$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa File: 828860c7-04d3-410e-a0e6-5d8782c6c573.roa (raw, json) Hash identifier: crT+CnI0YBZ4gi4r2l05arRKkWvIxPLmQzbQNAXFpiw= Subject key identifier: E5:1E:89:5A:28:96:01:BA:49:EA:F4:89:84:54:B7:62:05:C9:EE:59 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 45E72C2E7CC990A1F2FAC186356F1F5A7CF6ED10 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa Signing time: Mon 21 Jul 2025 16:40:17 +0000 ROA not before: Mon 21 Jul 2025 16:40:17 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:10a::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e7:2c:2e:7c:c9:90:a1:f2:fa:c1:86:35:6f:1f:5a:7c:f6:ed:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 21 16:40:17 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=a703625575ab7080c32c60cc84f4748fe1e38de6d29f48d62d52e0d4ad12516e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e9:ee:29:e1:60:d2:df:45:ec:97:67:fa:69: 31:16:57:9a:59:fa:45:7b:9f:9d:b5:a0:8c:d2:82: 7c:84:df:32:d8:70:30:95:a8:a4:a0:de:2c:7d:bc: 82:49:9d:72:51:2f:3b:ac:47:52:6e:06:45:33:c2: 9a:a1:49:af:80:97:1c:f7:fc:96:d1:3e:5a:c3:4e: 69:28:d7:56:c9:7e:17:6b:40:fc:36:d2:00:dc:e2: 97:52:ad:d3:74:26:a9:2e:12:c1:bf:b5:cc:c7:0e: 97:22:f4:c7:a8:25:e2:21:78:6f:b1:98:88:10:8a: c5:a2:c9:df:ea:de:f3:90:f7:18:f1:f9:6a:d3:70: 30:eb:dd:50:34:b2:12:34:29:80:ec:4a:df:92:f4: c3:51:61:fe:dd:03:68:00:f2:bf:27:41:b9:35:2f: 09:c0:cf:5a:7a:0d:41:52:f1:00:2f:88:c5:88:de: 70:59:d2:bc:92:53:0d:45:c0:ca:3f:ee:8d:67:fb: e6:51:ca:bc:3c:18:3c:64:2f:e2:f8:c0:c9:23:b4: d0:c6:94:52:5f:02:64:83:7d:5f:1c:44:bf:27:7a: bd:39:81:07:15:54:46:2a:3a:c7:c7:c5:b2:ca:38: 47:55:2d:a6:a6:cf:c8:27:53:81:6b:fb:7a:a1:ac: d7:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1E:89:5A:28:96:01:BA:49:EA:F4:89:84:54:B7:62:05:C9:EE:59 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/828860c7-04d3-410e-a0e6-5d8782c6c573.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:10a::/47 Signature Algorithm: sha256WithRSAEncryption 1c:66:dc:cf:b9:af:c7:01:21:a7:27:3b:ad:8d:87:16:81:5e: 95:66:2f:dd:fa:ea:bc:6b:bc:27:dd:b4:b5:3d:a6:95:c0:43: 0b:92:6a:6b:ef:fc:2d:77:23:b9:55:de:7c:22:75:ff:9c:98: 64:5d:ef:13:e6:39:f3:6c:ba:c2:1d:6f:5c:58:23:2e:e1:e2: 1f:c0:a0:ca:5d:41:9b:70:8b:69:c8:b6:e3:ac:89:90:e3:8b: 00:8e:f7:51:89:31:94:93:42:2b:17:0e:6a:27:d9:47:37:73: 02:c6:9e:c8:c0:8a:dd:7e:50:b5:68:f0:c4:ee:70:c4:4e:10: 93:ce:7e:c4:09:c6:5d:78:3d:7b:6a:c6:4e:94:22:52:53:94: e9:a7:6a:0d:b2:d8:51:fa:09:8b:e3:bd:e2:58:81:31:c4:4f: e3:b4:01:77:9b:bb:a9:f8:9e:9d:79:8a:ed:c3:47:94:4f:f1: 9e:89:bd:bd:b3:f5:81:55:34:d3:bf:0c:9a:e4:5e:6b:6c:6a: bf:11:e3:ba:46:aa:e1:63:b2:d8:16:79:28:da:60:eb:1d:97: ec:4e:17:0b:39:d8:f1:f6:2f:8a:00:17:06:a4:b5:f0:15:26: 7f:b2:6c:da:fc:56:dd:be:d0:f5:76:da:d5:87:7b:fb:69:97: 9e:b7:51:13 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIURecsLnzJkKHy+sGGNW8fWnz27RAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzIxMTY0MDE3WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzAzNjI1NTc1YWI3MDgwYzMyYzYwY2M4NGY0NzQ4ZmUx ZTM4ZGU2ZDI5ZjQ4ZDYyZDUyZTBkNGFkMTI1MTZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt6e4p4WDS30Xsl2f6aTEWV5pZ+kV7n521oIzSgnyE3zLY cDCVqKSg3ix9vIJJnXJRLzusR1JuBkUzwpqhSa+Alxz3/JbRPlrDTmko11bJfhdr QPw20gDc4pdSrdN0JqkuEsG/tczHDpci9MeoJeIheG+xmIgQisWiyd/q3vOQ9xjx +WrTcDDr3VA0shI0KYDsSt+S9MNRYf7dA2gA8r8nQbk1LwnAz1p6DUFS8QAviMWI 3nBZ0rySUw1FwMo/7o1n++ZRyrw8GDxkL+L4wMkjtNDGlFJfAmSDfV8cRL8ner05 gQcVVEYqOsfHxbLKOEdVLaamz8gnU4Fr+3qhrNd/AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5R6JWiiWAbpJ6vSJhFS3YgXJ7lkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgyODg2MGM3LTA0ZDMtNDEwZS1hMGU2LTVkODc4MmM2YzU3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwEmAPDwAQowDQYJKoZIhvcNAQELBQADggEBABxm3M+5r8cBIacnO62NhxaB XpVmL9366rxrvCfdtLU9ppXAQwuSamvv/C13I7lV3nwidf+cmGRd7xPmOfNsusId b1xYIy7h4h/AoMpdQZtwi2nItuOsiZDjiwCO91GJMZSTQisXDmon2Uc3cwLGnsjA it1+ULVo8MTucMROEJPOfsQJxl14PXtqxk6UIlJTlOmnag2y2FH6CYvjveJYgTHE T+O0AXebu6n4np15iu3DR5RP8Z6Jvb2z9YFVNNO/DJrkXmtsar8R47pGquFjstgW eSjaYOsdl+xOFws52PH2L4oAFwaktfAVJn+ybNr8Vt2+0PV22tWHe/tpl563URM= -----END CERTIFICATE-----Generated at Wed Aug 6 06:06:57 2025 by rpki-client