$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa File: ab860450-a818-47f3-a42f-5570594471c3.roa (raw, json) Hash identifier: rQWVGpmcoMbdloyjRU8mSRLws1iTzzZhj9oeJfJRMVc= Subject key identifier: B9:B5:7D:AE:51:A0:61:72:1D:9F:7A:92:CE:FD:C3:98:F0:8B:C8:13 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7B0A4B40209F01128AF4026BCD6B46C857E81110 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa Signing time: Tue 05 Aug 2025 18:30:29 +0000 ROA not before: Tue 05 Aug 2025 18:30:29 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e900::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0a:4b:40:20:9f:01:12:8a:f4:02:6b:cd:6b:46:c8:57:e8:11:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:29 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=894f4af30a10347bca9536c3c2effdaf1008744b002525d99f3bb0e6e8c0da5f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:58:49:5d:8c:43:29:28:59:60:27:92:f8:42: e9:ff:2c:80:ae:20:11:f3:03:3a:d4:c3:50:e7:e3: b7:51:25:45:2b:dd:a9:bd:43:da:f7:be:98:d8:6c: d5:7d:77:32:af:03:41:6b:da:ed:56:db:4d:91:82: 1f:95:96:05:23:1e:68:1d:38:32:a3:ef:05:69:6e: 7c:0f:76:36:7a:3a:2c:72:83:eb:e6:c6:7d:7c:e3: 3e:19:65:c5:70:be:d1:b2:3c:9f:d0:be:d1:4b:01: b8:df:ec:31:d7:7d:46:6f:95:0b:97:ec:ad:f6:9a: f0:a1:9a:ae:19:54:1a:59:47:22:d9:2c:85:de:92: 5a:0f:d7:21:08:bb:9c:a3:fb:74:4a:04:d4:f0:6a: b4:c0:62:87:e7:a4:e5:b3:5e:47:04:75:4a:8e:a5: e3:ee:48:47:c1:a6:fa:a4:64:cf:d2:18:98:34:4f: 65:c6:79:fd:66:57:93:cb:dd:0a:be:3b:af:e7:9b: 12:01:e3:7a:66:bd:94:16:9f:2c:de:3d:39:71:33: 9e:9a:f2:5c:55:b6:a7:9e:ab:cf:78:42:50:88:e3: e1:b8:23:dc:c7:be:86:43:93:2d:1c:23:19:5b:5b: 26:1d:79:08:71:11:bb:72:97:7b:e6:da:4a:da:f9: d0:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B5:7D:AE:51:A0:61:72:1D:9F:7A:92:CE:FD:C3:98:F0:8B:C8:13 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/ab860450-a818-47f3-a42f-5570594471c3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e900::/42 Signature Algorithm: sha256WithRSAEncryption 74:cb:58:44:27:bf:1c:be:94:43:b0:7f:0f:26:f0:13:72:8d: f7:2a:8e:9a:d8:81:1f:18:dd:cf:ba:b1:cd:8c:90:2a:22:e8: 96:0c:89:f6:51:27:e7:1e:23:26:5b:d3:b4:4c:e4:9b:ef:15: c9:c1:32:fe:ef:d0:dd:30:7a:4b:b8:85:db:f5:18:e4:c5:fa: d3:ff:86:d6:96:35:b6:dd:ff:02:b7:5c:ac:cc:15:c7:b8:08: bc:ab:23:a9:1a:55:f7:44:6b:9d:85:46:1c:25:6c:ec:eb:f9: cf:d5:cb:fb:c6:bf:e4:17:cd:26:db:06:f2:c6:80:53:b5:bf: fa:28:b5:00:ef:69:1a:a2:99:63:e9:cf:ee:0a:82:5a:27:7d: fb:2e:e9:b6:d2:1d:a4:d4:63:86:4c:60:f6:10:81:6f:95:43: 08:d6:6c:c1:a2:86:a5:ab:f7:38:a8:35:08:44:f1:63:24:23: f8:cf:d9:22:33:04:f0:b6:9d:96:26:73:66:f0:10:a0:23:65: de:78:b3:8e:2e:c4:56:4b:e8:33:d2:fd:f5:df:7c:31:13:92: 2e:47:82:2a:d2:ac:3b:af:81:de:2a:b5:a9:4e:9f:14:35:24: fc:1e:4e:6f:58:e6:32:b5:0e:bd:2d:1b:9f:d2:6f:01:fd:c3: f6:e3:43:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUewpLQCCfARKK9AJrzWtGyFfoERAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDI5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTRmNGFmMzBhMTAzNDdiY2E5NTM2YzNjMmVmZmRhZjEw MDg3NDRiMDAyNTI1ZDk5ZjNiYjBlNmU4YzBkYTVmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXWEldjEMpKFlgJ5L4Qun/LICuIBHzAzrUw1Dn47dRJUUr 3am9Q9r3vpjYbNV9dzKvA0Fr2u1W202Rgh+VlgUjHmgdODKj7wVpbnwPdjZ6Oixy g+vmxn184z4ZZcVwvtGyPJ/QvtFLAbjf7DHXfUZvlQuX7K32mvChmq4ZVBpZRyLZ LIXekloP1yEIu5yj+3RKBNTwarTAYofnpOWzXkcEdUqOpePuSEfBpvqkZM/SGJg0 T2XGef1mV5PL3Qq+O6/nmxIB43pmvZQWnyzePTlxM56a8lxVtqeeq894QlCI4+G4 I9zHvoZDky0cIxlbWyYdeQhxEbtyl3vm2kra+dBPAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUubV9rlGgYXIdn3qSzv3DmPCLyBMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FiODYwNDUwLWE4MTgtNDdmMy1hNDJmLTU1NzA1OTQ0NzFjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76QAwDQYJKoZIhvcNAQELBQADggEBAHTLWEQnvxy+lEOwfw8m8BNy jfcqjprYgR8Y3c+6sc2MkCoi6JYMifZRJ+ceIyZb07RM5JvvFcnBMv7v0N0weku4 hdv1GOTF+tP/htaWNbbd/wK3XKzMFce4CLyrI6kaVfdEa52FRhwlbOzr+c/Vy/vG v+QXzSbbBvLGgFO1v/ootQDvaRqimWPpz+4Kglonffsu6bbSHaTUY4ZMYPYQgW+V QwjWbMGihqWr9zioNQhE8WMkI/jP2SIzBPC2nZYmc2bwEKAjZd54s44uxFZL6DPS /fXffDETki5HgirSrDuvgd4qtalOnxQ1JPweTm9Y5jK1Dr0tG5/SbwH9w/bjQxg= -----END CERTIFICATE-----Generated at Thu Aug 7 04:44:07 2025 by rpki-client