$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa File: b2d641cc-0376-4d82-897a-3d5596d61679.roa (raw, json) Hash identifier: y+QeUy57hzNo/ffp42ME4rSZEEuMYOrsHMnccZlxI6o= Subject key identifier: 7E:6A:C9:6E:96:D7:86:3D:7F:2A:3A:A2:FE:87:B0:D0:7B:48:13:35 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2B30F0E7A83952EDCD5084018315C41D25666F66 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa Signing time: Fri 18 Jul 2025 15:00:13 +0000 ROA not before: Fri 18 Jul 2025 15:00:13 +0000 ROA not after: Fri 22 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f2:7101::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:30:f0:e7:a8:39:52:ed:cd:50:84:01:83:15:c4:1d:25:66:6f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 18 15:00:13 2025 GMT Not After : Aug 22 23:59:59 2025 GMT Subject: serialNumber=e992aae9095d25f2758722bc08d33364bcf3453c7c93c54067b331212d1fbf5e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1f:24:ff:ac:6d:15:93:3e:6b:36:f8:29:55: 00:75:9a:d6:a8:65:32:f2:60:1d:f8:31:7d:90:d7: cf:6a:b9:c2:75:09:c9:a6:16:00:9c:90:b4:fa:34: 0c:1e:19:a2:b9:76:d5:43:7c:2e:6d:bd:15:0e:41: a6:a4:07:18:31:ed:4d:fe:10:3a:da:e8:d0:bd:5f: 26:27:36:e7:4b:ee:ea:1a:a1:94:cd:5c:1c:00:ec: 83:be:c8:83:cf:18:0a:6f:08:6a:38:6d:3d:cb:a2: 8c:f5:a7:62:d1:82:37:99:54:a8:9a:4e:16:dd:47: 0a:45:f5:6f:19:28:79:c6:71:d2:ef:50:49:97:60: 84:32:16:41:e9:f9:60:af:2f:de:a6:73:20:7f:f5: 71:96:06:b3:32:a3:ca:bb:59:aa:cc:3d:b0:72:80: 42:3d:ee:7a:10:3a:ea:90:54:7a:48:3d:bf:c2:74: 70:cc:f8:5e:1c:12:bb:09:0a:71:7d:12:dd:bb:1a: 1a:b8:39:82:1e:a1:12:17:b9:9e:07:4d:4d:08:df: c6:69:e3:36:08:f0:25:e6:74:64:e4:b3:f6:ec:03: ea:1d:86:db:ec:b3:5f:52:8e:8a:0a:18:bb:5a:02: 55:22:77:71:98:0b:94:74:9b:1c:43:20:1c:2e:b8: 88:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6A:C9:6E:96:D7:86:3D:7F:2A:3A:A2:FE:87:B0:D0:7B:48:13:35 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2d641cc-0376-4d82-897a-3d5596d61679.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7101::/48 Signature Algorithm: sha256WithRSAEncryption a7:a1:35:d4:1f:77:48:f3:87:dd:ed:22:99:41:5d:40:6a:e9: c7:94:4b:8f:85:c5:31:04:70:41:eb:1b:5e:5f:13:da:a4:84: 93:8e:2e:95:33:2b:4e:b0:2e:57:e0:68:bc:31:af:18:f6:02: 53:ec:6c:45:3c:09:35:39:71:91:2d:03:32:67:ea:bf:13:4a: 8d:5e:1f:6b:9a:4f:80:bf:64:50:92:b5:4a:09:a7:9b:e6:d9: 15:35:84:59:ef:b3:69:3d:00:ec:bd:c0:6c:bb:09:59:f8:24: a9:3b:0e:c1:de:08:64:e2:8e:ef:73:c9:61:64:82:26:e4:36: 40:88:71:a6:33:62:bc:11:ee:3f:95:65:32:84:03:1c:5a:9e: b2:fd:d7:1b:e6:62:fa:07:f3:4f:ed:ff:f1:f0:ce:26:a7:6d: 9d:2c:91:c3:4c:72:0c:83:35:19:d0:8f:0e:af:4e:47:0f:f6: 15:b7:34:4d:6a:e4:64:45:58:b1:d6:04:57:4d:03:16:05:b6: 2b:c3:44:b1:49:1e:63:7e:4c:72:d5:95:16:23:6d:43:f9:41: 14:ae:af:57:3c:f6:bc:bb:0d:0a:3d:be:bd:8b:4c:4f:5f:1b: 95:16:b9:d0:9d:06:b3:d4:75:0e:cc:9c:1e:94:74:17:15:8e: 33:36:3e:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKzDw56g5Uu3NUIQBgxXEHSVmb2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE4MTUwMDEzWhcNMjUwODIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlOTkyYWFlOTA5NWQyNWYyNzU4NzIyYmMwOGQzMzM2NGJj ZjM0NTNjN2M5M2M1NDA2N2IzMzEyMTJkMWZiZjVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmHyT/rG0Vkz5rNvgpVQB1mtaoZTLyYB34MX2Q189qucJ1 CcmmFgCckLT6NAweGaK5dtVDfC5tvRUOQaakBxgx7U3+EDra6NC9XyYnNudL7uoa oZTNXBwA7IO+yIPPGApvCGo4bT3Looz1p2LRgjeZVKiaThbdRwpF9W8ZKHnGcdLv UEmXYIQyFkHp+WCvL96mcyB/9XGWBrMyo8q7WarMPbBygEI97noQOuqQVHpIPb/C dHDM+F4cErsJCnF9Et27Ghq4OYIeoRIXuZ4HTU0I38Zp4zYI8CXmdGTks/bsA+od htvss19SjooKGLtaAlUid3GYC5R0mxxDIBwuuIiVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUfmrJbpbXhj1/Kjqi/oew0HtIEzUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyZDY0MWNjLTAzNzYtNGQ4Mi04OTdhLTNkNTU5NmQ2MTY3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDycQEwDQYJKoZIhvcNAQELBQADggEBAKehNdQfd0jzh93tIplBXUBq 6ceUS4+FxTEEcEHrG15fE9qkhJOOLpUzK06wLlfgaLwxrxj2AlPsbEU8CTU5cZEt AzJn6r8TSo1eH2uaT4C/ZFCStUoJp5vm2RU1hFnvs2k9AOy9wGy7CVn4JKk7DsHe CGTiju9zyWFkgibkNkCIcaYzYrwR7j+VZTKEAxxanrL91xvmYvoH80/t//Hwzian bZ0skcNMcgyDNRnQjw6vTkcP9hW3NE1q5GRFWLHWBFdNAxYFtivDRLFJHmN+THLV lRYjbUP5QRSur1c89ry7DQo9vr2LTE9fG5UWudCdBrPUdQ7MnB6UdBcVjjM2Prw= -----END CERTIFICATE-----Generated at Wed Aug 6 11:00:06 2025 by rpki-client