$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa File: b2bd076f-38fe-414c-adae-9c6f359542b7.roa (raw, json) Hash identifier: RxED5frSNJ7PUj4iVpjhRZpwtdGGHePjggFJsjVGAIc= Subject key identifier: 56:98:11:CA:4E:0E:40:CE:22:E9:7F:41:AA:76:57:AA:F8:52:CC:A9 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D916379EC7BC30C51C062406F1EBB880C8690F3 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa Signing time: Fri 11 Jul 2025 18:30:59 +0000 ROA not before: Fri 11 Jul 2025 18:30:59 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:91:63:79:ec:7b:c3:0c:51:c0:62:40:6f:1e:bb:88:0c:86:90:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:30:59 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=7be05c1c736fbacab3e50eae45f4af8fc0f048e2ccf8f6e0e571f611c2265323, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bb:8b:cb:09:38:12:a7:65:93:0a:cc:6f:61: 65:b8:59:56:49:16:1a:1a:e6:bb:3d:3b:65:91:02: df:d6:8b:1d:ba:66:b9:1b:84:b9:3a:1c:62:bc:49: 88:84:56:f6:09:04:05:7d:7f:b4:f4:f9:8a:19:45: e3:45:36:ab:4f:ae:d9:1d:c8:e9:94:82:07:34:35: 47:85:45:f6:cf:79:2a:07:5e:7f:61:c5:1f:cf:0d: ce:11:b8:54:41:8c:4b:c3:0c:15:48:91:dd:55:cf: dd:29:7b:9a:e2:29:77:29:41:15:b7:cd:88:af:76: d4:b0:d4:6e:7b:9a:a2:cc:59:af:33:f8:a3:f7:a0: a3:3a:5b:33:85:82:27:51:ce:4b:22:4a:e8:ef:4d: a6:99:3f:fa:db:58:fe:28:2c:00:0b:51:92:c9:1e: 18:e4:0a:ef:ca:c4:61:f3:62:5f:35:1f:ad:56:63: 4a:4a:f9:e5:de:60:dd:c3:68:69:02:d2:95:92:8c: 35:37:9a:39:d6:93:fd:92:8c:cb:b8:6a:bb:75:02: 36:aa:66:f3:76:d8:23:b3:18:db:a3:55:30:8e:87: 9e:10:5b:3b:99:bb:83:bc:95:0b:ac:0f:30:08:e5: a5:60:2c:f1:3a:63:ce:9c:18:32:0b:bc:1c:ef:60: 8a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:98:11:CA:4E:0E:40:CE:22:E9:7F:41:AA:76:57:AA:F8:52:CC:A9 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 02:dc:08:22:6f:9f:af:cc:76:82:49:31:ca:c7:54:3a:bc:fb: a3:7e:46:23:69:64:d0:51:ee:e4:ea:b9:db:13:2e:85:34:26: d0:46:1a:3d:e1:88:5d:d3:79:7d:0f:fc:25:1b:d2:ea:34:a9: 45:a4:bb:f6:a7:53:46:be:a0:97:fa:f3:cc:60:8a:4e:36:44: 8d:3a:d7:d8:7b:7f:cf:e6:05:c6:4c:bb:02:6b:1d:24:4a:53: ee:c9:84:a7:50:63:6f:52:36:64:79:fe:34:41:9d:8d:af:53: 23:79:88:a1:c7:2a:53:72:39:9d:d5:63:cd:f0:09:42:c5:8c: dc:83:49:d3:cf:5b:1d:ff:99:50:e8:8e:76:5d:f8:9f:fe:2e: d1:38:62:16:3d:2b:b0:c3:d3:82:24:8e:07:ec:ae:51:6a:9c: 54:d2:92:a7:9d:83:2b:d4:a3:17:44:4d:71:90:73:09:91:f1: 02:eb:10:41:f2:6d:cb:9c:53:16:4c:4b:b0:2c:d7:cd:90:7e: 59:80:e8:61:d8:1d:5d:94:1f:7d:1a:4a:47:b7:e1:44:86:ff: a2:d9:35:04:b2:fd:31:fc:ad:f1:98:a1:5b:55:92:93:ba:c0: d7:a3:ff:81:da:07:7f:e3:a9:fb:4d:73:db:f3:33:1e:13:6e: ae:4c:b4:44 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHZFjeex7wwxRwGJAbx67iAyGkPMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgzMDU5WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmUwNWMxYzczNmZiYWNhYjNlNTBlYWU0NWY0YWY4ZmMw ZjA0OGUyY2NmOGY2ZTBlNTcxZjYxMWMyMjY1MzIzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/u4vLCTgSp2WTCsxvYWW4WVZJFhoa5rs9O2WRAt/Wix26 ZrkbhLk6HGK8SYiEVvYJBAV9f7T0+YoZReNFNqtPrtkdyOmUggc0NUeFRfbPeSoH Xn9hxR/PDc4RuFRBjEvDDBVIkd1Vz90pe5riKXcpQRW3zYivdtSw1G57mqLMWa8z +KP3oKM6WzOFgidRzksiSujvTaaZP/rbWP4oLAALUZLJHhjkCu/KxGHzYl81H61W Y0pK+eXeYN3DaGkC0pWSjDU3mjnWk/2SjMu4art1AjaqZvN22COzGNujVTCOh54Q WzuZu4O8lQusDzAI5aVgLPE6Y86cGDILvBzvYIoFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUVpgRyk4OQM4i6X9BqnZXqvhSzKkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyYmQwNzZmLTM4ZmUtNDE0Yy1hZGFlLTljNmYzNTk1NDJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAAtwIIm+fr8x2gkkxysdUOrz7 o35GI2lk0FHu5Oq52xMuhTQm0EYaPeGIXdN5fQ/8JRvS6jSpRaS79qdTRr6gl/rz zGCKTjZEjTrX2Ht/z+YFxky7AmsdJEpT7smEp1Bjb1I2ZHn+NEGdja9TI3mIoccq U3I5ndVjzfAJQsWM3INJ089bHf+ZUOiOdl34n/4u0ThiFj0rsMPTgiSOB+yuUWqc VNKSp52DK9SjF0RNcZBzCZHxAusQQfJty5xTFkxLsCzXzZB+WYDoYdgdXZQffRpK R7fhRIb/otk1BLL9Mfyt8ZihW1WSk7rA16P/gdoHf+Op+01z2/MzHhNurky0RA== -----END CERTIFICATE-----Generated at Mon Aug 4 15:37:52 2025 by rpki-client