
$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa
File: d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa (raw, json)
Hash identifier: VBPh9Ca0I5DlvUPeWwkB1u7Voi89YnTHvVuvqD0c0FQ=
Subject key identifier: 7C:DC:05:9D:C0:23:80:5C:68:62:76:4A:D0:49:52:68:2A:4B:AB:D3
Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Certificate serial: 258C1FC1FBF01F9028F5CA53D13EB526FA8F677C
Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa
Signing time: Thu 02 Jul 2026 00:00:08 +0000
ROA not before: Thu 02 Jul 2026 00:00:08 +0000
ROA not after: Wed 30 Sep 2026 23:59:59 +0000
asID: 16509
IP address blocks: 2600:f0f0:6023::/48 maxlen: 48
Validation: OK
Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft
rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl
rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft
rsync://rpki.arin.net/repository/arin-rpki-ta.cer
Signature path expires: Fri 17 Jul 2026 22:00:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:8c:1f:c1:fb:f0:1f:90:28:f5:ca:53:d1:3e:b5:26:fa:8f:67:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08
Validity
Not Before: Jul 2 00:00:08 2026 GMT
Not After : Sep 30 23:59:59 2026 GMT
Subject: serialNumber=cd0b4d0fe1ffa12ca4b6a32f853d0521aedd5e69ace3a41518e7dfee45193ca9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:a8:fc:c5:66:26:52:07:80:60:c0:10:bb:02:
fc:b8:6d:36:80:6b:84:f7:ee:1a:a3:ea:fb:17:e5:
1d:b2:ed:b6:e4:4a:37:bf:bb:6e:bc:fb:dd:52:4f:
3d:ee:3b:81:5e:b6:c2:6a:9a:08:80:68:82:b9:4d:
dd:11:8e:50:0c:7c:a3:50:15:9a:70:ee:f7:a1:3c:
76:91:8c:40:4a:bb:75:5a:9f:cd:7c:74:d2:e5:3b:
91:a1:a2:af:d4:56:9e:62:55:c5:d5:87:bc:fd:f6:
83:f3:07:30:6b:eb:99:c9:82:cf:82:ea:8b:55:52:
82:a1:5c:e0:5c:76:a0:be:54:ff:2a:8f:9f:e5:db:
38:e0:f1:88:aa:9f:a0:27:26:f0:2c:b8:b8:a6:a4:
ca:b5:3c:d5:d5:a0:4f:e6:89:8c:3c:c9:a5:4b:07:
5a:ee:3d:9a:b7:38:fb:9a:34:61:27:f1:10:3c:f1:
05:ad:fa:da:36:ed:c7:47:0a:28:8e:b7:08:c0:8d:
d0:06:9b:37:61:01:7f:1f:17:b8:0d:61:eb:0b:d8:
f1:65:7c:4b:8d:e1:53:80:51:da:30:3f:3f:d8:82:
56:58:3c:8c:e2:b0:07:38:75:e8:a5:63:23:64:61:
9f:e8:63:34:be:79:4c:6e:37:43:81:69:f6:e4:87:
4b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:DC:05:9D:C0:23:80:5C:68:62:76:4A:D0:49:52:68:2A:4B:AB:D3
X509v3 Authority Key Identifier:
keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer
Subject Information Access:
Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d5bf98f4-844c-4500-8770-5d12c1bcf3a5.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2600:f0f0:6023::/48
Signature Algorithm: sha256WithRSAEncryption
67:06:aa:cc:3f:ff:a3:fd:c7:88:eb:24:58:18:7f:ac:a2:aa:
79:9a:eb:ea:54:8e:be:91:bb:8f:fb:bb:41:c7:4b:a6:e5:39:
98:25:a3:96:1b:b2:d1:af:c5:80:3c:b1:c6:42:d7:54:7c:31:
66:66:8a:14:53:c6:07:f4:36:94:dc:e3:be:ee:6a:3f:52:db:
4f:ae:24:b5:66:aa:75:a4:fe:f0:cd:71:b2:ea:d4:3d:16:5a:
ad:4a:54:96:70:6a:71:87:5d:f7:14:6f:22:24:1d:93:b2:3d:
cd:d4:e8:0d:43:f1:bf:5c:0b:fd:4f:cc:c6:59:ee:66:0a:37:
54:51:98:b9:d2:a9:82:67:9c:96:18:1c:c3:04:0e:de:c8:0d:
10:23:ee:d4:69:e8:5f:c8:4f:96:8b:0a:9f:d3:d6:20:b3:40:
87:e0:7e:52:d4:16:cd:09:7a:d6:d2:40:9a:f9:67:f0:29:c9:
42:2a:a4:0a:51:8e:b6:fc:44:59:e6:ab:ef:0a:44:f8:26:8c:
e1:ac:e7:4f:0b:8a:a3:35:c8:9f:f2:4a:06:c2:94:43:bd:55:
34:64:ef:24:36:c4:b5:b8:6a:2f:cd:7e:c8:b3:23:63:37:c1:
09:ba:6f:4e:b7:21:b6:f0:10:59:61:20:a3:25:e8:f2:cb:1d:
bf:37:18:8f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 15 18:16:50 2026 by rpki-client