$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa File: 4550dcb5-431c-4b07-9e46-224c71cb2b00.roa (raw, json) Hash identifier: wkf0V8lpbE1qY/rGcBGZC05YS5159+CRA0ryGwCL9Eg= Subject key identifier: 6A:6D:66:6A:C7:30:8E:B6:79:2B:1D:47:27:67:26:8B:1F:92:ED:F7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0EEC6A5B5BBC8F7713018758454B2F760E237BA1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa Signing time: Tue 05 Aug 2025 18:21:00 +0000 ROA not before: Tue 05 Aug 2025 18:21:00 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:ec:6a:5b:5b:bc:8f:77:13:01:87:58:45:4b:2f:76:0e:23:7b:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:21:00 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=24792ff960a842c1a3136dc11718a362516a56cdc7e92e709d69f7a14047a09d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3e:25:e5:ea:08:c4:c7:11:4c:18:a1:7e:d1: 99:af:c3:09:bf:a5:6e:00:6a:63:9b:40:4d:8d:a6: 87:12:10:ed:76:b9:73:86:a3:1e:22:6e:94:0a:6e: f8:8c:8b:d9:6a:28:98:d7:96:ab:e4:9f:93:1b:ef: 9e:35:b2:1a:fe:08:b7:00:6a:56:c5:31:cd:8e:54: 02:b2:3d:9b:7b:1b:34:47:82:1d:1d:e8:4a:de:b3: 76:0a:ed:67:70:45:d4:10:af:13:5e:ed:63:20:a8: 58:73:7d:8a:4b:4f:a3:6d:da:32:ea:c1:07:d7:04: b6:c3:cd:00:75:b4:8e:03:13:91:35:22:78:17:78: ee:00:d9:eb:37:b7:40:78:88:40:9f:61:c9:f4:20: ee:d9:94:d5:c5:50:20:c4:e2:3b:ba:eb:ec:10:de: 68:ec:0c:4b:d1:8c:b1:36:43:c2:65:05:4f:87:43: 17:92:a3:e4:ef:7c:54:be:9e:ad:37:bc:51:e6:c1: 92:6b:b9:4a:11:ea:e5:49:a4:22:d5:26:f2:b2:31: 09:ba:a3:a3:1e:a6:1b:0d:67:4f:fb:01:7a:27:f0: 57:36:8f:62:e1:3a:83:e7:77:75:cb:c2:c6:e0:4f: 1b:13:b8:de:78:a9:ed:cf:82:39:8a:5f:16:0f:43: 26:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:6D:66:6A:C7:30:8E:B6:79:2B:1D:47:27:67:26:8B:1F:92:ED:F7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4550dcb5-431c-4b07-9e46-224c71cb2b00.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 1b:9e:b9:d5:18:18:a5:d8:90:07:66:2f:8e:b4:3f:0b:02:ed: e8:f4:80:da:75:17:c4:78:9f:4b:15:25:59:1b:75:d1:29:ae: 20:e6:94:39:b5:c0:4c:7a:d4:5e:c7:17:00:18:2e:81:31:df: f9:e8:29:18:fd:72:e0:c8:d1:4a:f8:69:a1:9a:6d:c0:28:95: 2b:54:8a:47:40:0f:78:bc:66:14:aa:85:18:95:76:0c:22:e0: 1e:52:aa:95:f7:5d:4f:ee:67:af:13:ec:a3:f2:69:b1:e0:55: 16:36:31:3c:59:16:32:56:e9:81:af:88:1e:46:66:3b:b1:ea: a6:41:18:b9:8c:e5:ba:9a:32:bf:5f:29:f8:5a:82:d2:a6:bd: 54:73:bd:08:65:5f:13:2c:8a:0a:ab:51:17:d1:e5:07:45:a3: 7d:57:74:1c:ba:69:6e:fa:b8:67:2f:3d:e5:ce:e5:d8:b6:d0: f8:e5:5f:62:40:6e:c9:33:03:6c:0b:3b:6c:aa:06:05:cd:11: ee:61:49:08:56:35:1f:80:a6:a7:9e:45:39:72:f5:1a:47:8c: 8f:25:ea:ff:a5:62:f3:1c:0d:da:42:6f:db:84:66:46:10:ce: e0:3c:9d:60:5d:f3:5f:82:1e:31:bb:84:07:8a:da:f3:08:9c: 4d:b4:01:fc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDuxqW1u8j3cTAYdYRUsvdg4je6EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMTAwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDc5MmZmOTYwYTg0MmMxYTMxMzZkYzExNzE4YTM2MjUx NmE1NmNkYzdlOTJlNzA5ZDY5ZjdhMTQwNDdhMDlkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8PiXl6gjExxFMGKF+0Zmvwwm/pW4AamObQE2NpocSEO12 uXOGox4ibpQKbviMi9lqKJjXlqvkn5Mb7541shr+CLcAalbFMc2OVAKyPZt7GzRH gh0d6Eres3YK7WdwRdQQrxNe7WMgqFhzfYpLT6Nt2jLqwQfXBLbDzQB1tI4DE5E1 IngXeO4A2es3t0B4iECfYcn0IO7ZlNXFUCDE4ju66+wQ3mjsDEvRjLE2Q8JlBU+H QxeSo+TvfFS+nq03vFHmwZJruUoR6uVJpCLVJvKyMQm6o6MephsNZ0/7AXon8Fc2 j2LhOoPnd3XLwsbgTxsTuN54qe3PgjmKXxYPQyZ1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUam1mascwjrZ5Kx1HJ2cmix+S7fcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NTBkY2I1LTQzMWMtNGIwNy05ZTQ2LTIyNGM3MWNiMmIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBABueudUYGKXYkAdmL460PwsC 7ej0gNp1F8R4n0sVJVkbddEpriDmlDm1wEx61F7HFwAYLoEx3/noKRj9cuDI0Ur4 aaGabcAolStUikdAD3i8ZhSqhRiVdgwi4B5SqpX3XU/uZ68T7KPyabHgVRY2MTxZ FjJW6YGviB5GZjux6qZBGLmM5bqaMr9fKfhagtKmvVRzvQhlXxMsigqrURfR5QdF o31XdBy6aW76uGcvPeXO5di20PjlX2JAbskzA2wLO2yqBgXNEe5hSQhWNR+Apqee RTly9RpHjI8l6v+lYvMcDdpCb9uEZkYQzuA8nWBd81+CHjG7hAeK2vMInE20Afw= -----END CERTIFICATE-----Generated at Wed Aug 6 12:38:38 2025 by rpki-client