$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa File: c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa (raw, json) Hash identifier: UJrms4cY7cMcEaxmK42AKWvdTF6XzHJcCm/MYe647E4= Subject key identifier: 69:12:6C:18:27:95:EC:DF:65:C7:99:CA:50:54:C2:AD:1C:EB:47:31 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 32AC27B798730A03CDDB8D922C7E09851934335A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa Signing time: Mon 16 Jun 2025 19:20:35 +0000 ROA not before: Mon 16 Jun 2025 19:20:35 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:300::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ac:27:b7:98:73:0a:03:cd:db:8d:92:2c:7e:09:85:19:34:33:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:20:35 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=2c44f05352c9545d26dd50fd9bd88a7a5079ffb30516b12daeeab71512307428, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:97:44:15:b1:6c:f5:d2:35:2c:6d:45:57:02: db:f6:cb:a2:54:2e:f2:22:12:e1:ad:62:33:dd:86: 92:b2:c3:66:63:10:42:51:a7:f7:e8:16:42:f4:92: 32:40:51:a5:42:42:01:a4:d9:9b:33:a8:32:2d:2d: d1:8a:0d:d7:79:9e:b9:06:ed:c8:ec:81:19:bd:a9: 6c:cb:82:cd:32:84:b5:ac:41:01:ad:50:c2:8c:1f: e1:9a:5e:c0:b3:f9:90:0f:fb:46:be:a1:be:9e:32: 91:ed:1f:a3:03:3f:8d:39:0c:98:4f:8f:bd:9b:e4: bc:71:b3:0e:52:51:4e:92:15:cf:50:61:e8:a2:24: 61:e1:b5:5d:d2:0b:b7:3d:76:40:d5:f7:26:67:d0: fb:61:fc:f5:90:92:21:15:f2:87:0b:9c:8d:fc:e8: 4a:7c:09:4c:0d:b7:af:80:cb:bf:cb:50:04:8c:03: 28:6a:3c:4a:6e:56:bb:cf:f6:47:6a:f5:81:5b:3b: 64:e0:89:f7:cf:8b:fd:58:b5:2c:bd:1b:ba:88:07: 51:44:0c:3f:19:c6:11:b3:0f:04:cc:17:55:9f:16: 4e:d3:c6:fb:ad:15:9f:b3:f3:70:45:36:b0:f8:07: e1:62:b6:c9:59:35:28:b0:6b:ce:54:b6:18:46:9a: 2f:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:12:6C:18:27:95:EC:DF:65:C7:99:CA:50:54:C2:AD:1C:EB:47:31 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c9a7bd20-48bd-4f0a-937e-2ccc73008f73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:300::/44 Signature Algorithm: sha256WithRSAEncryption 11:5c:8f:34:98:4f:ca:c5:fe:76:24:79:c6:36:de:04:c3:ef: 90:4a:56:f0:ab:99:18:31:2f:49:9a:db:da:f4:fb:8a:3c:58: a3:81:82:2a:23:15:0f:44:70:c4:87:fa:40:fd:23:01:39:75: 89:b7:69:27:88:e9:da:51:30:2f:ec:ee:48:3b:d2:6a:94:99: 98:2b:ee:71:0c:f3:1d:9b:29:89:73:ee:d7:6f:60:31:57:00: 72:58:cd:0d:d7:01:71:2e:80:38:c0:dc:82:1e:d7:54:5d:0c: 34:07:70:6d:4c:3b:09:6c:0e:b6:ed:60:53:bb:52:0c:2d:f7: 42:02:b2:e7:e1:2b:cb:5d:0b:7e:cc:ac:7b:d6:07:8e:3d:17: 7a:ab:10:58:34:8a:d3:cc:3f:8d:b0:8c:59:17:eb:45:56:7d: 89:05:07:1e:b4:3b:b0:45:58:b0:60:72:06:f1:fa:5a:5f:41: fb:27:83:10:44:4e:70:3e:fb:ce:52:38:65:ae:4c:c8:ca:a1: 1e:19:70:df:b8:d1:18:2d:1f:1c:3f:54:8e:2a:7e:52:af:ec: 52:65:2f:e9:bf:4e:4b:92:07:cf:fb:92:38:87:cd:0e:9b:cc: 63:72:01:4d:72:d2:3b:7a:5b:11:99:29:43:3c:5a:ac:b1:46: 2c:47:44:7c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMqwnt5hzCgPN242SLH4JhRk0M1owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkyMDM1WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzQ0ZjA1MzUyYzk1NDVkMjZkZDUwZmQ5YmQ4OGE3YTUw NzlmZmIzMDUxNmIxMmRhZWVhYjcxNTEyMzA3NDI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFl0QVsWz10jUsbUVXAtv2y6JULvIiEuGtYjPdhpKyw2Zj EEJRp/foFkL0kjJAUaVCQgGk2ZszqDItLdGKDdd5nrkG7cjsgRm9qWzLgs0yhLWs QQGtUMKMH+GaXsCz+ZAP+0a+ob6eMpHtH6MDP405DJhPj72b5Lxxsw5SUU6SFc9Q YeiiJGHhtV3SC7c9dkDV9yZn0Pth/PWQkiEV8ocLnI386Ep8CUwNt6+Ay7/LUASM AyhqPEpuVrvP9kdq9YFbO2TgiffPi/1YtSy9G7qIB1FEDD8ZxhGzDwTMF1WfFk7T xvutFZ+z83BFNrD4B+FitslZNSiwa85UthhGmi8PAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUaRJsGCeV7N9lx5nKUFTCrRzrRzEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5YTdiZDIwLTQ4YmQtNGYwYS05MzdlLTJjY2M3MzAwOGY3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAwAwDQYJKoZIhvcNAQELBQADggEBABFcjzSYT8rF/nYkecY23gTD 75BKVvCrmRgxL0ma29r0+4o8WKOBgiojFQ9EcMSH+kD9IwE5dYm3aSeI6dpRMC/s 7kg70mqUmZgr7nEM8x2bKYlz7tdvYDFXAHJYzQ3XAXEugDjA3IIe11RdDDQHcG1M OwlsDrbtYFO7Ugwt90ICsufhK8tdC37MrHvWB449F3qrEFg0itPMP42wjFkX60VW fYkFBx60O7BFWLBgcgbx+lpfQfsngxBETnA++85SOGWuTMjKoR4ZcN+40RgtHxw/ VI4qflKv7FJlL+m/TkuSB8/7kjiHzQ6bzGNyAU1y0jt6WxGZKUM8WqyxRixHRHw= -----END CERTIFICATE-----Generated at Tue Jul 1 08:58:09 2025 by rpki-client