$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa File: 15261f12-a3b4-407e-9226-8285aa79061d.roa (raw, json) Hash identifier: Dks35xlAJVqUcRZVZdxybhOdO1AgoQBxK90u0nko6G4= Subject key identifier: F0:07:8F:2A:8D:53:1A:69:45:9B:B6:72:85:50:82:87:DA:CC:18:B5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 288AE8CF484A605475AF35216E7C3049A73A54FF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa Signing time: Wed 06 Aug 2025 00:40:20 +0000 ROA not before: Wed 06 Aug 2025 00:40:20 +0000 ROA not after: Wed 10 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:8a:e8:cf:48:4a:60:54:75:af:35:21:6e:7c:30:49:a7:3a:54:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 6 00:40:20 2025 GMT Not After : Sep 10 23:59:59 2025 GMT Subject: serialNumber=9a996c38fb778584dea3b30adf90a857a4d6ed131a6d13c49752f48f20c36c45, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:72:22:d6:a1:52:62:cc:ba:14:05:f9:49:1d: cb:ab:af:46:11:da:60:82:8a:3f:01:fd:be:a5:cb: 83:37:a2:ac:66:bf:71:31:46:37:14:f4:7e:9e:62: 7b:69:f9:e3:f8:99:c7:e4:58:23:b2:4f:d5:21:76: 97:ed:92:4b:f2:7d:f1:56:d6:d9:19:70:ad:4f:18: 98:fd:07:ba:c9:02:b1:a0:65:55:e3:9c:e8:6c:be: 8f:f0:bf:5f:c3:2b:29:61:de:5d:3f:fd:c1:6b:de: 31:6d:74:84:9b:c8:9d:8d:b9:99:51:05:5b:f5:49: 32:69:ac:71:e0:1d:2f:03:15:0d:35:da:a8:bd:60: 81:45:17:93:e4:9e:68:e5:96:3c:9d:e9:3c:8d:4c: f9:ac:02:05:65:92:53:f8:95:1c:e5:0f:8a:39:36: 27:72:f2:fa:20:70:d2:c3:08:fb:93:6d:80:e6:86: eb:b4:fb:82:be:d0:71:c8:80:17:ca:36:0f:d1:51: cb:05:34:85:bc:59:35:26:f7:88:b6:3e:af:36:bf: 65:f0:78:dc:79:ca:88:f7:03:fd:94:c0:b9:fd:a7: b4:7f:3f:23:45:ed:72:20:64:65:6f:c0:35:db:80: ed:d8:1b:cf:87:25:a8:7e:af:b5:ff:de:fc:3e:57: 48:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:07:8F:2A:8D:53:1A:69:45:9B:B6:72:85:50:82:87:DA:CC:18:B5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/15261f12-a3b4-407e-9226-8285aa79061d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 2a:53:30:8d:fb:dc:86:79:b7:5c:ae:d2:fd:42:65:83:af:aa: 0e:78:bc:d7:de:fc:ea:53:de:d6:e5:bf:c9:57:e0:6c:c4:2e: 7f:8b:67:58:af:96:5f:b8:ee:ad:1b:52:e1:2b:30:f5:ff:28: 49:19:96:69:3c:42:3e:e4:63:22:c3:b7:eb:9d:93:51:f4:d8: 96:39:a3:ac:3d:9e:33:9f:1d:d0:af:2e:8a:15:12:ba:e0:7f: 45:ee:d2:d6:74:55:28:bf:31:67:d4:97:66:97:9e:31:fa:78: 0e:1b:c1:c2:34:fc:ad:4c:f1:51:ed:8f:f2:65:b6:ef:27:58: 78:ed:bc:28:51:36:0e:60:73:e9:45:cd:10:3e:a2:8e:4b:f0: 13:55:e2:bc:df:b8:59:90:8e:25:8a:84:8c:4e:41:7e:39:33: fe:2a:78:bf:80:b3:aa:94:7c:33:a7:5b:b1:12:8d:0a:81:5e: 59:70:1a:44:47:e1:a4:e9:5f:f7:0c:60:4b:21:0e:d8:ac:b6: a7:03:27:fd:0d:6a:37:a0:7c:3b:75:a2:52:6c:7b:2f:c1:c1: 40:ad:e4:91:37:95:75:b9:24:9a:f2:33:c8:11:d6:af:f5:99: 6a:cc:bf:56:e8:da:c9:77:75:50:50:0e:70:3c:49:aa:da:7f: 2d:ab:4e:e2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKIroz0hKYFR1rzUhbnwwSac6VP8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA2MDA0MDIwWhcNMjUwOTEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTk5NmMzOGZiNzc4NTg0ZGVhM2IzMGFkZjkwYTg1N2E0 ZDZlZDEzMWE2ZDEzYzQ5NzUyZjQ4ZjIwYzM2YzQ1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPciLWoVJizLoUBflJHcurr0YR2mCCij8B/b6ly4M3oqxm v3ExRjcU9H6eYntp+eP4mcfkWCOyT9UhdpftkkvyffFW1tkZcK1PGJj9B7rJArGg ZVXjnOhsvo/wv1/DKylh3l0//cFr3jFtdISbyJ2NuZlRBVv1STJprHHgHS8DFQ01 2qi9YIFFF5Pknmjlljyd6TyNTPmsAgVlklP4lRzlD4o5Nidy8vogcNLDCPuTbYDm huu0+4K+0HHIgBfKNg/RUcsFNIW8WTUm94i2Pq82v2XweNx5yoj3A/2UwLn9p7R/ PyNF7XIgZGVvwDXbgO3YG8+HJah+r7X/3vw+V0hdAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8AePKo1TGmlFm7ZyhVCCh9rMGLUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzE1MjYxZjEyLWEzYjQtNDA3ZS05MjI2LTgyODVhYTc5MDYxZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAKlMwjfvchnm3XK7S/UJlg6+q Dni819786lPe1uW/yVfgbMQuf4tnWK+WX7jurRtS4Ssw9f8oSRmWaTxCPuRjIsO3 652TUfTYljmjrD2eM58d0K8uihUSuuB/Re7S1nRVKL8xZ9SXZpeeMfp4DhvBwjT8 rUzxUe2P8mW27ydYeO28KFE2DmBz6UXNED6ijkvwE1XivN+4WZCOJYqEjE5Bfjkz /ip4v4CzqpR8M6dbsRKNCoFeWXAaREfhpOlf9wxgSyEO2Ky2pwMn/Q1qN6B8O3Wi Umx7L8HBQK3kkTeVdbkkmvIzyBHWr/WZasy/VujayXd1UFAOcDxJqtp/LatO4g== -----END CERTIFICATE-----Generated at Fri Aug 8 12:51:48 2025 by rpki-client