$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02705a78-c949-405b-9b73-0ec922410e1e.roa File: 02705a78-c949-405b-9b73-0ec922410e1e.roa (raw, json) Hash identifier: wLYt0COlHoxYEGSEyjo6rqc6ISzTqhIkW27cfapzsTM= Subject key identifier: 06:06:0D:17:8A:30:35:E8:C5:13:A6:23:0D:17:C7:D5:37:F5:D8:63 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 47535622E8BD430F73CFEC42BFB86E32CA504AF4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02705a78-c949-405b-9b73-0ec922410e1e.roa Signing time: Mon 04 Aug 2025 18:20:11 +0000 ROA not before: Mon 04 Aug 2025 18:20:11 +0000 ROA not after: Mon 08 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:53:56:22:e8:bd:43:0f:73:cf:ec:42:bf:b8:6e:32:ca:50:4a:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 4 18:20:11 2025 GMT Not After : Sep 8 23:59:59 2025 GMT Subject: serialNumber=aec071ffdf1156f2ad2da37487d0f977cf5b0c55033ca272f8165f57d44e8337, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:82:77:65:0d:e6:fa:39:8f:a0:ae:9d:db:f5: d3:4f:d3:27:d1:f8:63:04:a8:f9:59:5e:13:d3:a6: b9:5b:bc:7e:83:93:6d:cf:99:5e:54:b5:d8:1d:d2: df:65:a9:0d:37:75:71:65:32:dd:46:6e:7d:9c:ae: 5b:e8:1c:a3:f3:d0:ae:1d:75:64:54:e3:2a:8f:ae: b9:93:f6:64:a1:94:5f:13:48:08:76:78:77:72:34: 44:bc:53:97:68:a7:b7:6e:7d:76:06:2b:67:6b:ee: 32:e3:77:00:c1:68:ce:3c:30:1e:5f:82:d5:b9:29: 77:5b:b4:a2:b6:86:82:18:45:dc:0c:0b:b5:6c:5e: 58:79:27:0a:a2:33:ab:92:0b:45:d1:ab:df:51:fc: 73:15:c6:35:15:7b:17:b7:9d:7c:05:94:80:22:58: 3f:b4:2c:34:e0:fd:ef:73:61:6c:24:d9:e4:a7:1c: 46:a7:fa:7d:31:e9:ff:52:48:ed:e8:61:c5:f2:a0: 97:0c:e4:89:88:a3:aa:7c:d3:d3:84:c6:b0:39:0f: 65:f9:2a:0e:03:ab:17:07:f7:c8:26:1f:2e:b0:95: 83:12:d6:10:3c:0b:e0:68:cb:f3:8c:b9:e9:96:cf: 6a:a0:00:f1:33:6d:52:36:e3:4e:22:6a:6f:c0:22: 32:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:06:0D:17:8A:30:35:E8:C5:13:A6:23:0D:17:C7:D5:37:F5:D8:63 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/02705a78-c949-405b-9b73-0ec922410e1e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f100::/40 Signature Algorithm: sha256WithRSAEncryption 19:c3:93:24:f8:47:5e:21:da:82:9f:f5:01:9c:bf:b8:74:3d: 10:40:3d:87:12:2c:65:3b:1f:6f:9b:6e:3f:36:30:f4:e1:96: 92:eb:8e:d9:10:3a:ff:27:63:7d:3e:42:2c:d7:31:f9:c6:41: 4f:8e:b2:f2:35:b6:b8:f7:fd:2b:e1:dd:8d:6d:39:0e:1d:15: b3:dc:d2:49:d5:4e:5f:14:a3:9a:0e:06:e1:83:8e:86:6b:af: 72:8d:2e:44:4b:05:4b:27:4a:23:bd:75:e5:c5:ce:b6:b8:43: 1f:24:8d:57:c4:bd:71:21:d8:ae:eb:88:9f:16:7e:80:3d:cf: a7:e6:85:74:1c:49:c4:18:d4:c9:34:7a:8e:4b:70:94:29:ef: a7:92:8e:a3:d2:97:15:a5:d4:2f:75:d1:b2:ad:c0:82:e8:aa: ee:85:f6:c1:ad:7d:a0:62:7e:04:d5:9a:4f:40:be:46:8e:ff: 19:cb:b9:e4:a6:19:33:b3:56:3e:7d:29:cb:cf:39:72:11:aa: 00:d6:14:d1:76:73:9e:58:c3:79:e4:eb:74:52:4d:6c:e7:41: e8:b3:6c:dc:ad:51:d5:94:ff:e9:90:88:17:1c:b5:f6:21:29: 12:35:c0:e0:db:f3:cf:c1:60:cc:df:5a:9c:81:c6:b0:dc:f0: ec:3f:4a:0c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUR1NWIui9Qw9zz+xCv7huMspQSvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA0MTgyMDExWhcNMjUwOTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWMwNzFmZmRmMTE1NmYyYWQyZGEzNzQ4N2QwZjk3N2Nm NWIwYzU1MDMzY2EyNzJmODE2NWY1N2Q0NGU4MzM3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBgndlDeb6OY+grp3b9dNP0yfR+GMEqPlZXhPTprlbvH6D k23PmV5Utdgd0t9lqQ03dXFlMt1Gbn2crlvoHKPz0K4ddWRU4yqPrrmT9mShlF8T SAh2eHdyNES8U5dop7dufXYGK2dr7jLjdwDBaM48MB5fgtW5KXdbtKK2hoIYRdwM C7VsXlh5JwqiM6uSC0XRq99R/HMVxjUVexe3nXwFlIAiWD+0LDTg/e9zYWwk2eSn HEan+n0x6f9SSO3oYcXyoJcM5ImIo6p809OExrA5D2X5Kg4DqxcH98gmHy6wlYMS 1hA8C+Boy/OMuemWz2qgAPEzbVI2404iam/AIjL1AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBgYNF4owNejFE6YjDRfH1Tf12GMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAyNzA1YTc4LWM5NDktNDA1Yi05YjczLTBlYzkyMjQxMGUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDz8TANBgkqhkiG9w0BAQsFAAOCAQEAGcOTJPhHXiHagp/1AZy/uHQ9 EEA9hxIsZTsfb5tuPzYw9OGWkuuO2RA6/ydjfT5CLNcx+cZBT46y8jW2uPf9K+Hd jW05Dh0Vs9zSSdVOXxSjmg4G4YOOhmuvco0uREsFSydKI7115cXOtrhDHySNV8S9 cSHYruuInxZ+gD3Pp+aFdBxJxBjUyTR6jktwlCnvp5KOo9KXFaXUL3XRsq3Aguiq 7oX2wa19oGJ+BNWaT0C+Ro7/Gcu55KYZM7NWPn0py885chGqANYU0XZznljDeeTr dFJNbOdB6LNs3K1R1ZT/6ZCIFxy19iEpEjXA4Nvzz8FgzN9anIHGsNzw7D9KDA== -----END CERTIFICATE-----Generated at Thu Aug 7 05:13:15 2025 by rpki-client