$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa File: 1ad26571-c674-4a73-b205-77cb32fe83bd.roa (raw, json) Hash identifier: KH9iOK+q6IAGkLYfh2keEaFoHwlGoZWUYc6ehSs6Ffs= Subject key identifier: 46:1C:6F:E4:77:AD:7B:74:0A:B4:E6:35:E4:8C:2B:71:6C:B0:F5:05 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6995D80DB4E87DF96262E808E050CF394975BCFB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa Signing time: Tue 05 Aug 2025 18:20:12 +0000 ROA not before: Tue 05 Aug 2025 18:20:12 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:95:d8:0d:b4:e8:7d:f9:62:62:e8:08:e0:50:cf:39:49:75:bc:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:12 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=673048eecf3cf12c3d0123f95cf4266fbc1b7432735d32232c1a445fe173213a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:62:ec:e5:2d:68:7c:a7:4f:bd:ae:cc:04:69: f1:89:59:2b:f6:2a:95:e2:c9:a2:77:a9:1b:33:e4: 0e:6a:15:99:82:fd:28:09:6d:c3:95:b0:23:ce:e4: 99:df:33:51:69:f6:70:d6:fc:f7:0a:91:5a:95:da: b6:df:e7:44:05:7e:16:d8:03:e1:e4:01:08:a1:2c: f0:87:72:d2:26:00:46:40:96:64:3f:99:19:a9:ad: 91:38:65:af:07:83:8c:46:93:82:88:7c:87:53:d9: eb:6f:22:9c:e5:cd:95:79:7c:5b:2e:12:22:69:9b: 63:ea:13:37:d6:3d:72:f8:b8:ac:cc:c1:4e:93:54: de:ef:f4:ff:36:1b:00:99:b0:cf:12:a6:93:7c:2f: f8:b9:d6:c7:33:e6:2c:6b:14:50:1a:76:a2:7d:08: f2:9f:ad:59:54:88:46:dc:88:01:6a:77:cd:a2:7d: 66:28:2e:0f:6e:e3:01:16:b6:b5:1f:ca:c0:3e:f1: 1c:ee:ed:19:9d:5a:0d:1a:42:8e:cf:34:41:2a:b7: 4f:a5:ef:e8:f6:ea:bf:1e:d8:a7:60:cc:7f:88:44: f4:e9:e3:a6:cd:05:8a:36:7e:79:65:cf:d7:db:9f: 74:7f:22:cb:23:fb:09:2d:25:6d:f3:24:36:18:81: 17:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:1C:6F:E4:77:AD:7B:74:0A:B4:E6:35:E4:8C:2B:71:6C:B0:F5:05 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1ad26571-c674-4a73-b205-77cb32fe83bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10::/48 Signature Algorithm: sha256WithRSAEncryption 47:b5:55:95:d6:dc:1a:a5:22:ff:92:a3:4f:57:56:33:0c:47: af:73:44:3f:d6:11:92:c1:e9:9a:8d:19:5c:5e:c1:66:a3:30: dc:76:08:97:61:fa:55:5c:67:e5:bd:29:95:0a:8e:cc:b1:e9: 6e:08:59:1d:ce:a0:a9:72:b9:64:74:2c:64:11:f1:45:13:1b: e8:f2:aa:51:5f:7d:8d:5d:78:ef:61:2c:73:12:b3:42:6d:01: b8:48:e3:84:38:da:50:e2:fa:79:6a:63:d4:c5:52:84:de:d3: 5e:88:99:15:9c:80:67:b9:e9:57:28:1e:47:77:43:a3:3d:7f: 9a:c4:1b:bc:a0:48:2c:1e:94:fd:1d:44:79:e3:fd:00:4b:35: 4a:26:c2:ec:5a:44:9f:3f:89:74:e1:c2:2e:93:39:4f:33:e2: 7f:8c:3c:ce:5e:12:eb:c1:e2:d4:dc:3e:ed:b2:5d:e6:61:ed: f7:1d:0a:48:ee:40:16:18:60:18:92:54:fd:63:aa:82:25:f9: 25:e2:7c:bd:f9:49:65:e2:98:46:57:7b:e4:34:dc:ca:c6:c6: 8d:4b:44:08:82:bf:b7:5a:48:b4:ce:20:d0:43:4d:b0:55:02: 08:7e:eb:b2:36:37:45:8c:88:73:b3:f1:84:69:6b:d1:d0:5f: a3:0d:b7:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaZXYDbToffliYugI4FDPOUl1vPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDEyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzMwNDhlZWNmM2NmMTJjM2QwMTIzZjk1Y2Y0MjY2ZmJj MWI3NDMyNzM1ZDMyMjMyYzFhNDQ1ZmUxNzMyMTNhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiYuzlLWh8p0+9rswEafGJWSv2KpXiyaJ3qRsz5A5qFZmC /SgJbcOVsCPO5JnfM1Fp9nDW/PcKkVqV2rbf50QFfhbYA+HkAQihLPCHctImAEZA lmQ/mRmprZE4Za8Hg4xGk4KIfIdT2etvIpzlzZV5fFsuEiJpm2PqEzfWPXL4uKzM wU6TVN7v9P82GwCZsM8SppN8L/i51scz5ixrFFAadqJ9CPKfrVlUiEbciAFqd82i fWYoLg9u4wEWtrUfysA+8Rzu7RmdWg0aQo7PNEEqt0+l7+j26r8e2KdgzH+IRPTp 46bNBYo2fnllz9fbn3R/Issj+wktJW3zJDYYgRfBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQURhxv5Hete3QKtOY15IwrcWyw9QUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFhZDI2NTcxLWM2NzQtNGE3My1iMjA1LTc3Y2IzMmZlODNiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABAwDQYJKoZIhvcNAQELBQADggEBAEe1VZXW3BqlIv+So09XVjMM R69zRD/WEZLB6ZqNGVxewWajMNx2CJdh+lVcZ+W9KZUKjsyx6W4IWR3OoKlyuWR0 LGQR8UUTG+jyqlFffY1deO9hLHMSs0JtAbhI44Q42lDi+nlqY9TFUoTe016ImRWc gGe56VcoHkd3Q6M9f5rEG7ygSCwelP0dRHnj/QBLNUomwuxaRJ8/iXThwi6TOU8z 4n+MPM5eEuvB4tTcPu2yXeZh7fcdCkjuQBYYYBiSVP1jqoIl+SXifL35SWXimEZX e+Q03MrGxo1LRAiCv7daSLTOINBDTbBVAgh+67I2N0WMiHOz8YRpa9HQX6MNt9Q= -----END CERTIFICATE-----Generated at Sun Aug 10 13:53:59 2025 by rpki-client