$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa File: 39b45593-f3f3-4a2e-aa3a-895815db366a.roa (raw, json) Hash identifier: L18eVKx3SFZLaPKYmg1g0UWajfILuAbmhdbD3mU7gG8= Subject key identifier: 57:10:1B:F5:E1:DF:62:E2:A5:E8:48:5C:92:90:CE:09:31:FF:9A:27 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3137800B9180C3D931368EF2A8D81EAA54AB910A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa Signing time: Tue 05 Aug 2025 18:40:22 +0000 ROA not before: Tue 05 Aug 2025 18:40:22 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:37:80:0b:91:80:c3:d9:31:36:8e:f2:a8:d8:1e:aa:54:ab:91:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:40:22 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=bce26c2f125d68a5b67266a78fd1cb8f5ef5c2a709cb7153247fb5b434512745, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:35:dd:fd:40:cb:4e:5e:35:c6:a6:f6:c5:2a: 05:cd:66:d8:41:9f:16:ae:6a:98:b3:86:1b:2b:1f: 41:0a:a5:76:30:db:d0:38:73:bf:45:f7:9a:57:0e: 7d:df:d2:ec:66:60:98:24:c7:e3:d2:38:a4:93:71: 28:8f:4f:82:ea:40:3e:36:30:6b:98:fb:8c:26:29: bc:cd:34:71:98:6a:c8:8c:85:8f:3c:4b:bf:13:52: e0:9a:af:57:52:c3:44:ee:71:42:97:5f:be:d0:34: cc:12:fe:25:43:79:03:ab:d7:e5:e4:f4:95:f0:62: 9c:75:ee:eb:b7:88:67:b1:4d:eb:e3:7a:06:7c:77: 13:5a:80:1c:83:47:75:47:d8:5b:f1:66:24:8e:ae: 6f:6f:94:42:e7:f8:51:5f:fd:93:fd:4a:ff:c3:e6: e6:1b:11:d2:d6:71:4d:3b:9b:5b:88:dd:b7:fa:09: 6e:db:e5:fc:f4:f5:95:13:4d:87:b9:7a:51:44:b7: 4c:3d:d4:2b:f0:ac:b7:29:51:3a:63:c7:a6:ca:15: dc:2d:36:11:01:f1:e4:a3:3d:b3:59:57:0f:10:d6: d1:53:80:67:cc:26:b2:1a:14:91:bb:6c:b8:5e:c3: 63:5e:9e:7c:19:82:25:06:51:55:68:2b:91:6d:1c: d4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:10:1B:F5:E1:DF:62:E2:A5:E8:48:5C:92:90:CE:09:31:FF:9A:27 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/39b45593-f3f3-4a2e-aa3a-895815db366a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 5f:ff:b3:a6:6a:a1:ce:91:a6:91:01:0f:a7:c4:a2:02:a7:70: 1e:6d:4a:5b:42:a2:69:22:4d:aa:c9:82:b2:14:3c:bb:29:9a: a9:20:7f:40:8c:81:02:4c:01:50:fb:3c:65:fa:ab:8f:a4:3d: 54:8d:61:9e:a0:59:88:41:33:36:c9:31:45:dc:de:7b:86:1c: fc:dd:50:ef:27:66:d0:ef:88:d0:fc:5e:28:6b:3f:fb:0a:eb: a3:d5:29:49:9a:83:1f:ae:f5:e4:6d:06:cd:6b:15:6e:52:79: 30:ec:f4:d2:47:40:3b:0f:aa:79:55:45:9f:91:09:8c:90:04: 6a:e6:04:d9:f6:09:a2:38:e4:c5:28:3f:72:9f:62:59:1e:94: 42:f2:ce:47:b5:d6:d8:c1:84:5e:79:0c:bd:1a:0d:a7:36:71: bf:a5:1d:f5:a6:dd:bb:83:f8:a6:f8:47:4e:13:01:ff:f1:fe: 0e:a6:c7:37:49:0f:79:ea:40:ab:40:e0:d6:d1:a4:46:6f:fb: f4:a9:4e:70:52:d3:71:0b:c3:05:d3:c6:d2:18:24:23:cd:3a: 54:aa:55:32:50:41:f7:9f:2f:2c:12:25:8c:e6:02:06:7a:1b: 0c:1e:b7:a8:ca:b6:2f:3a:26:bd:5c:ca:c6:d6:8a:ba:84:12: 28:53:fa:47 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMTeAC5GAw9kxNo7yqNgeqlSrkQowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTg0MDIyWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2UyNmMyZjEyNWQ2OGE1YjY3MjY2YTc4ZmQxY2I4ZjVl ZjVjMmE3MDljYjcxNTMyNDdmYjViNDM0NTEyNzQ1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlNd39QMtOXjXGpvbFKgXNZthBnxauapizhhsrH0EKpXYw 29A4c79F95pXDn3f0uxmYJgkx+PSOKSTcSiPT4LqQD42MGuY+4wmKbzNNHGYasiM hY88S78TUuCar1dSw0TucUKXX77QNMwS/iVDeQOr1+Xk9JXwYpx17uu3iGexTevj egZ8dxNagByDR3VH2FvxZiSOrm9vlELn+FFf/ZP9Sv/D5uYbEdLWcU07m1uI3bf6 CW7b5fz09ZUTTYe5elFEt0w91CvwrLcpUTpjx6bKFdwtNhEB8eSjPbNZVw8Q1tFT gGfMJrIaFJG7bLhew2NennwZgiUGUVVoK5FtHNTBAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUVxAb9eHfYuKl6EhckpDOCTH/micwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzM5YjQ1NTkzLWYzZjMtNGEyZS1hYTNhLTg5NTgxNWRiMzY2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEAX/+zpmqhzpGmkQEPp8SiAqdw Hm1KW0KiaSJNqsmCshQ8uymaqSB/QIyBAkwBUPs8Zfqrj6Q9VI1hnqBZiEEzNskx Rdzee4Yc/N1Q7ydm0O+I0PxeKGs/+wrro9UpSZqDH6715G0GzWsVblJ5MOz00kdA Ow+qeVVFn5EJjJAEauYE2fYJojjkxSg/cp9iWR6UQvLOR7XW2MGEXnkMvRoNpzZx v6Ud9abdu4P4pvhHThMB//H+DqbHN0kPeepAq0Dg1tGkRm/79KlOcFLTcQvDBdPG 0hgkI806VKpVMlBB958vLBIljOYCBnobDB63qMq2LzomvVzKxtaKuoQSKFP6Rw== -----END CERTIFICATE-----Generated at Wed Aug 6 05:12:17 2025 by rpki-client