$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/58ffb131-541b-4220-8d21-6febed79ba47.roa File: 58ffb131-541b-4220-8d21-6febed79ba47.roa (raw, json) Hash identifier: zzQuK1QFlRIjuXeS3VWI9tDCPb9P7Fsoo84GFdT3E6w= Subject key identifier: 5D:04:B8:D0:41:F4:32:EF:EC:D3:98:08:83:6A:BA:C1:8F:02:D0:FB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0426F29344168E386B3694403BF2EBAF44AB070B Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/58ffb131-541b-4220-8d21-6febed79ba47.roa Signing time: Tue 29 Jul 2025 18:51:57 +0000 ROA not before: Tue 29 Jul 2025 18:51:57 +0000 ROA not after: Tue 02 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:b0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:26:f2:93:44:16:8e:38:6b:36:94:40:3b:f2:eb:af:44:ab:07:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 29 18:51:57 2025 GMT Not After : Sep 2 23:59:59 2025 GMT Subject: serialNumber=df3dc8b4a47688e80ecf66000d87c9709f0a97dda5e7ebe35f14ea6c5f6fbf87, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:79:f9:d2:6d:50:65:c0:c4:e5:b7:4b:41:ed: 94:5c:a7:f4:f1:a7:3f:2f:09:c5:7b:8a:f3:40:29: 73:cf:97:f4:bc:23:a1:7d:b4:10:9f:59:17:42:b2: 5c:cf:02:89:d0:32:c9:ff:6f:a4:90:b0:91:e0:72: 00:08:7e:ab:aa:5f:a3:1c:0b:cc:ac:45:5a:68:09: ca:6a:93:3d:c5:fb:7a:3b:cd:f5:0e:64:fc:5e:b4: ee:5f:fb:a0:76:bc:f8:a7:e9:8c:03:38:d8:9a:6a: e4:a6:f1:f1:12:5f:0a:d5:f6:6c:a3:86:03:ad:2d: 0c:e2:1c:cb:61:a3:c8:35:37:dd:9c:66:b9:1c:67: 28:d6:50:ea:e8:96:23:37:e5:41:ef:ca:b6:6c:d7: e2:26:f4:33:e8:0c:5f:e0:45:23:dc:89:3e:fa:69: ad:10:1e:5f:19:79:7c:0e:97:00:b0:b4:de:a9:6e: ad:1e:1a:f6:2c:9c:e4:e9:1b:e4:ad:74:3d:6e:11: 6e:4a:74:c7:1c:a1:37:98:76:e7:7c:e5:87:d2:e3: b6:c9:2c:cf:f4:c4:78:7d:85:27:b7:f0:82:6c:2a: dd:c3:82:db:04:bd:30:4b:e8:66:bf:00:85:a8:cc: c8:18:bd:67:2a:94:61:04:d6:ae:2b:46:dc:35:b8: 82:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:04:B8:D0:41:F4:32:EF:EC:D3:98:08:83:6A:BA:C1:8F:02:D0:FB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/58ffb131-541b-4220-8d21-6febed79ba47.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:b0::/44 Signature Algorithm: sha256WithRSAEncryption 11:8e:ba:e1:2f:86:c5:e6:f8:f6:0c:e2:65:c3:64:5b:d3:d9: 7f:ba:4e:32:a7:1b:bc:de:70:a9:8d:41:66:38:7d:f3:ce:29: 39:c9:56:7d:b4:86:da:7b:42:df:82:e9:2b:d1:44:7f:9b:ba: 0c:e0:9a:71:77:58:a8:26:b7:5e:33:bc:16:a9:6d:d5:bc:4b: cb:37:f9:d4:a7:57:66:2f:37:cf:f6:7d:7c:4f:b4:b5:95:b2: 18:70:e8:b3:fe:2c:5a:08:56:0c:bd:8c:c4:77:6c:d0:8e:c5: 3c:4b:9e:ba:56:8c:35:da:03:37:d5:ad:43:67:f9:36:c5:54: ae:44:7e:66:94:60:cd:a7:e0:de:df:78:5e:7b:cb:99:f0:96: 9f:ca:8a:56:b7:42:e5:21:80:bd:bf:59:1b:93:e4:dd:73:9d: 5c:2e:0b:f0:a8:8a:82:33:0f:0d:ee:35:1c:cd:75:c4:46:80: fc:66:12:69:9c:92:74:0a:47:57:78:0a:aa:af:ba:49:ad:0f: 63:05:08:b3:1e:2a:92:13:a0:80:06:39:b2:31:7e:38:54:66: e6:8c:40:e8:23:85:71:b6:3b:6a:cc:d7:f5:75:70:18:a0:4e: c7:0a:b1:4d:b6:f9:fb:36:4b:59:45:a2:22:f7:82:30:32:d5: 5d:af:f9:c3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBCbyk0QWjjhrNpRAO/Lrr0SrBwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzI5MTg1MTU3WhcNMjUwOTAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjNkYzhiNGE0NzY4OGU4MGVjZjY2MDAwZDg3Yzk3MDlm MGE5N2RkYTVlN2ViZTM1ZjE0ZWE2YzVmNmZiZjg3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJefnSbVBlwMTlt0tB7ZRcp/Txpz8vCcV7ivNAKXPPl/S8 I6F9tBCfWRdCslzPAonQMsn/b6SQsJHgcgAIfquqX6McC8ysRVpoCcpqkz3F+3o7 zfUOZPxetO5f+6B2vPin6YwDONiaauSm8fESXwrV9myjhgOtLQziHMtho8g1N92c ZrkcZyjWUOroliM35UHvyrZs1+Im9DPoDF/gRSPciT76aa0QHl8ZeXwOlwCwtN6p bq0eGvYsnOTpG+StdD1uEW5KdMccoTeYdud85YfS47bJLM/0xHh9hSe38IJsKt3D gtsEvTBL6Ga/AIWozMgYvWcqlGEE1q4rRtw1uILpAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXQS40EH0Mu/s05gIg2q6wY8C0PswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzU4ZmZiMTMxLTU0MWItNDIyMC04ZDIxLTZmZWJlZDc5YmE0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwALAwDQYJKoZIhvcNAQELBQADggEBABGOuuEvhsXm+PYM4mXDZFvT 2X+6TjKnG7zecKmNQWY4ffPOKTnJVn20htp7Qt+C6SvRRH+bugzgmnF3WKgmt14z vBapbdW8S8s3+dSnV2YvN8/2fXxPtLWVshhw6LP+LFoIVgy9jMR3bNCOxTxLnrpW jDXaAzfVrUNn+TbFVK5EfmaUYM2n4N7feF57y5nwlp/Kila3QuUhgL2/WRuT5N1z nVwuC/CoioIzDw3uNRzNdcRGgPxmEmmcknQKR1d4CqqvukmtD2MFCLMeKpIToIAG ObIxfjhUZuaMQOgjhXG2O2rM1/V1cBigTscKsU22+fs2S1lFoiL3gjAy1V2v+cM= -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:08 2025 by rpki-client