KtHFvr3C3uRK4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExMDgzYTAxLTM2MGEtNGIyMy1hM2EzLTYzMGRmODI1MzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBABCrlIrgvfRIWd8fbjeEfnft cEr9DXI5nv/U8CzFeETiq/INyzd9P/YpyJj2LxgKgy7BGHnks1HPoAWtgEVtioG1 4ED32Dw922K5cFX87WL9mGZc5l5LCG6y6W8Nkrj0rwd2wIKEUiCJ8WWif2wskm/t U7Q2LQzl8C1iZDYwi7ohxy1CCL4xLFFdwpZDFnQsV+Zv6gD50YlMdunMTBa7lN4U NkJ6c8rspoFQJ4zouiLvyjdXOjchZgZEacmdhQ3BwLpQuHOiJ6IUgtDQ4PYmr0l+ +zhzgW1jKMQGV/EOPxpJmbYWR/kiVI/GIL1JAfHRzFJ0pdvbSx1Mtv/W/7QOWBs= -----END CERTIFICATE-----Generated at Sun Jun 29 20:55:22 2025 by rpki-client