$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa File: a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa (raw, json) Hash identifier: DwB8AdCaYnMFjAew1k6dKiM2WNU75WNkRMIeVod3HLs= Subject key identifier: 7E:86:94:31:38:61:1F:EF:FF:A5:86:92:E2:4A:1E:F5:28:66:F3:AE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 71A120692DF24196B9D9F546A7CEB9C8861B4256 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa Signing time: Tue 05 Aug 2025 18:20:53 +0000 ROA not before: Tue 05 Aug 2025 18:20:53 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:a1:20:69:2d:f2:41:96:b9:d9:f5:46:a7:ce:b9:c8:86:1b:42:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:53 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=aea24986b429fc08d1c44fa2d62941e977c99ef8207f41cd56f5591e312b0e22, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:10:ec:f6:e1:97:01:82:70:da:90:3e:a8:6b: 43:92:95:63:80:67:c9:ea:7e:84:66:f7:fd:de:62: 53:79:02:61:31:b3:32:2c:e0:a7:78:54:8c:57:dc: 8b:ef:c4:51:c5:32:08:de:74:91:7a:00:08:0c:df: 83:ab:65:cd:89:12:d5:a5:14:8e:13:ec:0c:ed:a6: ee:da:7e:4e:6f:41:e2:44:0e:26:3a:21:4b:9b:d0: 9b:30:7c:95:72:8a:b2:30:fa:78:01:c9:f7:b1:1f: 4f:07:9e:e4:71:d0:55:48:84:28:04:59:b3:09:3f: 9b:b0:8c:70:e3:fd:99:7b:46:47:39:ec:19:a2:79: a0:73:16:d7:2b:7b:bc:21:58:db:e6:a7:2d:ba:53: 8f:61:dc:d7:8b:3c:0c:c9:0f:c6:84:d5:28:eb:09: ca:75:18:d7:99:80:a7:3c:a5:08:eb:39:3f:28:38: a3:54:c1:82:db:ce:14:19:1d:e2:f2:8a:67:6d:cf: 30:31:43:29:78:9c:0a:a5:93:26:27:e1:15:b1:d6: 1e:97:cf:19:86:83:6c:c0:e0:4c:8c:76:71:80:7d: 18:a5:c1:fd:09:f5:fb:f6:2f:69:67:bf:b6:ef:a2: 68:84:b2:1d:a4:c9:2d:cd:e0:a1:18:61:81:14:fc: 73:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:86:94:31:38:61:1F:EF:FF:A5:86:92:E2:4A:1E:F5:28:66:F3:AE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/a65dc579-55d0-4640-8ee5-6bd70e3dd724.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551c::/48 Signature Algorithm: sha256WithRSAEncryption 40:92:21:33:29:84:07:2f:97:60:bd:fc:17:90:7a:ed:02:71: 14:09:9d:3c:45:ea:41:cc:a9:1a:79:b7:bb:18:03:82:9c:52: 2b:61:7d:c5:03:22:db:37:64:40:69:b3:d2:52:ae:2e:24:01: 50:3e:d2:51:12:85:b3:bf:34:27:4a:eb:2c:5e:fc:5f:24:f1: 0e:b8:38:3d:34:40:0b:e9:66:7e:9a:9f:85:dc:33:55:f1:70: a8:54:5e:4e:43:b1:08:a5:52:a2:eb:96:d7:87:a1:f6:34:d0: 4a:5a:4c:10:4f:23:1a:42:7f:06:77:2e:89:77:1b:83:ea:65: be:eb:70:65:e9:87:9c:f8:29:b3:26:b0:a6:11:14:8d:aa:c7: 45:a8:c2:0a:02:7e:22:de:9a:c0:a7:1b:8d:2b:ed:93:5c:68: f5:2a:66:29:f7:a0:d6:27:5e:08:b1:56:43:39:ff:a4:ed:09: 2e:0a:27:76:b5:87:8b:45:5c:16:d2:09:97:c8:ed:96:6f:58: 6c:90:30:a2:60:75:29:63:dd:af:b1:ed:dc:61:0b:45:f2:66: 30:6a:4b:5e:d1:75:f8:93:b4:8d:4d:1a:03:7b:5c:9f:f9:88: 86:2b:40:45:a9:68:23:bf:de:13:aa:50:69:db:a3:f7:7a:ec: 30:9b:5c:c0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUcaEgaS3yQZa52fVGp865yIYbQlYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDUzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWEyNDk4NmI0MjlmYzA4ZDFjNDRmYTJkNjI5NDFlOTc3 Yzk5ZWY4MjA3ZjQxY2Q1NmY1NTkxZTMxMmIwZTIyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjEOz24ZcBgnDakD6oa0OSlWOAZ8nqfoRm9/3eYlN5AmEx szIs4Kd4VIxX3IvvxFHFMgjedJF6AAgM34OrZc2JEtWlFI4T7Aztpu7afk5vQeJE DiY6IUub0JswfJVyirIw+ngByfexH08HnuRx0FVIhCgEWbMJP5uwjHDj/Zl7Rkc5 7BmieaBzFtcre7whWNvmpy26U49h3NeLPAzJD8aE1SjrCcp1GNeZgKc8pQjrOT8o OKNUwYLbzhQZHeLyimdtzzAxQyl4nAqlkyYn4RWx1h6XzxmGg2zA4EyMdnGAfRil wf0J9fv2L2lnv7bvomiEsh2kyS3N4KEYYYEU/HO1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfoaUMThhH+//pYaS4koe9Shm864wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2E2NWRjNTc5LTU1ZDAtNDY0MC04ZWU1LTZiZDcwZTNkZDcyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRwwDQYJKoZIhvcNAQELBQADggEBAECSITMphAcvl2C9/BeQeu0C cRQJnTxF6kHMqRp5t7sYA4KcUithfcUDIts3ZEBps9JSri4kAVA+0lEShbO/NCdK 6yxe/F8k8Q64OD00QAvpZn6an4XcM1XxcKhUXk5DsQilUqLrlteHofY00EpaTBBP IxpCfwZ3Lol3G4PqZb7rcGXph5z4KbMmsKYRFI2qx0WowgoCfiLemsCnG40r7ZNc aPUqZin3oNYnXgixVkM5/6TtCS4KJ3a1h4tFXBbSCZfI7ZZvWGyQMKJgdSlj3a+x 7dxhC0XyZjBqS17RdfiTtI1NGgN7XJ/5iIYrQEWpaCO/3hOqUGnbo/d67DCbXMA= -----END CERTIFICATE-----Generated at Fri Aug 8 19:30:49 2025 by rpki-client