$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa File: a48ca006-b4f2-49da-b519-80bf4857d7e9.roa (raw, json) Hash identifier: aAotJ/+qCjUisjjy5J29qKg82G32eSyIwaYXl5yKxbQ= Subject key identifier: F0:54:85:3A:77:3F:4A:CE:70:F7:25:C0:11:8A:8B:47:1E:A4:4D:34 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D26492AD8A78F477336072BA9D8FD2E21E52436 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa Signing time: Wed 16 Jul 2025 23:51:59 +0000 ROA not before: Wed 16 Jul 2025 23:51:59 +0000 ROA not after: Wed 20 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7140::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:26:49:2a:d8:a7:8f:47:73:36:07:2b:a9:d8:fd:2e:21:e5:24:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 16 23:51:59 2025 GMT Not After : Aug 20 23:59:59 2025 GMT Subject: serialNumber=3362ddd80377a1e2c4145a66d67b8c147651779d6ae95b7e561830508fa58efb, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e0:83:af:67:d3:47:12:b2:f7:b9:63:52:ce: af:dc:cc:0e:ff:71:7d:5c:45:39:65:73:4d:39:42: 6c:49:70:df:0d:df:6e:e1:6a:27:52:bc:3d:99:a0: cd:32:1f:bb:5f:d2:8d:88:d5:46:39:a5:f4:d9:b3: 83:a9:2c:92:5e:52:95:75:4e:66:d5:ed:d0:30:06: b9:b5:42:7d:7c:a5:5e:84:28:5f:59:10:27:8b:a1: 15:5e:83:1f:ff:64:3f:b3:4e:41:6b:66:bf:be:19: c1:04:4e:8b:60:cb:f3:96:2a:c0:90:ae:ba:8c:c2: 2f:f6:13:8e:df:9c:19:ca:49:ae:a4:92:7f:03:5f: d4:eb:6a:0e:ab:3b:79:1e:df:fc:b7:15:9b:fa:7e: 01:9e:83:71:4a:1e:b8:8f:09:93:3b:f2:a1:17:cb: 84:14:fd:86:23:60:24:6a:7b:a0:09:30:1a:c9:15: 0b:ee:0e:07:3e:fb:7e:95:40:4e:49:9a:15:b4:57: 4c:b9:fa:95:63:46:c1:48:7d:ec:d0:22:af:7d:12: a2:3c:33:51:d0:c5:5d:f9:51:31:c1:d7:49:a2:0c: fa:7e:8a:b5:25:8f:73:55:48:58:d3:09:c0:ca:64: b3:f0:34:3d:08:ff:d9:fc:1e:1e:58:55:9e:c4:2d: 53:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:54:85:3A:77:3F:4A:CE:70:F7:25:C0:11:8A:8B:47:1E:A4:4D:34 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a48ca006-b4f2-49da-b519-80bf4857d7e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7140::/48 Signature Algorithm: sha256WithRSAEncryption a0:55:3b:6c:d7:d3:0d:e0:eb:14:22:a4:25:de:8c:d7:d9:87: ac:6d:53:07:59:65:fb:ce:05:1d:89:91:d0:5e:29:be:df:5f: b1:5d:a2:50:78:7c:b6:22:aa:e8:ce:70:5d:51:a1:40:cf:e5: f9:a6:d3:5d:93:c4:50:e0:d5:0e:0f:6b:40:e7:7a:b9:1c:29: 8b:d2:2b:ec:11:73:da:aa:b2:fb:4c:78:52:4c:31:3e:eb:5a: cc:dd:76:a0:c7:88:aa:3d:27:23:7a:27:a7:73:a3:aa:a1:f9: c8:ea:bc:8f:fb:55:ff:bf:ad:51:5e:19:33:4f:c2:cd:9d:2c: f9:ab:0d:b5:ed:e1:4d:79:30:bc:f8:81:5c:ae:e0:0f:2a:74: 3a:e5:98:62:3c:5a:92:65:a6:3b:39:de:fd:b6:76:8e:f0:20: 79:43:b2:87:41:8b:3e:3a:04:80:b3:f3:36:a9:0d:ab:cd:a4: f8:29:00:b4:73:7e:c1:90:86:1b:58:12:83:b9:8b:e5:16:aa: 1e:42:bd:eb:3e:4f:ff:ef:bc:c8:3e:71:69:dd:bb:02:19:89: 06:4c:fe:77:43:ea:91:9e:1f:6e:eb:9b:4b:d1:20:e1:97:21: 9f:46:84:9e:5a:0d:95:7a:85:6b:06:c1:06:cc:e8:7b:81:9d: 98:d1:30:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUHSZJKtinj0dzNgcrqdj9LiHlJDYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE2MjM1MTU5WhcNMjUwODIwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzYyZGRkODAzNzdhMWUyYzQxNDVhNjZkNjdiOGMxNDc2 NTE3NzlkNmFlOTViN2U1NjE4MzA1MDhmYTU4ZWZiMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf4IOvZ9NHErL3uWNSzq/czA7/cX1cRTllc005QmxJcN8N 327haidSvD2ZoM0yH7tf0o2I1UY5pfTZs4OpLJJeUpV1TmbV7dAwBrm1Qn18pV6E KF9ZECeLoRVegx//ZD+zTkFrZr++GcEETotgy/OWKsCQrrqMwi/2E47fnBnKSa6k kn8DX9Trag6rO3ke3/y3FZv6fgGeg3FKHriPCZM78qEXy4QU/YYjYCRqe6AJMBrJ FQvuDgc++36VQE5JmhW0V0y5+pVjRsFIfezQIq99EqI8M1HQxV35UTHB10miDPp+ irUlj3NVSFjTCcDKZLPwND0I/9n8Hh5YVZ7ELVORAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8FSFOnc/Ss5w9yXAEYqLRx6kTTQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E0OGNhMDA2LWI0ZjItNDlkYS1iNTE5LTgwYmY0ODU3ZDdlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycUAwDQYJKoZIhvcNAQELBQADggEBAKBVO2zX0w3g6xQipCXejNfZ h6xtUwdZZfvOBR2JkdBeKb7fX7FdolB4fLYiqujOcF1RoUDP5fmm012TxFDg1Q4P a0DnerkcKYvSK+wRc9qqsvtMeFJMMT7rWszddqDHiKo9JyN6J6dzo6qh+cjqvI/7 Vf+/rVFeGTNPws2dLPmrDbXt4U15MLz4gVyu4A8qdDrlmGI8WpJlpjs53v22do7w IHlDsodBiz46BICz8zapDavNpPgpALRzfsGQhhtYEoO5i+UWqh5Cves+T//vvMg+ cWnduwIZiQZM/ndD6pGeH27rm0vRIOGXIZ9GhJ5aDZV6hWsGwQbM6HuBnZjRMJE= -----END CERTIFICATE-----Generated at Wed Aug 6 13:02:51 2025 by rpki-client