$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: Q1UClBooUmmi8sdR5kFFsP2vunvPvwClU4NIJR1UEXc= Subject key identifier: BA:1F:DC:BA:F7:14:68:FB:08:23:89:DA:73:60:52:26:A8:4F:CD:8A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3754113BA409307637002844867052BF25DD7E85 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Fri 08 Aug 2025 00:30:41 +0000 ROA not before: Fri 08 Aug 2025 00:30:41 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:54:11:3b:a4:09:30:76:37:00:28:44:86:70:52:bf:25:dd:7e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 8 00:30:41 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=2d8c9f078291ee7b164de1d4ec6fd58b8061575bfdbcc1551c02db2d2242eec8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:58:2c:16:e3:d5:f0:9e:4f:aa:e8:e3:73:db: 24:52:03:53:6d:3a:e1:80:8c:94:21:4e:4e:1f:82: df:25:7d:85:09:80:51:49:79:24:cc:10:3e:e2:d4: 8e:2b:4c:c9:03:97:f5:96:5e:2e:38:d8:27:e3:cc: 3a:fa:40:f7:f1:f5:06:89:66:ac:98:99:14:36:fe: 7b:97:95:16:98:f7:57:15:24:ff:f2:81:3e:f8:76: 7d:c4:a5:36:91:d7:1b:69:b9:1b:95:0a:a5:ff:f8: d1:6e:b1:b7:2d:97:2c:50:88:6a:1f:2e:a9:55:21: 3b:58:85:fd:1a:4b:aa:ba:9d:7c:23:5f:42:ce:ae: 38:7b:2e:b8:00:fa:a0:ec:d6:87:a2:0f:30:b2:ab: 11:9f:53:26:da:d4:28:3e:68:40:6e:7c:9b:95:8d: be:9e:86:5a:cf:fe:b1:75:a3:d8:a4:0a:bc:38:ca: 38:73:2f:b6:ef:33:82:02:44:50:8e:86:4f:d0:ef: d0:b0:be:31:d0:34:91:54:70:0e:ae:f7:17:2a:40: e3:f7:6b:33:22:28:1c:85:45:c2:dd:a2:24:15:c9: 95:63:c5:f9:cd:d7:23:03:8c:bc:ce:46:b8:84:9e: a5:1b:25:51:f5:57:0b:0b:ac:e6:73:68:e0:44:cc: 40:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1F:DC:BA:F7:14:68:FB:08:23:89:DA:73:60:52:26:A8:4F:CD:8A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 0e:03:f9:14:45:f5:e1:fb:a2:28:8a:fe:7d:5b:f9:ef:51:22: db:4d:de:dd:a2:0c:fb:de:95:19:a7:84:db:fa:41:02:23:1e: 33:4b:cd:0d:fd:17:67:92:d4:98:b8:e9:0d:03:77:ff:c5:d2: e5:1e:b0:63:dd:d8:2e:03:98:44:6e:fa:8a:67:20:17:b4:23: 63:be:1c:4f:f2:09:4e:c7:4a:86:27:4a:8e:70:07:c0:d6:b9: db:25:e7:13:d2:25:8a:44:70:67:8f:29:41:7e:92:a4:78:a3: 72:0d:e3:b2:a7:a7:81:af:ad:13:39:3e:93:bc:48:ad:ce:67: ef:c7:57:55:a0:43:cd:26:6d:a2:11:24:ae:13:3f:fc:5e:53: 97:0a:47:d5:3e:8b:36:97:50:04:8d:cf:52:4a:cd:ab:80:d0: a6:f5:cc:46:70:3c:d9:9c:be:96:e2:a8:4e:a3:06:de:02:21: 00:aa:37:b7:33:d3:cb:a1:d6:c5:b6:54:e2:90:f6:91:f5:96: bd:3b:5d:47:30:22:29:bc:61:d5:63:87:ff:2c:82:ba:13:86: b8:41:20:c9:67:5f:b1:48:cd:5d:7e:69:8c:be:d1:3d:e8:98: dc:b1:40:d1:e0:ef:42:71:46:ec:a6:52:aa:6d:a8:2d:c2:07: da:51:c6:f6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUN1QRO6QJMHY3AChEhnBSvyXdfoUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA4MDAzMDQxWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDhjOWYwNzgyOTFlZTdiMTY0ZGUxZDRlYzZmZDU4Yjgw NjE1NzViZmRiY2MxNTUxYzAyZGIyZDIyNDJlZWM4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5WCwW49Xwnk+q6ONz2yRSA1NtOuGAjJQhTk4fgt8lfYUJ gFFJeSTMED7i1I4rTMkDl/WWXi442CfjzDr6QPfx9QaJZqyYmRQ2/nuXlRaY91cV JP/ygT74dn3EpTaR1xtpuRuVCqX/+NFusbctlyxQiGofLqlVITtYhf0aS6q6nXwj X0LOrjh7LrgA+qDs1oeiDzCyqxGfUyba1Cg+aEBufJuVjb6ehlrP/rF1o9ikCrw4 yjhzL7bvM4ICRFCOhk/Q79CwvjHQNJFUcA6u9xcqQOP3azMiKByFRcLdoiQVyZVj xfnN1yMDjLzORriEnqUbJVH1VwsLrOZzaOBEzEDfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUuh/cuvcUaPsII4nac2BSJqhPzYowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBAA4D+RRF9eH7oiiK/n1b+e9R IttN3t2iDPvelRmnhNv6QQIjHjNLzQ39F2eS1Ji46Q0Dd//F0uUesGPd2C4DmERu +opnIBe0I2O+HE/yCU7HSoYnSo5wB8DWudsl5xPSJYpEcGePKUF+kqR4o3IN47Kn p4GvrRM5PpO8SK3OZ+/HV1WgQ80mbaIRJK4TP/xeU5cKR9U+izaXUASNz1JKzauA 0Kb1zEZwPNmcvpbiqE6jBt4CIQCqN7cz08uh1sW2VOKQ9pH1lr07XUcwIim8YdVj h/8sgroThrhBIMlnX7FIzV1+aYy+0T3omNyxQNHg70JxRuymUqptqC3CB9pRxvY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:49:57 2025 by rpki-client