$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa File: 73712e14-51d5-41db-bcf2-73aa504e6eab.roa (raw, json) Hash identifier: qKiFfcyzvVHuAMd66F/YkE1R4jiSAOOjWpuFWacspfc= Subject key identifier: 1E:44:9D:39:0D:DE:BD:40:49:06:41:1D:4A:F2:E0:E5:ED:87:63:E6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0D0BFE9C576FFEB2D956D96E8F0A6DFB44D30E81 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa Signing time: Fri 11 Jul 2025 18:20:07 +0000 ROA not before: Fri 11 Jul 2025 18:20:07 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0b:fe:9c:57:6f:fe:b2:d9:56:d9:6e:8f:0a:6d:fb:44:d3:0e:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:20:07 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=f4555e23c6bc4b930ce56f5e9729a23f2f9709be36096e447cf1fa3f0247757d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:87:52:69:75:97:ec:2c:4b:68:59:5b:5f:4a: 7d:6f:6b:24:2e:cc:6e:6b:4f:a1:a7:63:c0:c5:4f: f6:35:14:e0:23:37:25:db:4c:3f:16:f4:12:1c:cc: 75:7e:58:50:9a:da:25:e5:ab:3a:f8:45:de:86:35: 5b:26:e3:d2:34:ce:d4:d8:d3:3c:8c:16:97:55:2b: 27:e3:47:4a:af:f3:e3:91:01:4e:ec:9d:20:59:3d: ee:b0:5e:c8:a9:4a:48:9d:5c:c1:f6:81:32:4a:94: 59:de:b7:aa:13:15:93:7d:3c:98:72:76:8a:6c:8c: ce:83:05:1f:da:de:f8:d6:aa:94:5d:5b:b4:a6:3e: 3b:2d:7a:bb:d6:e0:2f:3e:b7:db:6d:fd:4b:6c:87: d7:22:d1:9f:38:80:a0:0f:95:5e:49:b6:2d:59:67: 2d:0f:34:35:b5:db:e0:39:f6:16:e5:b6:42:cb:a1: 77:eb:f0:fd:37:3e:95:63:0c:85:6e:cf:d6:6c:a4: a0:8f:02:a3:32:25:71:80:41:24:bd:4d:35:54:a8: e0:0b:8c:82:81:e6:0f:04:f9:0a:d9:25:57:7a:8a: 89:de:2c:d6:fd:42:84:4e:01:d4:96:99:c0:48:73: 8a:32:87:6d:68:41:5b:8a:af:03:ef:35:10:20:4c: 37:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:44:9D:39:0D:DE:BD:40:49:06:41:1D:4A:F2:E0:E5:ED:87:63:E6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/73712e14-51d5-41db-bcf2-73aa504e6eab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 9d:5a:b0:1c:8c:62:68:a8:3a:21:93:73:f3:37:c3:09:62:d0: 6f:05:0e:7b:55:46:c1:2c:bd:c0:23:27:dd:e0:45:4b:d3:d4: 2a:26:6c:b9:b3:7b:96:c0:f2:69:10:e8:28:f2:55:9a:7c:b5: 86:24:16:75:33:d2:8d:41:92:bc:2a:70:9c:25:a7:ea:f7:6b: 82:8d:6e:4a:ab:84:9c:f9:ef:2a:3a:85:cc:cd:6c:21:33:fe: 15:90:49:9a:0a:3c:30:45:f1:93:c0:1f:a1:e3:27:e6:b6:b7: 97:53:fb:66:57:21:71:33:44:6f:c9:46:e5:7f:c8:c6:b6:2a: 9d:4b:13:6a:3b:4e:54:96:cf:aa:0f:ca:96:fb:00:c5:d0:0c: 1d:53:b4:2c:5d:e1:ad:ef:6a:48:0d:bd:86:08:0d:cc:56:c1: ec:56:0a:38:6f:07:d6:88:66:93:88:8f:7c:12:c8:19:7f:e6: 4a:11:13:b6:15:a6:62:bb:ac:a5:b9:7a:0b:39:1c:41:06:07: cb:03:64:50:90:55:0e:d8:e1:7c:ba:b0:7c:f3:18:8c:3c:fa: b2:1f:74:ec:5b:cb:e5:82:17:bf:69:18:20:6e:0f:49:e4:4f: b1:d3:3b:67:53:0c:5b:73:75:18:6a:99:c6:c4:72:44:4b:dd: e3:d5:65:43 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDQv+nFdv/rLZVtlujwpt+0TTDoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMDA3WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDU1NWUyM2M2YmM0YjkzMGNlNTZmNWU5NzI5YTIzZjJm OTcwOWJlMzYwOTZlNDQ3Y2YxZmEzZjAyNDc3NTdkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgh1JpdZfsLEtoWVtfSn1vayQuzG5rT6GnY8DFT/Y1FOAj NyXbTD8W9BIczHV+WFCa2iXlqzr4Rd6GNVsm49I0ztTY0zyMFpdVKyfjR0qv8+OR AU7snSBZPe6wXsipSkidXMH2gTJKlFnet6oTFZN9PJhydopsjM6DBR/a3vjWqpRd W7SmPjstervW4C8+t9tt/Utsh9ci0Z84gKAPlV5Jti1ZZy0PNDW12+A59hbltkLL oXfr8P03PpVjDIVuz9ZspKCPAqMyJXGAQSS9TTVUqOALjIKB5g8E+QrZJVd6ione LNb9QoROAdSWmcBIc4oyh21oQVuKrwPvNRAgTDdbAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUHkSdOQ3evUBJBkEdSvLg5e2HY+YwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzczNzEyZTE0LTUxZDUtNDFkYi1iY2YyLTczYWE1MDRlNmVhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAJ1asByMYmioOiGTc/M3wwli 0G8FDntVRsEsvcAjJ93gRUvT1CombLmze5bA8mkQ6CjyVZp8tYYkFnUz0o1Bkrwq cJwlp+r3a4KNbkqrhJz57yo6hczNbCEz/hWQSZoKPDBF8ZPAH6HjJ+a2t5dT+2ZX IXEzRG/JRuV/yMa2Kp1LE2o7TlSWz6oPypb7AMXQDB1TtCxd4a3vakgNvYYIDcxW wexWCjhvB9aIZpOIj3wSyBl/5koRE7YVpmK7rKW5egs5HEEGB8sDZFCQVQ7Y4Xy6 sHzzGIw8+rIfdOxby+WCF79pGCBuD0nkT7HTO2dTDFtzdRhqmcbEckRL3ePVZUM= -----END CERTIFICATE-----Generated at Mon Aug 4 14:54:27 2025 by rpki-client