$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa File: 56527727-111d-4d4a-9da3-1e8d68e15a4c.roa (raw, json) Hash identifier: rtKg0YlsAgmfK7fvtcG/SvXzjhvUmafHv/uVIq7tsD0= Subject key identifier: 0F:E8:74:34:DC:9A:BE:6A:EF:F3:45:0F:D7:5E:68:54:4C:F6:20:86 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5C838898A30BB0F09EB7DE39F8105F44CFCC0DCB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa Signing time: Tue 05 Aug 2025 18:20:57 +0000 ROA not before: Tue 05 Aug 2025 18:20:57 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:83:88:98:a3:0b:b0:f0:9e:b7:de:39:f8:10:5f:44:cf:cc:0d:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:57 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=f8592e7b5177bf7aeb78b8816dcc7e7f5982b9adba1b79760b7a4dce6bc55ce0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:11:2e:96:cf:aa:ec:cd:03:5d:9c:22:7d:67: 00:5c:5b:cf:6f:23:46:77:bd:25:2f:ac:e8:f9:dd: 0e:3e:08:70:ae:f4:1f:4a:8e:de:96:c1:7c:57:f4: 20:d1:ef:16:56:9f:ed:d5:d9:b4:e0:3e:62:a1:bb: 05:9a:23:8f:b2:db:ad:83:7f:73:35:6a:9f:58:4e: f4:58:62:d5:18:0c:a1:8e:e3:2b:61:b3:ee:5b:8c: 2d:c9:c2:90:a5:08:23:c6:a9:a7:31:8f:e8:e5:f9: b4:ae:ec:3a:87:b4:e3:12:2a:e8:74:10:17:21:68: 5c:c2:8a:ba:75:d4:2f:3c:54:fb:7d:3b:f4:1d:01: ad:f0:37:b6:0c:85:3a:55:92:4d:e1:c3:a8:c5:fc: a9:a1:b0:a8:50:00:84:d2:fc:93:88:1f:b8:1d:89: 5f:0f:62:78:2d:c2:56:eb:2e:57:1f:f7:a3:db:b1: bf:27:7e:d7:45:24:07:6b:92:22:5e:f4:3f:d4:71: 77:09:93:0c:c8:3a:f2:c6:1a:e7:3c:c1:74:23:f9: 1f:59:b8:5d:5c:d3:8d:28:21:f6:40:ee:ef:1c:b0: 28:83:a8:36:db:7b:d6:6e:4d:3e:60:84:43:d4:bc: 19:7c:96:45:ef:6d:8b:a5:fb:cf:a2:51:ef:f8:19: e7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E8:74:34:DC:9A:BE:6A:EF:F3:45:0F:D7:5E:68:54:4C:F6:20:86 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/56527727-111d-4d4a-9da3-1e8d68e15a4c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/44 Signature Algorithm: sha256WithRSAEncryption 9d:40:c1:76:60:11:db:d1:70:94:8a:cf:be:1c:d4:c3:07:d1: 1e:3a:17:8c:e2:cb:5b:58:a2:f3:ab:88:72:32:e2:27:cd:34: 36:d1:47:41:f1:f5:1c:09:76:9a:a0:06:19:9b:c7:9a:78:03: 86:37:10:58:a5:80:a5:67:7f:0e:92:b1:3c:4d:23:01:35:a5: 99:d7:e3:19:36:b9:38:e0:20:bb:5c:6a:d7:0a:40:04:c3:ce: 06:49:aa:10:34:3c:9f:62:7a:2c:9c:73:45:0a:3f:15:12:67: c8:12:4c:e8:c6:dd:a6:d8:76:af:7e:2d:2a:ee:9f:9b:cd:dd: d0:07:14:b3:36:14:ad:1a:5a:c4:4e:ec:75:fe:4b:9f:0b:be: b7:99:df:37:b3:0b:4e:90:c7:1c:38:31:d1:e9:a6:8a:3b:d4: 7b:0d:72:7c:f0:ad:e4:8a:09:f8:94:4b:17:83:68:ad:a2:6d: ca:ee:4e:79:ba:0e:31:77:9c:96:c5:87:61:0b:72:88:0f:22: 1a:fa:fe:e6:9b:c6:89:b1:9e:c9:2b:f4:e3:4b:d0:eb:de:c3: c1:aa:33:52:0d:39:0f:ce:4b:8e:9c:ff:b8:1c:99:01:93:5b: d2:5c:04:3e:26:af:f1:cc:a6:2c:fc:53:9b:22:3f:f8:1b:54: 11:18:4f:73 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUXIOImKMLsPCet945+BBfRM/MDcswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDU3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODU5MmU3YjUxNzdiZjdhZWI3OGI4ODE2ZGNjN2U3ZjU5 ODJiOWFkYmExYjc5NzYwYjdhNGRjZTZiYzU1Y2UwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4ES6Wz6rszQNdnCJ9ZwBcW89vI0Z3vSUvrOj53Q4+CHCu 9B9Kjt6WwXxX9CDR7xZWn+3V2bTgPmKhuwWaI4+y262Df3M1ap9YTvRYYtUYDKGO 4yths+5bjC3JwpClCCPGqacxj+jl+bSu7DqHtOMSKuh0EBchaFzCirp11C88VPt9 O/QdAa3wN7YMhTpVkk3hw6jF/KmhsKhQAITS/JOIH7gdiV8PYngtwlbrLlcf96Pb sb8nftdFJAdrkiJe9D/UcXcJkwzIOvLGGuc8wXQj+R9ZuF1c040oIfZA7u8csCiD qDbbe9ZuTT5ghEPUvBl8lkXvbYul+8+iUe/4GedRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUD+h0NNyavmrv80UP115oVEz2IIYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU2NTI3NzI3LTExMWQtNGQ0YS05ZGEzLTFlOGQ2OGUxNWE0Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAJ1AwXZgEdvRcJSKz74c1MMH 0R46F4ziy1tYovOriHIy4ifNNDbRR0Hx9RwJdpqgBhmbx5p4A4Y3EFilgKVnfw6S sTxNIwE1pZnX4xk2uTjgILtcatcKQATDzgZJqhA0PJ9ieiycc0UKPxUSZ8gSTOjG 3abYdq9+LSrun5vN3dAHFLM2FK0aWsRO7HX+S58LvreZ3zezC06Qxxw4MdHppoo7 1HsNcnzwreSKCfiUSxeDaK2ibcruTnm6DjF3nJbFh2ELcogPIhr6/uabxomxnskr 9ONL0Ovew8GqM1INOQ/OS46c/7gcmQGTW9JcBD4mr/HMpiz8U5siP/gbVBEYT3M= -----END CERTIFICATE-----Generated at Wed Aug 6 04:16:39 2025 by rpki-client