$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa File: aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa (raw, json) Hash identifier: e/PMviHv7VjHfIXdaRkQddrqo6TGpS4RsWuRE0MG3Ws= Subject key identifier: 82:7A:86:ED:90:8B:C4:41:08:AD:88:1A:8B:FC:E6:14:8E:12:7E:96 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0F64823220BD4401D4F18FE8557FEA42FDDA4CFD Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa Signing time: Tue 09 Sep 2025 15:50:18 +0000 ROA not before: Tue 09 Sep 2025 15:50:18 +0000 ROA not after: Tue 14 Oct 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5502::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 19 Sep 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:64:82:32:20:bd:44:01:d4:f1:8f:e8:55:7f:ea:42:fd:da:4c:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 9 15:50:18 2025 GMT Not After : Oct 14 23:59:59 2025 GMT Subject: serialNumber=d449feb8bbe38f0162bab4490072f87039fb3c96f59a5f706b1f6bc0a22fb103, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:09:31:5c:4d:97:1e:72:2c:63:9f:d9:56:6c: a5:e7:7f:03:d2:b3:ef:03:d2:04:61:9c:94:d4:a2: 13:16:48:a2:8f:7a:4c:44:c7:e7:aa:d7:c3:11:5c: 2a:a5:52:47:15:83:d2:5f:2c:c8:90:8e:51:e3:8b: 2d:70:c6:b0:9a:4d:b1:34:ff:c3:07:eb:8c:51:98: 28:fd:1f:c5:1a:19:4b:47:67:ba:bf:5f:03:d5:65: 0e:71:e8:69:99:de:be:17:10:26:85:0d:49:47:e6: 19:d6:4b:97:a1:27:6c:df:d0:84:0e:f8:eb:93:bf: d4:f6:2d:89:20:5c:9d:dd:44:6f:6b:64:11:04:52: 2c:68:e2:72:22:7d:42:4f:8d:83:a0:ac:f1:52:51: d8:0f:7f:43:d5:e5:b8:c1:b6:cb:24:37:1c:91:2d: cf:0c:e0:e5:15:8e:b2:0d:bd:69:16:20:c2:65:ec: b9:d5:83:4f:c2:31:ee:8c:f3:a1:d1:51:9b:69:be: 01:b0:70:c9:82:57:2b:08:b8:17:e5:0a:ac:08:05: 0b:0a:6e:9c:27:ac:e5:89:c6:65:76:7d:03:1a:79: 51:25:85:4a:6a:e7:19:04:cc:9e:82:fc:ae:3c:bd: 04:63:b8:96:6e:b2:bb:df:4f:eb:9b:08:64:49:de: 2e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7A:86:ED:90:8B:C4:41:08:AD:88:1A:8B:FC:E6:14:8E:12:7E:96 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aad24a2e-f61b-42b4-9509-9e06a136eb0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5502::/48 Signature Algorithm: sha256WithRSAEncryption 6d:1c:99:42:aa:12:5c:a0:6f:5a:23:e5:82:a3:d4:13:42:fc: 13:98:cc:6b:bc:84:32:9e:fc:53:cb:23:c9:6e:43:5f:9f:95: 9c:52:7a:46:9a:9c:c3:5b:80:d9:c4:92:e3:27:e2:ca:e3:19: 78:bc:89:29:ed:92:d7:8c:b5:44:3e:ae:cd:4e:1d:09:77:5a: a6:65:7f:29:02:12:2e:42:21:23:ce:12:17:dc:f6:5a:61:9d: 6f:09:76:a3:f0:cd:93:aa:34:9e:ce:97:3a:eb:18:e2:53:63: e6:fe:15:3a:21:c5:ae:b8:d9:d8:e1:1e:3f:6d:ab:05:58:82: ef:af:7b:bf:71:4b:c6:10:c7:67:4a:1e:c0:a9:cc:bc:0e:bd: 37:d0:d5:63:eb:c3:2c:b4:dc:ae:62:91:34:89:2e:08:8e:7f: ea:3a:69:5a:82:2c:44:84:00:29:b1:7d:78:38:af:5a:f6:39: de:12:b0:94:59:a6:56:68:c9:30:37:3b:f9:b7:f7:ea:ca:58: 34:27:e8:b0:e7:8d:35:56:35:15:63:5a:cb:13:84:72:d1:e9: 84:f8:1d:ee:4e:cf:36:24:a2:2b:25:c0:dc:01:5f:c5:70:fc: 49:ec:d5:84:da:41:be:38:d3:63:37:07:90:5e:c6:9e:d3:33: bd:9c:2b:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD2SCMiC9RAHU8Y/oVX/qQv3aTP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA5MTU1MDE4WhcNMjUxMDE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDQ5ZmViOGJiZTM4ZjAxNjJiYWI0NDkwMDcyZjg3MDM5 ZmIzYzk2ZjU5YTVmNzA2YjFmNmJjMGEyMmZiMTAzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuCTFcTZcecixjn9lWbKXnfwPSs+8D0gRhnJTUohMWSKKP ekxEx+eq18MRXCqlUkcVg9JfLMiQjlHjiy1wxrCaTbE0/8MH64xRmCj9H8UaGUtH Z7q/XwPVZQ5x6GmZ3r4XECaFDUlH5hnWS5ehJ2zf0IQO+OuTv9T2LYkgXJ3dRG9r ZBEEUixo4nIifUJPjYOgrPFSUdgPf0PV5bjBtsskNxyRLc8M4OUVjrINvWkWIMJl 7LnVg0/CMe6M86HRUZtpvgGwcMmCVysIuBflCqwIBQsKbpwnrOWJxmV2fQMaeVEl hUpq5xkEzJ6C/K48vQRjuJZusrvfT+ubCGRJ3i5TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgnqG7ZCLxEEIrYgai/zmFI4SfpYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZDI0YTJlLWY2MWItNDJiNC05NTA5LTllMDZhMTM2ZWIwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQIwDQYJKoZIhvcNAQELBQADggEBAG0cmUKqElygb1oj5YKj1BNC /BOYzGu8hDKe/FPLI8luQ1+flZxSekaanMNbgNnEkuMn4srjGXi8iSntkteMtUQ+ rs1OHQl3WqZlfykCEi5CISPOEhfc9lphnW8JdqPwzZOqNJ7OlzrrGOJTY+b+FToh xa642djhHj9tqwVYgu+ve79xS8YQx2dKHsCpzLwOvTfQ1WPrwyy03K5ikTSJLgiO f+o6aVqCLESEACmxfXg4r1r2Od4SsJRZplZoyTA3O/m39+rKWDQn6LDnjTVWNRVj WssThHLR6YT4He5OzzYkoislwNwBX8Vw/Ens1YTaQb4402M3B5Bexp7TM72cK9Q= -----END CERTIFICATE-----Generated at Thu Sep 18 10:09:21 2025 by rpki-client