$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa File: 514fa870-df33-4dfe-a228-5ea96e0f3560.roa (raw, json) Hash identifier: pJvsnmvNa7bxf9U9IJ2nbB0AvPL/J8uPvkBKhzYHfjE= Subject key identifier: 9F:81:17:2E:07:BE:B6:CC:D4:95:32:81:E5:C8:E6:2F:54:4C:E1:4B Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D7E8FBBD339CF994E3711A38F8A8DEF27A726FA Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa Signing time: Wed 16 Jul 2025 00:20:36 +0000 ROA not before: Wed 16 Jul 2025 00:20:36 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:7e:8f:bb:d3:39:cf:99:4e:37:11:a3:8f:8a:8d:ef:27:a7:26:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 16 00:20:36 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=2223cf001ab970e682e50d4340f3d3d27be39c8745e18d8b5764fe997e49b923, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:1f:c3:2b:db:6a:70:5b:5f:83:cb:21:a8:e4: 39:26:84:8e:97:20:fb:10:84:4d:d3:f0:ac:e3:83: 7c:48:ca:db:cf:42:0b:58:cd:8d:d0:1f:34:5f:ca: 2b:48:d6:2c:87:0f:d8:55:ea:3b:11:83:2b:6c:21: eb:23:29:fe:65:e2:e4:7e:8d:f3:b3:5e:12:11:65: 10:9b:4d:f3:b8:6e:7e:9d:be:63:ce:6d:1a:4a:29: 3d:7f:93:fa:c1:25:f0:05:35:a9:d2:9e:65:6f:49: 59:4e:01:e6:9a:ce:74:75:94:c6:3b:01:59:8c:6d: d8:51:9b:9e:8a:d7:7b:22:9c:46:aa:49:73:a3:8f: 0e:eb:f8:d5:f9:2d:de:84:57:e9:58:98:ba:c3:84: 56:a5:c3:17:6f:e6:b5:9b:8d:cd:8e:9f:69:ab:3e: cf:ec:7c:70:5c:b3:d4:22:0c:1a:08:ef:c2:3d:0b: 17:48:94:c5:b3:4c:e0:c9:c5:bc:9d:bd:79:39:d0: 0e:36:60:54:0c:c6:58:0b:d4:d2:67:5c:15:63:87: e2:4d:44:49:bb:37:2f:eb:9f:c1:f8:5e:96:b3:f3: 36:46:21:fe:df:21:da:57:80:08:18:ea:23:2b:86: e3:97:8c:bd:1f:4f:8f:12:22:a2:e0:4c:26:a0:55: 2a:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:81:17:2E:07:BE:B6:CC:D4:95:32:81:E5:C8:E6:2F:54:4C:E1:4B X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/514fa870-df33-4dfe-a228-5ea96e0f3560.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 5c:7c:7e:4e:5e:76:26:07:b6:da:d4:cc:45:98:0d:98:6c:2b: b0:01:60:49:06:31:38:82:36:2f:aa:cd:91:d0:da:9e:81:00: f1:27:20:85:19:f4:e4:67:d8:0c:87:83:08:a0:1f:fa:49:68: 5c:43:ce:8f:d7:d1:8e:15:c3:5f:3e:e3:83:b2:62:f7:7e:21: a5:03:32:c3:8e:24:77:17:20:c2:94:de:50:9f:a9:d3:b9:cf: 9f:cd:1c:24:23:0c:33:b6:47:fd:66:9a:04:03:5e:bd:d7:57: dd:08:7b:9b:92:79:9d:13:dc:6a:df:d9:1d:95:ac:be:59:e2: 3b:c6:31:c8:d1:7c:ab:fe:e4:20:75:6b:d0:61:d9:fd:18:51: 78:de:d2:80:1a:6e:60:60:16:8c:63:ed:bf:a3:f1:4c:9f:ff: 36:6f:e3:0a:d8:8d:5c:b4:dd:d1:df:2c:87:e5:67:69:37:74: 2c:af:f4:19:c8:14:a3:94:4c:08:72:bc:cb:24:9d:81:b3:36: d6:7d:1d:ff:57:9d:f0:ca:69:7a:67:c4:c5:cd:32:0e:9f:88: 17:86:57:77:42:28:29:85:bf:e2:d3:3c:ae:62:fb:77:22:a3: ac:df:4b:60:68:19:a0:6d:06:aa:ba:c1:e0:64:e9:ad:45:d6: 8d:37:7d:01 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHX6Pu9M5z5lONxGjj4qN7yenJvowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE2MDAyMDM2WhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjIzY2YwMDFhYjk3MGU2ODJlNTBkNDM0MGYzZDNkMjdi ZTM5Yzg3NDVlMThkOGI1NzY0ZmU5OTdlNDliOTIzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcH8Mr22pwW1+DyyGo5DkmhI6XIPsQhE3T8Kzjg3xIytvP QgtYzY3QHzRfyitI1iyHD9hV6jsRgytsIesjKf5l4uR+jfOzXhIRZRCbTfO4bn6d vmPObRpKKT1/k/rBJfAFNanSnmVvSVlOAeaaznR1lMY7AVmMbdhRm56K13sinEaq SXOjjw7r+NX5Ld6EV+lYmLrDhFalwxdv5rWbjc2On2mrPs/sfHBcs9QiDBoI78I9 CxdIlMWzTODJxbydvXk50A42YFQMxlgL1NJnXBVjh+JNREm7Ny/rn8H4Xpaz8zZG If7fIdpXgAgY6iMrhuOXjL0fT48SIqLgTCagVSrlAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUn4EXLge+tszUlTKB5cjmL1RM4UswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUxNGZhODcwLWRmMzMtNGRmZS1hMjI4LTVlYTk2ZTBmMzU2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAFx8fk5ediYHttrUzEWYDZhs K7ABYEkGMTiCNi+qzZHQ2p6BAPEnIIUZ9ORn2AyHgwigH/pJaFxDzo/X0Y4Vw18+ 44OyYvd+IaUDMsOOJHcXIMKU3lCfqdO5z5/NHCQjDDO2R/1mmgQDXr3XV90Ie5uS eZ0T3Grf2R2VrL5Z4jvGMcjRfKv+5CB1a9Bh2f0YUXje0oAabmBgFoxj7b+j8Uyf /zZv4wrYjVy03dHfLIflZ2k3dCyv9BnIFKOUTAhyvMsknYGzNtZ9Hf9XnfDKaXpn xMXNMg6fiBeGV3dCKCmFv+LTPK5i+3cio6zfS2BoGaBtBqq6weBk6a1F1o03fQE= -----END CERTIFICATE-----Generated at Wed Aug 6 10:19:01 2025 by rpki-client