$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa File: 644f882a-d42c-4c76-bb70-882838f6e3e0.roa (raw, json) Hash identifier: aFfQbSeZzQDSuh+chh5ax16dqL6X5KFqIxcoA3Dr5Cg= Subject key identifier: BE:A9:DC:99:1D:FE:9C:B7:EB:7C:40:E8:B9:F7:15:F2:59:3B:75:F8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5998A7A4F213B1C0D9C426B5026057EB2C063D95 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa Signing time: Tue 05 Aug 2025 18:31:17 +0000 ROA not before: Tue 05 Aug 2025 18:31:17 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e600::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:98:a7:a4:f2:13:b1:c0:d9:c4:26:b5:02:60:57:eb:2c:06:3d:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:17 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=b3ebd58d68fedc7b11f6f0d7fe6640bf006d0d983131fd4be45b15ca3a6cf3b2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:b8:80:97:04:47:7b:ea:fa:c1:a2:05:b5:f7: a4:6a:56:d1:33:f0:2b:89:3a:13:95:26:c2:72:98: e7:35:54:22:04:f1:d2:74:68:a3:6d:8f:72:a9:af: 71:09:5d:6a:36:60:35:7e:1f:3d:30:cd:f7:44:63: 46:e8:2a:7b:8d:a6:19:c0:d2:c0:c5:a7:a4:19:bd: 89:04:83:5b:9a:3e:a9:2c:bb:6e:df:ae:e6:c6:23: f0:c7:fe:10:1f:5d:47:b4:94:5e:fb:5f:fd:5d:f7: 04:c2:cb:a0:bf:ce:3e:80:0e:3e:db:35:66:91:94: 35:2b:e2:56:e1:58:bf:37:df:b6:0e:87:c3:52:52: 58:bc:84:fd:7b:0d:6d:9a:05:a0:02:b5:e7:10:64: 73:cc:d8:ae:04:9b:cd:a8:dc:3d:8b:d4:4b:a9:45: ed:40:6b:6c:ba:9b:df:18:61:75:b0:c4:eb:0c:5f: ab:bd:1e:fb:52:7c:13:44:b4:e1:6e:f4:d2:ec:3a: 8d:22:fc:5f:2c:85:39:34:57:f0:33:cc:c3:0b:51: b1:a4:55:90:bb:fd:78:ef:8f:8c:eb:36:9d:0f:2d: 6e:8e:eb:f2:80:92:d6:17:29:26:00:a2:c5:ea:cc: 89:34:67:20:ac:eb:57:fc:8c:e7:d5:5f:1e:cb:66: aa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A9:DC:99:1D:FE:9C:B7:EB:7C:40:E8:B9:F7:15:F2:59:3B:75:F8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/644f882a-d42c-4c76-bb70-882838f6e3e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/40 Signature Algorithm: sha256WithRSAEncryption 1e:88:3a:27:47:79:dc:7d:ef:d2:90:15:45:53:16:df:74:53: 63:82:80:8d:f2:72:aa:0d:4d:58:8c:88:7a:09:42:93:79:58: 57:1e:f2:fd:be:dc:18:3e:63:6d:e9:7a:bc:81:6b:31:0f:b5: b9:23:f1:5c:88:fd:5f:d6:b0:d5:1b:77:de:a1:d2:ff:ef:0c: 18:74:20:bd:72:c1:e4:e7:89:a6:6a:03:27:4b:c3:e8:58:39: 06:74:e2:e6:6c:6f:df:dc:ee:ff:05:05:ab:3f:6d:a3:35:d8: d1:ef:5e:ab:a6:52:69:62:cc:31:c7:98:c3:17:18:f3:39:33: 77:ba:2b:3b:82:78:cb:78:43:82:e6:01:40:0b:13:9c:b9:17: 6f:24:c0:d2:bb:6d:be:08:7c:af:9a:9a:2b:8a:9d:b8:70:14: dd:73:f6:47:8a:05:f4:0d:5b:98:d8:7a:b4:bb:a0:8d:08:e3: 04:2e:2f:78:f8:34:8f:b7:40:ca:f0:65:e8:c9:de:98:d0:2f: bd:79:00:76:ba:06:35:21:e8:60:eb:01:3f:c7:3f:50:39:8b: 6b:6a:5d:12:ff:a2:93:10:f3:24:ba:67:a5:96:ac:b1:2c:2b: c5:85:d0:ca:9f:e3:ff:8b:f6:df:c5:41:17:59:4d:47:f1:ef: 7c:a2:2c:7e -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWZinpPITscDZxCa1AmBX6ywGPZUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTE3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiM2ViZDU4ZDY4ZmVkYzdiMTFmNmYwZDdmZTY2NDBiZjAw NmQwZDk4MzEzMWZkNGJlNDViMTVjYTNhNmNmM2IyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLuICXBEd76vrBogW196RqVtEz8CuJOhOVJsJymOc1VCIE 8dJ0aKNtj3Kpr3EJXWo2YDV+Hz0wzfdEY0boKnuNphnA0sDFp6QZvYkEg1uaPqks u27frubGI/DH/hAfXUe0lF77X/1d9wTCy6C/zj6ADj7bNWaRlDUr4lbhWL8337YO h8NSUli8hP17DW2aBaACtecQZHPM2K4Em82o3D2L1EupRe1Aa2y6m98YYXWwxOsM X6u9HvtSfBNEtOFu9NLsOo0i/F8shTk0V/AzzMMLUbGkVZC7/Xjvj4zrNp0PLW6O 6/KAktYXKSYAosXqzIk0ZyCs61f8jOfVXx7LZqrFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvqncmR3+nLfrfEDoufcV8lk7dfgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0NGY4ODJhLWQ0MmMtNGM3Ni1iYjcwLTg4MjgzOGY2ZTNlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75jANBgkqhkiG9w0BAQsFAAOCAQEAHog6J0d53H3v0pAVRVMW33RT Y4KAjfJyqg1NWIyIeglCk3lYVx7y/b7cGD5jbel6vIFrMQ+1uSPxXIj9X9aw1Rt3 3qHS/+8MGHQgvXLB5OeJpmoDJ0vD6Fg5BnTi5mxv39zu/wUFqz9tozXY0e9eq6ZS aWLMMceYwxcY8zkzd7orO4J4y3hDguYBQAsTnLkXbyTA0rttvgh8r5qaK4qduHAU 3XP2R4oF9A1bmNh6tLugjQjjBC4vePg0j7dAyvBl6MnemNAvvXkAdroGNSHoYOsB P8c/UDmLa2pdEv+ikxDzJLpnpZassSwrxYXQyp/j/4v238VBF1lNR/HvfKIsfg== -----END CERTIFICATE-----Generated at Wed Aug 6 04:10:04 2025 by rpki-client