$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa File: cd541762-84a0-4063-89f9-de14817d2419.roa (raw, json) Hash identifier: WSfTBFupwU9QRK8ue5A/0bzpxIC0TaQV4X4c+ucn7fc= Subject key identifier: 17:BD:A5:B1:E6:05:34:1D:7E:F7:46:78:61:61:2D:ED:61:37:CF:4F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2048FB6782CC6E0F9E0FD9EAFE435611CC6ACBF6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa Signing time: Mon 16 Jun 2025 19:10:23 +0000 ROA not before: Mon 16 Jun 2025 19:10:23 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 04 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:48:fb:67:82:cc:6e:0f:9e:0f:d9:ea:fe:43:56:11:cc:6a:cb:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:10:23 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=32d4ff5c3e75bddeea49d90d88a5ebe749bb54318f81a679d64d3c1a314a10a5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ed:1b:4c:96:c0:18:b7:e3:64:35:31:91:e3: 01:13:58:44:18:a5:ff:21:3a:70:0e:24:31:49:14: ad:fb:7a:2f:bc:94:bf:1a:77:ee:8c:a4:e8:af:38: 89:08:4e:82:1e:3b:d6:14:8d:97:5f:50:d8:59:c8: 23:fd:09:6f:74:cf:a0:b8:51:20:97:b9:c9:a0:0e: 60:53:04:fa:74:3c:da:e3:b7:1f:ab:5c:1d:e1:b4: c4:a3:45:49:7e:88:9c:32:e5:7b:73:ec:1a:7d:3d: ab:05:bc:ab:da:a5:00:bc:a0:58:be:d6:3d:63:f5: 84:83:1a:46:96:29:2f:82:91:eb:57:b3:d8:cb:a3: e3:37:02:69:d1:35:52:27:fb:3d:b9:91:f3:36:da: 06:7e:ae:db:b9:46:6a:66:5e:9a:c3:85:81:aa:82: 0d:80:0d:e2:35:86:1b:4a:65:e5:08:88:4a:a9:0d: 99:67:6f:f3:e1:80:57:19:fc:ac:4d:4c:7a:c0:3f: d8:4a:1e:29:93:a7:fc:19:cb:a2:55:0a:0b:2d:19: 41:ab:ac:6d:d4:c1:f1:09:96:c3:0b:ce:65:2d:12: d3:dd:4e:ee:87:2e:6d:87:58:46:f4:7c:07:03:12: 4c:bb:c0:71:c7:15:44:cd:24:9f:20:80:6e:95:a4: f8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:BD:A5:B1:E6:05:34:1D:7E:F7:46:78:61:61:2D:ED:61:37:CF:4F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cd541762-84a0-4063-89f9-de14817d2419.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 9f:2b:97:02:11:6a:30:ed:ce:c7:96:31:c1:7e:fd:bd:ab:f1: 63:76:5a:ab:55:94:86:ea:20:9d:33:a5:41:9c:33:dd:0d:17: e6:55:66:4e:88:28:72:d2:32:c4:2e:27:42:74:ee:06:c4:95: b6:fc:f7:16:8c:d2:e5:04:71:06:49:96:29:e6:29:dc:b8:9d: 39:30:a1:4b:18:22:19:a6:84:c5:b2:de:9b:b5:3c:43:57:3c: d3:1c:46:d2:5c:82:18:d8:ea:7a:a7:4e:c3:6f:af:0a:6b:3a: 39:a1:b1:0b:6d:5a:79:ea:d5:d7:6d:70:0d:93:bf:95:35:9f: 97:e6:1f:4c:6b:af:c8:09:95:57:04:07:08:a4:eb:cc:8d:07: 87:8b:82:3c:33:20:bf:39:02:88:d2:95:42:a3:07:68:ca:de: a0:d9:2d:52:4f:67:40:1c:46:09:c8:5b:87:e4:ee:13:a7:55: 07:92:91:92:11:4a:aa:c6:a0:40:99:fc:0c:c3:4e:db:4d:37: c8:50:4e:87:6b:8b:55:71:c4:69:f6:54:30:e2:a3:e9:fe:02: 15:17:1a:1d:a1:4a:dd:6d:1c:39:61:b3:64:f2:81:5b:d2:47: e9:de:94:37:d5:53:3e:fe:7b:e6:9e:43:d7:90:4d:2f:45:7b: f0:74:fa:96 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIEj7Z4LMbg+eD9nq/kNWEcxqy/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkxMDIzWhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMmQ0ZmY1YzNlNzViZGRlZWE0OWQ5MGQ4OGE1ZWJlNzQ5 YmI1NDMxOGY4MWE2NzlkNjRkM2MxYTMxNGExMGE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD27RtMlsAYt+NkNTGR4wETWEQYpf8hOnAOJDFJFK37ei+8 lL8ad+6MpOivOIkIToIeO9YUjZdfUNhZyCP9CW90z6C4USCXucmgDmBTBPp0PNrj tx+rXB3htMSjRUl+iJwy5Xtz7Bp9PasFvKvapQC8oFi+1j1j9YSDGkaWKS+CketX s9jLo+M3AmnRNVIn+z25kfM22gZ+rtu5RmpmXprDhYGqgg2ADeI1hhtKZeUIiEqp DZlnb/PhgFcZ/KxNTHrAP9hKHimTp/wZy6JVCgstGUGrrG3UwfEJlsMLzmUtEtPd Tu6HLm2HWEb0fAcDEky7wHHHFUTNJJ8ggG6VpPhxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUF72lseYFNB1+90Z4YWEt7WE3z08wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkNTQxNzYyLTg0YTAtNDA2My04OWY5LWRlMTQ4MTdkMjQxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAJ8rlwIRajDtzseWMcF+/b2r 8WN2WqtVlIbqIJ0zpUGcM90NF+ZVZk6IKHLSMsQuJ0J07gbElbb89xaM0uUEcQZJ linmKdy4nTkwoUsYIhmmhMWy3pu1PENXPNMcRtJcghjY6nqnTsNvrwprOjmhsQtt Wnnq1ddtcA2Tv5U1n5fmH0xrr8gJlVcEBwik68yNB4eLgjwzIL85AojSlUKjB2jK 3qDZLVJPZ0AcRgnIW4fk7hOnVQeSkZIRSqrGoECZ/AzDTttNN8hQTodri1VxxGn2 VDDio+n+AhUXGh2hSt1tHDlhs2TygVvSR+nelDfVUz7+e+aeQ9eQTS9Fe/B0+pY= -----END CERTIFICATE-----Generated at Wed Jul 2 19:37:29 2025 by rpki-client