$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa File: 4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa (raw, json) Hash identifier: Zd67YebKqwYuw0vBdjvlRyWiuZhCjCEJ/Cjds0NjKnw= Subject key identifier: 01:A1:A8:B2:2D:10:52:85:DB:05:EE:5B:F8:A6:CC:62:63:94:94:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 492B1E7776E5535E713DCD8D916958EBC781A523 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa Signing time: Fri 11 Jul 2025 18:30:51 +0000 ROA not before: Fri 11 Jul 2025 18:30:51 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:2b:1e:77:76:e5:53:5e:71:3d:cd:8d:91:69:58:eb:c7:81:a5:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:30:51 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=275bfb72ca2b0da757e971f95572019e2e588856c9665f48112db4457d9d0f2c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e8:46:de:96:9b:3d:c3:87:0d:13:dc:74:87: 59:ce:94:a0:9a:3a:78:43:78:eb:e8:aa:1a:9a:f5: f3:bd:2f:78:2e:a9:8e:33:fd:a1:33:54:cd:bd:a4: 39:7a:16:09:76:b1:12:4c:3e:26:d0:48:9a:6b:d2: ec:e7:aa:bb:84:3e:ac:41:1b:f0:8f:3d:4e:db:c4: a2:c0:fb:39:cb:13:a0:52:18:10:8f:3f:0f:c3:cb: ee:51:70:51:3f:5d:39:18:97:cd:b2:42:a8:df:ba: 16:f6:ae:3b:d8:9e:c7:c3:1d:7a:83:04:0d:b5:87: 49:32:60:e8:a6:28:24:c4:95:a7:0b:cf:ce:a8:00: 1b:3b:20:fe:71:e9:59:e2:37:f8:ca:57:c6:d0:cb: 95:53:4c:9b:1a:bf:a0:63:71:c3:f8:bf:ec:cb:e9: 7a:8f:d0:91:8d:40:40:bf:c8:3f:03:eb:33:44:80: e7:40:09:f6:3b:0e:02:44:83:9a:c0:ed:91:55:18: d6:0e:f4:8b:f2:dd:fb:84:f6:fa:2c:0c:c8:da:5a: 5e:32:49:d6:cd:0c:b3:56:f2:7f:d0:9c:c1:d6:d2: 28:31:b6:8d:03:4b:78:e0:f5:b9:0c:1b:17:65:e2: d0:4f:be:cd:40:10:45:a2:17:3c:22:55:aa:77:05: 51:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A1:A8:B2:2D:10:52:85:DB:05:EE:5B:F8:A6:CC:62:63:94:94:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 41:d2:5a:4f:af:f3:07:a6:ef:9b:bf:c6:44:9c:ab:66:bb:fe: ea:2c:29:1a:ce:a7:ec:73:39:c7:46:a0:9a:14:1f:9e:d2:76: ec:f2:62:57:7c:8b:85:5f:35:de:3f:2a:03:91:2f:e8:5c:d7: d8:d2:a2:36:b0:d6:34:bf:3c:fd:19:93:0b:9d:ad:13:44:a1: 86:3d:26:7b:52:f3:8f:73:d6:d1:50:d4:3b:76:6a:3b:f0:0f: 86:69:97:b0:cf:c4:a7:96:77:b1:a6:e3:43:40:c9:d8:21:91: c0:00:cf:45:c5:3b:10:73:ba:ea:b3:c8:7e:40:a9:90:57:ad: e9:19:e5:74:b4:a2:3d:71:15:9f:4f:c1:d7:eb:a9:e7:a7:1c: bf:c3:98:59:ea:2d:ee:49:70:39:bd:ce:54:e2:27:be:57:17: b1:90:a0:ec:fe:c4:91:2e:fd:49:09:1f:b3:19:ea:3a:19:45: 7f:4b:ff:7a:e8:01:b8:ff:bf:ef:91:2e:a0:5c:6f:2d:36:60: b7:7e:a0:e1:c4:3b:fd:3e:e7:77:61:0f:ef:4d:16:0a:a5:c6: 3b:da:f7:5d:5b:87:f9:d0:e0:3a:1d:c1:91:a3:7d:06:3d:c2: a5:5b:6a:89:a1:ac:3e:b0:e0:54:e7:c7:aa:40:10:f8:a4:19: b1:a4:cd:c1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUSSsed3blU15xPc2NkWlY68eBpSMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgzMDUxWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzViZmI3MmNhMmIwZGE3NTdlOTcxZjk1NTcyMDE5ZTJl NTg4ODU2Yzk2NjVmNDgxMTJkYjQ0NTdkOWQwZjJjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/6Ebelps9w4cNE9x0h1nOlKCaOnhDeOvoqhqa9fO9L3gu qY4z/aEzVM29pDl6Fgl2sRJMPibQSJpr0uznqruEPqxBG/CPPU7bxKLA+znLE6BS GBCPPw/Dy+5RcFE/XTkYl82yQqjfuhb2rjvYnsfDHXqDBA21h0kyYOimKCTElacL z86oABs7IP5x6VniN/jKV8bQy5VTTJsav6BjccP4v+zL6XqP0JGNQEC/yD8D6zNE gOdACfY7DgJEg5rA7ZFVGNYO9Ivy3fuE9vosDMjaWl4ySdbNDLNW8n/QnMHW0igx to0DS3jg9bkMGxdl4tBPvs1AEEWiFzwiVap3BVG7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAaGosi0QUoXbBe5b+KbMYmOUlKgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRjN2MyNmQwLTBlNjItNGNjOC1hZDNjLTNjMTVmZmUzMTRlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75QAwDQYJKoZIhvcNAQELBQADggEBAEHSWk+v8wem75u/xkScq2a7 /uosKRrOp+xzOcdGoJoUH57SduzyYld8i4VfNd4/KgORL+hc19jSojaw1jS/PP0Z kwudrRNEoYY9JntS849z1tFQ1Dt2ajvwD4Zpl7DPxKeWd7Gm40NAydghkcAAz0XF OxBzuuqzyH5AqZBXrekZ5XS0oj1xFZ9PwdfrqeenHL/DmFnqLe5JcDm9zlTiJ75X F7GQoOz+xJEu/UkJH7MZ6joZRX9L/3roAbj/v++RLqBcby02YLd+oOHEO/0+53dh D+9NFgqlxjva911bh/nQ4DodwZGjfQY9wqVbaomhrD6w4FTnx6pAEPikGbGkzcE= -----END CERTIFICATE-----Generated at Tue Aug 5 17:12:12 2025 by rpki-client