$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa File: 976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa (raw, json) Hash identifier: g1HWzppUJVRvROzZF3AGKSy3+z6rPVnGbmaeAQpD8FI= Subject key identifier: 38:FD:E6:EE:0C:7C:5C:65:78:40:07:A6:56:61:F0:7C:6E:C1:EC:F3 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1DA36AB5BCCABCF2581F43EA2FC7413126770215 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa Signing time: Tue 05 Aug 2025 18:20:11 +0000 ROA not before: Tue 05 Aug 2025 18:20:11 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:a3:6a:b5:bc:ca:bc:f2:58:1f:43:ea:2f:c7:41:31:26:77:02:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:11 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d387747ab91a114c3abc2ec7fb40a16a2da5ecc9867697d95922fa94c3a9b36e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:9b:78:a4:49:21:4f:56:4c:fe:45:b0:19:ce: 9d:7a:a0:1d:82:e6:8a:af:1a:2e:4f:3f:32:15:61: c6:03:5d:32:6b:93:96:0e:37:45:6d:75:20:24:15: 3a:3c:87:66:f8:ea:34:17:c5:a7:99:fe:75:2c:d4: be:86:45:59:4b:90:39:aa:53:c6:2e:6b:7e:c3:16: e5:cd:a1:51:4a:c1:93:5a:da:d9:2c:82:17:8c:7e: 75:53:cd:a2:9d:ca:9f:9c:cb:e5:69:51:32:5a:6e: 2b:6b:d3:fa:45:89:fa:6b:24:b8:d4:1b:fd:7a:7f: 3d:65:95:8a:01:36:03:57:69:5c:3e:10:17:4f:52: 4b:c2:f7:b8:97:45:7a:70:05:6f:10:6c:e7:ab:dd: 79:60:e1:6b:09:63:23:66:06:9f:11:64:5a:de:e6: de:fa:c9:06:fc:a4:8b:39:0c:51:ea:2f:36:87:58: 06:e9:03:49:75:1a:69:94:0a:7f:b5:71:47:1f:6d: 33:19:7c:62:a6:5c:81:65:eb:53:ad:49:0d:f2:df: 56:d2:b7:79:26:9c:85:b3:9b:15:1a:14:77:78:11: 1c:51:2b:04:75:22:7e:d5:51:9c:24:db:3d:a0:ac: 34:26:45:ce:aa:32:36:db:c3:d1:35:70:c3:33:9f: 6f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:FD:E6:EE:0C:7C:5C:65:78:40:07:A6:56:61:F0:7C:6E:C1:EC:F3 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/976623ad-0b5a-4a5f-b4a3-60681d2eac70.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:f00::/48 Signature Algorithm: sha256WithRSAEncryption 92:60:7c:6f:18:d5:70:67:1e:62:3e:e1:5b:99:79:17:97:a1: f0:60:83:53:09:5c:9e:15:fe:12:32:a4:99:dd:16:e5:00:72: 0f:61:9e:6b:e3:d6:32:e5:44:de:f1:20:76:94:49:69:43:6f: 91:43:b0:27:9b:ac:cb:e0:20:c1:62:61:5e:eb:2b:c9:e9:de: e5:70:1a:97:25:84:5a:9d:ea:79:e8:a5:ca:07:f8:fd:9c:e5: df:90:6d:f9:8a:1a:02:d8:db:86:fc:48:7a:11:ec:f1:c1:10: b2:8e:d6:35:c9:ea:27:09:0e:69:dd:ec:60:f3:88:55:ac:e4: d0:e6:0d:4f:21:af:72:64:6e:ce:a4:79:9e:81:50:cf:5d:1b: 15:41:b9:f1:f6:5e:ef:7a:db:c8:e1:df:20:6b:c0:a1:d0:07: a4:b5:25:aa:53:8e:88:e4:4f:26:51:2e:ba:1d:43:86:d2:40: 2a:16:92:69:7b:a5:f5:3e:b4:79:3d:88:86:87:ef:dd:eb:77: c9:e7:c1:58:6d:3a:db:a1:35:87:51:13:4e:b6:21:72:d0:31: 37:47:6c:cc:3b:cf:2a:95:14:cd:3c:03:4b:0d:9d:1e:c9:6b: 7d:9b:3a:50:2f:c7:2f:fd:e0:d8:49:09:1d:d5:a9:19:e9:12: 76:8e:f1:ab -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHaNqtbzKvPJYH0PqL8dBMSZ3AhUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDExWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMzg3NzQ3YWI5MWExMTRjM2FiYzJlYzdmYjQwYTE2YTJk YTVlY2M5ODY3Njk3ZDk1OTIyZmE5NGMzYTliMzZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYm3ikSSFPVkz+RbAZzp16oB2C5oqvGi5PPzIVYcYDXTJr k5YON0VtdSAkFTo8h2b46jQXxaeZ/nUs1L6GRVlLkDmqU8Yua37DFuXNoVFKwZNa 2tksgheMfnVTzaKdyp+cy+VpUTJabitr0/pFifprJLjUG/16fz1llYoBNgNXaVw+ EBdPUkvC97iXRXpwBW8QbOer3Xlg4WsJYyNmBp8RZFre5t76yQb8pIs5DFHqLzaH WAbpA0l1GmmUCn+1cUcfbTMZfGKmXIFl61OtSQ3y31bSt3kmnIWzmxUaFHd4ERxR KwR1In7VUZwk2z2grDQmRc6qMjbbw9E1cMMzn29TAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUOP3m7gx8XGV4QAemVmHwfG7B7PMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk3NjYyM2FkLTBiNWEtNGE1Zi1iNGEzLTYwNjgxZDJlYWM3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwDwAwDQYJKoZIhvcNAQELBQADggEBAJJgfG8Y1XBnHmI+4VuZeReX ofBgg1MJXJ4V/hIypJndFuUAcg9hnmvj1jLlRN7xIHaUSWlDb5FDsCebrMvgIMFi YV7rK8np3uVwGpclhFqd6nnopcoH+P2c5d+QbfmKGgLY24b8SHoR7PHBELKO1jXJ 6icJDmnd7GDziFWs5NDmDU8hr3Jkbs6keZ6BUM9dGxVBufH2Xu9628jh3yBrwKHQ B6S1JapTjojkTyZRLrodQ4bSQCoWkml7pfU+tHk9iIaH793rd8nnwVhtOtuhNYdR E062IXLQMTdHbMw7zyqVFM08A0sNnR7Ja32bOlAvxy/94NhJCR3VqRnpEnaO8as= -----END CERTIFICATE-----Generated at Sat Aug 9 01:12:00 2025 by rpki-client