$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa File: 7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa (raw, json) Hash identifier: k6bn1oOWKf5BVBBcuaTU1G0lIBvnc/Nue4o2bFoDOcI= Subject key identifier: B1:72:B0:D5:B9:9F:5C:4E:69:72:10:71:B2:C5:54:58:9C:D7:8D:F2 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 444E12CA83A7FCE70C0B1BB293399BF9F998297E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa Signing time: Tue 05 Aug 2025 18:31:13 +0000 ROA not before: Tue 05 Aug 2025 18:31:13 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:4e:12:ca:83:a7:fc:e7:0c:0b:1b:b2:93:39:9b:f9:f9:98:29:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:13 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=6fe6d8284f299380f3f825afbf4d586470218933c94b73bc49e7caf3e5dacaef, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:ac:8e:ed:f5:84:eb:1b:f2:91:b4:4d:78:eb: ae:4f:9f:0b:e1:f7:e9:01:1f:02:5a:b7:49:a8:87: 89:96:c2:4e:11:8c:79:96:45:f5:63:91:57:65:c0: a4:50:a2:24:fa:44:d2:1c:2e:96:7d:46:ef:2b:2d: 6b:51:44:5c:2c:e5:88:d3:ba:55:b5:54:15:43:ff: ad:c6:40:79:22:91:c3:80:41:60:21:26:55:52:9e: 60:41:60:36:13:25:ab:95:40:f1:0c:6d:fa:ca:10: bb:44:a5:0c:1a:54:fb:1b:ef:51:3b:27:d5:47:49: 54:26:b9:08:37:43:02:6b:b1:d0:0f:7f:dc:58:00: 7d:8e:48:f3:25:c2:f1:2f:ae:e9:fe:69:c0:ff:ab: 40:5e:c5:c2:20:37:1d:8e:30:df:b8:04:aa:65:51: 5c:19:53:fa:bb:cc:5a:e3:e5:30:4d:d5:11:e1:91: 89:5c:c7:71:79:dc:6d:23:90:4b:24:95:d1:a6:56: e5:2c:fc:fb:64:f9:d8:85:8d:55:36:13:d8:22:56: 57:5a:9e:b7:50:b6:1e:a9:1a:a9:15:0a:e5:99:66: e3:52:9e:41:e2:88:89:c7:40:68:05:c1:30:bd:8b: 88:ef:8a:08:fb:9d:94:8c:93:dc:33:2e:69:22:fe: d7:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:72:B0:D5:B9:9F:5C:4E:69:72:10:71:B2:C5:54:58:9C:D7:8D:F2 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7c0c4811-7db0-4cc0-8fa1-6dbda4055b97.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 81:af:62:23:20:79:dc:66:6d:e1:04:b8:4c:8a:85:03:00:4b: 37:63:7a:af:fb:38:1c:84:29:14:ad:ae:4e:93:d4:4d:45:9a: 90:0f:12:2b:f5:57:a2:9c:1a:9a:9b:d5:d3:d1:4e:ae:bb:f8: 4f:11:5d:ed:19:14:56:52:dd:69:9e:b2:86:dd:1a:f4:c6:31: ab:f2:24:b3:e8:50:6e:35:c3:4c:b7:11:76:62:e6:e6:c3:57: ac:48:86:a4:76:ef:0f:b2:d0:04:55:53:2a:5a:1b:0d:c4:df: aa:1d:9d:a9:25:30:a2:1c:07:be:70:cb:b2:90:8c:23:ef:c7: 0a:08:6f:95:da:1e:84:1d:b3:16:16:eb:98:3c:60:e6:af:41: b5:63:d1:b5:2f:e3:4d:12:91:91:55:b9:9a:c8:a9:85:39:87: 6b:8e:40:b8:98:6b:cb:2a:82:08:6f:09:86:ac:ef:7d:28:70: 1a:6c:fa:e7:30:86:c7:73:86:79:57:04:f9:f6:91:ba:86:91: 0b:e0:18:97:96:c6:cd:11:1c:86:c1:a9:f8:be:16:70:42:37: a1:5f:6a:b7:53:db:98:fd:fc:7a:20:16:ce:07:cc:8a:a5:9a: 2a:9e:2a:fb:1f:58:60:97:fb:14:34:22:66:87:e4:59:78:a9: 3e:52:69:04 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURE4SyoOn/OcMCxuykzmb+fmYKX4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTEzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZmU2ZDgyODRmMjk5MzgwZjNmODI1YWZiZjRkNTg2NDcw MjE4OTMzYzk0YjczYmM0OWU3Y2FmM2U1ZGFjYWVmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClrI7t9YTrG/KRtE14665Pnwvh9+kBHwJat0moh4mWwk4R jHmWRfVjkVdlwKRQoiT6RNIcLpZ9Ru8rLWtRRFws5YjTulW1VBVD/63GQHkikcOA QWAhJlVSnmBBYDYTJauVQPEMbfrKELtEpQwaVPsb71E7J9VHSVQmuQg3QwJrsdAP f9xYAH2OSPMlwvEvrun+acD/q0BexcIgNx2OMN+4BKplUVwZU/q7zFrj5TBN1RHh kYlcx3F53G0jkEskldGmVuUs/Ptk+diFjVU2E9giVldanrdQth6pGqkVCuWZZuNS nkHiiInHQGgFwTC9i4jvigj7nZSMk9wzLmki/tfnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUsXKw1bmfXE5pchBxssVUWJzXjfIwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdjMGM0ODExLTdkYjAtNGNjMC04ZmExLTZkYmRhNDA1NWI5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAga9iIyB53GZt4QS4TIqFAwBL N2N6r/s4HIQpFK2uTpPUTUWakA8SK/VXopwampvV09FOrrv4TxFd7RkUVlLdaZ6y ht0a9MYxq/Iks+hQbjXDTLcRdmLm5sNXrEiGpHbvD7LQBFVTKlobDcTfqh2dqSUw ohwHvnDLspCMI+/HCghvldoehB2zFhbrmDxg5q9BtWPRtS/jTRKRkVW5msiphTmH a45AuJhryyqCCG8JhqzvfShwGmz65zCGx3OGeVcE+faRuoaRC+AYl5bGzREchsGp +L4WcEI3oV9qt1PbmP38eiAWzgfMiqWaKp4q+x9YYJf7FDQiZofkWXipPlJpBA== -----END CERTIFICATE-----Generated at Wed Aug 6 07:54:09 2025 by rpki-client