$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/59b63ffd-a0c1-4006-9040-edbf822eebd1.roa File: 59b63ffd-a0c1-4006-9040-edbf822eebd1.roa (raw, json) Hash identifier: GJUREBs1yWfsz1xn5+XO8KgkcsObBXaJQwn7C5ciUl8= Subject key identifier: 0E:11:6D:52:CE:EF:E5:68:BF:3F:83:02:58:05:38:A4:BD:2A:97:42 Certificate issuer: /CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Certificate serial: 26A91738AB0AC4E93551A5B2F98C1B889D753099 Authority key identifier: 6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/59b63ffd-a0c1-4006-9040-edbf822eebd1.roa Signing time: Wed 25 Jun 2025 15:06:47 +0000 ROA not before: Wed 25 Jun 2025 15:06:47 +0000 ROA not after: Wed 30 Jul 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2606:8140:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/6755970c-4747-499d-9774-5e1308c501a7.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/0357272c-a79a-45bf-9586-92dd49ef3223.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 02 Jul 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:a9:17:38:ab:0a:c4:e9:35:51:a5:b2:f9:8c:1b:88:9d:75:30:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c Validity Not Before: Jun 25 15:06:47 2025 GMT Not After : Jul 30 23:59:59 2025 GMT Subject: serialNumber=841248df2add3977a899b43532f6c572d3da8cf99cc26cdc2b55e0dd5e3e4d6f, CN=8cd8442f-235f-4171-84e6-8e1007a64c60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d1:5e:97:35:87:8c:d6:de:01:68:0b:0d:3f: 46:70:49:55:09:52:ba:6c:8c:15:39:4f:59:96:ce: 4c:ea:48:68:86:97:be:13:bc:29:24:47:ef:9f:9f: 2e:09:8f:b3:11:d6:10:21:48:16:d6:24:01:74:cb: f4:97:b7:5e:20:2b:ec:44:f2:4d:86:bd:b8:17:23: bf:9b:5d:28:6f:95:2a:4b:32:c0:5a:4e:6b:69:af: a7:00:6e:1d:7c:1b:bb:92:a0:17:c6:a4:c0:a9:3a: e0:20:76:aa:37:19:80:1e:9a:9d:13:f6:cd:73:7e: 70:9c:07:3c:1e:39:e2:a9:51:20:dc:07:4b:5a:5f: 8f:5f:ee:b4:7f:a1:d1:35:cd:21:f6:32:b5:56:9f: 40:bc:da:33:62:fc:fc:18:10:9b:30:70:8d:3d:a9: 0b:1b:d6:2e:38:23:0d:53:26:e0:ed:6c:5b:7d:9f: 96:d1:11:79:a6:64:d2:b5:93:eb:77:52:64:f7:5e: bd:51:a9:bf:91:25:a5:a8:76:87:6c:66:82:dc:84: c4:41:ec:7a:05:a3:80:a5:61:94:d7:0d:94:8b:84: e7:d4:18:5f:58:c1:42:1a:b9:bf:05:4b:48:e3:10: 17:e3:0c:ef:d1:67:67:1d:9e:1f:a5:f7:1b:13:72: e7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:11:6D:52:CE:EF:E5:68:BF:3F:83:02:58:05:38:A4:BD:2A:97:42 X509v3 Authority Key Identifier: keyid:6A:CC:3E:7D:A2:E7:6D:99:11:0F:D6:39:C4:13:7E:42:42:99:70:D8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/0357272c-a79a-45bf-9586-92dd49ef3223/6755970c-4747-499d-9774-5e1308c501a7/9ab015f3826e013512a45298a42f2baba1fa72f8d27938878c.