$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa File: 8dc8b90b-7591-404d-b954-05b005230216.roa (raw, json) Hash identifier: zwqS0Z3lKofXP4JiaV6dH3HmwXb6aR0xtAsugrZ7nEA= Subject key identifier: 7A:65:40:AD:3C:B7:51:6E:CD:09:7D:0D:77:B3:B6:FA:65:95:D9:54 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4F8B293C20EF3A9FC6F6F7D353E29ED3F88E289E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa Signing time: Tue 05 Aug 2025 18:40:23 +0000 ROA not before: Tue 05 Aug 2025 18:40:23 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:8b:29:3c:20:ef:3a:9f:c6:f6:f7:d3:53:e2:9e:d3:f8:8e:28:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:40:23 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=79280684d65bb2fa99ec200f64787b177cf472d67a14597a9b7fb89d45b38a60, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9a:53:40:44:8b:a6:71:49:d2:72:40:4d:c8: c5:e9:af:6e:83:e9:af:12:ff:0b:7d:53:e2:e3:3f: 9c:ed:ed:2f:08:47:57:b6:fa:90:46:18:47:4b:e5: c8:6b:e2:cd:a6:a2:dd:d7:c0:ca:ba:aa:78:ff:59: ad:42:d7:cd:a6:4e:45:35:36:82:98:ad:49:84:26: bd:81:73:86:cb:31:95:b6:89:8b:61:57:87:eb:41: 56:61:01:6c:6e:d6:ad:9b:74:6c:a5:fb:df:3b:2d: 4e:5e:63:dd:1c:c3:a2:2e:43:73:8c:23:fc:83:f8: 2f:7f:c0:30:b6:f2:01:e5:45:5a:81:5d:83:e0:a9: 4b:d1:16:08:bd:10:1d:6c:29:e2:35:81:9f:24:c6: 6d:19:fa:29:85:41:d3:dc:61:25:9a:15:4b:d1:f0: fc:24:a9:d9:fc:9d:48:22:bd:44:b3:81:30:14:b9: 88:30:c8:3b:90:e5:e6:0f:11:aa:93:a3:b5:a5:cd: 0e:5f:01:fc:59:ae:20:ee:30:df:f9:32:c0:e5:e8: 78:25:ef:81:f4:19:67:33:85:e1:38:12:c3:1a:08: 8e:e3:40:86:02:71:9c:eb:8a:01:85:6b:7e:f3:30: 9b:fa:b9:1a:90:65:68:28:b3:56:92:a0:21:25:1e: 40:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:65:40:AD:3C:B7:51:6E:CD:09:7D:0D:77:B3:B6:FA:65:95:D9:54 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8dc8b90b-7591-404d-b954-05b005230216.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f000::/39 Signature Algorithm: sha256WithRSAEncryption 40:ea:c2:9b:96:04:52:a2:d9:6d:87:95:19:b2:84:09:0f:3a: a2:44:92:0b:c9:c3:cc:12:44:b8:57:de:f4:5f:b9:c6:03:95: 5b:a4:ca:bf:4d:4a:16:a0:54:cc:87:1d:3e:ab:a4:5a:a4:ba: 20:37:5c:73:db:22:e7:5d:8f:60:ed:44:b5:1e:d9:9e:1e:37: ae:70:98:de:c5:16:28:2e:da:cb:4c:f2:a3:01:2a:9e:5f:00: 48:26:a0:f1:dd:27:e5:c0:e7:a5:aa:3d:a7:58:f5:95:85:77: ac:43:64:52:b8:f5:a5:fe:44:b5:32:91:26:dd:88:23:1e:ba: 2d:01:d4:6d:c6:f8:6e:a0:77:e6:ad:9c:c0:37:c4:aa:24:74: 53:33:23:f9:ac:90:ec:7f:67:19:f0:13:f1:51:ea:6f:b9:1b: 2b:1a:09:0d:ed:a1:7f:d4:13:69:54:cf:57:9e:f6:88:11:60: c4:0a:12:2b:83:93:40:ff:8e:12:87:38:ef:f1:2a:b9:28:0e: a3:23:93:1f:15:5d:d1:96:e0:4f:ce:b8:ea:76:8a:ee:12:14: 35:f2:b4:ff:c0:e0:ce:e3:16:c6:c1:4a:99:c6:a9:cf:73:76: 9e:42:f6:8f:37:e6:f6:ef:54:63:c6:6c:72:98:0a:41:f2:2c: 55:b8:69:4a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUT4spPCDvOp/G9vfTU+Ke0/iOKJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTg0MDIzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3OTI4MDY4NGQ2NWJiMmZhOTllYzIwMGY2NDc4N2IxNzdj ZjQ3MmQ2N2ExNDU5N2E5YjdmYjg5ZDQ1YjM4YTYwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfmlNARIumcUnSckBNyMXpr26D6a8S/wt9U+LjP5zt7S8I R1e2+pBGGEdL5chr4s2mot3XwMq6qnj/Wa1C182mTkU1NoKYrUmEJr2Bc4bLMZW2 iYthV4frQVZhAWxu1q2bdGyl+987LU5eY90cw6IuQ3OMI/yD+C9/wDC28gHlRVqB XYPgqUvRFgi9EB1sKeI1gZ8kxm0Z+imFQdPcYSWaFUvR8Pwkqdn8nUgivUSzgTAU uYgwyDuQ5eYPEaqTo7WlzQ5fAfxZriDuMN/5MsDl6Hgl74H0GWczheE4EsMaCI7j QIYCcZzrigGFa37zMJv6uRqQZWgos1aSoCElHkBnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUemVArTy3UW7NCX0Nd7O2+mWV2VQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhkYzhiOTBiLTc1OTEtNDA0ZC1iOTU0LTA1YjAwNTIzMDIxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAPAAADANBgkqhkiG9w0BAQsFAAOCAQEAQOrCm5YEUqLZbYeVGbKECQ86 okSSC8nDzBJEuFfe9F+5xgOVW6TKv01KFqBUzIcdPqukWqS6IDdcc9si512PYO1E tR7Znh43rnCY3sUWKC7ay0zyowEqnl8ASCag8d0n5cDnpao9p1j1lYV3rENkUrj1 pf5EtTKRJt2IIx66LQHUbcb4bqB35q2cwDfEqiR0UzMj+ayQ7H9nGfAT8VHqb7kb KxoJDe2hf9QTaVTPV572iBFgxAoSK4OTQP+OEoc47/EquSgOoyOTHxVd0ZbgT864 6naK7hIUNfK0/8DgzuMWxsFKmcapz3N2nkL2jzfm9u9UY8ZscpgKQfIsVbhpSg== -----END CERTIFICATE-----Generated at Sat Aug 9 14:28:57 2025 by rpki-client