$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa File: 64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa (raw, json) Hash identifier: hr9MXCtjNC+bzilYQlN2GUp/BqS90JWTrcYX0o/DrAs= Subject key identifier: D5:12:95:3F:06:6E:85:A3:CF:57:CB:1D:5F:B5:D9:5E:9A:E5:A9:58 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7D6B5C90722695348041AF7965792BA9704D438A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa Signing time: Tue 05 Aug 2025 18:31:25 +0000 ROA not before: Tue 05 Aug 2025 18:31:25 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:6b:5c:90:72:26:95:34:80:41:af:79:65:79:2b:a9:70:4d:43:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:25 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=9da3f21bbd4a386439001dabe5254eafd9bdd5a66a3ca04bf0bff408f5cfe1d7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:22:20:a0:a0:18:8d:4a:2a:8d:29:06:c5:33: 42:7d:87:d3:14:83:f6:d8:0d:1c:47:8f:8e:cc:bc: ce:d0:02:1f:82:45:7a:59:1f:ef:94:ec:86:3f:3f: 80:e7:d6:49:09:f1:1b:d8:49:09:83:9f:58:a9:e6: 55:f9:e9:b5:7a:37:8b:8d:88:a2:b5:9a:2c:f8:c6: 17:0a:74:a1:f1:19:60:f5:c6:15:e8:cc:5b:45:a3: 18:7c:a1:c0:44:52:86:42:42:2b:54:0c:d1:9a:96: f3:00:66:67:c3:c9:ac:1f:8d:fc:a1:45:eb:1b:fe: fb:e6:a2:7a:46:d1:15:ff:82:33:49:34:5e:cb:74: e8:8f:36:d6:52:c9:ce:65:eb:86:19:eb:fa:aa:8e: 20:f7:91:18:b9:c7:9d:a8:02:01:84:e7:68:fb:17: 8d:2d:92:12:2c:ce:b5:bc:94:10:f5:1a:11:26:fd: 6e:14:95:e4:a1:27:94:79:8b:dc:ee:8e:0f:f1:f1: 33:c3:77:b1:68:d9:12:07:da:a9:a8:2d:33:3b:58: 78:35:9b:ba:4c:3c:84:fc:8a:4c:b3:9d:24:68:b3: 96:46:1b:9d:e9:17:6c:65:f8:07:84:bc:80:6e:7c: 26:47:f8:ef:86:14:a3:08:e4:bc:f7:03:a8:13:b4: 58:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:12:95:3F:06:6E:85:A3:CF:57:CB:1D:5F:B5:D9:5E:9A:E5:A9:58 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/64dce371-37b2-4fab-9d85-05ea7f2c1aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/42 Signature Algorithm: sha256WithRSAEncryption 10:fe:7a:1a:cb:7d:35:da:b4:06:93:3f:26:89:63:01:72:26: 62:40:44:34:44:0a:53:f0:cb:e9:87:1f:f5:56:a6:cd:bc:39: bb:23:24:f3:5c:12:0a:02:6e:08:44:06:a6:47:53:87:ce:fd: 4b:69:c3:33:f8:d4:d2:fe:03:a2:25:1e:56:2c:00:c2:2e:ee: 1f:37:4d:d4:48:35:21:b2:1f:0c:85:6f:23:d9:bb:01:eb:04: 71:a7:55:1c:49:6a:89:45:11:35:fb:d6:f5:1c:bd:8a:98:8c: bf:72:e7:a2:f6:8d:81:40:96:00:48:62:f5:9d:7c:44:aa:1f: aa:bb:d9:4d:89:46:bb:2e:b5:61:9b:bd:92:62:10:16:22:6a: a0:17:27:29:4e:08:c8:16:b6:2e:b8:d5:90:fb:24:5d:32:6b: d0:bc:61:ea:f5:78:fc:93:a9:18:25:3a:d9:f4:9c:6a:8f:4d: 37:92:c7:62:f6:66:32:82:d0:bc:6c:67:01:69:78:20:db:10: bf:fa:f4:7c:9e:a1:00:8a:fe:b9:d4:10:f5:7c:02:3e:05:bb: dc:11:6e:74:d8:d7:22:54:e0:37:45:07:c5:39:4a:76:6e:14: 46:f4:b9:c5:13:08:75:9b:cf:cb:4e:60:53:c9:9b:62:6d:59: db:92:21:b5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfWtckHImlTSAQa95ZXkrqXBNQ4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTI1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGEzZjIxYmJkNGEzODY0MzkwMDFkYWJlNTI1NGVhZmQ5 YmRkNWE2NmEzY2EwNGJmMGJmZjQwOGY1Y2ZlMWQ3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiIiCgoBiNSiqNKQbFM0J9h9MUg/bYDRxHj47MvM7QAh+C RXpZH++U7IY/P4Dn1kkJ8RvYSQmDn1ip5lX56bV6N4uNiKK1miz4xhcKdKHxGWD1 xhXozFtFoxh8ocBEUoZCQitUDNGalvMAZmfDyawfjfyhResb/vvmonpG0RX/gjNJ NF7LdOiPNtZSyc5l64YZ6/qqjiD3kRi5x52oAgGE52j7F40tkhIszrW8lBD1GhEm /W4UleShJ5R5i9zujg/x8TPDd7Fo2RIH2qmoLTM7WHg1m7pMPIT8ikyznSRos5ZG G53pF2xl+AeEvIBufCZH+O+GFKMI5Lz3A6gTtFjLAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1RKVPwZuhaPPV8sdX7XZXprlqVgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY0ZGNlMzcxLTM3YjItNGZhYi05ZDg1LTA1ZWE3ZjJjMWFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74wAwDQYJKoZIhvcNAQELBQADggEBABD+ehrLfTXatAaTPyaJYwFy JmJARDREClPwy+mHH/VWps28ObsjJPNcEgoCbghEBqZHU4fO/UtpwzP41NL+A6Il HlYsAMIu7h83TdRINSGyHwyFbyPZuwHrBHGnVRxJaolFETX71vUcvYqYjL9y56L2 jYFAlgBIYvWdfESqH6q72U2JRrsutWGbvZJiEBYiaqAXJylOCMgWti641ZD7JF0y a9C8Yer1ePyTqRglOtn0nGqPTTeSx2L2ZjKC0LxsZwFpeCDbEL/69HyeoQCK/rnU EPV8Aj4Fu9wRbnTY1yJU4DdFB8U5SnZuFEb0ucUTCHWbz8tOYFPJm2JtWduSIbU= -----END CERTIFICATE-----Generated at Wed Aug 6 10:58:00 2025 by rpki-client