$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa File: 20df74ce-1a64-4df1-b616-115d4493a969.roa (raw, json) Hash identifier: SyQ3DqXRLfJCL+NPRgWw0fWpPibJ6ClBn1gWwNnt1fE= Subject key identifier: 1F:45:84:2A:B3:5B:9F:07:7D:3F:18:9C:BB:22:32:E6:A5:CC:DE:5C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3D7780076B139AAB035B515EF72FF88401898B12 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa Signing time: Tue 05 Aug 2025 18:40:15 +0000 ROA not before: Tue 05 Aug 2025 18:40:15 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:200::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:77:80:07:6b:13:9a:ab:03:5b:51:5e:f7:2f:f8:84:01:89:8b:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:40:15 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5adf04e91fe644b0741258309be88c736df07c179cb3eae2c751910987b47a7c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:5d:fe:d2:36:ef:d6:3f:5e:b5:4c:04:66:89: d1:a3:a2:6d:57:3d:57:cf:8f:bd:97:c9:88:be:14: 1b:42:89:9b:3c:70:4c:d1:23:ee:4a:1a:ff:89:71: 93:e0:6c:b7:59:ed:02:db:e9:1f:ed:21:20:42:9b: a5:eb:cc:b9:9b:9a:89:b8:a7:55:4a:1c:d9:6b:e1: b0:0e:27:6f:a4:b0:a6:c7:03:9b:2d:a2:14:5e:93: 86:83:27:f8:78:cc:67:1d:3a:f8:5c:a8:27:37:f0: 1b:b2:de:84:99:3e:41:14:e0:c9:57:e9:c8:c2:2b: b7:6b:0b:7a:e2:19:99:6c:89:4e:75:44:9e:b8:9c: 8f:66:fc:55:60:f1:6d:e5:b4:b9:0f:c6:ec:3c:1a: 71:25:6d:7c:15:d8:48:80:52:08:33:be:11:59:6e: d0:aa:94:60:a5:44:77:19:fa:0a:ec:31:c7:05:4a: 87:d2:34:e4:3e:ed:47:42:01:0d:7f:d6:a6:97:1b: 6a:cd:89:8c:01:4e:70:9e:88:88:c2:31:02:01:44: c4:45:c7:c5:e6:e2:10:35:0e:dd:20:c9:0b:d0:38: 35:e1:ed:bf:66:80:08:a6:05:77:cb:ef:18:ce:f7: 90:27:84:75:f5:b1:b4:22:63:38:1b:0e:bd:f3:e4: d6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:45:84:2A:B3:5B:9F:07:7D:3F:18:9C:BB:22:32:E6:A5:CC:DE:5C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/20df74ce-1a64-4df1-b616-115d4493a969.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:200::/40 Signature Algorithm: sha256WithRSAEncryption 26:ae:ee:2d:88:0f:43:b3:3d:48:05:cf:7f:9c:4f:7c:7a:83: f1:4d:d7:e8:fb:aa:16:7f:63:9c:43:72:17:cf:97:f8:5d:fb: e5:bc:4a:4d:62:ce:11:9b:04:74:40:9e:a4:9a:e4:1e:6e:fe: 7b:9b:62:8d:83:3b:b7:e4:9f:f1:5d:e0:14:0f:2b:26:b8:70: 5f:85:d9:b7:0f:dc:f2:bf:2f:a3:1f:91:1f:22:44:ef:b6:2a: 52:c3:24:af:aa:05:1a:09:89:ef:3f:36:f6:46:f6:d9:85:5f: d6:67:37:4c:bd:02:74:2c:32:a5:ef:ca:ef:29:11:7f:fa:c3: d4:52:9c:34:42:27:8c:44:ce:d7:70:19:21:39:18:37:d5:b8: 26:1f:28:62:7a:70:02:ad:b3:13:81:ab:2a:76:5c:84:0b:b5: 72:db:fa:b2:47:4d:e1:76:98:bf:4a:61:62:d3:55:17:aa:e3: 96:c2:4b:51:ec:d6:3c:f1:73:5a:41:3b:09:ac:18:ca:9d:99: 0e:81:a7:54:ca:6b:17:32:79:80:85:14:d7:1f:9a:f2:44:0d: b2:df:b7:17:61:3a:79:cb:8e:25:9e:4f:3f:f7:ca:71:db:4c: 00:6c:99:34:f4:e9:70:7f:f0:4f:a4:7a:f2:0a:e7:5b:18:94: 44:d0:9f:0d -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUPXeAB2sTmqsDW1Fe9y/4hAGJixIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTg0MDE1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWRmMDRlOTFmZTY0NGIwNzQxMjU4MzA5YmU4OGM3MzZk ZjA3YzE3OWNiM2VhZTJjNzUxOTEwOTg3YjQ3YTdjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRXf7SNu/WP161TARmidGjom1XPVfPj72XyYi+FBtCiZs8 cEzRI+5KGv+JcZPgbLdZ7QLb6R/tISBCm6XrzLmbmom4p1VKHNlr4bAOJ2+ksKbH A5stohRek4aDJ/h4zGcdOvhcqCc38Buy3oSZPkEU4MlX6cjCK7drC3riGZlsiU51 RJ64nI9m/FVg8W3ltLkPxuw8GnElbXwV2EiAUggzvhFZbtCqlGClRHcZ+grsMccF SofSNOQ+7UdCAQ1/1qaXG2rNiYwBTnCeiIjCMQIBRMRFx8Xm4hA1Dt0gyQvQODXh 7b9mgAimBXfL7xjO95AnhHX1sbQiYzgbDr3z5NZrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUH0WEKrNbnwd9PxicuyIy5qXM3lwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzIwZGY3NGNlLTFhNjQtNGRmMS1iNjE2LTExNWQ0NDkzYTk2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwAjANBgkqhkiG9w0BAQsFAAOCAQEAJq7uLYgPQ7M9SAXPf5xPfHqD 8U3X6PuqFn9jnENyF8+X+F375bxKTWLOEZsEdECepJrkHm7+e5tijYM7t+Sf8V3g FA8rJrhwX4XZtw/c8r8vox+RHyJE77YqUsMkr6oFGgmJ7z829kb22YVf1mc3TL0C dCwype/K7ykRf/rD1FKcNEInjETO13AZITkYN9W4Jh8oYnpwAq2zE4GrKnZchAu1 ctv6skdN4XaYv0phYtNVF6rjlsJLUezWPPFzWkE7CawYyp2ZDoGnVMprFzJ5gIUU 1x+a8kQNst+3F2E6ecuOJZ5PP/fKcdtMAGyZNPTpcH/wT6R68grnWxiURNCfDQ== -----END CERTIFICATE-----Generated at Wed Aug 6 06:05:08 2025 by rpki-client