$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa File: 5549fdb0-617d-43e3-951f-9747f0d27829.roa (raw, json) Hash identifier: xmm5RmY7y2wpb6BMczmhrGaRRTJD2XgP+GfL9OjcJSk= Subject key identifier: 16:AD:73:22:2F:A7:C4:FF:28:EC:10:85:AA:8F:BA:68:B5:B6:93:D7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6B169AA8C509140D983B6B198F3AE9634FBA33CF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa Signing time: Tue 15 Jul 2025 00:10:18 +0000 ROA not before: Tue 15 Jul 2025 00:10:18 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:16:9a:a8:c5:09:14:0d:98:3b:6b:19:8f:3a:e9:63:4f:ba:33:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 15 00:10:18 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=b739d764de4e49e39095c6e1199ff4e35bc562a97990a5ed5f5c7526d55312a9, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4b:bf:71:9a:b1:9c:e0:e8:35:e3:5d:0b:18: 88:13:d9:8b:b7:ff:a2:72:74:ff:bf:f2:1e:70:11: bb:3b:31:ea:70:64:1c:e6:f9:13:fd:ed:65:33:8f: a4:84:42:df:f9:d7:28:48:72:ad:c9:50:1e:80:a2: ac:d1:64:bc:9d:27:19:a5:70:e4:75:1d:44:26:0b: 32:f6:9c:db:29:70:aa:6e:f1:3d:2d:51:70:5e:e8: 56:d8:73:6f:50:6b:3f:86:c4:12:0b:90:c0:13:5a: f3:e4:b4:1b:13:59:60:e8:cb:71:3c:0e:7f:c9:59: e7:37:61:20:6e:93:98:13:a7:0a:a6:19:be:ed:d6: fd:a1:1d:1e:69:5d:2b:dd:bf:c1:1c:b9:00:b3:0c: ea:52:2a:c4:b2:b2:32:98:80:8c:5c:2d:87:ef:ba: 2d:ce:66:5b:25:82:a2:4e:8f:ea:34:91:b9:53:7d: 22:a3:e3:e3:54:e0:0e:1f:24:a9:56:04:d5:80:43: d4:a9:6b:9d:13:0c:0f:31:97:af:e8:5e:03:3c:da: b3:e0:b6:d9:4c:8f:b2:bb:63:db:68:ac:09:c7:88: b2:61:34:3f:20:e1:65:1f:7f:6f:e8:08:13:7d:14: e2:83:21:bc:e3:05:ce:56:f1:19:1b:b9:70:d9:38: 22:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:AD:73:22:2F:A7:C4:FF:28:EC:10:85:AA:8F:BA:68:B5:B6:93:D7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5549fdb0-617d-43e3-951f-9747f0d27829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4140::/48 Signature Algorithm: sha256WithRSAEncryption 9e:8c:52:ba:36:1e:bf:d0:ee:cf:24:95:ad:48:82:5f:82:1b: 5b:94:4e:18:6a:9c:a9:c6:04:31:7a:1e:d6:08:29:63:87:9b: a5:c6:44:6d:4a:e9:64:79:d2:4d:6a:fe:39:fe:2f:57:60:c1: 20:98:f9:5e:9f:a8:5a:27:95:dd:dc:f0:9a:be:eb:04:45:27: 31:fc:78:b3:14:8d:d6:10:04:cd:a3:30:02:95:d5:26:49:be: bf:a4:9e:29:90:25:ba:8b:fd:61:27:23:b1:1c:58:21:e1:7e: 43:24:54:c0:93:b0:72:dd:6d:4a:44:ec:3b:0a:58:e6:3f:57: b5:70:d8:84:d2:c5:2c:98:ca:b1:51:b1:9f:c4:c2:0c:d6:de: 00:ec:3e:5b:36:a3:7d:f6:d5:c6:6f:23:89:16:7b:c4:3a:e0: 23:28:b1:fb:83:9d:c7:bf:61:d4:76:8d:d7:c0:22:18:02:80: 7f:f7:51:05:29:20:6d:ab:a7:9f:d2:4b:17:f2:65:11:da:e2: bf:69:d9:15:e8:0c:a8:05:3f:b3:37:bd:b2:7b:b6:47:8c:1b: 0f:4b:cb:dd:c8:03:0e:a3:28:f8:75:1a:9d:ae:90:e1:02:5f: 71:1e:71:03:0b:c3:85:9a:ae:4d:fc:40:0d:7f:c9:85:26:5e: eb:4e:96:c2 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUaxaaqMUJFA2YO2sZjzrpY0+6M88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE1MDAxMDE4WhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzM5ZDc2NGRlNGU0OWUzOTA5NWM2ZTExOTlmZjRlMzVi YzU2MmE5Nzk5MGE1ZWQ1ZjVjNzUyNmQ1NTMxMmE5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkS79xmrGc4Og1410LGIgT2Yu3/6JydP+/8h5wEbs7Mepw ZBzm+RP97WUzj6SEQt/51yhIcq3JUB6AoqzRZLydJxmlcOR1HUQmCzL2nNspcKpu 8T0tUXBe6FbYc29Qaz+GxBILkMATWvPktBsTWWDoy3E8Dn/JWec3YSBuk5gTpwqm Gb7t1v2hHR5pXSvdv8EcuQCzDOpSKsSysjKYgIxcLYfvui3OZlslgqJOj+o0kblT fSKj4+NU4A4fJKlWBNWAQ9Spa50TDA8xl6/oXgM82rPgttlMj7K7Y9torAnHiLJh ND8g4WUff2/oCBN9FOKDIbzjBc5W8RkbuXDZOCKpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUFq1zIi+nxP8o7BCFqo+6aLW2k9cwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU1NDlmZGIwLTYxN2QtNDNlMy05NTFmLTk3NDdmMGQyNzgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUAwDQYJKoZIhvcNAQELBQADggEBAJ6MUro2Hr/Q7s8kla1Igl+C G1uUThhqnKnGBDF6HtYIKWOHm6XGRG1K6WR50k1q/jn+L1dgwSCY+V6fqFonld3c 8Jq+6wRFJzH8eLMUjdYQBM2jMAKV1SZJvr+knimQJbqL/WEnI7EcWCHhfkMkVMCT sHLdbUpE7DsKWOY/V7Vw2ITSxSyYyrFRsZ/EwgzW3gDsPls2o3321cZvI4kWe8Q6 4CMosfuDnce/YdR2jdfAIhgCgH/3UQUpIG2rp5/SSxfyZRHa4r9p2RXoDKgFP7M3 vbJ7tkeMGw9Ly93IAw6jKPh1Gp2ukOECX3EecQMLw4Wark38QA1/yYUmXutOlsI= -----END CERTIFICATE-----Generated at Wed Aug 6 11:15:55 2025 by rpki-client