$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa File: aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa (raw, json) Hash identifier: xzOrpy9uK7nrbqlkL9d6kDQekSx65APzrHddYhpffVk= Subject key identifier: 1B:E8:14:B1:B6:88:D5:2C:47:CE:8D:0A:66:1A:47:A4:42:97:6C:38 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 31352F2FE859E4CCA92D246877E247524849DFB7 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa Signing time: Tue 05 Aug 2025 18:30:06 +0000 ROA not before: Tue 05 Aug 2025 18:30:06 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e200::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:35:2f:2f:e8:59:e4:cc:a9:2d:24:68:77:e2:47:52:48:49:df:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:06 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=a9378c1ab360194b4c0c0dddc4baa9e35e84b4ed1a510a5953b5fb5f93b8ca67, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:84:6e:1c:4d:7d:66:53:f0:f5:39:15:65:76: 38:4b:a8:29:39:51:b2:11:d3:50:0f:f8:f0:e5:09: 57:d2:7e:46:a8:12:e6:71:02:1f:65:be:49:7c:29: 21:f3:d8:13:20:f4:a3:96:59:b8:0a:8e:38:32:9a: 9a:93:d7:6e:c7:df:df:b9:76:5c:d2:bb:20:50:c1: 1e:2f:de:32:21:a8:46:89:d2:21:02:a5:4b:d0:00: 35:a6:6b:b2:20:d0:8f:1c:04:08:26:72:d6:1d:98: 92:0a:5a:d5:a8:57:b8:25:9d:9e:af:2d:40:e5:cc: 4f:7a:cc:e2:8b:34:30:e8:ee:43:39:a0:52:ca:fd: 53:5e:66:86:b8:00:0e:24:1d:f4:91:62:43:c9:d6: c5:a1:29:f4:7a:f7:cb:68:79:7b:65:00:d7:88:32: e4:96:54:ba:39:9c:dc:48:a6:e9:52:c5:54:19:dd: 97:66:5b:55:d2:4e:4e:33:58:d2:7a:48:2b:5f:0f: 45:c1:87:f1:ee:d9:60:a5:74:14:f8:05:a8:a4:d8: 99:0c:86:81:ce:61:11:ec:f7:89:cd:ee:f1:d4:7b: 0c:f4:73:e9:49:06:fa:cd:6d:85:c7:0f:e0:65:29: 86:d7:74:a8:2b:69:9b:ec:24:80:ee:0a:87:9e:5f: 6c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E8:14:B1:B6:88:D5:2C:47:CE:8D:0A:66:1A:47:A4:42:97:6C:38 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/aaf51402-f1bf-4e7b-b7c3-65d93def6bd4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e200::/42 Signature Algorithm: sha256WithRSAEncryption 9e:b1:82:2a:20:df:af:32:4a:58:13:80:13:d9:d0:eb:3a:d5: ab:0e:ab:fe:bc:0c:5b:46:83:4f:e1:46:79:3e:06:fa:2c:7f: d1:12:55:d0:43:aa:5e:a5:b2:fb:3c:02:d7:9a:95:df:5f:03: 65:bb:bb:67:df:42:1d:f1:ac:0e:d6:90:72:61:0c:56:21:22: 2e:da:f2:a1:fb:17:6f:1b:3b:23:4d:85:46:66:09:9f:1c:5a: 37:b5:6c:be:99:47:1b:7e:09:73:15:84:41:40:4e:68:3e:40: 6e:de:07:a1:bf:09:54:6e:a3:18:ee:1d:2a:d8:ed:34:a0:2c: a3:eb:a4:c0:36:ea:cc:97:8e:f4:45:be:9c:7e:03:a9:bd:e1: 50:f0:7b:15:1a:8f:e0:6b:ce:b2:a3:11:2c:6f:38:f7:da:02: 8b:0c:63:6e:74:f7:c0:5d:f7:da:2a:02:9a:86:0f:1d:a8:ca: d0:47:fb:ba:96:7f:fe:82:12:b3:f0:3a:35:d7:10:85:46:25: 1a:41:6c:b5:53:89:28:2b:b9:db:05:e7:d8:07:d4:94:35:5e: ce:d9:66:55:11:1f:51:ed:01:0c:62:da:ad:e4:ae:c3:74:c0: 1f:44:77:b7:4a:08:28:e9:55:9a:3e:37:09:1b:3f:d6:ed:13: 7b:ae:94:d5 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUMTUvL+hZ5MypLSRod+JHUkhJ37cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDA2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTM3OGMxYWIzNjAxOTRiNGMwYzBkZGRjNGJhYTllMzVl ODRiNGVkMWE1MTBhNTk1M2I1ZmI1ZjkzYjhjYTY3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyhG4cTX1mU/D1ORVldjhLqCk5UbIR01AP+PDlCVfSfkao EuZxAh9lvkl8KSHz2BMg9KOWWbgKjjgympqT127H39+5dlzSuyBQwR4v3jIhqEaJ 0iECpUvQADWma7Ig0I8cBAgmctYdmJIKWtWoV7glnZ6vLUDlzE96zOKLNDDo7kM5 oFLK/VNeZoa4AA4kHfSRYkPJ1sWhKfR698toeXtlANeIMuSWVLo5nNxIpulSxVQZ 3ZdmW1XSTk4zWNJ6SCtfD0XBh/Hu2WCldBT4Baik2JkMhoHOYRHs94nN7vHUewz0 c+lJBvrNbYXHD+BlKYbXdKgraZvsJIDuCoeeX2wZAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUG+gUsbaI1SxHzo0KZhpHpEKXbDgwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FhZjUxNDAyLWYxYmYtNGU3Yi1iN2MzLTY1ZDkzZGVmNmJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD74gAwDQYJKoZIhvcNAQELBQADggEBAJ6xgiog368ySlgTgBPZ0Os6 1asOq/68DFtGg0/hRnk+Bvosf9ESVdBDql6lsvs8Ateald9fA2W7u2ffQh3xrA7W kHJhDFYhIi7a8qH7F28bOyNNhUZmCZ8cWje1bL6ZRxt+CXMVhEFATmg+QG7eB6G/ CVRuoxjuHSrY7TSgLKPrpMA26syXjvRFvpx+A6m94VDwexUaj+BrzrKjESxvOPfa AosMY25098Bd99oqApqGDx2oytBH+7qWf/6CErPwOjXXEIVGJRpBbLVTiSgrudsF 59gH1JQ1Xs7ZZlURH1HtAQxi2q3krsN0wB9Ed7dKCCjpVZo+NwkbP9btE3uulNU= -----END CERTIFICATE-----Generated at Wed Aug 6 10:56:40 2025 by rpki-client