$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa File: c1547439-2593-48d5-aaf8-70d69e1a8163.roa (raw, json) Hash identifier: tkkk0jJJSWYF2R8iYMSFua2U1EAdsFmpCEkmlOA7qcg= Subject key identifier: 21:80:48:FB:4E:AF:E1:C0:47:40:DA:EA:A2:EA:FE:21:83:7E:D5:B1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 08E0CF1D367C49929CDB2D3C983CF318A579B6C6 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa Signing time: Fri 25 Jul 2025 16:50:03 +0000 ROA not before: Fri 25 Jul 2025 16:50:03 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 10 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:e0:cf:1d:36:7c:49:92:9c:db:2d:3c:98:3c:f3:18:a5:79:b6:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 25 16:50:03 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=f6139527ed844cf71bc47b5727f6da8425bb7a6283f2384ce5c2b7e9518b4e70, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:44:f2:c9:aa:80:81:43:91:09:c7:b7:8c:ab: e7:77:fe:8c:9d:f0:7b:71:c0:f8:bd:f9:55:1c:ef: ca:ed:87:ca:42:0e:df:59:d9:56:7b:ee:2c:a6:dd: 88:1b:fc:cf:6e:ff:86:7b:64:91:b9:ea:e7:bf:b6: 32:f6:b4:63:84:54:9c:86:c3:97:68:49:84:03:9d: a7:ce:32:aa:6f:b4:a1:b2:30:04:3c:bf:e0:c0:96: 39:9f:11:8e:83:07:71:c5:9e:6b:a6:fe:58:f0:2b: 65:b9:90:05:eb:f1:39:d2:8f:b1:2c:f6:2c:74:f7: 85:92:62:d4:95:72:da:27:bc:ca:34:1e:d7:af:ff: f2:c9:2f:61:57:a3:86:57:cb:d1:31:a2:50:c3:d7: 17:e4:18:e7:f6:03:48:6d:34:99:63:fd:f9:3d:92: 26:8f:06:47:2f:de:ab:a5:6a:db:8a:fc:c9:db:83: 6f:b5:10:a7:22:23:fb:84:5c:5d:61:d0:92:fb:d0: 3c:b0:e2:52:7d:91:d0:00:2b:05:cf:72:f1:3f:44: e5:21:f2:94:9c:72:a4:a7:dd:36:37:b5:53:62:de: 43:d6:3e:ed:8e:72:85:2d:5f:15:70:37:b7:76:c6: 4d:2b:76:28:b3:bb:ff:f9:72:ea:e0:62:25:37:b1: 38:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:80:48:FB:4E:AF:E1:C0:47:40:DA:EA:A2:EA:FE:21:83:7E:D5:B1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c1547439-2593-48d5-aaf8-70d69e1a8163.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:11::/48 Signature Algorithm: sha256WithRSAEncryption 38:be:54:67:4e:eb:60:06:68:2f:06:8e:a3:81:66:d5:2f:79: 49:8f:8a:3b:6c:7b:36:df:ec:f8:b2:24:bf:b1:88:4d:43:b9: 46:8b:c0:b0:eb:a7:c4:43:19:ca:ed:94:1a:d4:8b:f6:85:6b: 4f:4f:0a:f5:ce:61:31:2a:20:f1:39:d7:3c:65:32:38:d5:f6: 76:b8:c9:8c:ca:2e:ca:e8:e0:22:76:f5:c5:d0:c7:f2:6d:f1: c1:f0:8b:2a:af:30:ed:bb:48:ee:14:c5:32:f6:c3:07:43:57: e9:55:1b:60:bc:25:f6:88:37:e7:1c:30:a9:96:1b:3f:20:e5: eb:5c:43:5a:ea:39:e7:e6:2d:64:1b:78:a3:15:14:46:fe:78: f0:ff:c4:f5:33:ae:38:ed:ca:50:9b:da:0e:3e:5e:0b:b4:4b: f1:10:44:68:b0:b4:b2:c0:cc:04:4d:c9:db:08:99:4b:e2:08: 43:90:ae:d1:7f:ee:91:ed:3d:0a:0f:0a:a0:e0:81:3e:ba:e5: 0f:ee:b3:42:db:40:18:d9:cd:41:8c:0f:0c:d7:42:89:b0:b7: 1a:c8:f1:c4:4d:60:37:1c:87:82:60:bf:7f:71:32:af:84:f0: eb:b5:b2:e1:21:e6:9a:ba:5f:45:b8:b6:1d:90:44:45:0d:5b: e8:f8:5d:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCODPHTZ8SZKc2y08mDzzGKV5tsYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzI1MTY1MDAzWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNjEzOTUyN2VkODQ0Y2Y3MWJjNDdiNTcyN2Y2ZGE4NDI1 YmI3YTYyODNmMjM4NGNlNWMyYjdlOTUxOGI0ZTcwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5RPLJqoCBQ5EJx7eMq+d3/oyd8HtxwPi9+VUc78rth8pC Dt9Z2VZ77iym3Ygb/M9u/4Z7ZJG56ue/tjL2tGOEVJyGw5doSYQDnafOMqpvtKGy MAQ8v+DAljmfEY6DB3HFnmum/ljwK2W5kAXr8TnSj7Es9ix094WSYtSVctonvMo0 Htev//LJL2FXo4ZXy9ExolDD1xfkGOf2A0htNJlj/fk9kiaPBkcv3qulatuK/Mnb g2+1EKciI/uEXF1h0JL70Dyw4lJ9kdAAKwXPcvE/ROUh8pSccqSn3TY3tVNi3kPW Pu2OcoUtXxVwN7d2xk0rdiizu//5curgYiU3sTgxAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUIYBI+06v4cBHQNrqour+IYN+1bEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2MxNTQ3NDM5LTI1OTMtNDhkNS1hYWY4LTcwZDY5ZTFhODE2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwABEwDQYJKoZIhvcNAQELBQADggEBADi+VGdO62AGaC8GjqOBZtUv eUmPijtsezbf7PiyJL+xiE1DuUaLwLDrp8RDGcrtlBrUi/aFa09PCvXOYTEqIPE5 1zxlMjjV9na4yYzKLsro4CJ29cXQx/Jt8cHwiyqvMO27SO4UxTL2wwdDV+lVG2C8 JfaIN+ccMKmWGz8g5etcQ1rqOefmLWQbeKMVFEb+ePD/xPUzrjjtylCb2g4+Xgu0 S/EQRGiwtLLAzARNydsImUviCEOQrtF/7pHtPQoPCqDggT665Q/us0LbQBjZzUGM DwzXQomwtxrI8cRNYDcch4Jgv39xMq+E8Ou1suEh5pq6X0W4th2QREUNW+j4XVk= -----END CERTIFICATE-----Generated at Sat Aug 9 01:09:00 2025 by rpki-client