$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa File: a0024e00-f937-4b63-91df-d45ce0a6a27d.roa (raw, json) Hash identifier: GHOlM8Q4FaUHP/Wz24wvdFKc43qO0q3ecYH8sh+cXWo= Subject key identifier: D9:75:26:07:BE:D3:24:7D:A8:99:EA:92:3F:3E:70:B7:6F:61:97:20 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 334A43FE004AF960ED009D16B495A8AF1B5C923E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa Signing time: Fri 11 Jul 2025 18:21:04 +0000 ROA not before: Fri 11 Jul 2025 18:21:04 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:6010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:4a:43:fe:00:4a:f9:60:ed:00:9d:16:b4:95:a8:af:1b:5c:92:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:21:04 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=dfc4c2232dd3b6c8a37e4016a6818ab931bd5b31d065ce4fe7043a729f707ae5, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:d1:a7:6b:4f:2a:82:f6:cf:95:c1:3e:6a:35: c6:8a:bc:db:6a:9b:7f:4f:84:5d:54:10:07:0d:0f: 09:e3:3a:29:4e:9c:77:1e:d9:3a:64:b1:d6:5a:76: 8b:07:04:b3:99:6e:5e:24:06:68:fa:4b:8d:df:ad: db:91:dc:7f:aa:14:89:04:2d:a0:45:1a:44:2e:ae: 7a:57:c9:1b:c9:68:70:82:1d:28:e1:6a:c3:45:2e: eb:52:ca:44:05:a9:26:cf:0a:90:7c:43:60:a9:3b: e3:57:19:34:49:8f:24:5b:97:3f:9d:15:77:92:92: 63:e4:58:e6:e6:e8:d8:3d:7a:b9:10:0a:d7:0c:94: 29:22:e6:f3:2e:32:9f:e2:ca:25:19:0c:e6:bf:8a: d2:a4:52:8c:ef:bb:1c:e5:c3:a8:05:45:d0:75:ea: a0:ac:07:ae:5c:27:e0:7f:16:c6:60:1f:50:fc:56: 4b:e7:be:90:36:88:ac:66:98:4b:a9:23:d1:94:28: f4:c8:96:9f:d2:19:ec:90:a3:dc:93:41:16:09:b9: b9:49:de:55:cf:49:c7:ba:d8:fd:bb:da:80:5b:c4: b0:14:99:0a:9b:73:f3:e8:2c:91:49:74:dd:9e:39: 34:15:cf:42:ae:27:ca:ad:69:a0:02:ec:40:94:13: 32:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:75:26:07:BE:D3:24:7D:A8:99:EA:92:3F:3E:70:B7:6F:61:97:20 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a0024e00-f937-4b63-91df-d45ce0a6a27d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6010::/44 Signature Algorithm: sha256WithRSAEncryption 29:4d:f4:e8:9a:c8:23:8f:06:cb:3e:85:93:57:ba:8d:f1:77: fb:be:28:35:f3:42:b6:f5:78:15:85:c8:d1:ca:64:97:8c:8b: ee:5e:83:8e:07:b6:94:74:50:a7:e1:90:15:a9:19:9f:fa:d1: a3:10:5f:5d:ab:17:94:71:fd:78:7d:14:92:a7:59:fa:4d:82: 9f:05:86:42:1a:db:2e:26:2b:a6:7f:b0:e0:65:ed:ac:6c:d4: 8c:36:56:0d:b9:ed:72:fe:67:81:ee:b3:51:25:6b:c2:11:d6: de:3b:23:8d:57:cc:fb:8d:c1:a0:67:71:85:e1:a0:91:d1:7f: f8:ef:ab:01:63:30:23:08:1d:56:d8:37:13:25:4a:fe:3a:26: 8f:db:a0:44:d0:2f:fe:5e:1d:25:d3:3e:b5:a5:23:11:33:94: 85:3c:9e:e0:e1:7e:7b:bf:be:8a:de:ad:01:44:9f:5a:f3:89: 1e:24:17:35:df:31:db:f8:44:0b:1f:55:37:48:f9:ab:81:3b: c0:18:2f:07:59:f6:79:56:8d:93:ae:2d:6c:a2:e3:ce:87:82: 8a:b7:5e:9b:3f:22:db:94:6a:79:c6:86:a4:b5:24:1e:7d:06: 54:52:2b:69:fc:89:b3:fc:c1:d8:da:0c:c4:a4:a1:79:46:24: 68:c4:14:58 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUM0pD/gBK+WDtAJ0WtJWorxtckj4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMTA0WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZmM0YzIyMzJkZDNiNmM4YTM3ZTQwMTZhNjgxOGFiOTMx YmQ1YjMxZDA2NWNlNGZlNzA0M2E3MjlmNzA3YWU1MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD00adrTyqC9s+VwT5qNcaKvNtqm39PhF1UEAcNDwnjOilO nHce2TpksdZadosHBLOZbl4kBmj6S43frduR3H+qFIkELaBFGkQurnpXyRvJaHCC HSjhasNFLutSykQFqSbPCpB8Q2CpO+NXGTRJjyRblz+dFXeSkmPkWObm6Ng9erkQ CtcMlCki5vMuMp/iyiUZDOa/itKkUozvuxzlw6gFRdB16qCsB65cJ+B/FsZgH1D8 VkvnvpA2iKxmmEupI9GUKPTIlp/SGeyQo9yTQRYJublJ3lXPSce62P272oBbxLAU mQqbc/PoLJFJdN2eOTQVz0KuJ8qtaaAC7ECUEzJ3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2XUmB77TJH2omeqSPz5wt29hlyAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EwMDI0ZTAwLWY5MzctNGI2My05MWRmLWQ0NWNlMGE2YTI3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYBAwDQYJKoZIhvcNAQELBQADggEBAClN9OiayCOPBss+hZNXuo3x d/u+KDXzQrb1eBWFyNHKZJeMi+5eg44HtpR0UKfhkBWpGZ/60aMQX12rF5Rx/Xh9 FJKnWfpNgp8FhkIa2y4mK6Z/sOBl7axs1Iw2Vg257XL+Z4Hus1Ela8IR1t47I41X zPuNwaBncYXhoJHRf/jvqwFjMCMIHVbYNxMlSv46Jo/boETQL/5eHSXTPrWlIxEz lIU8nuDhfnu/vorerQFEn1rziR4kFzXfMdv4RAsfVTdI+auBO8AYLwdZ9nlWjZOu LWyi486Hgoq3Xps/ItuUannGhqS1JB59BlRSK2n8ibP8wdjaDMSkoXlGJGjEFFg= -----END CERTIFICATE-----Generated at Mon Aug 4 15:30:46 2025 by rpki-client