$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa File: f5b1d1bf-721f-4a57-a400-f549c190180c.roa (raw, json) Hash identifier: HZ807brCB6steVvEh7acw02acOFC6pdJigCHqcQpKrA= Subject key identifier: 32:08:50:20:B0:98:29:F8:82:AE:ED:4B:7D:A8:B7:F2:52:19:E7:F8 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 1FDB331C08A2998B7B43A34B1275C43F442CBBCC Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa Signing time: Wed 25 Jun 2025 15:06:45 +0000 ROA not before: Wed 25 Jun 2025 15:06:45 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2606:8140:400::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:db:33:1c:08:a2:99:8b:7b:43:a3:4b:12:75:c4:3f:44:2c:bb:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 15:06:45 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=ddc1661a019b00c8753c79c4262b1d702877220049abbb1cbedef0a9cd0d7f54, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:36:a3:d3:4e:60:5f:ce:bb:3d:5c:8f:35: 56:2c:9a:f1:24:af:2b:f9:0f:fd:af:e7:07:53:51: 55:84:86:ac:bc:84:9b:0c:19:5a:91:03:e5:da:44: 49:16:32:f4:92:c8:76:94:19:24:81:0a:86:78:93: d8:79:aa:d1:75:47:f5:9f:8e:ce:b0:d7:95:73:94: a8:10:cd:7d:d1:1f:b7:cf:ac:18:a4:71:c4:3b:36: d3:d3:3d:6a:2c:88:ea:d1:31:a0:e1:30:eb:fe:d7: 4e:08:1b:e7:46:55:eb:ef:ea:69:7f:cf:72:f1:b9: 29:63:05:87:fe:87:43:10:2a:1c:17:03:6a:dc:25: 5c:99:2a:f4:22:ac:15:a2:ec:6b:78:66:fc:41:1a: 39:5e:ee:93:fe:95:62:77:7b:49:ef:24:36:4c:80: c2:c2:6c:b2:5e:07:96:46:8a:6f:60:88:32:2e:28: cf:22:a2:21:48:57:0a:2a:81:f4:ea:34:c7:2f:76: 43:7c:5d:1d:cd:27:7f:59:29:b6:55:d6:ea:70:04: a2:66:4b:a6:60:f9:29:92:50:e0:50:03:95:9d:cf: 34:0b:ff:21:24:40:3a:c2:88:11:9b:76:e4:8f:06: 21:74:4a:46:c6:ae:62:1c:c2:5f:9c:d3:fc:6e:89: d7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:08:50:20:B0:98:29:F8:82:AE:ED:4B:7D:A8:B7:F2:52:19:E7:F8 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/f5b1d1bf-721f-4a57-a400-f549c190180c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:400::/40 Signature Algorithm: sha256WithRSAEncryption 50:e1:a2:92:d6:03:3b:5f:cb:df:2f:89:c3:73:36:93:5d:8f: 88:37:31:6b:03:f6:0e:e3:aa:2b:56:55:ea:18:9c:dd:f5:05: d5:8e:7c:67:c1:da:12:b9:ca:37:24:1e:b4:91:ee:6a:b5:72: cb:35:64:20:2b:9c:64:8d:62:45:57:52:a0:3f:ba:07:5f:a8: b6:22:1f:9d:c3:90:33:05:5a:7e:0d:95:13:b8:8b:cd:3a:7f: 55:62:55:28:70:f8:ca:1f:a6:da:c7:5c:51:d6:5d:c3:33:23: bd:e8:cc:ba:a7:b9:cf:41:6e:0b:0a:97:9e:76:3b:3b:e2:0b: db:9c:48:86:51:da:10:f4:a2:69:fa:8c:59:ba:a2:1f:05:3e: 6e:8b:85:60:4b:d1:90:c3:4c:0e:f4:5c:2d:a9:96:af:c7:e1: d1:34:2d:fd:f6:50:13:e4:43:ac:91:5e:1f:39:ae:12:37:4a: 02:0b:e0:e7:91:3c:6f:5f:0c:c4:02:5d:7a:f6:dd:2b:59:38: f4:c4:9b:1d:32:2b:87:a5:e6:36:54:3b:95:68:3f:dd:27:21: b7:86:b1:10:ce:1a:b9:84:77:41:4d:ae:1a:f1:f5:7a:f8:e2: 0f:96:d7:85:d7:e1:fa:56:c2:17:c5:d2:44:00:d6:96:96:8b: dc:89:9b:ea -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUH9szHAiimYt7Q6NLEnXEP0Qsu8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MTUwNjQ1WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZGMxNjYxYTAxOWIwMGM4NzUzYzc5YzQyNjJiMWQ3MDI4 NzcyMjAwNDlhYmJiMWNiZWRlZjBhOWNkMGQ3ZjU0MS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0yzaj005gX867PVyPNVYsmvEkryv5D/2v5wdTUVWEhqy8 hJsMGVqRA+XaREkWMvSSyHaUGSSBCoZ4k9h5qtF1R/Wfjs6w15VzlKgQzX3RH7fP rBikccQ7NtPTPWosiOrRMaDhMOv+104IG+dGVevv6ml/z3LxuSljBYf+h0MQKhwX A2rcJVyZKvQirBWi7Gt4ZvxBGjle7pP+lWJ3e0nvJDZMgMLCbLJeB5ZGim9giDIu KM8ioiFIVwoqgfTqNMcvdkN8XR3NJ39ZKbZV1upwBKJmS6Zg+SmSUOBQA5WdzzQL /yEkQDrCiBGbduSPBiF0SkbGrmIcwl+c0/xuidcXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUMghQILCYKfiCru1Lfai38lIZ5/gwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyL2Y1YjFkMWJmLTcyMWYtNGE1Ny1hNDAwLWY1NDljMTkwMTgwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBoFABDANBgkqhkiG9w0BAQsFAAOCAQEAUOGiktYDO1/L3y+Jw3M2k12P iDcxawP2DuOqK1ZV6hic3fUF1Y58Z8HaErnKNyQetJHuarVyyzVkICucZI1iRVdS oD+6B1+otiIfncOQMwVafg2VE7iLzTp/VWJVKHD4yh+m2sdcUdZdwzMjvejMuqe5 z0FuCwqXnnY7O+IL25xIhlHaEPSiafqMWbqiHwU+bouFYEvRkMNMDvRcLamWr8fh 0TQt/fZQE+RDrJFeHzmuEjdKAgvg55E8b18MxAJdevbdK1k49MSbHTIrh6XmNlQ7 lWg/3Scht4axEM4auYR3QU2uGvH1evjiD5bXhdfh+lbCF8XSRADWlpaL3Imb6g== -----END CERTIFICATE-----Generated at Mon Jun 30 16:05:14 2025 by rpki-client