$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa File: 2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa (raw, json) Hash identifier: MDu96ddGxVA37cx2uMYz03kXZOpLzKAeiausYnD4P84= Subject key identifier: 1E:13:32:86:AD:7D:E6:CB:54:10:86:E6:31:1A:18:00:10:73:35:0C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 10F583F4A738B31221608982B91034535DE2DBF6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa Signing time: Tue 05 Aug 2025 18:20:05 +0000 ROA not before: Tue 05 Aug 2025 18:20:05 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:f5:83:f4:a7:38:b3:12:21:60:89:82:b9:10:34:53:5d:e2:db:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:05 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5b8be21a3bcd16482c74b56705b8a6b613f521d255681d9c32eb938fb95943ea, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:3b:3d:77:31:c3:a1:cc:44:0c:26:90:5b:ab: 3d:4a:65:5f:4d:9a:b0:6b:24:e2:1b:c5:fb:a8:60: 29:64:41:7c:e4:2c:b8:ad:55:fd:16:ee:b4:ec:27: 3e:68:96:35:f9:54:d6:30:c3:f7:4c:9f:3b:bd:ac: c6:41:22:83:1e:f8:7b:39:89:49:68:56:1b:d8:b0: 36:53:b5:69:ee:db:f2:00:94:23:34:1c:af:bb:ed: 63:c2:18:80:da:3e:17:31:c4:9d:70:2a:6c:56:d4: ff:14:5f:f9:87:35:1a:06:6b:7f:d8:b7:cd:6e:26: c7:c9:b4:d8:0e:1e:2f:f1:02:06:5f:0f:80:22:c8: 89:2b:7b:ce:be:bc:5f:14:c3:89:47:d8:28:96:05: 1d:11:19:e2:a1:1c:ba:0c:38:57:7e:f8:63:ee:c3: 76:81:08:c9:08:be:92:57:c1:b8:17:59:41:93:eb: 15:10:78:50:8a:9c:93:d2:92:0b:98:ac:9a:8a:78: 9d:71:65:01:0c:d4:97:14:a5:6f:0b:5a:36:1a:05: ec:de:1a:a7:8c:18:4f:be:c7:2c:38:38:d6:70:10: 45:da:99:47:06:32:9b:5a:2f:c5:58:fb:9d:e8:46: 0e:0f:e8:d7:0e:32:3e:15:34:bc:09:54:63:cd:61: 46:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:13:32:86:AD:7D:E6:CB:54:10:86:E6:31:1A:18:00:10:73:35:0C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/2910bcfa-4bcb-4125-a56f-4bb9596f5adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/40 Signature Algorithm: sha256WithRSAEncryption 0a:73:ad:74:1f:3a:f1:8e:28:8d:7f:0c:40:b4:2a:e1:c7:ef: 95:03:6c:55:05:c5:64:50:09:2d:6f:bb:ad:1e:5c:89:04:31: 11:de:2f:f1:4b:43:bd:86:ef:04:3e:b6:a3:81:f1:e7:4b:5c: 85:e9:f4:96:e4:5a:91:1d:62:e1:83:ea:c3:23:2d:6b:fb:91: e2:5b:4a:17:89:56:08:63:73:73:d7:79:70:e3:56:bb:cb:e4: 73:65:e4:54:37:98:f2:71:cf:84:59:6a:48:4f:98:8e:23:80: fe:1d:c7:1a:54:e5:fc:3c:c7:33:d0:46:f1:40:59:43:b2:a1: 82:59:a8:91:02:b3:f1:0d:9a:34:f9:f4:7d:56:30:66:12:55: 6a:a1:5e:00:ee:fa:65:6b:8c:36:89:b9:73:45:24:63:76:c0: bf:10:d0:19:db:24:3d:d4:10:5f:b6:5f:bf:41:9e:6d:1a:f8: 8f:4f:34:c5:bd:63:39:69:d3:52:fe:b8:a0:da:e6:6e:d3:70: fc:a6:42:2e:70:4b:4e:a7:b6:94:c2:63:fb:66:b0:fd:70:b1: 17:36:e4:f4:01:ec:47:6f:0e:4a:5e:79:ab:55:67:f6:b3:b6: 68:c5:be:b1:ec:5d:89:f9:d0:4d:b6:cd:22:9b:dc:c4:83:4a: 5e:b0:3e:d2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUEPWD9Kc4sxIhYImCuRA0U13i2/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDA1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YjhiZTIxYTNiY2QxNjQ4MmM3NGI1NjcwNWI4YTZiNjEz ZjUyMWQyNTU2ODFkOWMzMmViOTM4ZmI5NTk0M2VhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUOz13McOhzEQMJpBbqz1KZV9NmrBrJOIbxfuoYClkQXzk LLitVf0W7rTsJz5oljX5VNYww/dMnzu9rMZBIoMe+Hs5iUloVhvYsDZTtWnu2/IA lCM0HK+77WPCGIDaPhcxxJ1wKmxW1P8UX/mHNRoGa3/Yt81uJsfJtNgOHi/xAgZf D4AiyIkre86+vF8Uw4lH2CiWBR0RGeKhHLoMOFd++GPuw3aBCMkIvpJXwbgXWUGT 6xUQeFCKnJPSkguYrJqKeJ1xZQEM1JcUpW8LWjYaBezeGqeMGE++xyw4ONZwEEXa mUcGMptaL8VY+53oRg4P6NcOMj4VNLwJVGPNYUYTAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUHhMyhq195stUEIbmMRoYABBzNQwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzI5MTBiY2ZhLTRiY2ItNDEyNS1hNTZmLTRiYjk1OTZmNWFkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwBTANBgkqhkiG9w0BAQsFAAOCAQEACnOtdB868Y4ojX8MQLQq4cfv lQNsVQXFZFAJLW+7rR5ciQQxEd4v8UtDvYbvBD62o4Hx50tchen0luRakR1i4YPq wyMta/uR4ltKF4lWCGNzc9d5cONWu8vkc2XkVDeY8nHPhFlqSE+YjiOA/h3HGlTl /DzHM9BG8UBZQ7KhglmokQKz8Q2aNPn0fVYwZhJVaqFeAO76ZWuMNom5c0UkY3bA vxDQGdskPdQQX7Zfv0GebRr4j080xb1jOWnTUv64oNrmbtNw/KZCLnBLTqe2lMJj +2aw/XCxFzbk9AHsR28OSl55q1Vn9rO2aMW+sexdifnQTbbNIpvcxINKXrA+0g== -----END CERTIFICATE-----Generated at Tue Aug 5 23:04:10 2025 by rpki-client