$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa File: bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa (raw, json) Hash identifier: hmHDmHUHMkUu9CyyYhh20uJocsghNWAhE2wPR856Thk= Subject key identifier: 9A:A9:B8:EC:F3:C4:E8:E3:6A:66:D5:8B:CE:B0:EF:97:42:54:7C:80 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 10A43D9F599951BC14A12D91C33D1716B5D5B582 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa Signing time: Tue 05 Aug 2025 18:20:14 +0000 ROA not before: Tue 05 Aug 2025 18:20:14 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:5519::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:a4:3d:9f:59:99:51:bc:14:a1:2d:91:c3:3d:17:16:b5:d5:b5:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:14 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=9e46c6992dfd5fa1868a8e80bf68722d691c307ef95bf180e750b259a0231764, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2a:0f:d5:bd:35:28:c8:ab:38:5c:ad:1f:6b: 06:27:a5:2c:00:8a:af:26:4e:77:f4:a0:f5:10:25: 82:ae:68:a5:22:20:6f:86:fe:c7:47:49:e0:6d:1d: 0d:88:ac:b1:06:ae:ff:27:56:bf:07:fd:18:ff:7e: 17:e7:c1:b9:ab:83:b7:c5:01:ca:22:49:49:17:d6: 42:7b:b6:d8:c4:93:aa:6e:38:db:18:3f:4e:e1:fe: c4:df:98:b6:21:2a:55:a9:35:ca:f0:54:01:89:f6: dd:60:87:09:44:d4:32:ce:93:1a:b2:87:32:a1:15: 78:5c:d4:e9:dc:0d:bd:46:b1:d9:da:ec:07:f1:ef: a3:46:8f:05:d2:9c:3b:57:d0:7a:77:74:6e:ab:08: 6d:71:5d:2c:5a:56:7d:28:60:9a:9f:31:fb:5f:91: 50:62:94:72:3b:e0:77:f0:ee:b7:9d:a2:e9:12:10: 29:ae:e5:7c:76:91:1c:6a:b3:bd:47:92:a5:03:74: d1:c7:d6:5f:45:64:a5:83:af:ae:d8:ea:e4:79:16: 79:3a:57:13:9d:cd:cf:ba:e9:7f:20:73:28:73:76: 80:dc:b9:78:ec:99:ec:19:0a:ea:27:ab:5a:3c:a2: 95:b3:53:3d:a8:18:cb:29:21:87:25:0e:be:f2:bb: df:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A9:B8:EC:F3:C4:E8:E3:6A:66:D5:8B:CE:B0:EF:97:42:54:7C:80 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bda33800-108d-4eb7-bbc8-f1f3a5a088e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5519::/48 Signature Algorithm: sha256WithRSAEncryption 8b:c0:af:06:f9:27:83:0a:c6:25:81:d8:46:18:e5:b3:8b:95: bd:00:14:a9:66:cb:9b:54:ab:b7:3b:ef:97:1c:99:ed:0d:17: d2:0c:7b:3e:c9:07:90:ec:a5:56:39:2a:cb:1f:b1:d1:ea:64: 16:19:c7:65:69:36:8d:60:bf:8e:5b:de:a3:1a:61:8d:a6:33: 6d:54:94:a0:bf:e7:c3:3c:ba:6a:82:62:bd:1e:98:e3:40:f3: fe:ee:a8:e2:cc:5a:9b:10:79:c5:81:cd:14:7f:05:e5:f8:92: dc:5a:df:5a:59:c2:bb:71:68:f2:74:5d:25:ba:64:04:e6:33: ec:19:eb:a4:76:eb:21:35:48:3f:0d:80:54:a1:36:e6:3d:39: 00:71:e7:f8:71:aa:39:45:8e:0d:1e:b8:1c:48:c7:56:80:71: b3:be:f3:a7:10:ab:d8:98:d5:67:10:4e:e0:49:05:c2:7e:2e: 30:a0:e0:f9:9f:a9:6f:45:b2:d8:aa:d4:6e:fc:b6:2b:97:ea: 99:9f:f6:12:e7:0e:50:80:9d:4e:1b:ee:30:7d:1a:4f:34:66: 06:24:7a:30:aa:57:95:c0:a9:a2:50:d1:8b:30:65:46:a5:8a: bc:5d:8a:0a:42:b3:c9:a4:07:45:72:dd:60:6d:a5:b2:cc:a7: e9:8e:d1:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUEKQ9n1mZUbwUoS2Rwz0XFrXVtYIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDE0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTQ2YzY5OTJkZmQ1ZmExODY4YThlODBiZjY4NzIyZDY5 MWMzMDdlZjk1YmYxODBlNzUwYjI1OWEwMjMxNzY0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4Kg/VvTUoyKs4XK0fawYnpSwAiq8mTnf0oPUQJYKuaKUi IG+G/sdHSeBtHQ2IrLEGrv8nVr8H/Rj/fhfnwbmrg7fFAcoiSUkX1kJ7ttjEk6pu ONsYP07h/sTfmLYhKlWpNcrwVAGJ9t1ghwlE1DLOkxqyhzKhFXhc1OncDb1Gsdna 7Afx76NGjwXSnDtX0Hp3dG6rCG1xXSxaVn0oYJqfMftfkVBilHI74Hfw7redoukS ECmu5Xx2kRxqs71HkqUDdNHH1l9FZKWDr67Y6uR5Fnk6VxOdzc+66X8gcyhzdoDc uXjsmewZCuonq1o8opWzUz2oGMspIYclDr7yu9+VAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUmqm47PPE6ONqZtWLzrDvl0JUfIAwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JkYTMzODAwLTEwOGQtNGViNy1iYmM4LWYxZjNhNWEwODhlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRkwDQYJKoZIhvcNAQELBQADggEBAIvArwb5J4MKxiWB2EYY5bOL lb0AFKlmy5tUq7c775ccme0NF9IMez7JB5DspVY5KssfsdHqZBYZx2VpNo1gv45b 3qMaYY2mM21UlKC/58M8umqCYr0emONA8/7uqOLMWpsQecWBzRR/BeX4ktxa31pZ wrtxaPJ0XSW6ZATmM+wZ66R26yE1SD8NgFShNuY9OQBx5/hxqjlFjg0euBxIx1aA cbO+86cQq9iY1WcQTuBJBcJ+LjCg4PmfqW9Fstiq1G78tiuX6pmf9hLnDlCAnU4b 7jB9Gk80ZgYkejCqV5XAqaJQ0YswZUalirxdigpCs8mkB0Vy3WBtpbLMp+mO0es= -----END CERTIFICATE-----Generated at Wed Aug 6 14:16:10 2025 by rpki-client