$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa File: 0d414a18-fab9-4052-b9b5-07a662fab301.roa (raw, json) Hash identifier: CqrHYAVASPCu0tPSrZtEN+O+GHFyuaplKHjILuCpnWM= Subject key identifier: 83:35:0C:25:32:79:A0:FE:71:07:73:89:2D:3D:D8:C4:30:01:14:68 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5834D570CDC223A62144C429FFF6B13B235FE39E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa Signing time: Fri 01 Aug 2025 17:10:17 +0000 ROA not before: Fri 01 Aug 2025 17:10:17 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8a00::/39 maxlen: 39 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:34:d5:70:cd:c2:23:a6:21:44:c4:29:ff:f6:b1:3b:23:5f:e3:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 1 17:10:17 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=516c7210b5070b9da66e8ec0e83771a1e6fe829e3523d68464e065052543a09f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:db:0e:49:33:01:5c:45:70:3e:53:fb:80:c4: e3:02:a4:32:9c:0e:67:78:95:ad:15:14:e3:9d:b8: 4b:c7:e5:20:0e:0d:7b:fb:67:a5:38:37:dc:5d:8e: 9f:87:10:21:bd:90:9c:12:34:80:2b:ff:36:13:2c: 7b:1b:a6:03:34:8c:f0:c3:23:ef:3f:c2:07:8d:85: ac:8e:e7:9b:b9:dc:ce:dc:17:cd:f0:2c:11:fa:09: 28:de:c9:c1:34:d7:bd:c3:cb:62:43:74:00:95:3e: b4:a4:11:79:c8:2f:34:2a:cc:92:42:2b:8d:a7:64: 19:2e:22:47:89:67:b8:8e:29:87:be:7a:8b:82:7d: b1:bf:46:02:ca:33:74:47:bd:f8:7a:d4:76:84:c0: 57:5f:f3:5b:d3:86:c2:2c:cd:25:61:b5:f3:11:a8: 8f:bb:1b:0e:5d:c4:e1:3b:d0:19:13:01:9a:84:d3: 0b:14:13:47:56:4d:ad:08:31:ec:a6:23:e8:d7:6d: 7c:73:b9:bb:6b:4d:df:bb:36:0c:79:fa:88:2e:42: 9d:7e:cc:33:78:d1:a8:85:f4:16:6c:99:c3:ee:e4: 4b:01:65:39:5f:76:59:b4:27:9b:c7:a9:32:c2:af: db:78:c5:d0:95:bb:d1:77:c6:90:fb:fd:e4:fd:2c: e0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:35:0C:25:32:79:A0:FE:71:07:73:89:2D:3D:D8:C4:30:01:14:68 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d414a18-fab9-4052-b9b5-07a662fab301.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8a00::/39 Signature Algorithm: sha256WithRSAEncryption 21:3f:e3:bd:69:58:a8:b9:09:9f:08:18:f8:83:ee:44:61:a0: 2c:6e:2f:82:21:05:c7:f8:9b:0a:12:3f:d6:4e:ea:02:be:dd: db:1a:30:f6:5c:f5:3c:52:88:12:69:79:31:2b:99:cb:6c:cd: b8:f1:f3:99:d8:59:18:bf:28:41:33:7d:66:f8:5f:50:a6:5d: 4c:9f:6f:28:9d:b9:1b:51:cb:1f:23:b4:f5:8a:ab:f7:1c:61: 92:81:4d:f2:b1:a3:66:82:58:44:01:4b:59:84:fd:de:d6:10: c2:46:06:5f:46:72:10:0b:88:97:1a:17:1c:ca:c2:63:c3:89: c1:53:b3:8c:9c:b9:bb:9b:25:68:02:fc:a7:1f:38:9c:17:52: e1:b4:bf:23:aa:f5:1c:e8:f7:ef:9b:da:fc:a6:d8:29:31:9e: 13:38:d0:cf:72:1f:b7:c8:63:84:5f:8d:5c:ab:8b:b4:1d:ed: 64:17:90:ee:38:3b:92:3e:00:2c:f0:56:c9:e2:48:a1:24:5e: 89:2f:95:70:35:cd:9f:b6:c1:f0:2c:93:46:70:df:2e:97:3b: 0a:88:fc:79:11:57:c9:e8:27:fa:f3:90:af:5e:bd:f6:aa:48: 49:c4:06:13:98:90:3e:43:10:dd:79:dc:88:0f:44:8b:db:93: c2:0c:1e:29 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWDTVcM3CI6YhRMQp//axOyNf454wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODAxMTcxMDE3WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTZjNzIxMGI1MDcwYjlkYTY2ZThlYzBlODM3NzFhMWU2 ZmU4MjllMzUyM2Q2ODQ2NGUwNjUwNTI1NDNhMDlmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT2w5JMwFcRXA+U/uAxOMCpDKcDmd4la0VFOOduEvH5SAO DXv7Z6U4N9xdjp+HECG9kJwSNIAr/zYTLHsbpgM0jPDDI+8/wgeNhayO55u53M7c F83wLBH6CSjeycE0173Dy2JDdACVPrSkEXnILzQqzJJCK42nZBkuIkeJZ7iOKYe+ eouCfbG/RgLKM3RHvfh61HaEwFdf81vThsIszSVhtfMRqI+7Gw5dxOE70BkTAZqE 0wsUE0dWTa0IMeymI+jXbXxzubtrTd+7Ngx5+oguQp1+zDN40aiF9BZsmcPu5EsB ZTlfdlm0J5vHqTLCr9t4xdCVu9F3xpD7/eT9LODpAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUgzUMJTJ5oP5xB3OJLT3YxDABFGgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBkNDE0YTE4LWZhYjktNDA1Mi1iOWI1LTA3YTY2MmZhYjMwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPDxijANBgkqhkiG9w0BAQsFAAOCAQEAIT/jvWlYqLkJnwgY+IPuRGGg LG4vgiEFx/ibChI/1k7qAr7d2xow9lz1PFKIEml5MSuZy2zNuPHzmdhZGL8oQTN9 ZvhfUKZdTJ9vKJ25G1HLHyO09Yqr9xxhkoFN8rGjZoJYRAFLWYT93tYQwkYGX0Zy EAuIlxoXHMrCY8OJwVOzjJy5u5slaAL8px84nBdS4bS/I6r1HOj375va/KbYKTGe EzjQz3Ift8hjhF+NXKuLtB3tZBeQ7jg7kj4ALPBWyeJIoSReiS+VcDXNn7bB8CyT RnDfLpc7Coj8eRFXyegn+vOQr1699qpIScQGE5iQPkMQ3XnciA9Ei9uTwgweKQ== -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:04 2025 by rpki-client