$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa File: a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa (raw, json) Hash identifier: 8BoVuZa6SEW8mZL9JkMmShfdB8gXhEHZOhIm/TTAjas= Subject key identifier: E2:CE:23:71:DE:B5:82:5C:C0:7E:CC:A1:C9:A8:E7:7C:EB:FA:E9:19 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 417465530ADB0F8B5F80F9DBB57CCFB09DF4E5E5 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa Signing time: Tue 05 Aug 2025 18:31:16 +0000 ROA not before: Tue 05 Aug 2025 18:31:16 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e600::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:74:65:53:0a:db:0f:8b:5f:80:f9:db:b5:7c:cf:b0:9d:f4:e5:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:16 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=e03aafa26bab78831080bbd62026f4beb46885439d6df22e996650449ca394cf, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:80:60:3b:78:78:52:73:b1:e4:90:46:43:4a: de:6c:7d:49:2c:39:a9:0b:d9:56:3c:0b:0e:36:97: de:a2:ec:e1:f3:8b:ab:85:ed:58:4a:98:4a:3b:b4: e8:b8:d3:38:da:43:e9:7a:83:f3:ef:70:8b:7a:ab: c6:04:d2:8a:c5:86:8f:cb:2b:6f:fa:bc:70:fb:1a: a3:ec:14:be:c9:67:42:04:01:39:1e:ee:ba:a7:91: 55:be:ad:c8:34:2e:e8:f2:a2:9c:0f:1b:63:cd:16: a1:2e:38:4c:f3:de:54:b0:16:a9:a9:1a:89:06:04: 81:48:45:02:75:45:55:d0:e0:96:f8:e9:e4:c4:54: 03:17:40:94:45:4e:ae:b5:c9:ca:e1:8d:86:8e:8f: fb:d7:0d:da:a9:78:d8:7a:4c:87:92:24:4f:3c:a5: 58:bf:62:54:84:d3:03:ae:e3:79:69:cf:8b:24:04: ea:15:37:64:71:48:8c:1e:b5:66:30:e9:d4:e7:ff: 52:ab:9f:42:d2:94:4e:dd:a6:cd:ee:d5:a2:48:3e: 55:f8:f0:8a:fc:02:b3:0f:7e:d4:90:b1:24:ff:7b: 81:f5:cd:40:9f:60:81:80:97:b4:4b:37:32:93:7d: c0:ca:2c:a4:6b:79:9b:15:78:ad:91:f7:3e:cd:67: 54:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CE:23:71:DE:B5:82:5C:C0:7E:CC:A1:C9:A8:E7:7C:EB:FA:E9:19 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a37af6d7-0b31-4a46-b8d9-08efcf8fef53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e600::/42 Signature Algorithm: sha256WithRSAEncryption 55:0f:79:26:34:2a:92:18:90:62:1e:12:a5:00:ab:cc:19:53: 90:ad:cc:17:9e:dd:44:c8:00:7b:63:79:02:66:5a:78:fb:d8: bb:3b:19:1d:d8:06:a6:6c:bb:fe:e2:c7:14:fe:4d:7c:39:42: a2:66:dd:4f:d4:85:31:5b:90:2c:93:c1:0a:a0:50:6e:dc:16: 06:5d:45:11:30:da:e2:1e:e2:0b:8b:1c:df:0b:d5:00:21:e8: a0:9a:d4:e8:b7:4a:4a:d4:80:11:38:8c:89:4c:38:d5:2b:7d: 7b:58:84:c3:b1:6e:69:99:d8:ae:c3:c9:ea:46:66:d4:03:1d: d4:e7:32:35:73:3c:3f:cd:68:4c:bc:8d:6a:77:87:51:e7:17: 02:72:52:e1:0e:4b:91:35:7c:ea:2e:d2:dd:ab:67:0b:9d:8c: c1:7b:18:6a:85:2f:91:47:64:3c:d9:f4:1c:53:5c:f0:1d:cc: b8:ff:ff:d5:e1:56:a2:07:57:84:87:b6:b3:86:99:ab:e9:19: 77:45:34:31:2f:84:28:9c:be:8d:e2:af:5e:c1:63:a2:40:8c: b0:b6:b8:0d:c0:b0:31:de:52:de:aa:a6:59:31:3c:3e:db:f1: 83:de:4e:f4:66:5c:fd:5b:77:2a:ec:1e:50:52:27:1b:81:b2: d1:fd:3a:fa -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQXRlUwrbD4tfgPnbtXzPsJ305eUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTE2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDNhYWZhMjZiYWI3ODgzMTA4MGJiZDYyMDI2ZjRiZWI0 Njg4NTQzOWQ2ZGYyMmU5OTY2NTA0NDljYTM5NGNmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCogGA7eHhSc7HkkEZDSt5sfUksOakL2VY8Cw42l96i7OHz i6uF7VhKmEo7tOi40zjaQ+l6g/PvcIt6q8YE0orFho/LK2/6vHD7GqPsFL7JZ0IE ATke7rqnkVW+rcg0LujyopwPG2PNFqEuOEzz3lSwFqmpGokGBIFIRQJ1RVXQ4Jb4 6eTEVAMXQJRFTq61ycrhjYaOj/vXDdqpeNh6TIeSJE88pVi/YlSE0wOu43lpz4sk BOoVN2RxSIwetWYw6dTn/1Krn0LSlE7dps3u1aJIPlX48Ir8ArMPftSQsST/e4H1 zUCfYIGAl7RLNzKTfcDKLKRreZsVeK2R9z7NZ1RTAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU4s4jcd61glzAfsyhyajnfOv66RkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2EzN2FmNmQ3LTBiMzEtNGE0Ni1iOGQ5LTA4ZWZjZjhmZWY1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD75gAwDQYJKoZIhvcNAQELBQADggEBAFUPeSY0KpIYkGIeEqUAq8wZ U5CtzBee3UTIAHtjeQJmWnj72Ls7GR3YBqZsu/7ixxT+TXw5QqJm3U/UhTFbkCyT wQqgUG7cFgZdRREw2uIe4guLHN8L1QAh6KCa1Oi3SkrUgBE4jIlMONUrfXtYhMOx bmmZ2K7DyepGZtQDHdTnMjVzPD/NaEy8jWp3h1HnFwJyUuEOS5E1fOou0t2rZwud jMF7GGqFL5FHZDzZ9BxTXPAdzLj//9XhVqIHV4SHtrOGmavpGXdFNDEvhCicvo3i r17BY6JAjLC2uA3AsDHeUt6qplkxPD7b8YPeTvRmXP1bdyrsHlBSJxuBstH9Ovo= -----END CERTIFICATE-----Generated at Wed Aug 6 00:37:56 2025 by rpki-client