$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa File: 4d9dc189-6c00-4764-9c0c-c990d1727298.roa (raw, json) Hash identifier: KtthW32MbZnieaLRCAJDALFa9CUvCqPZtvp7TyoMoGw= Subject key identifier: E4:09:70:BD:94:D7:74:EC:1F:56:4D:1C:84:E3:4B:8D:B5:E0:D0:08 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2310A29456710D4DE81D1ACCE8BEAFD428A2C122 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa Signing time: Tue 05 Aug 2025 18:20:07 +0000 ROA not before: Tue 05 Aug 2025 18:20:07 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:10:a2:94:56:71:0d:4d:e8:1d:1a:cc:e8:be:af:d4:28:a2:c1:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:07 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=15f6b1af8c8ba2e645d63e42e17ef31522ec7411d647c2c5bc3ace640b0cdd14, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:85:31:98:d6:61:c7:2c:b1:17:ef:9f:0d: 11:60:ad:74:2d:f2:9e:9e:9f:ef:15:06:06:41:9e: 2a:dc:37:a6:1e:ec:df:e3:4d:fc:fe:7d:df:05:e3: 76:f7:0b:66:6e:e5:7f:0e:a1:2d:ba:58:e1:41:da: be:61:07:6c:35:94:c2:dd:b9:76:c0:7c:27:19:0b: 54:af:a7:20:bf:d6:b2:98:13:97:0d:19:d0:cf:be: 1f:38:8f:70:1a:ad:08:73:b1:45:48:b0:cb:78:30: 51:15:35:41:37:ff:6b:6a:7f:d1:1b:bc:a3:8d:61: af:7f:c0:1d:64:3a:bc:f0:bc:79:28:60:9c:37:23: eb:72:2c:45:54:8d:9f:2e:8b:72:44:35:84:aa:5b: 6e:e8:0b:2f:f0:21:e5:95:6a:f9:d4:d2:e3:fb:e0: 01:b5:4d:e5:55:5e:06:66:3a:82:1a:d8:3a:71:d5: 10:a0:01:9e:ab:f9:95:ec:94:24:2f:b1:1d:83:21: db:d9:66:d4:73:83:62:20:16:14:bf:b2:6d:ce:f3: 28:b5:36:75:6c:42:6f:48:a2:97:e0:3e:4c:fb:a3: 3c:37:25:1a:b2:b4:4f:06:bb:39:ac:7b:2a:21:65: 2a:f2:51:65:f5:7f:9a:a4:27:8f:65:20:5a:49:c0: f7:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:09:70:BD:94:D7:74:EC:1F:56:4D:1C:84:E3:4B:8D:B5:E0:D0:08 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4d9dc189-6c00-4764-9c0c-c990d1727298.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:600::/48 Signature Algorithm: sha256WithRSAEncryption a5:08:12:9a:54:f3:29:cc:32:b2:fa:40:9f:93:20:92:48:b2: 9f:f3:f3:8b:e3:bc:73:96:03:40:b9:f9:14:f2:22:16:66:dd: ca:63:f3:6f:d4:7f:d4:77:f8:99:c0:81:7d:e6:34:2c:23:de: 1a:70:83:6f:df:a0:77:65:ac:65:a9:06:9e:28:5a:57:f0:d7: 8c:58:98:2b:d1:38:3e:9e:49:c6:ad:cd:54:8c:11:97:cd:27: be:5a:ee:1d:c1:ac:49:56:64:42:76:b2:b7:d8:af:83:1a:6b: 1f:7d:a9:1d:21:8f:9e:23:5c:1d:f5:88:92:6a:4b:fd:21:b7: bd:28:57:e6:99:b7:1d:cf:d3:6a:a7:06:a0:c3:fd:64:1b:0c: 97:20:bc:6e:de:ea:1c:2b:13:d9:ff:0f:99:36:df:8c:7d:67: 02:bf:ad:43:c7:c6:53:a1:c6:18:93:7a:f3:d3:39:b2:e8:09: 88:22:3a:fb:90:dc:51:25:e0:84:0f:b2:4d:04:43:e4:75:1e: af:5d:bc:0f:78:7a:47:61:f1:d9:30:59:ff:9d:95:1d:a4:71: a4:3b:ca:fd:94:a6:f7:4f:30:ab:0d:78:f5:83:d6:16:73:a4: 67:f7:51:29:1a:12:4e:e5:f5:96:2f:86:30:4d:af:a3:92:e2: ed:49:a5:92 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIxCilFZxDU3oHRrM6L6v1CiiwSIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDA3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNWY2YjFhZjhjOGJhMmU2NDVkNjNlNDJlMTdlZjMxNTIy ZWM3NDExZDY0N2MyYzViYzNhY2U2NDBiMGNkZDE0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkeoUxmNZhxyyxF++fDRFgrXQt8p6en+8VBgZBnircN6Ye 7N/jTfz+fd8F43b3C2Zu5X8OoS26WOFB2r5hB2w1lMLduXbAfCcZC1SvpyC/1rKY E5cNGdDPvh84j3AarQhzsUVIsMt4MFEVNUE3/2tqf9EbvKONYa9/wB1kOrzwvHko YJw3I+tyLEVUjZ8ui3JENYSqW27oCy/wIeWVavnU0uP74AG1TeVVXgZmOoIa2Dpx 1RCgAZ6r+ZXslCQvsR2DIdvZZtRzg2IgFhS/sm3O8yi1NnVsQm9IopfgPkz7ozw3 JRqytE8GuzmseyohZSryUWX1f5qkJ49lIFpJwPeNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5AlwvZTXdOwfVk0chONLjbXg0AgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRkOWRjMTg5LTZjMDAtNDc2NC05YzBjLWM5OTBkMTcyNzI5OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBgAwDQYJKoZIhvcNAQELBQADggEBAKUIEppU8ynMMrL6QJ+TIJJI sp/z84vjvHOWA0C5+RTyIhZm3cpj82/Uf9R3+JnAgX3mNCwj3hpwg2/foHdlrGWp Bp4oWlfw14xYmCvROD6eScatzVSMEZfNJ75a7h3BrElWZEJ2srfYr4Maax99qR0h j54jXB31iJJqS/0ht70oV+aZtx3P02qnBqDD/WQbDJcgvG7e6hwrE9n/D5k234x9 ZwK/rUPHxlOhxhiTevPTObLoCYgiOvuQ3FEl4IQPsk0EQ+R1Hq9dvA94ekdh8dkw Wf+dlR2kcaQ7yv2UpvdPMKsNePWD1hZzpGf3USkaEk7l9ZYvhjBNr6OS4u1JpZI= -----END CERTIFICATE-----Generated at Wed Aug 6 10:16:30 2025 by rpki-client