$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa File: e0124927-afa7-4267-814d-16ec9e0135d2.roa (raw, json) Hash identifier: 9SRKQVuigXpTDJ2xVQdGQ73yHDEO8ZA14ac63sr8WD4= Subject key identifier: A5:1D:86:B6:61:D1:55:C9:52:74:D6:D2:8C:2C:00:C7:98:55:31:C1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 62EBDF6A6B26DB5944880B92BD2003593173A617 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa Signing time: Mon 01 Sep 2025 19:10:29 +0000 ROA not before: Mon 01 Sep 2025 19:10:29 +0000 ROA not after: Mon 06 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:eb:df:6a:6b:26:db:59:44:88:0b:92:bd:20:03:59:31:73:a6:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 1 19:10:29 2025 GMT Not After : Oct 6 23:59:59 2025 GMT Subject: serialNumber=48807bb897e86f3ac7807abdeaa4d3f241ce6834f6cada65febd14663b5c8095, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:22:4d:12:3d:c3:ca:eb:04:4c:c5:5a:09:93: 25:11:09:33:97:c6:24:6b:9b:78:c2:7b:ec:ed:c9: ce:25:c0:10:1e:bb:2e:3e:b9:e2:dc:f3:96:66:61: 4d:72:d7:38:2f:fb:1c:4a:45:00:e4:ab:fc:ff:fb: 07:b3:95:67:7a:ad:14:6a:1a:f3:3c:ff:e7:33:7a: b3:48:f7:9d:3b:22:2d:45:00:26:83:c8:be:41:6a: e7:40:7d:3f:30:db:50:c3:c2:2d:42:45:74:c2:9c: 29:fe:72:1c:c9:ea:e8:00:56:06:12:1e:41:7c:b0: 76:7e:17:01:9d:2f:ed:52:b9:5b:07:ca:e5:b3:7c: a1:a9:1b:a9:b1:21:51:83:ce:f5:3d:24:a5:eb:ad: aa:64:cc:99:c8:4a:2a:22:29:58:06:71:fc:52:65: cf:cd:79:36:f3:b6:55:f2:de:df:eb:dc:92:73:f4: a7:88:4e:22:25:1d:e4:7a:44:0e:c4:9d:a9:93:a7: e0:47:bb:66:f9:52:ea:1c:f7:54:66:7f:9c:75:5d: 6c:56:6e:04:9e:49:a1:1b:c3:93:76:bf:4d:67:7d: ca:02:d5:0a:ee:1d:8b:bd:89:06:50:f1:46:bb:12: 78:20:38:3c:71:5f:07:9e:ca:0d:ff:0f:88:29:d6: 86:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:1D:86:B6:61:D1:55:C9:52:74:D6:D2:8C:2C:00:C7:98:55:31:C1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e0124927-afa7-4267-814d-16ec9e0135d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:2::/48 Signature Algorithm: sha256WithRSAEncryption 55:89:4b:06:51:a4:be:ab:86:f4:bd:d7:a6:2a:35:7e:3b:62: d3:b0:52:e3:a1:7e:08:a7:01:af:fc:ac:a8:a4:ce:8d:fd:95: cd:3a:30:53:c1:15:b9:f3:92:3c:16:66:32:48:df:99:09:0e: d3:f2:30:a1:11:d3:d3:c1:87:0f:31:ae:c7:6d:01:84:b9:82: 4c:7c:8a:ca:2d:e3:4a:dd:4c:c4:e3:9d:76:b9:67:9a:4a:21: 28:5e:c9:da:8d:fb:21:e5:f9:6e:73:f9:a2:93:cf:1f:84:f1: 92:34:fa:b2:2f:b1:4c:9a:14:97:d0:b0:97:6e:72:5c:7d:45: 46:54:01:ee:e3:dd:84:ca:f2:3b:af:15:a7:19:64:b5:d8:6c: f8:6e:29:52:cd:4e:97:5a:f3:01:67:8b:4f:71:88:bf:08:e1: d7:0e:da:f3:33:87:46:df:a3:f8:83:77:3c:49:22:e7:04:15: 3a:21:dd:bc:94:cc:0e:8d:65:12:90:92:03:63:ca:11:18:c7: 93:44:1f:e7:b6:92:ff:00:98:f4:ed:c5:bd:55:26:42:9b:f5: 24:b9:db:6d:23:e5:17:29:6f:00:aa:e4:86:84:b5:b7:8e:26: 2d:37:2c:d3:dd:da:8a:e3:6b:e0:99:21:d5:5a:59:31:72:a4: 12:c1:09:95 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUYuvfamsm21lEiAuSvSADWTFzphcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTAxMTkxMDI5WhcNMjUxMDA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODgwN2JiODk3ZTg2ZjNhYzc4MDdhYmRlYWE0ZDNmMjQx Y2U2ODM0ZjZjYWRhNjVmZWJkMTQ2NjNiNWM4MDk1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxIk0SPcPK6wRMxVoJkyURCTOXxiRrm3jCe+ztyc4lwBAe uy4+ueLc85ZmYU1y1zgv+xxKRQDkq/z/+wezlWd6rRRqGvM8/+czerNI9507Ii1F ACaDyL5BaudAfT8w21DDwi1CRXTCnCn+chzJ6ugAVgYSHkF8sHZ+FwGdL+1SuVsH yuWzfKGpG6mxIVGDzvU9JKXrrapkzJnISioiKVgGcfxSZc/NeTbztlXy3t/r3JJz 9KeITiIlHeR6RA7EnamTp+BHu2b5Uuoc91Rmf5x1XWxWbgSeSaEbw5N2v01nfcoC 1QruHYu9iQZQ8Ua7EnggODxxXweeyg3/D4gp1obnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpR2GtmHRVclSdNbSjCwAx5hVMcEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2UwMTI0OTI3LWFmYTctNDI2Ny04MTRkLTE2ZWM5ZTAxMzVkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAIwDQYJKoZIhvcNAQELBQADggEBAFWJSwZRpL6rhvS916YqNX47 YtOwUuOhfginAa/8rKikzo39lc06MFPBFbnzkjwWZjJI35kJDtPyMKER09PBhw8x rsdtAYS5gkx8isot40rdTMTjnXa5Z5pKISheydqN+yHl+W5z+aKTzx+E8ZI0+rIv sUyaFJfQsJduclx9RUZUAe7j3YTK8juvFacZZLXYbPhuKVLNTpda8wFni09xiL8I 4dcO2vMzh0bfo/iDdzxJIucEFToh3byUzA6NZRKQkgNjyhEYx5NEH+e2kv8AmPTt xb1VJkKb9SS5220j5RcpbwCq5IaEtbeOJi03LNPd2orja+CZIdVaWTFypBLBCZU= -----END CERTIFICATE-----Generated at Thu Sep 18 16:29:08 2025 by rpki-client