$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa File: 7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa (raw, json) Hash identifier: +pfnR4x9FXMEVPBL6iH2ACAGTefFzxAhapoNy+bF4WQ= Subject key identifier: 6A:81:EA:99:8A:11:07:95:C4:C2:A3:A2:A1:D4:52:48:63:79:E3:12 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5050861D4EA64F95A2EDF2DAFAD7D22EF6D1F872 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa Signing time: Tue 05 Aug 2025 18:30:56 +0000 ROA not before: Tue 05 Aug 2025 18:30:56 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:50:86:1d:4e:a6:4f:95:a2:ed:f2:da:fa:d7:d2:2e:f6:d1:f8:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:56 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=ee61d2a6f22a613e8fa06710e5afd40c467ff68ac722b8ff90811a6b8d85070a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:10:36:f8:34:ef:06:5d:3a:cc:a3:4b:4b:b0: 06:d8:c6:62:96:8f:fd:90:01:d5:e0:50:d6:31:a9: 79:bd:8a:94:01:63:d2:39:2b:33:41:f6:65:fd:b5: 45:7a:34:a2:89:cd:71:f1:eb:91:05:b9:24:b6:11: 67:43:b5:88:c7:27:b9:ea:77:77:0c:38:5e:77:5a: e5:45:5c:64:1b:3e:2b:d3:67:7a:e0:e2:a9:25:77: ef:09:61:31:96:72:ea:ad:7f:92:e7:96:ac:77:5f: 8f:be:66:62:09:c3:e6:38:c2:68:ad:6a:18:7a:60: a2:4a:ab:00:92:80:97:2f:6f:a7:90:62:5e:98:d8: b0:0f:e2:16:60:52:a8:9c:a2:06:0e:6a:29:c3:b4: 87:99:7c:ba:14:da:23:82:61:e9:e5:4f:50:e1:a7: b2:3b:e1:4f:cc:40:b8:53:7c:d0:04:36:e1:15:3e: 7b:92:b8:df:9c:03:da:24:d3:80:a0:a1:f0:3e:ea: 79:9d:6b:d7:05:f1:ec:a0:e2:97:fa:33:23:eb:f1: 83:44:68:ce:06:8c:ce:53:05:1f:23:0b:11:2f:21: 6e:b4:2c:c3:94:2e:9c:22:92:79:cc:c5:6f:13:5c: 6a:0b:fc:d1:23:4a:06:c4:d2:35:ad:59:16:a2:b0: 10:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:81:EA:99:8A:11:07:95:C4:C2:A3:A2:A1:D4:52:48:63:79:E3:12 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7ad26bb9-2f69-40ee-b91a-0cce67fa4a5c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/40 Signature Algorithm: sha256WithRSAEncryption 91:81:9a:48:95:3c:69:7d:9f:0f:a2:f2:7e:a1:4e:79:b1:fd: cd:a1:e5:cb:e2:d7:a0:69:bc:8f:71:08:3d:56:ff:ef:e7:f1: e8:2a:b0:31:0e:71:01:fe:9f:ba:b3:52:1f:3c:a1:46:7d:c3: dc:11:98:9e:8f:aa:2f:82:5c:53:6d:ed:aa:43:80:e7:94:be: b2:d4:97:59:08:b3:bf:ca:3a:cf:06:21:b3:6f:09:de:4a:85: 78:0c:d6:b3:51:28:80:6c:4e:b1:1f:1d:39:75:5f:5c:62:4e: 87:4d:3c:21:65:7a:5c:95:79:f9:c9:70:16:93:eb:d4:5f:c9: 93:29:30:29:2d:a2:9a:99:2e:0f:00:0e:47:3d:62:3d:15:81: 5f:fb:b7:4b:f6:72:e3:f3:f0:76:4f:3c:58:78:a9:85:e4:d8: cd:ad:70:1a:07:bb:d1:07:0a:42:0a:9b:32:24:5c:6c:78:42: de:52:dd:c6:c1:06:28:5d:56:59:03:35:56:f7:36:55:85:98: 24:b4:e1:6a:9b:b7:e8:d6:f7:55:44:bc:88:1f:38:1e:f8:62: c6:d9:ba:dd:e2:8e:67:13:f2:88:3b:85:d6:96:14:63:86:91: 94:01:cd:80:fe:ed:87:0e:f2:1e:68:63:50:00:c2:3c:5f:25: d7:3d:55:e2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUFCGHU6mT5Wi7fLa+tfSLvbR+HIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDU2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTYxZDJhNmYyMmE2MTNlOGZhMDY3MTBlNWFmZDQwYzQ2 N2ZmNjhhYzcyMmI4ZmY5MDgxMWE2YjhkODUwNzBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFEDb4NO8GXTrMo0tLsAbYxmKWj/2QAdXgUNYxqXm9ipQB Y9I5KzNB9mX9tUV6NKKJzXHx65EFuSS2EWdDtYjHJ7nqd3cMOF53WuVFXGQbPivT Z3rg4qkld+8JYTGWcuqtf5Lnlqx3X4++ZmIJw+Y4wmitahh6YKJKqwCSgJcvb6eQ Yl6Y2LAP4hZgUqicogYOainDtIeZfLoU2iOCYenlT1Dhp7I74U/MQLhTfNAENuEV PnuSuN+cA9ok04CgofA+6nmda9cF8eyg4pf6MyPr8YNEaM4GjM5TBR8jCxEvIW60 LMOULpwiknnMxW8TXGoL/NEjSgbE0jWtWRaisBD/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUaoHqmYoRB5XEwqOiodRSSGN54xIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdhZDI2YmI5LTJmNjktNDBlZS1iOTFhLTBjY2U2N2ZhNGE1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76DANBgkqhkiG9w0BAQsFAAOCAQEAkYGaSJU8aX2fD6LyfqFOebH9 zaHly+LXoGm8j3EIPVb/7+fx6CqwMQ5xAf6furNSHzyhRn3D3BGYno+qL4JcU23t qkOA55S+stSXWQizv8o6zwYhs28J3kqFeAzWs1EogGxOsR8dOXVfXGJOh008IWV6 XJV5+clwFpPr1F/JkykwKS2impkuDwAORz1iPRWBX/u3S/Zy4/Pwdk88WHipheTY za1wGge70QcKQgqbMiRcbHhC3lLdxsEGKF1WWQM1Vvc2VYWYJLThapu36Nb3VUS8 iB84Hvhixtm63eKOZxPyiDuF1pYUY4aRlAHNgP7thw7yHmhjUADCPF8l1z1V4g== -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:59 2025 by rpki-client