$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa File: 71a2a2c0-b8db-4847-a756-b7515aa42b07.roa (raw, json) Hash identifier: 7Vk2b82Polrtaqnvp3W+BREJkQbl5fyzmQThY/QMQRw= Subject key identifier: FB:A3:6D:DA:EE:C9:93:D1:6B:1A:CF:E1:86:75:D0:DA:09:37:A6:28 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4789995271C44DAAC72D344AC792A6F44D3FA31A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa Signing time: Fri 11 Jul 2025 18:20:54 +0000 ROA not before: Fri 11 Jul 2025 18:20:54 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5510::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:89:99:52:71:c4:4d:aa:c7:2d:34:4a:c7:92:a6:f4:4d:3f:a3:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:20:54 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=ae2d31df07c39c9356d6620055c13d22e626d1edeac23f410d383bb1bd491198, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:b4:3f:a0:bc:ba:4c:17:e7:82:e0:d4:24: 03:3f:93:6d:58:7a:03:fa:18:4b:60:69:cb:a3:f9: 7f:b5:df:84:3e:d2:c0:78:12:f8:cf:70:c3:da:93: 4d:dd:ca:23:51:4d:5d:46:f6:a0:be:60:6f:79:43: a1:6d:85:94:30:f7:bd:bd:94:54:3a:1d:f4:72:55: 20:7f:ab:65:d5:99:d1:85:52:a6:a8:18:eb:3c:cf: ab:a1:74:c5:39:50:88:5f:5d:64:ff:71:3b:59:9d: e3:90:3f:b8:52:07:95:f2:9c:b8:50:de:95:68:c9: e4:a3:d9:77:25:23:eb:9f:34:aa:fb:ae:c4:92:aa: 48:d8:b2:9d:a9:4f:ea:53:c6:52:97:39:55:3e:e7: a4:32:5e:06:a0:a8:57:22:ce:e8:f4:a4:9a:09:4e: ad:76:7c:ce:9f:4f:3c:4a:d9:22:0a:09:21:ed:0b: e1:81:ff:68:b5:1f:61:9c:0c:97:d0:9d:cc:d4:ce: be:aa:47:f0:37:ba:67:ec:b4:42:75:0c:81:1a:cc: 9b:09:55:b8:4d:4f:50:7d:1e:97:ac:98:94:7f:60: 83:33:e8:c2:3b:8f:07:87:26:8b:cc:8d:16:a1:a0: 60:9e:8c:80:85:a7:32:d0:37:a6:e8:8d:7a:78:a2: 52:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:A3:6D:DA:EE:C9:93:D1:6B:1A:CF:E1:86:75:D0:DA:09:37:A6:28 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/71a2a2c0-b8db-4847-a756-b7515aa42b07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5510::/44 Signature Algorithm: sha256WithRSAEncryption 09:f2:1b:f9:28:7e:64:ca:48:6a:64:4d:2b:d1:80:96:aa:b5: d5:12:33:05:20:e8:ae:0c:eb:7f:08:c9:a3:b5:90:8f:cc:f7: fc:15:37:14:ec:66:e7:8a:fa:c1:b2:e1:b9:a4:24:9e:19:86: ab:b4:1d:cb:c6:ce:d4:b3:38:3a:2b:3a:71:83:bf:7e:a8:1b: 26:90:f1:56:5b:cb:89:20:55:7e:31:21:4a:8a:f8:fb:11:75: b0:5b:85:0e:6f:f9:a8:19:fe:46:e6:07:27:43:eb:e8:9c:49: 87:e6:1e:38:fd:20:53:2f:cd:ef:cf:31:c5:bc:7e:ac:59:f0: 90:2c:0a:30:eb:39:33:5c:27:15:44:fa:e5:c1:5e:60:1c:13: 88:19:97:b4:e8:d3:2a:49:a1:b6:03:cf:93:c8:c8:d6:72:e2: 39:8d:fc:82:61:d8:24:38:fb:8c:02:ea:a2:e5:74:7d:b4:b3: 2b:39:22:c0:ba:38:ce:01:9a:95:05:64:3c:31:5d:4b:c4:c1: 82:e6:bc:9e:b6:fe:4c:3a:20:a4:03:b7:a2:dc:32:ac:86:1b: cb:7e:f5:af:e7:80:e9:2c:33:e3:1c:9a:82:dc:d6:d4:b0:63: 51:e8:eb:be:9e:8f:e4:c2:c6:9b:f6:1d:ac:10:f7:55:cd:ec: 46:e9:6f:64 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUR4mZUnHETarHLTRKx5Km9E0/oxowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMDU0WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTJkMzFkZjA3YzM5YzkzNTZkNjYyMDA1NWMxM2QyMmU2 MjZkMWVkZWFjMjNmNDEwZDM4M2JiMWJkNDkxMTk4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxHLQ/oLy6TBfnguDUJAM/k21YegP6GEtgacuj+X+134Q+ 0sB4EvjPcMPak03dyiNRTV1G9qC+YG95Q6FthZQw9729lFQ6HfRyVSB/q2XVmdGF UqaoGOs8z6uhdMU5UIhfXWT/cTtZneOQP7hSB5XynLhQ3pVoyeSj2XclI+ufNKr7 rsSSqkjYsp2pT+pTxlKXOVU+56QyXgagqFcizuj0pJoJTq12fM6fTzxK2SIKCSHt C+GB/2i1H2GcDJfQnczUzr6qR/A3umfstEJ1DIEazJsJVbhNT1B9HpesmJR/YIMz 6MI7jweHJovMjRahoGCejICFpzLQN6bojXp4olIjAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+6Nt2u7Jk9FrGs/hhnXQ2gk3pigwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxYTJhMmMwLWI4ZGItNDg0Ny1hNzU2LWI3NTE1YWE0MmIwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwVRAwDQYJKoZIhvcNAQELBQADggEBAAnyG/kofmTKSGpkTSvRgJaq tdUSMwUg6K4M638IyaO1kI/M9/wVNxTsZueK+sGy4bmkJJ4Zhqu0HcvGztSzODor OnGDv36oGyaQ8VZby4kgVX4xIUqK+PsRdbBbhQ5v+agZ/kbmBydD6+icSYfmHjj9 IFMvze/PMcW8fqxZ8JAsCjDrOTNcJxVE+uXBXmAcE4gZl7To0ypJobYDz5PIyNZy 4jmN/IJh2CQ4+4wC6qLldH20sys5IsC6OM4BmpUFZDwxXUvEwYLmvJ62/kw6IKQD t6LcMqyGG8t+9a/ngOksM+McmoLc1tSwY1Ho676ej+TCxpv2HawQ91XN7Ebpb2Q= -----END CERTIFICATE-----Generated at Tue Aug 5 08:21:08 2025 by rpki-client