$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa File: 0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa (raw, json) Hash identifier: OrWeP51FWsspeI8rG9dr55HAGdQAOZg8E5gqa90nVV4= Subject key identifier: 0C:07:BF:7A:81:30:51:D4:B0:21:1F:3C:BB:BE:5B:B3:27:65:A4:1F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 55F83B0836CB2FF37F5C713A4D0AF138FEB59BD7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa Signing time: Fri 11 Jul 2025 18:20:58 +0000 ROA not before: Fri 11 Jul 2025 18:20:58 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:f8:3b:08:36:cb:2f:f3:7f:5c:71:3a:4d:0a:f1:38:fe:b5:9b:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:20:58 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=834d6ce0b79a4350f76f9c40fd2d3958382796298605a7b13db4e514c145999b, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d4:17:0c:a8:e5:5c:4c:1f:93:60:bf:09:e7: e5:d1:57:d1:e5:05:bc:6c:1b:82:98:c4:a7:e5:c3: 00:64:14:c1:e6:5e:1a:de:28:32:95:79:ed:b5:03: 50:81:06:af:ac:d1:63:9e:e8:24:1c:b8:41:84:11: bc:fa:d6:a7:00:8c:83:01:65:29:67:3d:0b:23:68: 08:19:74:2f:9d:94:8b:91:d7:c1:3a:9f:2b:aa:4c: d2:21:d3:f3:96:d7:7c:55:b9:d7:c8:8f:b9:ab:e6: 1d:08:ad:34:e9:11:34:87:1c:2e:e1:df:fd:42:3c: 87:0a:68:00:d4:8c:ca:01:89:7a:c8:5e:11:12:fb: b6:03:27:7d:a9:80:5b:16:40:ad:64:28:43:bb:d8: 0a:39:28:55:fe:0d:b8:c0:61:1f:a9:76:16:6d:71: ee:e8:c1:f7:39:98:82:f2:de:be:22:92:84:d9:06: a3:3a:24:3f:4f:5d:7b:0a:c5:0e:98:f8:77:75:3a: 2e:e3:b6:d0:67:34:ac:25:49:05:a8:1c:d9:ff:37: ba:89:6a:dd:a4:63:eb:fc:a5:1a:92:a6:87:c5:12: 2b:b0:35:fb:87:ca:e8:40:b3:43:52:85:15:ed:0c: 1f:c8:53:28:76:28:6f:e6:ca:42:92:50:e3:0f:4e: 9c:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:07:BF:7A:81:30:51:D4:B0:21:1F:3C:BB:BE:5B:B3:27:65:A4:1F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b89c4fe-6730-4f60-bc4c-ea16b19c2c3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:20::/48 Signature Algorithm: sha256WithRSAEncryption 0c:dc:bc:9b:87:61:42:32:18:33:97:57:20:30:b2:c7:63:7b: fc:d1:6e:e1:21:63:a3:c8:b3:68:35:94:33:33:70:19:3a:73: 7b:4b:f5:14:a6:a7:c1:7e:2a:92:ae:11:26:bb:76:96:be:9e: 26:9d:ec:a9:62:fb:7d:09:09:3a:4f:73:70:f0:dd:a7:96:67: 4f:9d:0e:f1:ef:cd:35:68:26:1a:e7:bb:53:b9:9b:e0:13:cd: a6:22:89:2f:25:3d:a0:93:cd:5c:d7:1d:02:68:7b:ae:19:bd: 75:d0:25:71:d8:46:5c:1f:6a:54:c9:4d:d4:ad:b5:82:2b:5f: 2a:a4:38:f9:50:41:ac:2d:1b:60:c1:c1:16:ea:33:0a:9c:d0: fd:e9:be:85:c4:ca:ee:09:b1:b7:67:1b:ef:71:d7:68:0f:06: 71:17:54:aa:90:87:1b:ad:3e:96:a6:8a:0a:25:5d:4d:49:16: 9d:f6:c1:61:4f:24:cb:09:30:d5:14:f1:b9:a3:df:98:c0:42: 0c:e7:e3:70:9f:cd:9d:c1:7e:84:de:79:42:49:02:34:48:43: a0:9c:25:0d:f7:98:58:51:ce:13:48:be:6d:20:12:71:4b:a2: ee:db:0c:f9:e9:e6:26:f0:e0:de:fc:71:ae:72:87:3f:0b:53: 91:9a:1a:ce -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUVfg7CDbLL/N/XHE6TQrxOP61m9cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMDU4WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MzRkNmNlMGI3OWE0MzUwZjc2ZjljNDBmZDJkMzk1ODM4 Mjc5NjI5ODYwNWE3YjEzZGI0ZTUxNGMxNDU5OTliMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDj1BcMqOVcTB+TYL8J5+XRV9HlBbxsG4KYxKflwwBkFMHm XhreKDKVee21A1CBBq+s0WOe6CQcuEGEEbz61qcAjIMBZSlnPQsjaAgZdC+dlIuR 18E6nyuqTNIh0/OW13xVudfIj7mr5h0IrTTpETSHHC7h3/1CPIcKaADUjMoBiXrI XhES+7YDJ32pgFsWQK1kKEO72Ao5KFX+DbjAYR+pdhZtce7owfc5mILy3r4ikoTZ BqM6JD9PXXsKxQ6Y+Hd1Oi7jttBnNKwlSQWoHNn/N7qJat2kY+v8pRqSpofFEiuw NfuHyuhAs0NShRXtDB/IUyh2KG/mykKSUOMPTpypAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUDAe/eoEwUdSwIR88u75bsydlpB8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiODljNGZlLTY3MzAtNGY2MC1iYzRjLWVhMTZiMTljMmMzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwACAwDQYJKoZIhvcNAQELBQADggEBAAzcvJuHYUIyGDOXVyAwssdj e/zRbuEhY6PIs2g1lDMzcBk6c3tL9RSmp8F+KpKuESa7dpa+niad7Kli+30JCTpP c3Dw3aeWZ0+dDvHvzTVoJhrnu1O5m+ATzaYiiS8lPaCTzVzXHQJoe64ZvXXQJXHY RlwfalTJTdSttYIrXyqkOPlQQawtG2DBwRbqMwqc0P3pvoXEyu4JsbdnG+9x12gP BnEXVKqQhxutPpamigolXU1JFp32wWFPJMsJMNUU8bmj35jAQgzn43CfzZ3BfoTe eUJJAjRIQ6CcJQ33mFhRzhNIvm0gEnFLou7bDPnp5ibw4N78ca5yhz8LU5GaGs4= -----END CERTIFICATE-----Generated at Mon Aug 4 21:45:59 2025 by rpki-client