$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa File: 2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa (raw, json) Hash identifier: waMzc+RwtI5vtjUSJ61TlmwOnyAzQjBoGZoExreXbN4= Subject key identifier: 24:70:47:CE:BE:78:40:62:A6:7C:66:57:DA:1C:46:70:51:7D:7F:0A Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 7D7B68B5B1D433BE70BF8BF4224F87385E0B3979 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa Signing time: Wed 18 Jun 2025 00:30:05 +0000 ROA not before: Wed 18 Jun 2025 00:30:05 +0000 ROA not after: Wed 23 Jul 2025 23:59:59 +0000 asID: 699 IP address blocks: 2606:7b40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 05 Jul 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:7b:68:b5:b1:d4:33:be:70:bf:8b:f4:22:4f:87:38:5e:0b:39:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 18 00:30:05 2025 GMT Not After : Jul 23 23:59:59 2025 GMT Subject: serialNumber=e24f5618e110c327c20a8e3a978f67a34a55763a4787efe9e4cc8e3619b9ff8e, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:97:60:ec:15:5c:a7:fd:79:ad:da:10:ac:18: 17:05:39:ea:af:10:3f:57:2d:7c:c5:23:fe:c7:5e: f0:9a:a0:b1:25:24:a8:ce:a5:29:00:7c:58:93:b1: b9:bd:a6:10:93:9c:61:76:ba:bf:e1:51:f6:63:91: dc:5f:c6:3b:23:64:bf:bd:fe:38:56:db:45:77:a1: 00:4b:24:c1:e6:86:84:54:7e:01:ac:5b:1e:99:ca: bb:85:68:f2:01:39:d8:3a:37:88:83:5f:6a:28:7c: 3a:a8:5f:df:54:81:aa:f3:ac:34:45:f8:81:9b:53: 3c:f5:a7:43:f2:f2:03:df:dc:af:8c:91:90:e2:e5: 35:17:ea:dc:29:bb:1b:5b:00:0f:4a:40:16:0f:19: fd:35:b4:77:a2:f8:84:6f:c2:06:bf:42:25:85:bb: f4:5e:43:39:76:3d:85:d9:79:6a:1a:d9:ff:59:6f: c8:2c:3f:a6:70:34:5c:7f:10:89:0c:a3:7d:e3:07: d5:1c:b0:a2:01:4d:d3:34:7d:20:b7:cc:a0:2e:a3: c0:4a:fc:49:60:04:68:e3:d0:c6:89:23:7f:a5:67: 2d:55:84:70:ec:06:5f:70:8c:3a:75:0c:6a:01:86: ff:ef:56:66:31:85:42:eb:8c:b9:2e:c4:42:8e:e8: cd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:70:47:CE:BE:78:40:62:A6:7C:66:57:DA:1C:46:70:51:7D:7F:0A X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/2da90c2b-8bea-40c6-8dc8-5765b67fc610.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 5f:be:6a:19:70:84:ec:ad:27:bc:ff:ca:d1:92:52:b2:eb:c5: 45:5d:52:4f:84:bb:ca:a9:a8:df:75:ce:ce:75:77:87:57:53: 59:d1:11:ac:d7:57:a1:fb:f0:6c:42:5c:a9:c5:84:7b:54:82: bb:6c:dc:a5:ff:3f:93:8d:0c:45:9c:91:ed:48:9c:e4:fa:bb: a0:e1:64:cf:6e:4b:be:81:35:41:d2:39:3d:76:67:6b:20:d2: 47:75:05:af:9a:4d:0b:62:e4:09:4b:58:80:6e:55:79:4c:5c: 72:0b:88:a3:4a:1f:e1:7a:22:08:c6:80:9b:d2:0a:c9:81:a0: b8:c2:fb:a0:e5:45:8b:98:04:65:64:d3:db:3d:0d:e5:5e:7f: cd:23:53:a5:7c:9d:8c:bf:4f:00:b7:fc:42:a6:28:65:0d:f5: 0a:41:42:4c:76:bd:57:60:c3:5b:2a:7e:f5:a4:a8:03:9f:d1: bb:e7:5f:33:1b:88:2c:b4:00:94:9b:ca:3e:3c:02:de:ef:c9: 65:6d:22:39:e8:0b:b8:4f:0a:12:46:c1:59:31:a8:55:85:0e: 46:ff:b1:26:26:ab:d4:ee:0e:d4:21:c5:40:80:5e:e8:aa:a3: 44:e4:0b:3c:12:94:44:79:6f:39:09:f1:71:e7:9e:5a:0a:fc: fa:a1:fb:85 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgIUfXtotbHUM75wv4v0Ik+HOF4LOXkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjE4MDAzMDA1WhcNMjUwNzIzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjRmNTYxOGUxMTBjMzI3YzIwYThlM2E5NzhmNjdhMzRh NTU3NjNhNDc4N2VmZTllNGNjOGUzNjE5YjlmZjhlMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrl2DsFVyn/Xmt2hCsGBcFOeqvED9XLXzFI/7HXvCaoLEl JKjOpSkAfFiTsbm9phCTnGF2ur/hUfZjkdxfxjsjZL+9/jhW20V3oQBLJMHmhoRU fgGsWx6ZyruFaPIBOdg6N4iDX2oofDqoX99UgarzrDRF+IGbUzz1p0Py8gPf3K+M kZDi5TUX6twpuxtbAA9KQBYPGf01tHei+IRvwga/QiWFu/ReQzl2PYXZeWoa2f9Z b8gsP6ZwNFx/EIkMo33jB9UcsKIBTdM0fSC3zKAuo8BK/ElgBGjj0MaJI3+lZy1V hHDsBl9wjDp1DGoBhv/vVmYxhULrjLkuxEKO6M3FAgMBAAGjggKyMIICrjAdBgNV HQ4EFgQUJHBHzr54QGKmfGZX2hxGcFF9fwowHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzJkYTkwYzJiLThiZWEtNDBjNi04ZGM4LTU3NjViNjdmYzYxMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAmBntAMA0GCSqGSIb3DQEBCwUAA4IBAQBfvmoZcITsrSe8/8rRklKy68VF XVJPhLvKqajfdc7OdXeHV1NZ0RGs11eh+/BsQlypxYR7VIK7bNyl/z+TjQxFnJHt SJzk+rug4WTPbku+gTVB0jk9dmdrINJHdQWvmk0LYuQJS1iAblV5TFxyC4ijSh/h eiIIxoCb0grJgaC4wvug5UWLmARlZNPbPQ3lXn/NI1OlfJ2Mv08At/xCpihlDfUK QUJMdr1XYMNbKn71pKgDn9G7518zG4gstACUm8o+PALe78llbSI56Au4TwoSRsFZ MahVhQ5G/7EmJqvU7g7UIcVAgF7oqqNE5As8EpREeW85CfFx555aCvz6ofuF -----END CERTIFICATE-----Generated at Fri Jul 4 13:33:20 2025 by rpki-client