$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37cee73e-f60c-422c-8edf-fbb308bfb117.roa File: 37cee73e-f60c-422c-8edf-fbb308bfb117.roa (raw, json) Hash identifier: QHd8HL1/CxiPk6bdeFYMBEVAVWYpsOf2cQ8MctgTD4g= Subject key identifier: 7E:D3:F1:89:25:6C:32:88:C5:05:E8:52:08:8C:B1:9F:07:1C:EA:1E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 286B81B8C169735A914D0FD472ECDDD13D9F9A0C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37cee73e-f60c-422c-8edf-fbb308bfb117.roa Signing time: Fri 11 Jul 2025 18:31:29 +0000 ROA not before: Fri 11 Jul 2025 18:31:29 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:6b:81:b8:c1:69:73:5a:91:4d:0f:d4:72:ec:dd:d1:3d:9f:9a:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:31:29 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=43bfd0a0eaae11915fd883c5ebc99ebff5aa29c9f3b4cd2883e926d01d4f0938, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:03:d7:42:89:34:06:a8:d3:e2:6e:ec:2f:39: bc:75:23:9e:4d:4c:63:5b:6a:04:d4:90:16:7d:16: 02:ec:f1:df:af:aa:56:87:66:8c:67:72:dd:03:2f: 75:b6:33:aa:6d:d4:c2:a5:57:14:78:07:b9:8c:e2: 3e:36:90:9f:89:ed:f2:d3:e3:7c:5a:35:ba:2f:6b: c5:89:2c:5f:e9:73:b5:75:a3:f6:fd:07:ad:8d:45: 8c:f3:45:60:b8:d1:52:eb:f7:e7:42:d8:13:05:b2: 29:ba:95:42:4a:40:91:3d:1e:70:f2:d0:63:53:17: ff:9a:84:b5:94:8e:63:7f:16:fa:1b:56:27:ef:3b: fd:21:8b:1b:41:2f:4a:6c:37:e2:e2:5e:37:7a:98: d4:4d:85:ed:5a:87:f1:b2:4b:38:40:26:88:11:8c: ec:cd:6d:bb:f2:62:cd:d9:6d:45:b3:36:e6:72:5e: fd:22:9e:fd:ef:da:c7:b5:0a:87:18:24:5e:ba:7a: 0c:9b:94:d3:b6:f2:01:71:39:c8:87:98:74:2a:49: b0:1a:c1:d0:84:2c:a3:9a:b5:bf:74:5f:be:63:37: f0:60:ec:c4:cd:b0:e2:99:03:60:6a:94:9a:86:d8: 30:60:be:01:c1:4b:ad:61:25:28:8e:a1:16:d6:e5: ae:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:D3:F1:89:25:6C:32:88:C5:05:E8:52:08:8C:B1:9F:07:1C:EA:1E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/37cee73e-f60c-422c-8edf-fbb308bfb117.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e000::/40 Signature Algorithm: sha256WithRSAEncryption 83:be:1e:09:fc:d8:d2:eb:49:34:97:71:49:01:2e:28:61:5b: 57:26:39:cb:18:9e:b8:db:3f:46:7b:d8:6b:e9:80:82:07:6a: eb:88:14:16:2f:c5:08:c2:d3:77:12:ae:86:2f:db:0c:b5:65: 40:80:39:f3:fc:5d:7a:8f:0e:56:21:7c:8a:47:42:10:ab:52: 28:df:c7:f9:a0:96:3f:4c:85:ad:12:fa:0f:b4:b5:0c:ee:d1: 06:ab:2c:d5:45:b2:5b:fd:78:b8:a7:20:80:b8:90:00:07:ef: 42:4c:5b:c9:ce:60:2b:c6:32:fb:57:9e:f9:69:f8:e9:d2:18: e4:e7:1c:47:d2:79:7a:72:19:c9:23:db:d4:bf:d8:f6:ed:ac: 58:55:1b:e8:af:f4:39:bf:4b:b6:c3:26:6f:e1:df:56:4a:e0: 4c:27:90:8c:12:cb:5b:41:b2:3f:6f:45:05:f2:97:2b:48:31: c0:22:61:cd:e3:e5:dd:c4:5b:d3:c3:b5:bf:2a:ac:3d:0c:c1: 19:d1:4e:35:59:eb:c8:35:31:81:4c:9a:db:7e:ee:b9:f2:36: 2a:e6:c7:dd:8e:0e:f7:95:fd:24:90:e7:14:4a:fe:45:0a:26: de:71:40:5d:7a:a5:51:de:c6:97:a1:42:c7:d8:73:b6:a0:d2: 3c:6b:67:69 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKGuBuMFpc1qRTQ/Ucuzd0T2fmgwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgzMTI5WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0M2JmZDBhMGVhYWUxMTkxNWZkODgzYzVlYmM5OWViZmY1 YWEyOWM5ZjNiNGNkMjg4M2U5MjZkMDFkNGYwOTM4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoA9dCiTQGqNPibuwvObx1I55NTGNbagTUkBZ9FgLs8d+v qlaHZoxnct0DL3W2M6pt1MKlVxR4B7mM4j42kJ+J7fLT43xaNbova8WJLF/pc7V1 o/b9B62NRYzzRWC40VLr9+dC2BMFsim6lUJKQJE9HnDy0GNTF/+ahLWUjmN/Fvob VifvO/0hixtBL0psN+LiXjd6mNRNhe1ah/GySzhAJogRjOzNbbvyYs3ZbUWzNuZy Xv0inv3v2se1CocYJF66egyblNO28gFxOciHmHQqSbAawdCELKOatb90X75jN/Bg 7MTNsOKZA2BqlJqG2DBgvgHBS61hJSiOoRbW5a7zAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUftPxiSVsMojFBehSCIyxnwcc6h4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM3Y2VlNzNlLWY2MGMtNDIyYy04ZWRmLWZiYjMwOGJmYjExNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74DANBgkqhkiG9w0BAQsFAAOCAQEAg74eCfzY0utJNJdxSQEuKGFb VyY5yxieuNs/RnvYa+mAggdq64gUFi/FCMLTdxKuhi/bDLVlQIA58/xdeo8OViF8 ikdCEKtSKN/H+aCWP0yFrRL6D7S1DO7RBqss1UWyW/14uKcggLiQAAfvQkxbyc5g K8Yy+1ee+Wn46dIY5OccR9J5enIZySPb1L/Y9u2sWFUb6K/0Ob9LtsMmb+HfVkrg TCeQjBLLW0GyP29FBfKXK0gxwCJhzePl3cRb08O1vyqsPQzBGdFONVnryDUxgUya 237uufI2KubH3Y4O95X9JJDnFEr+RQom3nFAXXqlUd7Gl6FCx9hztqDSPGtnaQ== -----END CERTIFICATE-----Generated at Mon Aug 4 14:48:24 2025 by rpki-client