$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa File: 321028ee-2e2d-410c-8bdc-39a00f2044f0.roa (raw, json) Hash identifier: xS9nPnF7QRSQb2TLdDp5fU71pZVWfbcCUA1nxrFqi5s= Subject key identifier: 50:81:AA:15:A7:92:C8:8F:5B:31:EE:A7:A9:F1:C7:AA:CA:7F:C1:1B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 03B6F1911585DD35CC156E7A468C883AF88A7B29 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa Signing time: Tue 05 Aug 2025 18:20:03 +0000 ROA not before: Tue 05 Aug 2025 18:20:03 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:b6:f1:91:15:85:dd:35:cc:15:6e:7a:46:8c:88:3a:f8:8a:7b:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:03 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=6dc2a2acae8fb01d452750d2f87092cad27aadb190bb0c937f697801b33f7ebb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:b2:9c:e7:6f:a6:8c:fa:b2:62:c0:79:81:37: fa:40:b5:0d:e2:83:f3:06:58:ad:55:c9:eb:ad:47: c4:8b:99:1c:6a:9a:88:4d:9f:48:f3:e2:0b:e8:73: d2:2d:7e:91:fd:31:a7:2e:b9:8f:71:07:2b:c9:eb: 6f:6e:d7:3b:03:06:1d:fe:14:73:37:c6:fa:85:80: ae:85:53:91:ac:89:a0:0f:45:a0:29:8b:e2:2e:f6: a6:f2:da:c1:46:7e:28:7c:56:3d:4b:f7:c8:df:da: ad:27:33:bc:26:95:34:16:f9:bf:0d:e8:78:1e:76: 5e:62:2e:85:9c:e0:c3:a4:de:68:0d:61:29:09:4c: d8:40:36:28:93:00:88:d4:6c:13:54:0d:87:e7:aa: 0a:ad:75:50:70:90:fc:d2:05:27:84:88:25:c2:29: 55:6c:ef:2b:cb:c1:f4:c5:a4:8d:24:11:fb:db:d3: 54:5f:c3:c9:1a:3b:ec:dc:cd:d2:9f:bd:df:cd:d2: 23:fc:f6:54:74:84:74:35:93:39:2c:57:0c:31:e2: 21:c3:1f:d3:7d:6d:ba:47:45:a9:16:ea:b0:8d:6a: 09:34:77:1e:32:e7:4a:aa:72:51:c2:d6:46:93:ce: 77:e3:3f:d0:b1:ea:45:ba:23:be:63:78:9e:47:16: aa:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:81:AA:15:A7:92:C8:8F:5B:31:EE:A7:A9:F1:C7:AA:CA:7F:C1:1B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/321028ee-2e2d-410c-8bdc-39a00f2044f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 17:44:25:06:5b:b9:86:6c:20:ce:15:4b:ca:8d:81:8f:eb:2c: 35:08:46:59:b5:2f:09:e6:f4:d8:92:d5:f2:89:7a:df:d9:27: 54:90:b2:d6:2d:fe:91:2a:ba:7e:44:39:70:19:2f:9a:60:51: 0c:a6:7e:48:8b:c7:58:48:20:cd:3b:e8:b4:4a:79:42:56:ba: e8:50:c6:fb:2a:49:26:e7:a0:e9:b8:5c:f4:42:66:89:a2:7c: e9:16:1a:d9:6e:5b:ce:b9:42:b4:0f:24:94:83:55:a3:05:5f: 78:f7:59:9a:db:2d:92:23:d6:40:08:58:a2:17:c5:f1:ab:0f: 2c:c8:88:7c:9c:0a:2c:79:86:7f:a0:df:2e:28:fd:78:7b:c1: 7f:ab:21:3c:02:e0:ba:7f:01:e0:25:d0:95:c4:9d:13:30:de: e0:33:c2:d0:61:7a:4c:5b:7f:85:76:ff:a5:60:b4:6e:c8:0e: 92:21:be:42:a3:97:87:c8:f4:1f:6a:9f:e6:49:2d:17:04:cd: 53:cb:89:2a:b8:46:a5:c8:68:45:0f:de:30:1c:dd:c7:28:b0: 28:e7:1b:fc:82:d5:0c:ef:31:d5:39:03:0a:ff:8f:10:f4:9c: 1e:96:80:d7:ec:a0:03:9a:ea:ee:f2:3b:76:7e:e4:73:53:67: 53:77:a2:45 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUA7bxkRWF3TXMFW56RoyIOviKeykwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDAzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZGMyYTJhY2FlOGZiMDFkNDUyNzUwZDJmODcwOTJjYWQy N2FhZGIxOTBiYjBjOTM3ZjY5NzgwMWIzM2Y3ZWJiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgspznb6aM+rJiwHmBN/pAtQ3ig/MGWK1VyeutR8SLmRxq mohNn0jz4gvoc9ItfpH9MacuuY9xByvJ629u1zsDBh3+FHM3xvqFgK6FU5GsiaAP RaApi+Iu9qby2sFGfih8Vj1L98jf2q0nM7wmlTQW+b8N6Hgedl5iLoWc4MOk3mgN YSkJTNhANiiTAIjUbBNUDYfnqgqtdVBwkPzSBSeEiCXCKVVs7yvLwfTFpI0kEfvb 01Rfw8kaO+zczdKfvd/N0iP89lR0hHQ1kzksVwwx4iHDH9N9bbpHRakW6rCNagk0 dx4y50qqclHC1kaTznfjP9Cx6kW6I75jeJ5HFqo5AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUUIGqFaeSyI9bMe6nqfHHqsp/wRswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzMyMTAyOGVlLTJlMmQtNDEwYy04YmRjLTM5YTAwZjIwNDRmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBABdEJQZbuYZsIM4VS8qNgY/r LDUIRlm1Lwnm9NiS1fKJet/ZJ1SQstYt/pEqun5EOXAZL5pgUQymfkiLx1hIIM07 6LRKeUJWuuhQxvsqSSbnoOm4XPRCZomifOkWGtluW865QrQPJJSDVaMFX3j3WZrb LZIj1kAIWKIXxfGrDyzIiHycCix5hn+g3y4o/Xh7wX+rITwC4Lp/AeAl0JXEnRMw 3uAzwtBhekxbf4V2/6VgtG7IDpIhvkKjl4fI9B9qn+ZJLRcEzVPLiSq4RqXIaEUP 3jAc3ccosCjnG/yC1QzvMdU5Awr/jxD0nB6WgNfsoAOa6u7yO3Z+5HNTZ1N3okU= -----END CERTIFICATE-----Generated at Tue Aug 5 23:05:25 2025 by rpki-client