$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa File: fc2b5e45-8344-4038-8f8f-6229cecec136.roa (raw, json) Hash identifier: ftDfG5GduzSgPXwMwR/b2R5Z49TJWqzYTfDusk+7tZs= Subject key identifier: 06:71:DE:7E:CF:C3:0C:FA:DB:BD:FB:42:98:B8:EC:A3:A3:9C:38:C9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0387AAD45C068D3CD0E01936AD1B4CC3A7003AAC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa Signing time: Sat 09 Aug 2025 00:10:48 +0000 ROA not before: Sat 09 Aug 2025 00:10:48 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 25 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:87:aa:d4:5c:06:8d:3c:d0:e0:19:36:ad:1b:4c:c3:a7:00:3a:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 9 00:10:48 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=f991a5eb2a005d962bbabcb2e286eaaa38f25a028e6f03cdb7da7554bd17d954, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2d:86:7c:40:d2:7f:4e:a0:de:fe:9c:14:1a: 9f:ba:56:18:3a:c0:9e:4e:b5:88:25:24:ea:99:9f: 96:e9:ba:ca:e6:0b:fa:40:44:98:23:7b:70:d0:ce: 25:8c:50:2a:09:39:40:e0:df:b9:c9:42:f5:f3:37: 9f:d8:37:3f:e1:a2:d8:0a:03:68:db:bd:1a:b9:27: 6e:eb:6d:51:df:84:df:b2:18:2e:d7:26:c0:71:b5: a7:8b:88:82:97:77:6b:aa:09:24:e9:df:2f:76:e6: 36:b5:83:9f:32:fc:ec:4a:17:84:8b:d6:03:23:24: c3:f0:56:ac:3b:97:5d:3c:f9:0f:13:f1:ff:d6:84: a5:11:22:ad:99:38:03:6a:b0:22:a6:8d:aa:96:b6: ae:fc:16:4a:85:75:32:8a:ac:b2:b0:23:6f:59:b0: fd:86:aa:90:dc:c9:14:80:59:64:2c:7f:f4:fc:44: cb:11:34:1d:32:b6:49:83:be:7b:41:f1:e7:93:88: fc:2f:fe:f6:b8:d6:41:6d:88:90:b7:b9:9e:5d:1a: 66:38:1a:66:4f:a6:8c:7b:85:53:41:e6:4e:02:59: b7:0e:bc:04:78:dc:1b:92:d6:a2:1b:db:ae:d9:d8: f0:56:c1:21:b5:3b:07:6c:de:ce:c1:9e:32:96:02: 62:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:71:DE:7E:CF:C3:0C:FA:DB:BD:FB:42:98:B8:EC:A3:A3:9C:38:C9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 8c:1a:16:e0:3c:5d:c7:07:5d:3b:fd:8b:44:e4:e8:b9:7a:57: e8:f7:28:08:00:71:b8:88:d8:e2:22:8c:a2:ba:4f:c4:69:85: 6f:b0:ce:cd:79:4a:f3:e2:e7:9f:18:0a:9c:27:4c:82:89:b9: fe:b4:1d:b4:51:9c:72:79:30:3a:c4:47:bb:4a:26:d0:4a:f7: 73:ff:e0:45:80:f7:1e:0f:ca:b8:0c:a7:36:05:4a:3b:18:11: 5d:ff:8a:b9:78:dd:11:88:72:a1:8e:26:16:31:7a:2c:af:c1: f4:4a:24:9c:0d:11:35:22:57:86:0a:a3:96:52:1d:e3:2e:ff: 82:64:19:db:e3:10:1e:d7:95:53:3b:68:4a:5e:61:25:8b:1c: ae:d6:41:b3:2c:a4:23:21:44:7f:bc:87:57:9c:d5:e3:c7:c8: 7e:4d:1d:be:c1:e5:01:cd:54:ca:f5:55:cc:cb:5e:d8:f6:3a: 9c:f3:a2:d4:de:10:db:61:52:9c:14:50:8a:aa:62:e5:37:f0: bc:99:e6:d4:9b:7d:75:e4:62:18:1b:39:f9:ee:03:d6:e1:b4: 12:23:e1:80:97:91:da:7f:4f:ee:31:b9:64:04:19:79:c8:c2: 60:ff:86:eb:fa:b8:ae:52:cd:aa:ed:af:59:9b:c3:a3:a1:3c: 85:4d:e1:8b -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUA4eq1FwGjTzQ4Bk2rRtMw6cAOqwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA5MDAxMDQ4WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmOTkxYTVlYjJhMDA1ZDk2MmJiYWJjYjJlMjg2ZWFhYTM4 ZjI1YTAyOGU2ZjAzY2RiN2RhNzU1NGJkMTdkOTU0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFLYZ8QNJ/TqDe/pwUGp+6Vhg6wJ5OtYglJOqZn5bpusrm C/pARJgje3DQziWMUCoJOUDg37nJQvXzN5/YNz/hotgKA2jbvRq5J27rbVHfhN+y GC7XJsBxtaeLiIKXd2uqCSTp3y925ja1g58y/OxKF4SL1gMjJMPwVqw7l108+Q8T 8f/WhKURIq2ZOANqsCKmjaqWtq78FkqFdTKKrLKwI29ZsP2GqpDcyRSAWWQsf/T8 RMsRNB0ytkmDvntB8eeTiPwv/va41kFtiJC3uZ5dGmY4GmZPpox7hVNB5k4CWbcO vAR43BuS1qIb267Z2PBWwSG1Owds3s7BnjKWAmIHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUBnHefs/DDPrbvftCmLjso6OcOMkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjMmI1ZTQ1LTgzNDQtNDAzOC04ZjhmLTYyMjljZWNlYzEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAIwaFuA8XccHXTv9i0Tk6Ll6 V+j3KAgAcbiI2OIijKK6T8RphW+wzs15SvPi558YCpwnTIKJuf60HbRRnHJ5MDrE R7tKJtBK93P/4EWA9x4PyrgMpzYFSjsYEV3/irl43RGIcqGOJhYxeiyvwfRKJJwN ETUiV4YKo5ZSHeMu/4JkGdvjEB7XlVM7aEpeYSWLHK7WQbMspCMhRH+8h1ec1ePH yH5NHb7B5QHNVMr1VczLXtj2OpzzotTeENthUpwUUIqqYuU38LyZ5tSbfXXkYhgb OfnuA9bhtBIj4YCXkdp/T+4xuWQEGXnIwmD/huv6uK5Szartr1mbw6OhPIVN4Ys= -----END CERTIFICATE-----Generated at Sat Aug 23 17:05:11 2025 by rpki-client