$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa File: 7200dfa9-d36f-44de-852a-1adda1bbb99c.roa (raw, json) Hash identifier: ThSjJqc7aqaykbClA535K844FLFLq9U370CCIcwX31g= Subject key identifier: BD:2D:C0:01:ED:FB:17:B8:3F:2A:23:A2:C6:F1:0F:B5:EF:41:01:68 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 38C40BC8E168BEE46C5A02191B779FF2E512E10A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa Signing time: Fri 11 Jul 2025 18:20:21 +0000 ROA not before: Fri 11 Jul 2025 18:20:21 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:c4:0b:c8:e1:68:be:e4:6c:5a:02:19:1b:77:9f:f2:e5:12:e1:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:20:21 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=1bbd130037f126f8c918d4e9fa6cf1941ce4bbed1e1981e3d71999ff110cd70a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:22:82:43:88:ef:76:a0:6b:72:9d:e0:c5: 76:3f:59:78:d3:52:b6:8d:ad:14:98:7a:de:fc:2a: 31:79:f5:19:c6:e2:3f:23:b8:08:c3:a5:e3:b9:68: a1:eb:7e:24:37:f7:90:99:f4:1b:37:f0:6a:36:c2: 52:42:d9:10:0c:76:ea:40:78:e9:60:7f:15:be:c3: ac:d8:5b:ac:10:72:db:41:6c:a9:d8:43:45:9c:8c: 1a:5b:e7:9c:67:17:d2:43:89:c4:c7:16:eb:0d:16: 9d:2d:b5:c9:09:19:4f:0a:c4:0e:7f:35:12:67:77: 52:dc:3d:5a:0c:5e:eb:4e:a8:c3:f8:c1:ce:29:15: 26:48:fd:a0:8d:44:c3:45:01:74:94:b1:ff:66:20: eb:ad:f6:3a:aa:ed:91:0a:9c:d3:4f:1b:6a:76:58: a4:fc:df:c6:ba:ef:d1:67:16:23:1c:d3:f4:5d:3c: 53:a9:45:37:7d:8a:9a:cb:6a:05:5b:c6:e4:72:90: af:c2:2e:18:21:90:a9:4e:b0:dc:2d:bc:ee:7f:d7: 54:f0:b2:30:be:fd:dc:4a:d6:35:3f:3f:03:ec:c2: 4e:bd:4d:8c:4a:31:bc:19:d9:01:21:6c:f9:a7:e4: b3:50:3f:33:3e:82:93:8e:d2:3f:eb:12:94:22:9d: ae:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2D:C0:01:ED:FB:17:B8:3F:2A:23:A2:C6:F1:0F:B5:EF:41:01:68 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 9c:92:ba:9e:8d:7e:d4:f6:ea:77:0c:96:00:0c:9c:30:ea:71: 04:5c:16:92:85:43:1c:a2:cb:98:4c:c0:57:71:7d:32:79:52: 2d:3a:ea:fd:94:a1:cc:84:f4:d8:8a:11:20:a0:ff:cb:b8:9e: 50:a0:f8:f4:85:4b:ce:21:03:31:6d:39:b9:cc:eb:c6:ff:1f: dc:75:c1:06:d3:27:e0:85:18:45:88:41:fa:ba:66:0e:2f:0b: d4:46:a3:06:ef:bd:8f:a2:d8:2b:a5:db:45:41:97:ab:69:3d: d9:9a:a0:ad:fb:91:28:8b:fe:88:fa:99:d4:7f:dc:6c:cf:5d: 3f:d0:16:d2:c3:02:19:ff:2e:b4:d6:1d:2f:b3:20:46:8e:0c: f1:eb:f5:97:ed:65:01:54:3d:30:12:f0:d5:e8:ab:87:93:18: 86:c5:9f:3a:bd:57:bc:1c:47:16:7d:55:d1:3f:d2:64:d1:4f: 5d:9a:7d:ba:50:8d:03:d5:b1:f4:b5:41:d1:36:5a:a7:d8:2e: f9:c8:ea:e9:c0:63:c4:42:75:92:5d:7c:97:9d:2f:f3:1b:19: 7d:06:33:f8:48:0f:c6:bd:41:0d:d9:e0:0a:84:4c:bd:1c:84: 05:27:51:17:8f:c4:80:b4:e7:47:91:62:82:fc:55:f6:fa:e0: cc:4f:18:e6 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOMQLyOFovuRsWgIZG3ef8uUS4QowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMDIxWhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYmJkMTMwMDM3ZjEyNmY4YzkxOGQ0ZTlmYTZjZjE5NDFj ZTRiYmVkMWUxOTgxZTNkNzE5OTlmZjExMGNkNzBhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwUiKCQ4jvdqBrcp3gxXY/WXjTUraNrRSYet78KjF59RnG 4j8juAjDpeO5aKHrfiQ395CZ9Bs38Go2wlJC2RAMdupAeOlgfxW+w6zYW6wQcttB bKnYQ0WcjBpb55xnF9JDicTHFusNFp0ttckJGU8KxA5/NRJnd1LcPVoMXutOqMP4 wc4pFSZI/aCNRMNFAXSUsf9mIOut9jqq7ZEKnNNPG2p2WKT838a679FnFiMc0/Rd PFOpRTd9iprLagVbxuRykK/CLhghkKlOsNwtvO5/11TwsjC+/dxK1jU/PwPswk69 TYxKMbwZ2QEhbPmn5LNQPzM+gpOO0j/rEpQina5TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUvS3AAe37F7g/KiOixvEPte9BAWgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMDBkZmE5LWQzNmYtNDRkZS04NTJhLTFhZGRhMWJiYjk5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAJySup6NftT26ncMlgAMnDDq cQRcFpKFQxyiy5hMwFdxfTJ5Ui066v2UocyE9NiKESCg/8u4nlCg+PSFS84hAzFt ObnM68b/H9x1wQbTJ+CFGEWIQfq6Zg4vC9RGowbvvY+i2Cul20VBl6tpPdmaoK37 kSiL/oj6mdR/3GzPXT/QFtLDAhn/LrTWHS+zIEaODPHr9ZftZQFUPTAS8NXoq4eT GIbFnzq9V7wcRxZ9VdE/0mTRT12afbpQjQPVsfS1QdE2WqfYLvnI6unAY8RCdZJd fJedL/MbGX0GM/hID8a9QQ3Z4AqETL0chAUnURePxIC050eRYoL8Vfb64MxPGOY= -----END CERTIFICATE-----Generated at Mon Aug 4 15:41:06 2025 by rpki-client