$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa File: 9a96c02c-ad61-40ce-b5aa-def693953ba1.roa (raw, json) Hash identifier: vl1ypipxrhbvkkdKFc8owMbXtZOTdqpLw40GUQzSlkw= Subject key identifier: AB:A0:52:27:60:C6:38:A3:98:50:3F:1B:68:2C:DA:26:00:8F:7D:5A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B189530E946C8C6D9A6B399810150690F1BF5DB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa Signing time: Mon 14 Jul 2025 15:30:47 +0000 ROA not before: Mon 14 Jul 2025 15:30:47 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f3:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:18:95:30:e9:46:c8:c6:d9:a6:b3:99:81:01:50:69:0f:1b:f5:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 14 15:30:47 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=f58ffc4d8960f6fa9b11c82acc0be840e51b4f3a0e2332db38d8d4e29e0681fe, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:58:47:1c:58:e4:c6:6f:d7:d9:54:9e:0d:04: 99:a4:c9:23:e8:29:41:f4:59:11:f8:4e:38:47:39: 4f:ce:b7:de:4b:26:ed:d2:d0:95:68:c3:f8:80:b2: 42:19:9d:4d:62:be:63:e1:63:8b:2b:d6:c4:af:08: eb:b0:96:20:ed:25:37:6e:9e:0e:47:0e:29:da:49: 37:fa:8d:44:8d:29:48:18:4f:ab:ff:45:c2:08:d1: 24:83:82:7a:5c:f0:12:c6:6d:78:05:91:d7:97:4f: 32:74:f5:0e:35:e0:df:55:77:9b:24:97:34:d9:ce: c2:65:a0:fa:6c:dc:ad:70:e4:05:08:45:02:e9:8f: 50:8f:38:1c:13:46:b1:85:de:76:d2:71:28:89:c7: 7d:b5:a8:4f:00:7c:5e:f5:c6:64:86:77:5c:ba:ef: 34:f9:18:fc:77:e8:df:4a:f1:89:24:32:f0:e0:31: 17:f5:cd:d4:a1:e3:e9:3b:81:5c:6c:bd:a1:2d:bb: 95:92:7c:b5:6a:27:c3:1b:83:fc:6c:d7:ce:7a:bc: 1a:c4:40:2c:5c:53:9d:75:df:58:8f:fb:6c:76:3d: 8d:4b:25:06:0a:7b:3c:b8:66:fb:b0:5a:a7:cf:18: 81:c2:08:60:50:e9:f5:81:72:c6:94:18:2d:af:3a: 0a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A0:52:27:60:C6:38:A3:98:50:3F:1B:68:2C:DA:26:00:8F:7D:5A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/9a96c02c-ad61-40ce-b5aa-def693953ba1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f3:f000::/44 Signature Algorithm: sha256WithRSAEncryption 88:12:09:ee:5b:cf:ab:d2:2e:6f:b1:5c:c5:16:e4:6e:d8:2a: d7:f6:94:90:d5:fb:0b:e8:9a:e7:81:6c:7e:73:74:77:03:bc: 73:f9:11:ab:4a:d8:35:88:9f:3e:fb:93:c0:41:2c:7e:93:44: e9:af:80:d8:39:18:5b:e6:39:65:fc:60:ae:df:ea:03:a7:c1: f3:61:d5:96:ff:71:eb:8a:af:14:63:22:99:f9:7a:16:be:d7: f5:03:73:0b:85:80:a3:c8:ab:01:57:8a:79:26:41:f5:d4:0c: 97:9f:9b:39:8e:c9:89:e3:78:d9:f2:dc:28:85:4a:76:89:fe: ba:de:c6:aa:69:57:45:00:a5:be:a9:89:4f:fe:01:4f:51:f7: 9c:e2:52:49:a4:46:11:ed:90:15:81:c7:90:34:ce:3a:00:92: b3:6a:b0:7c:c6:4a:f1:86:9d:65:a6:d4:81:a5:3d:c4:3a:ba: 06:df:3f:80:ac:b5:f7:4d:cf:e4:2c:64:35:04:6f:ec:7a:3c: 53:ad:7a:e7:bd:3f:a1:b2:56:53:77:73:dd:85:b8:d2:49:5e: 4e:a7:eb:26:0e:66:a8:ae:fa:b9:0f:57:54:af:e0:09:b6:62: aa:84:99:71:6c:ec:82:79:10:3c:ef:59:3e:36:36:49:65:bc: 51:b6:19:94 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOxiVMOlGyMbZprOZgQFQaQ8b9dswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE0MTUzMDQ3WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNThmZmM0ZDg5NjBmNmZhOWIxMWM4MmFjYzBiZTg0MGU1 MWI0ZjNhMGUyMzMyZGIzOGQ4ZDRlMjllMDY4MWZlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoWEccWOTGb9fZVJ4NBJmkySPoKUH0WRH4TjhHOU/Ot95L Ju3S0JVow/iAskIZnU1ivmPhY4sr1sSvCOuwliDtJTdung5HDinaSTf6jUSNKUgY T6v/RcII0SSDgnpc8BLGbXgFkdeXTzJ09Q414N9Vd5sklzTZzsJloPps3K1w5AUI RQLpj1CPOBwTRrGF3nbScSiJx321qE8AfF71xmSGd1y67zT5GPx36N9K8YkkMvDg MRf1zdSh4+k7gVxsvaEtu5WSfLVqJ8Mbg/xs1856vBrEQCxcU51131iP+2x2PY1L JQYKezy4ZvuwWqfPGIHCCGBQ6fWBcsaUGC2vOgq3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUq6BSJ2DGOKOYUD8baCzaJgCPfVowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzlhOTZjMDJjLWFkNjEtNDBjZS1iNWFhLWRlZjY5Mzk1M2JhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDz8AAwDQYJKoZIhvcNAQELBQADggEBAIgSCe5bz6vSLm+xXMUW5G7Y Ktf2lJDV+wvomueBbH5zdHcDvHP5EatK2DWInz77k8BBLH6TROmvgNg5GFvmOWX8 YK7f6gOnwfNh1Zb/ceuKrxRjIpn5eha+1/UDcwuFgKPIqwFXinkmQfXUDJefmzmO yYnjeNny3CiFSnaJ/rrexqppV0UApb6piU/+AU9R95ziUkmkRhHtkBWBx5A0zjoA krNqsHzGSvGGnWWm1IGlPcQ6ugbfP4CstfdNz+QsZDUEb+x6PFOteue9P6GyVlN3 c92FuNJJXk6n6yYOZqiu+rkPV1Sv4Am2YqqEmXFs7IJ5EDzvWT42NkllvFG2GZQ= -----END CERTIFICATE-----Generated at Thu Aug 7 03:58:01 2025 by rpki-client