$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa File: a1083a01-360a-4b23-a3a3-630df82536fc.roa (raw, json) Hash identifier: 0dkSBjahDaBHkhNQq+2AWhZqY2pkpMGJZ6R2DXq+26I= Subject key identifier: 8B:8F:67:6C:27:85:64:51:77:EE:00:1B:A1:70:93:BD:56:8D:E8:1C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1924A06BAB1B345C73F1FD0DDC8CC79F3A4C2530 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa Signing time: Tue 05 Aug 2025 18:20:56 +0000 ROA not before: Tue 05 Aug 2025 18:20:56 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:24:a0:6b:ab:1b:34:5c:73:f1:fd:0d:dc:8c:c7:9f:3a:4c:25:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:56 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=b75fa1fec272441574da955e5e5f758cf3918173448e9e7f8a7a8bf4ba4d82c3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:67:6b:98:7b:e8:3d:9b:62:98:fa:a4:26:9f: ac:37:e1:53:6d:72:68:d0:a8:bf:0d:c5:4a:4f:89: a1:7c:a1:97:f8:da:98:1b:5e:67:b9:fc:3b:6c:57: 60:9e:e1:61:6e:9e:d6:75:75:62:39:5d:5a:66:dd: 69:5a:81:18:7c:3b:ff:26:99:63:48:5c:83:3d:4f: d0:a5:f4:5e:34:1b:62:9c:c2:09:ea:a2:e1:d2:b4: d0:22:e1:20:43:4f:a3:29:b2:f0:29:1d:28:e9:f1: e4:09:5c:d9:90:b8:2b:eb:ab:12:94:df:23:56:7f: d6:94:42:9e:18:43:5a:16:b1:61:5b:dd:3c:e3:18: 83:80:e4:a5:a3:69:f6:83:42:36:24:4f:12:c9:e1: d4:bb:14:60:f1:05:93:bc:bf:a6:00:7d:a9:f9:ef: 4a:e9:41:d7:1f:2e:84:c9:f1:7d:c6:5c:98:64:1c: a2:9b:7c:01:3c:a1:86:e2:b9:88:c3:54:50:15:93: 16:be:c4:c0:d7:3a:83:3e:29:af:5d:da:4f:0b:f8: c3:37:3f:6b:a7:fe:28:ec:5c:b6:e5:04:f1:f4:dd: 09:1e:c9:ed:64:ca:50:f4:46:7c:4b:e1:70:32:55: fe:db:69:3c:87:9e:19:70:d5:71:c1:d1:bf:24:12: dd:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:8F:67:6C:27:85:64:51:77:EE:00:1B:A1:70:93:BD:56:8D:E8:1C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a1083a01-360a-4b23-a3a3-630df82536fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:80::/48 Signature Algorithm: sha256WithRSAEncryption 96:5c:18:d2:f0:ff:01:19:45:64:35:08:65:b0:f9:53:89:f3: fe:29:de:b1:ec:d9:c6:d6:75:52:7f:be:3a:76:87:5a:d1:b1: 1d:45:66:20:d2:f2:2b:79:1e:44:26:22:36:91:68:1d:60:43: 32:3e:81:db:8b:20:6c:86:45:84:70:78:67:c3:96:a2:75:a2: 26:b1:50:4e:c0:9f:40:3d:32:44:46:aa:83:a0:6c:d3:72:35: cf:aa:bf:10:ef:bf:ce:5e:8a:b0:b1:dc:9c:70:28:4d:29:ee: 8e:a6:06:3d:27:33:40:53:7d:96:13:6f:01:58:63:5a:5c:d8: 00:01:68:22:2f:45:58:28:c5:bd:00:55:b3:f8:9d:9b:e2:ae: e4:5a:87:0f:9e:12:8b:53:e3:7d:55:31:56:45:01:7c:19:88: 27:c8:1d:26:02:32:bd:20:00:cb:c8:8f:dd:50:46:d5:c1:cc: a9:bf:5d:03:35:14:92:3d:76:d2:20:cc:1f:8d:43:15:c0:cb: 59:9b:ef:39:44:d5:af:13:58:75:57:e6:c0:e9:8d:58:bc:72: 2d:3f:c2:1d:ce:13:73:e5:92:b4:e1:cf:36:de:01:75:f6:32: b4:4e:78:11:52:b0:b7:c6:8d:c1:7e:87:cb:10:11:1b:dc:97: d1:a2:1b:db -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUGSSga6sbNFxz8f0N3IzHnzpMJTAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDU2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNzVmYTFmZWMyNzI0NDE1NzRkYTk1NWU1ZTVmNzU4Y2Yz OTE4MTczNDQ4ZTllN2Y4YTdhOGJmNGJhNGQ4MmMzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1Z2uYe+g9m2KY+qQmn6w34VNtcmjQqL8NxUpPiaF8oZf4 2pgbXme5/DtsV2Ce4WFuntZ1dWI5XVpm3WlagRh8O/8mmWNIXIM9T9Cl9F40G2Kc wgnqouHStNAi4SBDT6MpsvApHSjp8eQJXNmQuCvrqxKU3yNWf9aUQp4YQ1oWsWFb 3TzjGIOA5KWjafaDQjYkTxLJ4dS7FGDxBZO8v6YAfan570rpQdcfLoTJ8X3GXJhk HKKbfAE8oYbiuYjDVFAVkxa+xMDXOoM+Ka9d2k8L+MM3P2un/ijsXLblBPH03Qke ye1kylD0RnxL4XAyVf7baTyHnhlw1XHB0b8kEt3nAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUi49nbCeFZFF37gAboXCTvVaN6BwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ExMDgzYTAxLTM2MGEtNGIyMy1hM2EzLTYzMGRmODI1MzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAIAwDQYJKoZIhvcNAQELBQADggEBAJZcGNLw/wEZRWQ1CGWw+VOJ 8/4p3rHs2cbWdVJ/vjp2h1rRsR1FZiDS8it5HkQmIjaRaB1gQzI+gduLIGyGRYRw eGfDlqJ1oiaxUE7An0A9MkRGqoOgbNNyNc+qvxDvv85eirCx3JxwKE0p7o6mBj0n M0BTfZYTbwFYY1pc2AABaCIvRVgoxb0AVbP4nZviruRahw+eEotT431VMVZFAXwZ iCfIHSYCMr0gAMvIj91QRtXBzKm/XQM1FJI9dtIgzB+NQxXAy1mb7zlE1a8TWHVX 5sDpjVi8ci0/wh3OE3PlkrThzzbeAXX2MrROeBFSsLfGjcF+h8sQERvcl9GiG9s= -----END CERTIFICATE-----Generated at Wed Aug 6 09:38:37 2025 by rpki-client