$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa File: 765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa (raw, json) Hash identifier: K8HGLDzR+luwNLfNsoG3N344HGIGQzoav8N9t/CHWuk= Subject key identifier: AB:6E:60:04:E9:07:17:0D:44:4F:48:9D:0E:42:0F:59:9D:40:3D:34 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 76C429F85A606C21D513D540F8FEBB35E0D926F4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa Signing time: Tue 05 Aug 2025 18:20:15 +0000 ROA not before: Tue 05 Aug 2025 18:20:15 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:c4:29:f8:5a:60:6c:21:d5:13:d5:40:f8:fe:bb:35:e0:d9:26:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:15 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=7a33f871530887bb0bd106f83f112a47ecddb95bbf85ac267d858d6a37452d9a, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:41:f8:08:ea:38:35:6f:95:e2:0c:b0:9d:eb: aa:3d:53:b1:90:4a:b9:19:a1:a6:39:a6:34:4d:67: f0:51:0d:5c:cf:64:d8:3d:4c:36:17:53:d7:68:d9: 62:98:8a:91:4c:3d:d7:2b:96:ab:10:47:27:2d:1f: bf:a9:79:88:95:20:43:35:64:5f:82:1a:01:c8:cc: 9c:e2:41:c0:4d:e1:f3:5e:93:52:74:c4:2f:ea:8a: b5:b3:7a:77:61:ee:83:75:1c:df:d6:02:05:a3:1e: 6e:18:6e:de:e3:69:70:cb:e3:9f:a1:78:af:a2:09: bc:a5:0d:9e:7c:16:99:63:08:3c:e0:2e:d7:0c:52: cf:f3:3d:63:f3:05:00:df:d4:8c:33:26:d5:9a:87: c4:0f:3f:46:11:ff:9c:bc:ba:23:e1:fd:b3:79:b6: 31:7e:c8:6c:35:c3:6b:d9:93:13:ff:41:b6:93:35: 54:25:5a:2e:c4:e7:11:4b:a2:f8:40:fa:8e:cb:84: 78:da:22:e8:6a:23:2d:3d:ca:68:81:5d:cf:f0:45: 73:55:ed:93:c2:a2:e1:f2:d2:63:8d:a9:3a:1b:72: cf:c2:88:4a:e2:84:f4:48:19:b3:4e:bf:2f:e0:82: 46:c8:d0:aa:7d:89:4c:8e:f8:af:9d:52:a2:cd:65: 37:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:6E:60:04:E9:07:17:0D:44:4F:48:9D:0E:42:0F:59:9D:40:3D:34 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/765dfa6c-35d1-42cf-ba89-eaf88577e4f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:8::/48 Signature Algorithm: sha256WithRSAEncryption 6c:f7:b6:0f:e6:b9:bf:30:24:6b:f6:13:53:f9:9e:41:4b:86: 33:69:74:2b:81:ae:e6:c8:0b:4d:51:dd:41:38:eb:f2:40:7e: 01:ba:ce:26:3a:cb:30:b8:db:be:33:e9:af:02:e7:d9:6b:ed: 9b:f1:5c:70:b0:4e:93:f3:6d:a8:fd:09:55:b7:9c:27:8b:dd: c1:e9:0b:1c:2f:b0:ea:78:5c:23:6d:b7:af:18:21:82:dd:f0: aa:bb:d3:77:e8:2e:4d:11:ca:2a:be:c9:72:ef:f7:f9:2b:86: d9:e2:ac:c0:f8:79:1e:e1:fa:5c:28:e5:29:2a:13:0e:20:36: 94:89:b9:8c:a2:48:43:1e:3f:71:9b:f6:6f:be:74:70:df:6b: e8:d7:b3:a7:40:22:6c:12:b2:f2:a5:ab:4f:a7:f3:d5:51:5f: 75:5b:47:e1:dd:7e:44:9f:49:71:84:d4:d3:eb:58:ab:45:74: 22:55:75:86:57:8f:09:f2:85:d9:a0:7e:93:02:b6:18:6c:88: 6f:41:94:50:82:7c:f3:e2:51:6b:e1:67:50:13:a9:31:cb:f4: 12:c2:bf:8c:f9:3f:2b:52:c3:07:e3:fa:57:d8:8f:d8:b7:d8: ce:8d:cf:bb:d1:a5:96:b8:a3:9a:0b:1e:27:80:b9:eb:46:e7: d4:71:4a:39 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdsQp+FpgbCHVE9VA+P67NeDZJvQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDE1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YTMzZjg3MTUzMDg4N2JiMGJkMTA2ZjgzZjExMmE0N2Vj ZGRiOTViYmY4NWFjMjY3ZDg1OGQ2YTM3NDUyZDlhMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdQfgI6jg1b5XiDLCd66o9U7GQSrkZoaY5pjRNZ/BRDVzP ZNg9TDYXU9do2WKYipFMPdcrlqsQRyctH7+peYiVIEM1ZF+CGgHIzJziQcBN4fNe k1J0xC/qirWzendh7oN1HN/WAgWjHm4Ybt7jaXDL45+heK+iCbylDZ58FpljCDzg LtcMUs/zPWPzBQDf1IwzJtWah8QPP0YR/5y8uiPh/bN5tjF+yGw1w2vZkxP/QbaT NVQlWi7E5xFLovhA+o7LhHjaIuhqIy09ymiBXc/wRXNV7ZPCouHy0mONqTobcs/C iErihPRIGbNOvy/ggkbI0Kp9iUyO+K+dUqLNZTfNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUq25gBOkHFw1ET0idDkIPWZ1APTQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc2NWRmYTZjLTM1ZDEtNDJjZi1iYTg5LWVhZjg4NTc3ZTRmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAgwDQYJKoZIhvcNAQELBQADggEBAGz3tg/mub8wJGv2E1P5nkFL hjNpdCuBrubIC01R3UE46/JAfgG6ziY6yzC4274z6a8C59lr7ZvxXHCwTpPzbaj9 CVW3nCeL3cHpCxwvsOp4XCNtt68YIYLd8Kq703foLk0Ryiq+yXLv9/krhtnirMD4 eR7h+lwo5SkqEw4gNpSJuYyiSEMeP3Gb9m++dHDfa+jXs6dAImwSsvKlq0+n89VR X3VbR+HdfkSfSXGE1NPrWKtFdCJVdYZXjwnyhdmgfpMCthhsiG9BlFCCfPPiUWvh Z1ATqTHL9BLCv4z5PytSwwfj+lfYj9i32M6Nz7vRpZa4o5oLHieAuetG59RxSjk= -----END CERTIFICATE-----Generated at Fri Aug 8 20:46:57 2025 by rpki-client