$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa File: 455cc001-6d98-49b1-ab73-9a1e06726f9f.roa (raw, json) Hash identifier: e9IHfto49p8WV9mjc2Qh496xOJSTgZGTUKh2vuNEKIs= Subject key identifier: CC:68:16:3C:D0:33:DB:45:34:D8:94:4E:D8:B7:54:71:B7:7B:E9:96 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4763C70B06DF27340E3BF12C40EA22B8123DE988 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa Signing time: Fri 25 Jul 2025 16:50:04 +0000 ROA not before: Fri 25 Jul 2025 16:50:04 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:63:c7:0b:06:df:27:34:0e:3b:f1:2c:40:ea:22:b8:12:3d:e9:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 25 16:50:04 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=2216b92a7f4ae757e892109c19d280604d9b514bbd0eb5fefe83bda76bd318f7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9f:a8:72:93:c0:2c:9c:5c:ea:5c:91:03:bd: 98:14:24:de:44:fb:b5:e7:1b:3c:17:d9:88:1f:34: b0:bd:fe:c0:ef:38:0b:f2:84:80:f3:dd:3f:31:a1: 15:d5:03:bb:17:d4:ae:65:f3:c4:ec:6a:9e:29:1d: c4:56:55:0a:75:62:1d:96:af:6a:ce:88:17:e1:65: 7e:a2:5f:f5:69:66:5e:4c:86:16:a2:0b:f5:93:18: 64:02:37:a3:72:60:a0:e0:0c:f8:1e:5e:a9:5a:f6: 37:d2:b5:59:b0:e2:f5:6b:88:9c:98:2b:5c:98:7e: a1:57:fb:9e:43:62:b6:d1:a1:11:35:c0:6f:4c:09: 9b:e1:7b:0e:1f:0b:69:bd:b8:83:05:e6:1a:a1:19: 18:eb:a9:86:ea:08:cd:56:d9:2f:74:6b:57:5a:e6: 37:46:5b:0c:1c:f9:79:7c:a1:28:92:3d:e6:91:af: 00:5a:f2:2f:6a:76:b6:ea:3c:5e:e5:2e:71:4b:f0: eb:45:3f:67:dd:6d:f3:97:f0:ca:c9:b1:f3:bb:e2: 02:b3:11:00:cd:da:e3:15:f6:f4:5c:2f:36:0e:40: 14:6a:b8:79:7b:01:d6:d0:b7:91:b7:e4:e6:9a:bd: e1:8d:5f:ea:b7:9b:27:f1:96:81:10:a1:ef:09:57: 7c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:68:16:3C:D0:33:DB:45:34:D8:94:4E:D8:B7:54:71:B7:7B:E9:96 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/455cc001-6d98-49b1-ab73-9a1e06726f9f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 01:ad:c0:45:af:f5:d8:39:f0:db:10:a9:b1:f9:f0:a1:fc:3b: 0f:a2:40:b7:4a:75:e5:58:91:a1:bc:7a:80:b3:64:b0:ef:76: e8:22:85:be:d7:c7:10:98:f3:f4:51:5c:0f:87:c5:83:b8:28: 46:43:9e:2d:35:bc:b5:a0:64:4d:d5:09:28:b1:db:f5:2f:92: d6:de:6b:57:91:bb:e4:af:80:6e:0a:15:1d:52:9e:c2:44:90: 0e:d6:e2:62:0b:79:8d:cd:a9:82:06:11:db:09:b4:7a:62:d3: 7f:d4:4e:ab:83:3f:30:9f:bf:ae:ce:da:83:f1:06:bc:37:23: e9:9e:28:ef:e7:19:a2:6b:25:4f:a5:4b:95:a0:51:d7:57:25: c3:aa:cc:f5:6a:32:ae:fb:21:fd:91:9f:fb:ae:4b:4f:47:86: b1:9e:95:2b:17:7a:a7:1b:f6:90:9c:8a:6d:cf:c1:2b:b5:51: 62:68:5c:ee:2c:0a:ff:66:4e:d2:e8:f1:a1:c1:8b:80:7d:ba: d4:2f:71:a9:58:dd:b5:4f:b3:c1:ad:30:99:f0:c7:01:1e:3d: e8:87:51:f5:e5:88:2a:23:44:1f:3c:82:64:24:d8:9a:9a:1b: 7b:2d:8b:86:06:5e:2f:ba:66:53:cc:59:55:6d:cd:f5:1d:0a: 82:8b:3c:a6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR2PHCwbfJzQOO/EsQOoiuBI96YgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzI1MTY1MDA0WhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjE2YjkyYTdmNGFlNzU3ZTg5MjEwOWMxOWQyODA2MDRk OWI1MTRiYmQwZWI1ZmVmZTgzYmRhNzZiZDMxOGY3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGn6hyk8AsnFzqXJEDvZgUJN5E+7XnGzwX2YgfNLC9/sDv OAvyhIDz3T8xoRXVA7sX1K5l88Tsap4pHcRWVQp1Yh2Wr2rOiBfhZX6iX/VpZl5M hhaiC/WTGGQCN6NyYKDgDPgeXqla9jfStVmw4vVriJyYK1yYfqFX+55DYrbRoRE1 wG9MCZvhew4fC2m9uIMF5hqhGRjrqYbqCM1W2S90a1da5jdGWwwc+Xl8oSiSPeaR rwBa8i9qdrbqPF7lLnFL8OtFP2fdbfOX8MrJsfO74gKzEQDN2uMV9vRcLzYOQBRq uHl7AdbQt5G35OaaveGNX+q3myfxloEQoe8JV3ytAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUzGgWPNAz20U02JRO2LdUcbd76ZYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ1NWNjMDAxLTZkOTgtNDliMS1hYjczLTlhMWUwNjcyNmY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBAAGtwEWv9dg58NsQqbH58KH8 Ow+iQLdKdeVYkaG8eoCzZLDvdugihb7XxxCY8/RRXA+HxYO4KEZDni01vLWgZE3V CSix2/Uvktbea1eRu+SvgG4KFR1SnsJEkA7W4mILeY3NqYIGEdsJtHpi03/UTquD PzCfv67O2oPxBrw3I+meKO/nGaJrJU+lS5WgUddXJcOqzPVqMq77If2Rn/uuS09H hrGelSsXeqcb9pCcim3PwSu1UWJoXO4sCv9mTtLo8aHBi4B9utQvcalY3bVPs8Gt MJnwxwEePeiHUfXliCojRB88gmQk2JqaG3sti4YGXi+6ZlPMWVVtzfUdCoKLPKY= -----END CERTIFICATE-----Generated at Fri Aug 8 00:43:30 2025 by rpki-client