$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa File: 5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa (raw, json) Hash identifier: guXKo+lD/ZfB5BQwqkkhzsSF8GTFYq4i2WSloA50ljQ= Subject key identifier: A7:E3:B1:17:70:6A:8D:6F:43:F1:34:15:10:3F:74:A2:D7:C1:40:D1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4C713C63A34E4B88C3C7D02F3670D586202F396A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa Signing time: Fri 11 Jul 2025 18:30:56 +0000 ROA not before: Fri 11 Jul 2025 18:30:56 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:71:3c:63:a3:4e:4b:88:c3:c7:d0:2f:36:70:d5:86:20:2f:39:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:30:56 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=bd415e40f941074aa82194242d4815fc4d7ed81769d51a9abc6d47faa1ffba13, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e2:d9:53:d8:5f:7a:74:1a:8a:7a:08:0c:fd: 79:7e:66:cc:f7:79:b5:35:50:31:a7:d5:a0:00:16: 42:ba:e4:cf:4b:fc:37:b4:54:dd:4c:f8:3e:99:e2: 4c:10:42:dc:55:e5:ee:71:60:ea:5d:76:b8:f8:4d: a1:0c:27:e9:59:33:ad:01:92:72:7e:9b:f1:e8:99: 6c:d2:f8:42:49:ef:9c:d7:ee:e9:70:25:42:52:dd: e0:55:ce:20:11:60:86:2b:13:d5:27:0a:aa:b8:45: 43:a2:57:1e:73:1d:ac:90:41:39:f3:49:a7:14:d1: 28:3e:93:dd:06:c2:91:d3:13:68:cf:d9:0d:5b:2a: 1f:a1:b3:06:8c:8c:6c:76:ad:5b:e9:b7:6e:7c:d8: 40:b0:ae:33:da:95:27:b7:16:5b:8a:46:ec:5d:1f: e7:3d:20:96:4a:d2:d2:36:2d:56:e3:2f:15:75:94: 75:d7:f2:68:dd:f1:f8:0f:37:05:6e:27:02:0f:cf: ea:06:93:79:c0:09:7f:e6:e1:c8:5f:55:31:44:ac: a9:69:fd:9b:46:b4:50:dd:1c:89:0c:d5:ef:6a:ee: b2:00:d4:a3:fa:b9:c6:71:80:eb:cf:1d:9e:7b:84: 9c:98:21:90:c0:c2:7d:6c:58:07:8b:3d:90:4f:3b: 23:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:E3:B1:17:70:6A:8D:6F:43:F1:34:15:10:3F:74:A2:D7:C1:40:D1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5211bbfa-c26c-44f8-96b2-a9282cfd61a1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 2b:08:d9:46:18:ba:fa:03:49:76:10:37:76:60:50:3e:97:e7: 7e:22:02:5b:ff:66:e4:9d:28:07:49:0f:95:c2:63:b0:21:8f: 05:c0:49:91:30:b9:9b:f7:42:94:d0:d5:dc:16:70:3b:13:49: f9:f2:eb:23:62:49:b9:c4:35:4d:be:12:c6:ba:35:38:2a:72: a7:b2:30:e3:fb:48:91:c3:0f:a4:ec:ba:d4:f7:81:42:9a:b6: 5a:75:47:53:3b:c8:8f:4d:c2:c4:8d:ac:0f:6d:6c:57:b0:78: c5:c4:1f:7e:a7:96:b7:2d:e7:1e:9f:18:54:e7:03:d0:fa:d7: b7:72:d8:65:cf:5a:44:15:d1:0b:ab:ba:b1:17:ca:c9:60:e6: 7c:ab:0d:b7:30:a1:a4:9c:d0:a5:71:bc:86:30:8d:0d:39:b6: 9c:e7:01:e2:d7:b0:0c:8d:7c:7d:38:1e:2c:97:4b:5c:56:5b: 18:14:52:a8:bc:a9:05:9c:a8:32:b6:e0:22:01:80:4b:6a:da: ca:c0:21:11:5e:09:06:d3:fa:7e:0e:b2:7b:74:79:3a:f1:d4: 45:d6:7a:51:43:c6:8f:70:e9:c0:1e:aa:77:9f:9a:1c:1f:b7: 40:c5:76:28:31:e4:ff:4f:3b:ae:dd:84:b2:e1:7a:64:a2:70: 52:db:ab:8b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUTHE8Y6NOS4jDx9AvNnDVhiAvOWowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgzMDU2WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDQxNWU0MGY5NDEwNzRhYTgyMTk0MjQyZDQ4MTVmYzRk N2VkODE3NjlkNTFhOWFiYzZkNDdmYWExZmZiYTEzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU4tlT2F96dBqKeggM/Xl+Zsz3ebU1UDGn1aAAFkK65M9L /De0VN1M+D6Z4kwQQtxV5e5xYOpddrj4TaEMJ+lZM60BknJ+m/HomWzS+EJJ75zX 7ulwJUJS3eBVziARYIYrE9UnCqq4RUOiVx5zHayQQTnzSacU0Sg+k90GwpHTE2jP 2Q1bKh+hswaMjGx2rVvpt2582ECwrjPalSe3FluKRuxdH+c9IJZK0tI2LVbjLxV1 lHXX8mjd8fgPNwVuJwIPz+oGk3nACX/m4chfVTFErKlp/ZtGtFDdHIkM1e9q7rIA 1KP6ucZxgOvPHZ57hJyYIZDAwn1sWAeLPZBPOyOtAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUp+OxF3BqjW9D8TQVED90otfBQNEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzUyMTFiYmZhLWMyNmMtNDRmOC05NmIyLWE5MjgyY2ZkNjFhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAKwjZRhi6+gNJdhA3dmBQPpfn fiICW/9m5J0oB0kPlcJjsCGPBcBJkTC5m/dClNDV3BZwOxNJ+fLrI2JJucQ1Tb4S xro1OCpyp7Iw4/tIkcMPpOy61PeBQpq2WnVHUzvIj03CxI2sD21sV7B4xcQffqeW ty3nHp8YVOcD0PrXt3LYZc9aRBXRC6u6sRfKyWDmfKsNtzChpJzQpXG8hjCNDTm2 nOcB4tewDI18fTgeLJdLXFZbGBRSqLypBZyoMrbgIgGAS2raysAhEV4JBtP6fg6y e3R5OvHURdZ6UUPGj3DpwB6qd5+aHB+3QMV2KDHk/087rt2EsuF6ZKJwUturiw== -----END CERTIFICATE-----Generated at Mon Aug 4 14:53:51 2025 by rpki-client