$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa File: 9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa (raw, json) Hash identifier: Y/SEhXeGWiFCqlkcp0ZnkRstm15tw7OZbIT4cR5BdS0= Subject key identifier: 8E:76:F7:07:65:8D:18:D7:52:4E:84:71:DF:2F:26:E0:74:F8:11:2E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 084EE889C9C158CCBCE064134F039F7B7047BE93 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa Signing time: Mon 21 Jul 2025 16:40:10 +0000 ROA not before: Mon 21 Jul 2025 16:40:10 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5503::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:4e:e8:89:c9:c1:58:cc:bc:e0:64:13:4f:03:9f:7b:70:47:be:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 21 16:40:10 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=9829be72faff3074c485db4301d7b5f89f020f22d99e0f78e1ecb7ae1242c5d6, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:9c:3b:b8:b4:05:fb:4f:c7:b0:7b:a2:cd:83: 1a:61:77:44:54:56:dc:bd:b1:f0:eb:6d:ed:29:6a: 7e:91:e1:4d:eb:15:9c:b4:22:80:9a:9f:6d:6b:98: 2a:7b:05:c6:8d:ea:e3:1e:6d:66:0a:50:f0:77:d1: a4:d8:7d:d1:c2:40:6e:6e:ca:60:6f:02:96:4a:15: 34:81:f0:b1:ab:9b:b7:c5:aa:72:30:a5:e4:c5:ee: cb:31:d3:21:59:4a:89:60:0a:b0:3c:b3:d8:6d:2f: 8e:63:4f:2b:48:63:fb:8d:98:40:99:7c:85:be:4a: 35:67:e7:4f:33:aa:aa:a4:70:8f:7c:f9:b8:ce:c1: b3:dd:e2:61:f2:78:96:29:5b:34:46:c9:8b:bf:d3: d1:55:ae:13:f6:b3:1d:f0:27:80:70:23:a7:1c:c4: c8:90:3f:f8:e5:37:e3:08:21:ca:6c:66:60:b6:d7: c2:8e:ad:59:4c:6c:5d:d9:5e:42:53:66:1f:dc:ad: 5f:f2:0b:38:96:47:8f:fa:58:7d:22:13:68:a8:c6: 86:5f:f9:f3:ff:3d:f6:59:d8:eb:cf:5f:f0:b5:3a: 08:ac:c5:f5:c9:82:75:87:28:51:27:d8:b2:53:82: 98:5d:28:2d:6d:64:b7:7b:e7:ef:77:99:61:f6:ea: 6d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:76:F7:07:65:8D:18:D7:52:4E:84:71:DF:2F:26:E0:74:F8:11:2E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9738bb0d-1a84-4601-bc6b-25ba7f49c72b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5503::/48 Signature Algorithm: sha256WithRSAEncryption 18:fa:35:97:0f:76:5e:c9:e8:be:d4:15:32:64:db:ec:4c:f1: f1:ce:0b:50:66:ab:c8:b6:e6:74:b9:39:ec:24:82:82:e3:52: 14:f2:04:3c:2f:7f:4c:5b:16:63:d3:7e:e1:df:b1:0b:37:f3: 53:42:72:26:d3:07:51:90:29:e6:13:ce:e0:52:5b:ce:0b:be: 25:2c:95:e6:3c:58:90:1a:b4:d2:d9:c7:6a:9d:a9:1a:96:ed: 6a:9f:8b:29:a6:8b:0c:2a:6d:c2:c6:33:02:32:2a:52:a7:bd: 38:43:5e:55:3f:74:e4:61:00:ea:be:66:51:a3:1e:3d:db:ae: 87:f9:ed:ab:c1:bb:3c:43:48:44:01:0a:f5:7d:9e:7e:a3:1f: 3e:b6:af:14:9a:6a:25:50:74:45:60:65:ed:25:f0:fb:f2:17: 55:b8:e8:5f:2a:aa:70:94:23:56:f3:52:bd:d9:a4:93:52:7a: 05:b5:56:52:3f:62:6f:eb:6d:11:ce:5f:ee:e2:98:bf:2d:fa: de:a4:c1:e7:5c:2a:b0:13:da:41:3d:47:b6:fe:06:94:c1:c7: 5e:48:88:e5:30:0b:bb:7d:d7:cf:e4:c9:57:bc:c1:4c:e6:e2: cb:fc:21:e8:1c:95:47:e7:81:7c:c1:55:26:63:57:d5:fb:3c: 56:80:2e:4e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCE7oicnBWMy84GQTTwOfe3BHvpMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzIxMTY0MDEwWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODI5YmU3MmZhZmYzMDc0YzQ4NWRiNDMwMWQ3YjVmODlm MDIwZjIyZDk5ZTBmNzhlMWVjYjdhZTEyNDJjNWQ2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwnDu4tAX7T8ewe6LNgxphd0RUVty9sfDrbe0pan6R4U3r FZy0IoCan21rmCp7BcaN6uMebWYKUPB30aTYfdHCQG5uymBvApZKFTSB8LGrm7fF qnIwpeTF7ssx0yFZSolgCrA8s9htL45jTytIY/uNmECZfIW+SjVn508zqqqkcI98 +bjOwbPd4mHyeJYpWzRGyYu/09FVrhP2sx3wJ4BwI6ccxMiQP/jlN+MIIcpsZmC2 18KOrVlMbF3ZXkJTZh/crV/yCziWR4/6WH0iE2ioxoZf+fP/PfZZ2OvPX/C1Ogis xfXJgnWHKFEn2LJTgphdKC1tZLd75+93mWH26m25AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUjnb3B2WNGNdSToRx3y8m4HT4ES4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3MzhiYjBkLTFhODQtNDYwMS1iYzZiLTI1YmE3ZjQ5YzcyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVQMwDQYJKoZIhvcNAQELBQADggEBABj6NZcPdl7J6L7UFTJk2+xM 8fHOC1Bmq8i25nS5OewkgoLjUhTyBDwvf0xbFmPTfuHfsQs381NCcibTB1GQKeYT zuBSW84LviUsleY8WJAatNLZx2qdqRqW7WqfiymmiwwqbcLGMwIyKlKnvThDXlU/ dORhAOq+ZlGjHj3brof57avBuzxDSEQBCvV9nn6jHz62rxSaaiVQdEVgZe0l8Pvy F1W46F8qqnCUI1bzUr3ZpJNSegW1VlI/Ym/rbRHOX+7imL8t+t6kwedcKrAT2kE9 R7b+BpTBx15IiOUwC7t918/kyVe8wUzm4sv8IegclUfngXzBVSZjV9X7PFaALk4= -----END CERTIFICATE-----Generated at Tue Aug 5 17:10:48 2025 by rpki-client