$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa File: 13d95532-571e-4655-86b3-383b815023ba.roa (raw, json) Hash identifier: XGDkZVSehUuxJ8MQQYm2gaD6digEztEXFE19e9D5OgE= Subject key identifier: 4F:09:AA:87:F0:9B:3C:65:4A:5C:8E:CA:BA:B9:02:C8:DC:35:BE:DC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1CDADE478A0BDC301EC9594CB139AA476A29F872 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa Signing time: Tue 05 Aug 2025 18:30:30 +0000 ROA not before: Tue 05 Aug 2025 18:30:30 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:da:de:47:8a:0b:dc:30:1e:c9:59:4c:b1:39:aa:47:6a:29:f8:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:30 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f742a67c83799b8d5e48908e7a0cf0f4b2167d586331ece729a0481f1ffc9f2f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c7:e3:97:7a:f5:e6:3d:fc:cb:bb:94:ab:ff: cf:d8:e9:63:f4:9a:88:4e:b8:d2:2c:dc:44:db:cc: da:c5:c8:5d:1e:65:6b:4b:2d:64:6a:91:9b:ea:4b: e4:72:91:d9:f8:c5:58:a0:10:a9:44:d2:59:f3:9a: bd:4c:e6:45:f8:57:a2:06:b1:b3:00:81:f9:90:09: bf:da:9a:7a:a7:a4:7c:8d:bb:da:e0:c4:87:05:d5: c7:21:87:ac:ad:9c:c8:03:1b:2f:a5:86:2c:72:20: 46:ee:db:af:62:c2:5a:f4:75:b1:7b:b6:02:f4:83: 33:72:d3:c8:a5:4e:70:7b:04:23:0e:f4:e3:4c:f4: 9b:ec:e6:cf:58:40:a0:25:44:9e:82:4a:0b:09:04: f5:54:16:6e:ad:f0:aa:99:9d:13:fe:a9:bc:89:aa: 05:17:5b:24:a1:d3:bc:38:19:0e:fa:88:98:30:54: 88:4c:3b:94:e5:1d:4d:d4:11:f5:c8:9e:d6:37:7d: 9c:97:f6:f7:8e:26:ab:e7:86:3e:61:ef:80:c0:50: e9:98:31:a1:bd:bc:61:06:40:4d:91:52:43:f9:72: b3:dc:f7:92:03:52:fd:ae:16:40:1b:0e:c9:9b:a8: 86:89:87:9b:af:3a:d0:fe:77:2e:1d:91:4e:24:a7: e9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:09:AA:87:F0:9B:3C:65:4A:5C:8E:CA:BA:B9:02:C8:DC:35:BE:DC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/13d95532-571e-4655-86b3-383b815023ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/40 Signature Algorithm: sha256WithRSAEncryption 20:24:76:52:25:f7:d8:c5:f4:06:fe:f9:e7:c1:77:b7:90:b0: d4:a5:9f:ee:70:8f:66:97:a2:b5:18:99:9b:3e:95:35:e5:75: 13:4e:83:8d:95:06:34:54:4b:ee:2f:06:07:02:60:ae:60:6c: 19:c0:8a:86:45:1f:b3:5d:9d:5f:5c:25:13:cc:85:a6:7b:09: 36:d6:3d:6b:0d:b1:ab:01:3f:91:31:f6:45:a2:2b:dc:b1:1e: 52:23:7d:b0:b0:25:66:fd:00:ad:72:42:32:65:a0:a8:22:f8: 94:1b:71:be:03:5e:99:bb:25:ee:9d:45:37:ab:4c:d4:c8:e1: 3e:2b:32:51:37:43:ac:9c:02:8b:ee:c8:4f:2d:b4:ec:07:99: d8:87:18:eb:de:03:99:4f:6e:c2:e9:71:29:9c:29:a1:b2:3c: 01:55:52:db:aa:33:0a:e3:06:85:d1:0e:e7:83:eb:56:4a:a2: d4:1d:16:7d:3f:75:70:57:b8:39:f2:27:e5:74:37:77:d4:d2: fc:d2:d1:84:55:47:fe:3f:87:5a:f5:cd:36:c4:e1:25:46:e8: 4b:6f:b6:b1:ab:00:37:cf:f0:78:3d:53:a7:9e:d0:53:98:52: 0e:99:9f:bd:75:1e:ba:33:86:bc:2a:35:ae:aa:74:f0:cc:ff: 5a:96:19:87 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHNreR4oL3DAeyVlMsTmqR2op+HIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDMwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzQyYTY3YzgzNzk5YjhkNWU0ODkwOGU3YTBjZjBmNGIy MTY3ZDU4NjMzMWVjZTcyOWEwNDgxZjFmZmM5ZjJmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFx+OXevXmPfzLu5Sr/8/Y6WP0mohOuNIs3ETbzNrFyF0e ZWtLLWRqkZvqS+Rykdn4xVigEKlE0lnzmr1M5kX4V6IGsbMAgfmQCb/amnqnpHyN u9rgxIcF1cchh6ytnMgDGy+lhixyIEbu269iwlr0dbF7tgL0gzNy08ilTnB7BCMO 9ONM9Jvs5s9YQKAlRJ6CSgsJBPVUFm6t8KqZnRP+qbyJqgUXWySh07w4GQ76iJgw VIhMO5TlHU3UEfXIntY3fZyX9veOJqvnhj5h74DAUOmYMaG9vGEGQE2RUkP5crPc 95IDUv2uFkAbDsmbqIaJh5uvOtD+dy4dkU4kp+n/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUTwmqh/CbPGVKXI7KurkCyNw1vtwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzEzZDk1NTMyLTU3MWUtNDY1NS04NmIzLTM4M2I4MTUwMjNiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76TANBgkqhkiG9w0BAQsFAAOCAQEAICR2UiX32MX0Bv7558F3t5Cw 1KWf7nCPZpeitRiZmz6VNeV1E06DjZUGNFRL7i8GBwJgrmBsGcCKhkUfs12dX1wl E8yFpnsJNtY9aw2xqwE/kTH2RaIr3LEeUiN9sLAlZv0ArXJCMmWgqCL4lBtxvgNe mbsl7p1FN6tM1MjhPisyUTdDrJwCi+7ITy207AeZ2IcY694DmU9uwulxKZwpobI8 AVVS26ozCuMGhdEO54PrVkqi1B0WfT91cFe4OfIn5XQ3d9TS/NLRhFVH/j+HWvXN NsThJUboS2+2sasAN8/weD1Tp57QU5hSDpmfvXUeujOGvCo1rqp08Mz/WpYZhw== -----END CERTIFICATE-----Generated at Thu Aug 7 05:14:33 2025 by rpki-client