$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa File: 7fef00dc-1a9a-497c-b857-792da38e532f.roa (raw, json) Hash identifier: vKGBTpYoYnoiwkUrkxCjhXFK2RyTAVcbyjJSLVLCycQ= Subject key identifier: 81:2B:E1:16:A9:04:C4:49:92:75:87:ED:D8:5C:DC:6A:8C:01:5F:A1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3F7B2F214BCD6702F5613F44AFE01F5A93817D56 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa Signing time: Mon 14 Jul 2025 15:30:44 +0000 ROA not before: Mon 14 Jul 2025 15:30:44 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:7b:2f:21:4b:cd:67:02:f5:61:3f:44:af:e0:1f:5a:93:81:7d:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 14 15:30:44 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=4597ed8ead20107df99ab508195707097450eeab905f0760e57f20be6e88ee02, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:29:28:03:fb:c0:ae:de:61:27:a7:7c:47:59: 96:d3:50:46:48:fd:66:6b:08:d6:42:23:6d:91:4d: 45:93:5a:e4:0b:43:db:b2:72:4a:cc:d7:3a:b9:e8: 5b:17:9f:ba:a5:f7:cc:52:59:af:00:e6:73:60:a1: cc:76:68:95:c3:2b:4e:ca:e6:22:87:7f:50:02:c5: 96:82:70:ee:f1:d9:13:7f:6e:6c:2f:30:21:1f:38: ab:8d:3a:50:0d:8a:2b:7d:0a:6c:88:77:46:4b:0f: 29:35:14:73:0d:fb:52:b5:ee:dc:ae:49:75:3f:1f: ed:b9:8a:4f:62:95:13:91:9f:1c:15:69:97:43:da: 7d:31:c3:ed:47:09:c9:1b:00:4f:36:93:7b:89:ba: 5c:fb:ab:94:3d:40:44:e8:d9:6b:14:3a:24:ad:31: 1e:87:67:7d:a2:28:1c:ce:bb:20:d6:e2:99:62:d7: 17:02:0d:95:30:48:e2:39:30:17:0e:00:a2:19:6e: 93:32:a7:67:16:54:ff:6d:91:84:4b:80:9c:e4:aa: e5:90:fb:47:4a:14:50:ea:a5:c0:5b:0d:52:c3:fd: 78:b0:04:b0:1b:58:ee:be:b9:42:ab:c5:29:5a:60: bb:1d:50:0e:6c:f7:c9:48:e7:ea:42:0f:12:40:14: 74:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2B:E1:16:A9:04:C4:49:92:75:87:ED:D8:5C:DC:6A:8C:01:5F:A1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7fef00dc-1a9a-497c-b857-792da38e532f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5500::/48 Signature Algorithm: sha256WithRSAEncryption 6f:b5:9a:91:08:08:f8:7f:ac:71:be:2e:85:89:a4:ff:35:ad: ee:2c:06:ba:43:fc:9a:5d:1b:a3:dc:63:c1:c9:e4:46:3d:aa: 6d:68:a2:21:6d:f4:00:c3:53:65:8d:d4:c4:e2:02:aa:be:2e: 3b:04:c0:0d:0d:c7:cf:de:21:54:60:cb:d6:dd:45:33:19:17: 0d:35:43:0a:c3:5a:f9:57:b8:08:11:09:a3:69:88:df:f1:a8: 49:5a:04:cd:9d:b9:8b:5f:14:26:be:f3:0c:da:33:99:ac:0d: e6:1e:30:66:9c:e2:91:51:66:9f:6d:18:3b:18:a0:66:60:a3: 3b:1e:8e:88:7f:95:e9:f7:6d:bf:53:d8:07:2b:3f:f4:7b:af: 49:f5:0a:96:78:74:64:c3:e6:64:0c:23:bc:e0:15:e3:dd:21: 02:7c:bd:69:31:21:93:62:6c:25:f6:d2:ea:10:42:c9:69:df: 4d:14:cb:a9:97:61:f9:f6:03:3c:bc:bb:39:c6:71:7e:df:8f: f0:db:02:b8:45:9a:62:9c:1b:b5:d1:02:14:44:52:87:0c:5a: 06:0c:c6:61:4d:8c:fe:47:17:0c:a0:5c:12:f9:8d:7e:e4:ab: fd:0f:9d:18:16:be:3d:ec:76:dc:e1:3a:2a:59:ef:0a:ba:c2: ad:db:54:e9 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUP3svIUvNZwL1YT9Er+AfWpOBfVYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE0MTUzMDQ0WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTk3ZWQ4ZWFkMjAxMDdkZjk5YWI1MDgxOTU3MDcwOTc0 NTBlZWFiOTA1ZjA3NjBlNTdmMjBiZTZlODhlZTAyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUKSgD+8Cu3mEnp3xHWZbTUEZI/WZrCNZCI22RTUWTWuQL Q9uyckrM1zq56FsXn7ql98xSWa8A5nNgocx2aJXDK07K5iKHf1ACxZaCcO7x2RN/ bmwvMCEfOKuNOlANiit9CmyId0ZLDyk1FHMN+1K17tyuSXU/H+25ik9ilRORnxwV aZdD2n0xw+1HCckbAE82k3uJulz7q5Q9QETo2WsUOiStMR6HZ32iKBzOuyDW4pli 1xcCDZUwSOI5MBcOAKIZbpMyp2cWVP9tkYRLgJzkquWQ+0dKFFDqpcBbDVLD/Xiw BLAbWO6+uUKrxSlaYLsdUA5s98lI5+pCDxJAFHSRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUgSvhFqkExEmSdYft2FzcaowBX6EwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdmZWYwMGRjLTFhOWEtNDk3Yy1iODU3LTc5MmRhMzhlNTMyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQAwDQYJKoZIhvcNAQELBQADggEBAG+1mpEICPh/rHG+LoWJpP81 re4sBrpD/JpdG6PcY8HJ5EY9qm1ooiFt9ADDU2WN1MTiAqq+LjsEwA0Nx8/eIVRg y9bdRTMZFw01QwrDWvlXuAgRCaNpiN/xqElaBM2duYtfFCa+8wzaM5msDeYeMGac 4pFRZp9tGDsYoGZgozsejoh/len3bb9T2AcrP/R7r0n1CpZ4dGTD5mQMI7zgFePd IQJ8vWkxIZNibCX20uoQQslp300Uy6mXYfn2Azy8uznGcX7fj/DbArhFmmKcG7XR AhREUocMWgYMxmFNjP5HFwygXBL5jX7kq/0PnRgWvj3sdtzhOipZ7wq6wq3bVOk= -----END CERTIFICATE-----Generated at Wed Aug 6 00:57:49 2025 by rpki-client