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/59b63ffd-a0c1-4006-9040-edbf822eebd1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e72d8db0-4728-4fc1-bdd8-471129866362/bgE1EqRSmKQvK6uh-nL40nk4h4w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2606:8140:500::/40 Signature Algorithm: sha256WithRSAEncryption 3f:4d:36:40:c1:1f:27:73:28:1a:82:97:91:3f:32:cb:74:d4: 73:55:6f:b9:60:00:82:d3:3f:f4:7e:7a:0c:14:5b:c9:fe:7a: 35:b8:26:12:a8:90:d5:a6:07:3f:e8:c5:92:75:b5:ae:dc:2f: ab:ab:65:62:93:e5:eb:67:8d:37:54:2c:b3:e5:92:ab:60:ab: df:68:fd:22:a1:20:bb:58:99:d8:83:0e:d1:f8:d8:fc:45:12: ff:1b:9d:c2:33:a5:c2:b8:db:4d:ea:5b:49:f4:bc:e5:e9:cd: 84:52:8d:23:38:72:f8:57:ee:43:32:77:a1:26:28:24:b1:4c: 48:2d:10:89:11:61:84:02:18:33:63:af:5f:1e:91:c3:d4:cf: 1d:66:a9:64:88:20:11:4d:79:bd:86:6e:29:95:c5:66:e2:ca: 36:99:d7:61:16:82:5e:4a:34:cb:80:23:43:58:e5:c5:0c:b2: 11:56:27:f8:61:b2:3d:25:1c:c3:1c:9b:4b:b4:f3:b1:b3:fb: 9e:96:93:62:8e:84:bc:57:9c:db:08:e2:97:ed:78:fc:48:ac: 85:4d:01:05:9b:dd:37:50:c1:27:97:54:51:88:f2:53:54:09: 50:2b:df:09:85:57:4d:c0:4a:c2:56:a5:ec:be:20:7e:7b:7c: 9b:b7:6f:b5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJqkXOKsKxOk1UaWy+YwbiJ11MJkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1Mjk4YTQyZjJiYWJh MWZhNzJmOGQyNzkzODg3OGMwHhcNMjUwNjI1MTUwNjQ3WhcNMjUwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NDEyNDhkZjJhZGQzOTc3YTg5OWI0MzUzMmY2YzU3MmQz ZGE4Y2Y5OWNjMjZjZGMyYjU1ZTBkZDVlM2U0ZDZmMS0wKwYDVQQDEyQ4Y2Q4NDQy Zi0yMzVmLTQxNzEtODRlNi04ZTEwMDdhNjRjNjAwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU0V6XNYeM1t4BaAsNP0ZwSVUJUrpsjBU5T1mWzkzqSGiG l74TvCkkR++fny4Jj7MR1hAhSBbWJAF0y/SXt14gK+xE8k2GvbgXI7+bXShvlSpL MsBaTmtpr6cAbh18G7uSoBfGpMCpOuAgdqo3GYAemp0T9s1zfnCcBzweOeKpUSDc B0taX49f7rR/odE1zSH2MrVWn0C82jNi/PwYEJswcI09qQsb1i44Iw1TJuDtbFt9 n5bREXmmZNK1k+t3UmT3Xr1Rqb+RJaWododsZoLchMRB7HoFo4ClYZTXDZSLhOfU GF9YwUIaub8FS0jjEBfjDO/RZ2cdnh+l9xsTcucHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUDhFtUs7v5Wi/P4MCWAU4pL0ql0IwHwYDVR0jBBgwFoAUasw+faLnbZkR D9Y5xBN+QkKZcNgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzAzNTcyNzJjLWE3OWEtNDViZi05NTg2LTkyZGQ0OWVmMzIyMy82NzU1OTcwYy00 NzQ3LTQ5OWQtOTc3NC01ZTEzMDhjNTAxYTcvOWFiMDE1ZjM4MjZlMDEzNTEyYTQ1 Mjk4YTQyZjJiYWJhMWZhNzJmOGQyNzkzODg3OGMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTcyZDhkYjAtNDcyOC00ZmMxLWJkZDgtNDcx MTI5ODY2MzYyLzU5YjYzZmZkLWEwYzEtNDAwNi05MDQwLWVkYmY4MjJlZWJkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3MmQ4ZGIwLTQ3MjgtNGZjMS1iZGQ4 LTQ3MTEyOTg2NjM2Mi9iZ0UxRXFSU21LUXZLNnVoLW5MNDBuazRoNHcuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmBoFABTANBgkqhkiG9w0BAQsFAAOCAQEAP002QMEfJ3MoGoKXkT8yy3TU c1VvuWAAgtM/9H56DBRbyf56NbgmEqiQ1aYHP+jFknW1rtwvq6tlYpPl62eNN1Qs s+WSq2Cr32j9IqEgu1iZ2IMO0fjY/EUS/xudwjOlwrjbTepbSfS85enNhFKNIzhy +FfuQzJ3oSYoJLFMSC0QiRFhhAIYM2OvXx6Rw9TPHWapZIggEU15vYZuKZXFZuLK NpnXYRaCXko0y4AjQ1jlxQyyEVYn+GGyPSUcwxybS7TzsbP7npaTYo6EvFec2wji l+14/EishU0BBZvdN1DBJ5dUUYjyU1QJUCvfCYVXTcBKwlal7L4gfnt8m7dvtQ== -----END CERTIFICATE-----Generated at Tue Jul 1 01:22:52 2025 by rpki-client