$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa File: 4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa (raw, json) Hash identifier: xeYLxp4LnI4/0AlhKd/fxEflNCMlBy/FJYibro82Xzs= Subject key identifier: 7B:9F:62:17:10:E6:20:58:4D:62:5C:D8:DF:29:8E:1B:4D:74:FB:EF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 725D2F0FD45A9BD1385F1D3BF9F3B12A90AA3AE8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa Signing time: Mon 14 Jul 2025 15:30:49 +0000 ROA not before: Mon 14 Jul 2025 15:30:49 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:400::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:5d:2f:0f:d4:5a:9b:d1:38:5f:1d:3b:f9:f3:b1:2a:90:aa:3a:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 14 15:30:49 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=154db65ac6471ebd8c5d04b9fb0d0bbef50fce296ab6dbf1b3865cada3217259, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:c5:9d:6d:60:f5:eb:55:7f:50:16:ac:1e:21: 74:b5:dd:f4:2b:a7:be:e2:20:65:c6:dd:af:c9:1e: 1b:05:0e:72:5f:ce:68:fe:c7:63:cb:79:fa:30:63: ec:b5:a7:51:c3:64:b7:ea:b6:24:6b:94:d1:a3:7b: 33:52:ec:ee:7c:98:1a:92:c9:01:0d:23:24:c3:a5: 9c:68:75:b0:64:fb:ad:9e:53:2d:7b:53:50:f3:7f: 74:3a:66:cf:2b:c6:98:ca:46:58:9e:08:c6:94:14: ed:c3:2c:1d:3a:03:f4:be:04:16:94:8d:e8:7d:b0: 78:fd:e5:4c:56:86:b2:59:95:81:a7:3d:29:d6:a8: 20:8a:fa:7b:2c:77:0c:d0:2c:4d:c0:56:87:60:48: 35:ee:a8:40:cb:74:d7:fa:1e:d1:3a:84:70:f3:31: 1f:45:f8:17:a4:b6:a0:fe:c6:ec:57:c0:08:f5:14: 38:9a:a6:cc:93:af:4b:02:bd:03:1e:aa:d5:58:c2: 93:35:a0:83:4c:6c:81:2a:88:a5:d5:d9:ad:ee:c5: 65:25:ee:f6:7a:5a:a6:01:95:3e:98:63:46:55:80: 9e:25:fa:81:57:c2:dc:70:c1:43:4d:e5:ef:7e:03: f7:94:e4:b1:ad:01:27:75:48:1e:c6:8d:6f:b7:05: 34:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9F:62:17:10:E6:20:58:4D:62:5C:D8:DF:29:8E:1B:4D:74:FB:EF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4f4627a7-ddcb-4402-bf11-3e7463b43fa9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:400::/44 Signature Algorithm: sha256WithRSAEncryption 20:9f:4d:e8:47:77:58:69:de:d7:b6:3f:37:66:e0:d3:5b:e5: ad:e8:d2:91:76:b7:98:95:37:2d:93:19:1c:6f:87:89:2f:01: c9:a1:ee:fb:24:f9:9b:c4:9b:ac:82:44:fd:d8:45:64:99:9f: ef:b9:f3:ab:0f:72:14:dc:ab:fc:59:ea:73:e6:22:ac:8c:5a: 7d:ea:7b:29:95:6f:70:01:b9:6e:3a:56:24:4a:b6:82:1d:cf: 5d:c1:73:d6:7d:7d:d1:be:b1:72:94:73:ee:26:00:5d:d5:9d: de:79:50:eb:bf:0a:d7:0b:39:10:04:85:e0:5e:6b:ae:b7:c8: 1a:65:e2:cb:83:04:e6:98:aa:5f:f5:69:8c:2c:16:73:a5:df: 7c:b7:84:87:45:a3:c9:be:80:9c:e1:cb:83:62:fd:0b:6f:e0: d1:6e:40:3a:d0:29:0a:ee:13:a5:b5:33:c9:a8:db:1c:68:f9: 44:6c:72:64:d4:ed:c4:0b:92:80:f2:95:0f:83:1f:61:3c:55: 9f:6a:11:24:6e:ca:2e:47:28:03:ad:2e:1b:fb:57:db:08:f6: 90:53:30:ad:93:c6:be:28:1d:46:33:02:6b:bd:b1:1d:62:aa: dc:d9:7f:74:71:5d:6d:fa:6c:7f:7e:4d:86:b0:ba:13:3e:cb: c0:ad:2e:e3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcl0vD9Ram9E4Xx07+fOxKpCqOugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE0MTUzMDQ5WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTRkYjY1YWM2NDcxZWJkOGM1ZDA0YjlmYjBkMGJiZWY1 MGZjZTI5NmFiNmRiZjFiMzg2NWNhZGEzMjE3MjU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD8xZ1tYPXrVX9QFqweIXS13fQrp77iIGXG3a/JHhsFDnJf zmj+x2PLefowY+y1p1HDZLfqtiRrlNGjezNS7O58mBqSyQENIyTDpZxodbBk+62e Uy17U1Dzf3Q6Zs8rxpjKRlieCMaUFO3DLB06A/S+BBaUjeh9sHj95UxWhrJZlYGn PSnWqCCK+nssdwzQLE3AVodgSDXuqEDLdNf6HtE6hHDzMR9F+BektqD+xuxXwAj1 FDiapsyTr0sCvQMeqtVYwpM1oINMbIEqiKXV2a3uxWUl7vZ6WqYBlT6YY0ZVgJ4l +oFXwtxwwUNN5e9+A/eU5LGtASd1SB7GjW+3BTSfAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUe59iFxDmIFhNYlzY3ymOG010++8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRmNDYyN2E3LWRkY2ItNDQwMi1iZjExLTNlNzQ2M2I0M2ZhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwBAAwDQYJKoZIhvcNAQELBQADggEBACCfTehHd1hp3te2Pzdm4NNb 5a3o0pF2t5iVNy2TGRxvh4kvAcmh7vsk+ZvEm6yCRP3YRWSZn++586sPchTcq/xZ 6nPmIqyMWn3qeymVb3ABuW46ViRKtoIdz13Bc9Z9fdG+sXKUc+4mAF3Vnd55UOu/ CtcLORAEheBea663yBpl4suDBOaYql/1aYwsFnOl33y3hIdFo8m+gJzhy4Ni/Qtv 4NFuQDrQKQruE6W1M8mo2xxo+URscmTU7cQLkoDylQ+DH2E8VZ9qESRuyi5HKAOt Lhv7V9sI9pBTMK2Txr4oHUYzAmu9sR1iqtzZf3RxXW36bH9+TYawuhM+y8CtLuM= -----END CERTIFICATE-----Generated at Wed Aug 6 00:48:59 2025 by rpki-client