$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa File: d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa (raw, json) Hash identifier: LLwmHEr2qroDBnRvDshPgoZ7S+K1kqvuUPSrkzIQlbs= Subject key identifier: BB:4A:81:DD:20:9F:17:26:4A:F2:AC:50:56:44:E4:80:15:CF:51:01 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 50F9E21643B5E269BD65C39520317C4FC81E03BF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa Signing time: Sat 09 Aug 2025 00:10:47 +0000 ROA not before: Sat 09 Aug 2025 00:10:47 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:f9:e2:16:43:b5:e2:69:bd:65:c3:95:20:31:7c:4f:c8:1e:03:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 9 00:10:47 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=3c912c76628c0384b2726044fed6289648974fe2baa4124b2317131b2bb54741, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:3e:b5:82:7b:38:2f:50:64:c6:db:ba:83:a5: e8:dd:4c:27:44:89:84:08:36:55:86:11:da:dc:63: 4e:7c:e3:32:cb:d4:3d:39:b4:c5:70:8a:44:5f:da: ba:bf:c8:aa:6c:34:38:95:2e:ec:e9:07:0a:e6:1a: 25:f4:b4:98:6d:01:a3:25:42:db:bd:07:1b:e1:88: 41:fb:c0:9a:19:80:f5:fb:97:e8:27:4d:b3:11:bf: 6f:36:e9:90:d0:10:a4:cd:51:5e:48:03:21:7e:08: 3f:06:16:36:81:3a:b0:b9:7e:33:80:af:70:92:90: 8e:16:26:63:f6:97:8b:be:41:05:3d:aa:d9:70:58: 8f:5b:fe:f3:66:48:17:4b:11:e5:bf:bb:27:98:cf: ff:b9:37:02:b4:ae:f4:e6:5f:ef:64:20:96:d2:83: 8f:24:3e:b1:72:3a:17:0d:4b:2c:9a:fc:56:eb:b2: 94:49:66:cb:d0:d8:4e:04:5a:67:be:e7:59:9e:2a: 14:92:bc:37:4c:0e:6e:70:2b:c8:b1:dd:b8:5a:c0: 25:84:57:a5:8d:a4:26:be:7d:e0:a6:3b:6f:2f:4d: 25:62:e2:14:6e:84:eb:38:d1:39:ba:c4:50:9f:7f: cf:d3:fd:9c:a2:31:9a:88:99:92:19:a2:08:ef:af: 14:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4A:81:DD:20:9F:17:26:4A:F2:AC:50:56:44:E4:80:15:CF:51:01 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 4c:a1:fa:0a:08:fb:fc:35:1f:58:b6:99:82:23:2a:d3:20:93: 87:f5:98:38:38:47:22:63:f5:12:22:01:0e:81:9b:d0:a5:77: 59:34:52:8d:e8:94:cc:63:79:5c:04:07:79:92:6c:25:03:ae: 99:1d:f2:3e:d0:42:51:3c:6c:67:53:97:d8:1a:f1:87:c8:49: 33:80:f0:41:03:65:93:2f:27:31:5d:07:46:fb:32:2f:1c:fe: 47:aa:75:2f:c5:66:4e:4a:19:bb:70:6c:6f:01:67:e6:e9:61: 66:26:3f:18:29:0b:09:9f:68:ae:05:cc:20:b7:a8:e2:1a:01: 1d:0a:e9:e8:c6:4f:ae:9e:58:06:f7:bd:97:89:f7:03:96:e3: 03:0d:50:1a:60:3b:07:51:12:f7:d4:42:56:06:c6:fe:b5:03: f5:26:2d:34:70:e8:c2:4e:c2:fa:0e:f3:06:8a:ef:c4:9b:7f: cc:52:e8:72:0f:3b:7c:e9:42:11:7d:25:ee:94:f1:d0:3b:d2: f9:07:3a:b3:eb:3e:9a:4b:95:da:71:70:98:6e:08:43:6b:c6: 11:ed:a5:05:a2:2e:9a:0c:20:fa:97:cd:38:40:17:2e:78:b4: 45:c6:e5:38:32:d9:d9:a3:78:ed:f7:73:07:98:8d:e3:3b:4a: 51:f5:9f:db -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUPniFkO14mm9ZcOVIDF8T8geA78wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA5MDAxMDQ3WhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzkxMmM3NjYyOGMwMzg0YjI3MjYwNDRmZWQ2Mjg5NjQ4 OTc0ZmUyYmFhNDEyNGIyMzE3MTMxYjJiYjU0NzQxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbPrWCezgvUGTG27qDpejdTCdEiYQINlWGEdrcY0584zLL 1D05tMVwikRf2rq/yKpsNDiVLuzpBwrmGiX0tJhtAaMlQtu9BxvhiEH7wJoZgPX7 l+gnTbMRv2826ZDQEKTNUV5IAyF+CD8GFjaBOrC5fjOAr3CSkI4WJmP2l4u+QQU9 qtlwWI9b/vNmSBdLEeW/uyeYz/+5NwK0rvTmX+9kIJbSg48kPrFyOhcNSyya/Fbr spRJZsvQ2E4EWme+51meKhSSvDdMDm5wK8ix3bhawCWEV6WNpCa+feCmO28vTSVi 4hRuhOs40Tm6xFCff8/T/ZyiMZqImZIZogjvrxQlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUu0qB3SCfFyZK8qxQVkTkgBXPUQEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyZTNjOTllLTNlMDMtNDExNS04NTZiLWIyNWQ3ZTk3YzRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAEyh+goI+/w1H1i2mYIjKtMg k4f1mDg4RyJj9RIiAQ6Bm9Cld1k0Uo3olMxjeVwEB3mSbCUDrpkd8j7QQlE8bGdT l9ga8YfISTOA8EEDZZMvJzFdB0b7Mi8c/keqdS/FZk5KGbtwbG8BZ+bpYWYmPxgp CwmfaK4FzCC3qOIaAR0K6ejGT66eWAb3vZeJ9wOW4wMNUBpgOwdREvfUQlYGxv61 A/UmLTRw6MJOwvoO8waK78Sbf8xS6HIPO3zpQhF9Je6U8dA70vkHOrPrPppLldpx cJhuCENrxhHtpQWiLpoMIPqXzThAFy54tEXG5Tgy2dmjeO33cweYjeM7SlH1n9s= -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:57 2025 by rpki-client