$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa File: 5aab2439-03d3-439a-885f-e2f641886f3d.roa (raw, json) Hash identifier: dR7VP5QZXJfbM3htzDIDIwwRfJPRDtlnq3Kt3QXb1s4= Subject key identifier: 08:13:95:42:11:73:35:BC:A2:01:B7:21:89:C3:89:EF:91:91:36:AB Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 23DF72FD215CFE1D1AF23F5837A5C12DC7F3544D Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa Signing time: Mon 21 Jul 2025 16:40:20 +0000 ROA not before: Mon 21 Jul 2025 16:40:20 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:df:72:fd:21:5c:fe:1d:1a:f2:3f:58:37:a5:c1:2d:c7:f3:54:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 21 16:40:20 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=4fd93c57651192f057c2b5f40ead8b9de7e533ccf5aefd442a692ef815ea488a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:09:97:b0:89:b2:dc:2e:00:1a:49:a8:9c:55: f9:d4:0f:11:40:b1:2c:32:22:59:47:2a:97:6a:67: 17:3d:d1:cc:46:cd:e4:b3:60:7d:1a:a5:71:df:e2: c7:5e:41:3e:59:0d:db:91:b4:b9:73:71:44:9a:8d: c1:04:73:5b:b0:8c:16:6d:43:32:7e:c2:af:44:ad: 66:73:30:be:4c:d7:f4:88:27:fd:65:7a:c3:a8:06: c9:2e:fd:64:2e:26:f5:67:d6:92:ea:20:b5:4c:e0: e8:5b:d5:f6:f7:ba:21:b4:cf:0f:ea:c5:db:9b:d3: 46:e1:c2:28:8e:87:96:28:85:48:c2:0d:d9:5b:54: c6:77:06:3c:14:ec:8a:e5:8a:dd:b7:02:be:58:e5: c7:7b:44:9b:0c:a8:5a:f3:00:33:0f:cf:bb:3e:c8: 16:2e:78:b5:87:93:86:ec:98:ea:fa:45:15:0b:04: af:2d:81:86:87:b7:2f:d0:df:da:80:b4:80:92:af: 97:22:27:cf:7f:35:b7:6b:05:e8:bc:87:6a:42:7f: ee:a9:3a:55:a8:f2:b8:87:21:4e:cc:6f:54:22:5f: bd:b7:9e:2d:5d:fd:80:ff:57:45:63:55:73:ec:24: 25:07:f0:c1:fc:cf:c1:9c:80:ed:a5:d8:42:de:ba: 7d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:13:95:42:11:73:35:BC:A2:01:B7:21:89:C3:89:EF:91:91:36:AB X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/5aab2439-03d3-439a-885f-e2f641886f3d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 65:9b:1e:72:55:00:9e:67:e4:5a:12:12:54:fb:47:ab:b0:ad: 9d:d6:e6:75:78:ed:fa:71:f8:1c:4b:83:5e:27:91:c1:01:52: ac:77:12:08:e2:f6:61:b3:da:b1:40:58:bd:3c:9d:be:27:5d: a0:81:c7:11:0f:57:e1:44:81:2e:a3:c0:ff:9f:1a:3d:26:1f: 77:b8:5f:2b:bc:05:9e:7b:a7:e5:c2:95:e7:f4:ac:65:af:4d: 93:36:ab:44:27:c7:e6:d6:a4:2e:34:47:4f:0c:3b:6d:5b:2c: 2d:e3:b0:c6:22:3a:4c:b8:35:49:18:c7:b9:ca:20:ef:43:7d: 93:b6:55:54:9d:8b:78:59:7a:48:f7:07:31:56:c6:6f:f6:22: f6:0b:54:df:ab:d3:23:94:0c:13:3c:22:75:12:b9:bc:34:e5: c1:36:7c:34:91:ea:40:98:9e:81:81:59:4b:f1:79:54:a9:4c: 21:01:f7:96:a6:bd:00:7c:8f:a7:7c:fa:29:73:61:93:43:45: 61:7e:6d:5f:a6:36:23:d4:77:1c:f0:14:dc:a0:f4:42:7b:fb: a5:13:7d:6d:60:57:ce:b5:56:f0:29:40:5e:5a:16:f5:6d:4b: 16:b2:96:7b:74:52:d4:c2:42:5e:b8:8a:90:a7:48:00:9f:df: c9:6c:47:62 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUI99y/SFc/h0a8j9YN6XBLcfzVE0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzIxMTY0MDIwWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZmQ5M2M1NzY1MTE5MmYwNTdjMmI1ZjQwZWFkOGI5ZGU3 ZTUzM2NjZjVhZWZkNDQyYTY5MmVmODE1ZWE0ODhhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnCZewibLcLgAaSaicVfnUDxFAsSwyIllHKpdqZxc90cxG zeSzYH0apXHf4sdeQT5ZDduRtLlzcUSajcEEc1uwjBZtQzJ+wq9ErWZzML5M1/SI J/1lesOoBsku/WQuJvVn1pLqILVM4Ohb1fb3uiG0zw/qxdub00bhwiiOh5YohUjC DdlbVMZ3BjwU7Irlit23Ar5Y5cd7RJsMqFrzADMPz7s+yBYueLWHk4bsmOr6RRUL BK8tgYaHty/Q39qAtICSr5ciJ89/NbdrBei8h2pCf+6pOlWo8riHIU7Mb1QiX723 ni1d/YD/V0VjVXPsJCUH8MH8z8GcgO2l2ELeun3zAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUCBOVQhFzNbyiAbchicOJ75GRNqswHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzVhYWIyNDM5LTAzZDMtNDM5YS04ODVmLWUyZjY0MTg4NmYzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBAGWbHnJVAJ5n5FoSElT7R6uw rZ3W5nV47fpx+BxLg14nkcEBUqx3Egji9mGz2rFAWL08nb4nXaCBxxEPV+FEgS6j wP+fGj0mH3e4Xyu8BZ57p+XClef0rGWvTZM2q0Qnx+bWpC40R08MO21bLC3jsMYi Oky4NUkYx7nKIO9DfZO2VVSdi3hZekj3BzFWxm/2IvYLVN+r0yOUDBM8InUSubw0 5cE2fDSR6kCYnoGBWUvxeVSpTCEB95amvQB8j6d8+ilzYZNDRWF+bV+mNiPUdxzw FNyg9EJ7+6UTfW1gV861VvApQF5aFvVtSxaylnt0UtTCQl64ipCnSACf38lsR2I= -----END CERTIFICATE-----Generated at Fri Aug 8 00:50:32 2025 by rpki-client