$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/100ca166-7317-4d78-8102-ea1dfe26d0e3.roa File: 100ca166-7317-4d78-8102-ea1dfe26d0e3.roa (raw, json) Hash identifier: /ChlfYaod4aOqwQLlRBGJAyFK8rOk2lXnpW9fiIVCXo= Subject key identifier: 46:16:53:99:0F:A9:9A:49:EE:AE:3E:78:30:68:D1:66:B3:F7:71:9F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2EA608FB14B8BD10A316E0C75C27027ED7CB2509 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/100ca166-7317-4d78-8102-ea1dfe26d0e3.roa Signing time: Mon 16 Jun 2025 19:10:14 +0000 ROA not before: Mon 16 Jun 2025 19:10:14 +0000 ROA not after: Mon 21 Jul 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:551a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 03 Jul 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:a6:08:fb:14:b8:bd:10:a3:16:e0:c7:5c:27:02:7e:d7:cb:25:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jun 16 19:10:14 2025 GMT Not After : Jul 21 23:59:59 2025 GMT Subject: serialNumber=510aa2cb0a5fb0d01d7fec07343551dc56a4bcf4c2d59a23059600be944b3f24, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:e4:f9:4d:aa:59:5d:80:e1:84:23:0a:75:01: e4:a5:07:e3:18:8b:98:3b:5b:4b:f2:7b:77:96:67: f3:a7:65:0f:fd:e4:64:19:d9:38:37:ad:64:9b:d9: 00:1a:7c:fc:71:c0:35:ea:8a:66:e2:84:3c:bc:7d: f7:d8:c3:cf:6e:45:fc:10:db:66:66:65:9e:8d:90: 11:e1:36:8d:31:35:5d:6c:8e:15:fa:46:e8:dc:1f: 14:83:24:ff:4a:31:ff:bb:16:88:4b:52:65:4b:af: d1:07:e4:c6:61:31:60:61:40:1e:0b:17:a2:fb:ef: b1:1e:83:b2:a6:52:03:53:e7:0c:82:5e:2b:5f:bf: b5:a5:47:5e:04:9c:6c:2f:6e:68:04:78:6c:66:16: 10:7f:36:d8:54:92:17:f3:86:ea:fa:ea:9a:1a:e4: 0f:83:79:46:7a:42:b1:dc:04:40:fe:dd:7d:84:3b: 1d:83:76:bd:0d:73:db:ca:64:00:5c:02:79:5d:32: 12:3d:94:88:19:6c:00:71:96:17:bc:3d:ac:8e:5d: ba:8c:40:ae:e6:36:8e:df:a6:ac:24:bd:89:60:c0: 0b:52:bc:8b:35:46:a2:7a:8f:32:56:fc:83:60:73: 69:d9:1c:a6:c5:39:9b:09:dd:6f:f1:3d:e2:b8:22: f8:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:16:53:99:0F:A9:9A:49:EE:AE:3E:78:30:68:D1:66:B3:F7:71:9F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/100ca166-7317-4d78-8102-ea1dfe26d0e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551a::/48 Signature Algorithm: sha256WithRSAEncryption 46:1b:71:ba:68:1f:0c:dc:9c:81:1f:08:0c:10:0e:f2:68:5f: 9d:b3:10:21:da:73:29:ae:a7:b3:a8:c9:ee:ef:c6:86:d7:f3: c5:6c:3a:b2:0c:dd:c4:7d:48:b1:63:3d:11:d0:a4:90:09:99: 90:68:e4:34:99:6f:fd:65:97:e3:b6:d9:f2:25:fe:e6:3e:46: ca:5a:39:e8:9a:5f:18:08:38:45:28:27:91:ff:17:1d:e4:a2: 35:eb:e6:56:9a:3a:dd:4d:ea:0e:fd:0a:20:0a:cb:be:69:cd: d2:6f:c8:95:34:75:ec:fb:73:92:7b:cf:9d:f0:a1:c6:47:07: f4:40:98:dc:99:29:2a:44:dd:aa:28:6d:d8:dd:d0:3c:61:4b: 43:cd:2e:d4:cf:18:6e:6b:cd:6d:f5:50:97:d2:ab:e9:53:4e: ef:f1:c0:f1:55:aa:ec:f1:75:18:aa:9f:51:28:6e:f5:19:7e: cc:c2:d2:55:29:7e:99:6c:13:54:9e:56:c0:a7:71:73:77:5b: 0c:66:65:bb:36:97:f4:5f:cd:7d:23:6a:5e:25:1f:80:64:00: f9:c2:4e:06:dd:c7:ed:7c:f5:2e:9f:aa:71:88:08:c0:e3:f0: e3:e4:77:ce:9e:c5:16:90:5d:6f:6a:f9:61:76:86:b7:ac:e2: 2e:8e:4e:a2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULqYI+xS4vRCjFuDHXCcCftfLJQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNjE2MTkxMDE0WhcNMjUwNzIxMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTBhYTJjYjBhNWZiMGQwMWQ3ZmVjMDczNDM1NTFkYzU2 YTRiY2Y0YzJkNTlhMjMwNTk2MDBiZTk0NGIzZjI0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW5PlNqlldgOGEIwp1AeSlB+MYi5g7W0vye3eWZ/OnZQ/9 5GQZ2Tg3rWSb2QAafPxxwDXqimbihDy8fffYw89uRfwQ22ZmZZ6NkBHhNo0xNV1s jhX6RujcHxSDJP9KMf+7FohLUmVLr9EH5MZhMWBhQB4LF6L777Eeg7KmUgNT5wyC Xitfv7WlR14EnGwvbmgEeGxmFhB/NthUkhfzhur66poa5A+DeUZ6QrHcBED+3X2E Ox2Ddr0Nc9vKZABcAnldMhI9lIgZbABxlhe8PayOXbqMQK7mNo7fpqwkvYlgwAtS vIs1RqJ6jzJW/INgc2nZHKbFOZsJ3W/xPeK4Ivh7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURhZTmQ+pmknurj54MGjRZrP3cZ8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzEwMGNhMTY2LTczMTctNGQ3OC04MTAyLWVhMWRmZTI2ZDBlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRowDQYJKoZIhvcNAQELBQADggEBAEYbcbpoHwzcnIEfCAwQDvJo X52zECHacymup7Ooye7vxobX88VsOrIM3cR9SLFjPRHQpJAJmZBo5DSZb/1ll+O2 2fIl/uY+RspaOeiaXxgIOEUoJ5H/Fx3kojXr5laaOt1N6g79CiAKy75pzdJvyJU0 dez7c5J7z53wocZHB/RAmNyZKSpE3aoobdjd0DxhS0PNLtTPGG5rzW31UJfSq+lT Tu/xwPFVquzxdRiqn1EobvUZfszC0lUpfplsE1SeVsCncXN3WwxmZbs2l/RfzX0j al4lH4BkAPnCTgbdx+189S6fqnGICMDj8OPkd86exRaQXW9q+WF2hres4i6OTqI= -----END CERTIFICATE-----Generated at Wed Jul 2 04:54:40 2025 by rpki-client