$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa File: 475cc5b7-0cb2-405e-b609-203b983a6087.roa (raw, json) Hash identifier: uIbK9aWRYAwUt2PNhW3aN+0yRK5ELUVXFq1pwYVRQ/M= Subject key identifier: F6:62:F9:FC:DC:35:F7:C8:2E:4D:52:9D:A2:A7:42:B4:24:E3:94:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7E26363038947BE457E98BBB6FBD90B36EFB7DAA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa Signing time: Tue 05 Aug 2025 18:30:28 +0000 ROA not before: Tue 05 Aug 2025 18:30:28 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ed00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:26:36:30:38:94:7b:e4:57:e9:8b:bb:6f:bd:90:b3:6e:fb:7d:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:28 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=efdf7a47cf7bfe85be28f22a4077ae81e461e33c5762626946d78ac6d37159ba, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fb:2e:74:1f:e3:48:9c:4e:d8:74:2d:d5:68:14: a7:44:a0:23:56:61:78:a4:d3:07:1d:66:fc:4a:27: d2:f2:e9:01:c6:7a:d9:31:ce:dd:38:64:0b:b5:a3: c1:7d:48:79:b0:e1:40:3a:10:e1:bd:a9:a5:db:0a: 1e:ed:4a:fa:ee:6a:4c:d9:88:12:a5:35:b8:bc:f5: 3d:62:27:4c:5f:de:80:c3:2f:4e:9a:40:52:dc:f1: 43:56:c8:48:a4:3f:f5:0d:3e:d7:78:23:50:41:3d: 4e:18:d7:b9:ed:a5:7b:ec:5e:30:d3:0c:34:75:ee: 27:4f:9e:1d:7d:d2:22:67:c0:f1:3d:4a:c1:b2:fe: d5:4c:3d:ed:96:55:15:47:a0:2a:9b:b1:34:c5:61: 86:7d:f9:06:a4:f7:ef:06:13:56:a1:c1:48:3d:61: 7a:f0:aa:08:22:3f:fa:36:fc:b2:77:d0:f8:67:13: fe:e7:3e:f1:25:74:1d:10:12:e6:7a:f4:36:b1:27: c4:08:0f:e2:d1:62:db:7b:04:b1:b7:c8:bb:69:1c: a4:3c:1f:3e:2b:af:e3:d5:60:2e:83:4a:94:c4:1e: aa:61:30:46:4f:d4:e9:a0:93:7c:3d:f6:22:2a:4d: be:0f:6e:86:ec:9c:08:39:9d:32:88:16:26:1e:6c: d2:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:62:F9:FC:DC:35:F7:C8:2E:4D:52:9D:A2:A7:42:B4:24:E3:94:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/475cc5b7-0cb2-405e-b609-203b983a6087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ed00::/40 Signature Algorithm: sha256WithRSAEncryption 27:90:83:6f:ec:69:7f:0e:70:4a:ab:34:27:e6:41:0e:b4:76: 3a:93:a5:1c:0d:97:c7:d2:14:e3:e4:92:b5:14:c0:90:a0:6a: f1:ea:de:29:c0:00:a8:4a:a3:45:27:b0:20:4d:c9:08:55:6d: 75:1d:2b:85:66:3d:cf:d0:ef:72:f1:f0:88:e0:92:e2:d4:c0: 89:12:b5:56:dd:19:84:41:70:2d:8e:aa:1e:44:3b:6e:5c:20: e4:f2:c4:48:91:66:5b:c3:dd:88:e8:18:3c:4e:89:89:e5:0a: 28:52:a6:e8:89:e9:83:b1:3a:1d:4c:83:dc:3d:82:5e:3b:88: c0:ab:c6:d7:47:e1:33:4a:42:a4:97:46:6a:0d:b6:08:23:af: 21:2d:9d:01:e7:71:4e:c5:d2:74:f5:21:87:8b:d1:c0:c8:2d: 39:35:db:b6:64:1c:54:28:a2:d3:ce:8d:0a:88:d8:7c:6f:b9: 47:d0:e1:7a:0a:51:32:8f:24:06:30:90:93:2b:3b:91:07:f7: 2f:13:80:eb:8b:37:af:58:82:a0:83:fd:8d:e1:45:3e:92:c6: 40:12:5c:25:73:3b:2f:4a:00:0a:47:10:b8:36:48:c0:87:6a: c7:03:8e:43:1b:6f:1b:5e:5f:50:9e:25:01:05:e7:76:72:e7: 49:dd:5d:fd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUfiY2MDiUe+RX6Yu7b72Qs277faowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDI4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZmRmN2E0N2NmN2JmZTg1YmUyOGYyMmE0MDc3YWU4MWU0 NjFlMzNjNTc2MjYyNjk0NmQ3OGFjNmQzNzE1OWJhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD7LnQf40icTth0LdVoFKdEoCNWYXik0wcdZvxKJ9Ly6QHG etkxzt04ZAu1o8F9SHmw4UA6EOG9qaXbCh7tSvruakzZiBKlNbi89T1iJ0xf3oDD L06aQFLc8UNWyEikP/UNPtd4I1BBPU4Y17ntpXvsXjDTDDR17idPnh190iJnwPE9 SsGy/tVMPe2WVRVHoCqbsTTFYYZ9+Qak9+8GE1ahwUg9YXrwqggiP/o2/LJ30Phn E/7nPvEldB0QEuZ69DaxJ8QID+LRYtt7BLG3yLtpHKQ8Hz4rr+PVYC6DSpTEHqph MEZP1Omgk3w99iIqTb4PbobsnAg5nTKIFiYebNK3AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU9mL5/Nw198guTVKdoqdCtCTjlDUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ3NWNjNWI3LTBjYjItNDA1ZS1iNjA5LTIwM2I5ODNhNjA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77TANBgkqhkiG9w0BAQsFAAOCAQEAJ5CDb+xpfw5wSqs0J+ZBDrR2 OpOlHA2Xx9IU4+SStRTAkKBq8ereKcAAqEqjRSewIE3JCFVtdR0rhWY9z9DvcvHw iOCS4tTAiRK1Vt0ZhEFwLY6qHkQ7blwg5PLESJFmW8PdiOgYPE6JieUKKFKm6Inp g7E6HUyD3D2CXjuIwKvG10fhM0pCpJdGag22CCOvIS2dAedxTsXSdPUhh4vRwMgt OTXbtmQcVCii086NCojYfG+5R9DhegpRMo8kBjCQkys7kQf3LxOA64s3r1iCoIP9 jeFFPpLGQBJcJXM7L0oACkcQuDZIwIdqxwOOQxtvG15fUJ4lAQXndnLnSd1d/Q== -----END CERTIFICATE-----Generated at Sat Aug 9 05:39:50 2025 by rpki-client