$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa File: 48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa (raw, json) Hash identifier: Kn1KGbN2VWjhObLYqjTFEcYyWjX6CBhxOLlJ1pdtM5c= Subject key identifier: 32:26:14:7D:A5:DC:C5:F2:22:87:B7:F2:7A:5E:34:03:7A:C2:8E:36 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 15C60A665D56747D541BF4A3CBB3F72059EBB53D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa Signing time: Mon 21 Jul 2025 16:40:13 +0000 ROA not before: Mon 21 Jul 2025 16:40:13 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:108::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:c6:0a:66:5d:56:74:7d:54:1b:f4:a3:cb:b3:f7:20:59:eb:b5:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 21 16:40:13 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=46eb83e4c9a63ef0f45a657c43b3b65444c82e64f4a53e1610fc8aeaae927315, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:88:f7:49:bc:70:d8:0b:97:69:72:e8:15:4d: eb:08:68:d9:0e:e5:bf:5d:5b:82:e9:a6:8c:1a:50: a2:7a:3a:61:a2:c4:80:b2:5a:32:b4:03:be:28:5e: 05:c6:26:7f:ee:a8:ea:ff:3f:a1:49:7d:59:8c:0a: b5:c2:2d:07:1f:da:3d:18:7b:9b:b7:2a:53:b3:3f: b0:0d:d6:bc:cf:51:0a:7c:fd:e6:71:11:58:6f:47: 10:06:16:cc:42:d2:f3:26:cc:d5:3a:92:b2:4a:bf: 16:9f:ba:a1:cd:26:a2:37:af:af:97:53:fc:f6:5a: ab:63:d7:8e:5c:af:54:2d:dc:e3:30:07:d7:a7:e3: 27:a3:4c:34:d7:3f:00:e6:81:76:10:ad:77:fa:31: 78:9f:94:a4:b0:b7:8e:a1:21:de:53:ad:25:ee:d6: 95:8d:b2:66:32:4c:79:da:4c:2d:c5:47:40:48:3e: 38:7f:01:71:1f:69:dc:18:5d:0c:bf:67:19:ad:8f: 9f:6b:a9:73:fc:90:9c:31:d8:55:b8:89:da:18:98: 83:ff:e5:5c:38:83:c0:83:27:6d:61:63:9e:91:54: b8:98:79:39:a9:8f:47:34:6a:f9:5c:d1:ed:c0:ee: 3a:d0:e6:3e:d1:2a:61:ce:0b:c4:eb:27:94:f9:0b: 13:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:26:14:7D:A5:DC:C5:F2:22:87:B7:F2:7A:5E:34:03:7A:C2:8E:36 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/48713909-c1f3-4664-9c83-d3f0ba77a7f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:108::/47 Signature Algorithm: sha256WithRSAEncryption 82:de:da:f9:c9:d6:6a:9e:a6:51:cf:71:3a:83:c9:36:ec:c3: 37:73:bd:ff:59:f7:95:29:dd:f2:9c:b3:99:7c:0d:0e:cc:cf: 7b:40:4d:02:76:d3:65:45:f0:3e:46:f2:c0:3d:aa:bc:6b:8c: 09:e3:e1:08:6a:a5:e4:3c:8c:20:b6:2a:82:c9:0b:39:75:0b: ba:55:88:e7:b2:41:7a:55:4f:96:38:cb:5c:9e:68:c0:69:cd: e8:5c:e1:bc:b4:cf:62:d9:0a:14:b9:51:f3:57:35:31:b6:a1: d0:01:1f:60:88:53:8c:a3:e5:8b:d7:c9:10:8b:f6:30:02:89: f9:55:a9:e6:06:fb:25:fa:b3:ac:cc:d9:e0:e1:07:b9:98:6c: d4:7a:e3:24:fe:68:ff:d4:38:a9:24:e8:1d:09:fb:3a:40:cd: 4f:3a:d2:98:88:ab:4c:0c:39:f9:ed:a6:de:e2:de:3f:d5:af: 62:fb:29:1b:ae:5d:11:09:0e:60:6c:f2:78:9f:53:09:62:78: 30:a7:dd:6b:f0:4f:27:5b:ba:d5:f6:11:4f:62:41:23:32:d1: 05:a0:c0:24:aa:1f:e4:1c:19:1b:5c:5f:e1:e3:a0:fa:40:de: 53:c1:70:7e:90:37:7a:3b:66:61:39:0d:5d:78:3d:73:51:1c: a0:6d:f4:6f -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFcYKZl1WdH1UG/Sjy7P3IFnrtT0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzIxMTY0MDEzWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NmViODNlNGM5YTYzZWYwZjQ1YTY1N2M0M2IzYjY1NDQ0 YzgyZTY0ZjRhNTNlMTYxMGZjOGFlYWFlOTI3MzE1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiiPdJvHDYC5dpcugVTesIaNkO5b9dW4LppowaUKJ6OmGi xICyWjK0A74oXgXGJn/uqOr/P6FJfVmMCrXCLQcf2j0Ye5u3KlOzP7AN1rzPUQp8 /eZxEVhvRxAGFsxC0vMmzNU6krJKvxafuqHNJqI3r6+XU/z2Wqtj145cr1Qt3OMw B9en4yejTDTXPwDmgXYQrXf6MXiflKSwt46hId5TrSXu1pWNsmYyTHnaTC3FR0BI Pjh/AXEfadwYXQy/Zxmtj59rqXP8kJwx2FW4idoYmIP/5Vw4g8CDJ21hY56RVLiY eTmpj0c0avlc0e3A7jrQ5j7RKmHOC8TrJ5T5CxOBAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMiYUfaXcxfIih7fyel40A3rCjjYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzQ4NzEzOTA5LWMxZjMtNDY2NC05YzgzLWQzZjBiYTc3YTdmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQgwDQYJKoZIhvcNAQELBQADggEBAILe2vnJ1mqeplHPcTqDyTbs wzdzvf9Z95Up3fKcs5l8DQ7Mz3tATQJ202VF8D5G8sA9qrxrjAnj4QhqpeQ8jCC2 KoLJCzl1C7pViOeyQXpVT5Y4y1yeaMBpzehc4by0z2LZChS5UfNXNTG2odABH2CI U4yj5YvXyRCL9jACiflVqeYG+yX6s6zM2eDhB7mYbNR64yT+aP/UOKkk6B0J+zpA zU860piIq0wMOfntpt7i3j/Vr2L7KRuuXREJDmBs8nifUwlieDCn3WvwTydbutX2 EU9iQSMy0QWgwCSqH+QcGRtcX+HjoPpA3lPBcH6QN3o7ZmE5DV14PXNRHKBt9G8= -----END CERTIFICATE-----Generated at Wed Aug 6 04:03:21 2025 by rpki-client