$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa File: 5443f26e-949a-460a-b187-e26290bfcf24.roa (raw, json) Hash identifier: 2+KoOMya6nkg7cFVnwK1lDB4dgRREmak+Jmop0ZJQKA= Subject key identifier: 14:3B:06:A0:61:8B:FE:15:1D:EA:F0:39:0D:20:6D:C6:02:B6:D2:8E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 51D9D3FC686B468336A690DF94BB1A9BEBDB5B94 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa Signing time: Fri 08 Aug 2025 00:30:52 +0000 ROA not before: Fri 08 Aug 2025 00:30:52 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 11 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d9:d3:fc:68:6b:46:83:36:a6:90:df:94:bb:1a:9b:eb:db:5b:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 8 00:30:52 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=9f70c2b06396d4175444911083fe6a3892a6ca2b3f7a8632c2eecd83921f2f5d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:64:58:9f:d2:4f:cb:be:2a:c1:ac:6e:03:82: bf:5c:7f:a4:65:11:5f:66:e4:8c:88:a2:60:b6:c4: 1a:50:3d:4f:0e:c2:ac:1f:56:17:c8:db:4e:11:9e: 16:c7:29:88:db:6f:35:ed:cf:45:8e:75:8c:41:b6: 78:14:c5:3d:52:d7:ec:89:2b:60:c8:a3:70:64:ad: be:d5:71:32:de:a9:45:83:30:37:35:db:3e:f2:0c: c8:10:33:86:5d:0e:06:3c:d3:9b:c9:ca:94:a0:5c: 7c:44:06:e9:35:7b:ea:16:c3:78:d1:3c:68:52:4d: f3:73:66:56:07:67:40:cf:4f:9b:e2:80:c4:34:65: 5b:dd:02:07:85:cb:74:f4:32:bd:e6:cb:2b:f5:b4: 80:37:4d:f8:3b:26:87:c1:e8:d1:72:bc:55:be:54: 04:1e:c2:cb:4e:21:22:84:9f:07:56:d3:63:82:1a: 41:1b:94:2f:be:a9:fb:72:02:66:9a:9f:2a:85:d7: 02:26:91:7b:df:be:93:e3:c7:52:2f:c5:ec:74:ba: e8:60:13:8d:45:49:56:db:8f:f5:b0:43:74:e0:f3: e7:6b:45:fa:a9:7f:bf:86:64:f3:d2:9c:56:8e:83: a7:55:04:7f:e3:a6:ac:31:c8:39:5e:f2:3a:de:bb: 82:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3B:06:A0:61:8B:FE:15:1D:EA:F0:39:0D:20:6D:C6:02:B6:D2:8E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5443f26e-949a-460a-b187-e26290bfcf24.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4000::/44 Signature Algorithm: sha256WithRSAEncryption 04:84:a5:da:99:76:ed:5f:33:37:fd:21:c8:aa:e7:0c:70:0c: 8f:c9:6c:b5:56:32:5e:8c:9e:84:dc:d2:3e:85:17:c8:77:9f: 9e:87:e8:0c:bf:80:b8:91:87:d1:d9:2a:e4:64:03:54:68:0a: d0:da:9b:f7:34:20:96:2f:29:62:8c:ea:7d:da:40:b5:e3:af: 51:d4:66:f9:bb:07:45:73:26:73:a5:0e:82:8f:8a:94:f0:0b: 9f:4d:74:d0:c5:74:6e:2c:14:77:3b:92:f1:75:8a:a1:47:ae: 31:10:c7:e8:93:eb:50:74:ed:18:f0:a9:9d:57:a9:bf:d8:f5: 43:b9:41:f1:8c:5b:6a:de:59:5b:e6:58:39:62:9d:46:b8:ec: e5:0e:87:b7:05:40:b8:df:42:fa:9b:40:a7:80:f4:72:52:87: ff:1a:cc:fc:8b:b1:13:0a:b1:b5:f4:b1:6a:a9:68:b5:02:23: 11:de:0a:ad:d9:0a:3d:b0:a3:8c:d6:e3:41:e3:0b:c8:a8:6e: ad:b7:12:0f:f5:11:36:d7:cb:39:a3:84:3d:b7:d8:db:b5:6d: 21:ef:91:19:3a:40:2e:8d:78:02:a3:92:00:25:b9:03:cc:c4: 30:29:04:a9:eb:b4:fc:ff:a4:e1:7b:16:ae:85:fe:7e:26:d2: ec:3b:38:5c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUdnT/GhrRoM2ppDflLsam+vbW5QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA4MDAzMDUyWhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZjcwYzJiMDYzOTZkNDE3NTQ0NDkxMTA4M2ZlNmEzODky YTZjYTJiM2Y3YTg2MzJjMmVlY2Q4MzkyMWYyZjVkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIZFif0k/LvirBrG4Dgr9cf6RlEV9m5IyIomC2xBpQPU8O wqwfVhfI204RnhbHKYjbbzXtz0WOdYxBtngUxT1S1+yJK2DIo3Bkrb7VcTLeqUWD MDc12z7yDMgQM4ZdDgY805vJypSgXHxEBuk1e+oWw3jRPGhSTfNzZlYHZ0DPT5vi gMQ0ZVvdAgeFy3T0Mr3myyv1tIA3Tfg7JofB6NFyvFW+VAQewstOISKEnwdW02OC GkEblC++qftyAmaanyqF1wImkXvfvpPjx1Ivxex0uuhgE41FSVbbj/WwQ3Tg8+dr Rfqpf7+GZPPSnFaOg6dVBH/jpqwxyDle8jreu4JrAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFDsGoGGL/hUd6vA5DSBtxgK20o4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU0NDNmMjZlLTk0OWEtNDYwYS1iMTg3LWUyNjI5MGJmY2YyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwQAAwDQYJKoZIhvcNAQELBQADggEBAASEpdqZdu1fMzf9Iciq5wxw DI/JbLVWMl6MnoTc0j6FF8h3n56H6Ay/gLiRh9HZKuRkA1RoCtDam/c0IJYvKWKM 6n3aQLXjr1HUZvm7B0VzJnOlDoKPipTwC59NdNDFdG4sFHc7kvF1iqFHrjEQx+iT 61B07RjwqZ1Xqb/Y9UO5QfGMW2reWVvmWDlinUa47OUOh7cFQLjfQvqbQKeA9HJS h/8azPyLsRMKsbX0sWqpaLUCIxHeCq3ZCj2wo4zW40HjC8iobq23Eg/1ETbXyzmj hD232Nu1bSHvkRk6QC6NeAKjkgAluQPMxDApBKnrtPz/pOF7Fq6F/n4m0uw7OFw= -----END CERTIFICATE-----Generated at Sun Aug 10 03:56:55 2025 by rpki-client