$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa File: 03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa (raw, json) Hash identifier: MfuQwGia9Y6vZJtt1HHnGlEEGexLvgtIe2PWKleZqdU= Subject key identifier: 4F:6C:28:12:69:A6:E8:FB:F8:91:62:00:35:A2:AA:1A:37:07:67:9F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 530925ACE83EB7E345459DEDC946043F3276CE9E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa Signing time: Fri 11 Jul 2025 18:20:53 +0000 ROA not before: Fri 11 Jul 2025 18:20:53 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:09:25:ac:e8:3e:b7:e3:45:45:9d:ed:c9:46:04:3f:32:76:ce:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:20:53 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=89b37a0e07c78346ca670efd1794cf8490f58d54f99d867719b89c7a602433ee, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:32:68:e5:69:e9:b9:9d:4d:45:c9:ca:15:46: 64:d9:ba:0c:fe:35:40:18:bf:ea:ed:05:44:86:e5: 3d:73:c7:c3:70:42:52:3b:a0:1e:5f:4f:e5:cd:24: 44:b7:ad:91:86:17:18:02:63:6a:de:6e:0a:28:bc: 4a:64:02:9e:d2:9e:c2:a1:4a:d3:a5:e2:ad:dc:d5: cd:77:ce:0a:a0:ed:58:46:d0:f6:06:9c:19:eb:78: b9:43:b6:2c:89:3d:7d:41:16:9c:a8:2e:51:45:9e: aa:da:86:6b:3c:16:fd:bb:dd:45:ef:68:e5:e4:58: 4c:90:f3:55:98:7b:e5:cf:a5:45:36:06:af:55:b9: d1:11:39:71:b5:7d:ae:7b:af:d1:fc:4e:3d:ac:8a: 3a:40:1c:9d:a5:41:d3:88:31:33:c2:2b:b8:0a:4c: cd:1c:aa:1e:ef:a0:41:0b:15:31:b2:3a:98:65:b1: 82:ac:8f:10:60:16:11:3e:b6:82:64:ba:4c:1c:3a: af:60:d6:d8:ea:f8:24:6c:d3:53:73:85:f1:3e:bf: 5f:2a:d4:e6:bf:99:ea:cc:85:df:91:b2:02:aa:c0: cb:5f:91:68:2a:ce:e6:9d:b7:61:23:91:5c:c8:01: e1:1d:af:ec:fe:9f:93:54:9d:90:8a:c0:ce:8e:03: c1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6C:28:12:69:A6:E8:FB:F8:91:62:00:35:A2:AA:1A:37:07:67:9F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 9d:52:7b:1b:ed:44:55:23:96:ba:d2:60:3e:c5:df:e4:ef:03: c7:9e:e6:9a:4b:e1:ed:ec:df:a6:86:64:fd:f0:39:d0:6f:a5: 45:9b:d3:d2:69:81:42:0c:d0:13:49:f7:2b:86:8d:73:4a:d8: c9:d2:e5:1e:d1:f8:b3:66:c2:59:e6:09:15:27:10:43:65:a2: ad:89:da:4a:c1:40:b7:72:f3:33:66:5a:dd:84:cc:f0:8a:dd: 30:b0:8c:18:38:2e:59:2b:3c:24:70:0f:30:d0:99:38:f4:98: 8e:fa:aa:da:cd:93:f3:8a:0b:28:b3:83:ec:00:b4:6a:be:ff: 2e:e4:07:78:1f:8b:8c:bf:ed:35:39:24:60:c2:44:7c:aa:13: 9f:68:9b:9d:14:69:29:1c:5c:5b:35:a0:01:2e:f0:06:fd:0e: 43:13:e0:74:8c:d3:55:3b:5a:8f:10:1b:8f:24:53:3c:ed:88: 7a:88:e6:e9:5f:02:18:fe:e9:fb:b5:a3:b7:a9:c3:dc:8c:49: 88:ea:74:4b:ca:d3:4e:12:f3:36:98:9b:30:db:da:5b:3e:4b: 87:a3:36:55:de:a9:5c:6c:23:14:c5:d4:81:ec:de:ef:59:1a: 37:76:4e:59:75:9d:f3:3f:c4:38:3c:64:31:b3:72:d4:d0:a1: 41:95:8b:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUwklrOg+t+NFRZ3tyUYEPzJ2zp4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMDUzWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OWIzN2EwZTA3Yzc4MzQ2Y2E2NzBlZmQxNzk0Y2Y4NDkw ZjU4ZDU0Zjk5ZDg2NzcxOWI4OWM3YTYwMjQzM2VlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyMmjlaem5nU1FycoVRmTZugz+NUAYv+rtBUSG5T1zx8Nw QlI7oB5fT+XNJES3rZGGFxgCY2rebgoovEpkAp7SnsKhStOl4q3c1c13zgqg7VhG 0PYGnBnreLlDtiyJPX1BFpyoLlFFnqrahms8Fv273UXvaOXkWEyQ81WYe+XPpUU2 Bq9VudEROXG1fa57r9H8Tj2sijpAHJ2lQdOIMTPCK7gKTM0cqh7voEELFTGyOphl sYKsjxBgFhE+toJkukwcOq9g1tjq+CRs01NzhfE+v18q1Oa/merMhd+RsgKqwMtf kWgqzuadt2EjkVzIAeEdr+z+n5NUnZCKwM6OA8H3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUT2woEmmm6Pv4kWIANaKqGjcHZ58wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzYjU5YTFlLTYyNjgtNDYwNy1hNmMxLTY5ZTZkZTgwY2Y0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAJ1SexvtRFUjlrrSYD7F3+Tv A8ee5ppL4e3s36aGZP3wOdBvpUWb09JpgUIM0BNJ9yuGjXNK2MnS5R7R+LNmwlnm CRUnEENloq2J2krBQLdy8zNmWt2EzPCK3TCwjBg4LlkrPCRwDzDQmTj0mI76qtrN k/OKCyizg+wAtGq+/y7kB3gfi4y/7TU5JGDCRHyqE59om50UaSkcXFs1oAEu8Ab9 DkMT4HSM01U7Wo8QG48kUzztiHqI5ulfAhj+6fu1o7epw9yMSYjqdEvK004S8zaY mzDb2ls+S4ejNlXeqVxsIxTF1IHs3u9ZGjd2Tll1nfM/xDg8ZDGzctTQoUGVi6s= -----END CERTIFICATE-----Generated at Mon Aug 4 22:22:49 2025 by rpki-client