$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa File: c8a22460-1c12-4314-8b13-6a586edac27c.roa (raw, json) Hash identifier: bguWFdJdlJbWrLbOqBZOn0umPJ9UEnLndWja2HrnJR4= Subject key identifier: E8:C8:AA:40:7B:FF:DC:D5:D5:EB:69:F3:D0:08:41:C3:1F:A9:7B:85 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 323666BAFEF36B57B1EECDEBF0ADE9632A5AAE4F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa Signing time: Tue 05 Aug 2025 18:30:18 +0000 ROA not before: Tue 05 Aug 2025 18:30:18 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:36:66:ba:fe:f3:6b:57:b1:ee:cd:eb:f0:ad:e9:63:2a:5a:ae:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:18 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=d2d0528a3890dfb7c77d1d95e8db1bb6e3ea59fe67acf53bd40b60be0fda0f04, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:87:61:02:cf:65:16:99:6d:02:35:c0:91:ad: 46:7b:7a:9a:81:f6:2f:66:37:ef:05:f1:97:9d:d9: 15:5d:30:14:a2:6c:da:34:a1:bc:02:0b:ce:46:50: 7d:aa:bb:31:1c:5c:d8:f5:68:d9:24:4e:04:63:18: 39:9c:c0:c1:83:7c:d6:30:53:f9:8a:86:6e:ed:9f: 84:a2:48:f8:7c:e5:78:24:62:f5:8b:1d:31:2f:69: dc:00:a7:73:e5:ee:c6:0d:79:41:9c:5c:76:3c:a5: dc:c7:0c:e4:b2:1f:f9:da:cf:62:79:fc:62:25:ed: 9e:61:23:09:d0:b5:e2:c2:f6:67:40:1d:eb:3c:de: f0:ea:92:0f:58:bb:83:a3:85:dd:a6:d3:65:f7:83: c6:6e:e0:51:5e:d8:4b:e9:35:15:ba:43:1e:85:ed: 1c:bb:76:88:2b:9a:fc:59:9c:6f:79:07:73:0f:91: 85:0f:e7:92:07:4e:97:2d:62:81:64:b6:d2:15:f2: 70:68:0b:be:07:e9:21:20:79:38:b7:44:3d:c7:33: 38:f2:c8:5f:ee:09:8d:66:f2:76:8e:7d:d3:e9:37: 21:91:6b:b0:6f:5c:fc:15:d2:55:83:54:00:68:1d: fb:cd:f4:e9:f1:0e:8f:8b:a6:8d:6e:1c:88:1e:b0: 7d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:C8:AA:40:7B:FF:DC:D5:D5:EB:69:F3:D0:08:41:C3:1F:A9:7B:85 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c8a22460-1c12-4314-8b13-6a586edac27c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 06:84:23:29:1f:68:08:12:b5:bf:b3:e5:26:f4:d4:93:d4:2c: b1:31:7a:1a:e6:e5:e6:b8:93:8c:6b:59:37:cf:10:28:7d:10: bc:71:6a:83:ac:a3:be:e1:93:b2:28:b4:ec:e6:ea:7e:65:68: 69:2f:ff:aa:54:57:a4:4c:e2:a6:00:d5:38:e2:e0:f9:6c:7e: 0e:d0:7a:ab:a0:78:ae:b6:3e:01:96:6a:a4:06:04:c1:44:3b: 99:67:db:58:8b:13:02:73:83:47:c6:de:6f:57:22:36:21:75: c9:2b:6c:2a:f0:9b:61:ee:df:46:41:6b:5d:a7:a7:2e:8e:cc: 62:b7:2a:66:b7:a6:1f:a4:2c:b0:11:61:df:dc:73:e6:33:3f: 81:0b:cd:cb:25:5c:ef:d7:90:4e:ab:df:15:de:f6:30:1f:c0: f9:cd:4c:81:f5:f2:89:26:16:e3:7b:df:7a:27:9f:21:7c:e6: 3f:39:8c:0d:20:c3:a8:c3:11:73:8b:d3:ec:38:4f:91:47:18: cd:2e:63:9f:ee:5c:ba:8a:20:c4:19:97:d4:5e:f9:1f:26:f7: 70:e9:2c:8d:5b:96:3c:c7:4d:aa:55:50:8f:97:7a:4b:d4:5c: af:1d:49:ed:be:eb:ed:64:36:3d:ca:bc:2b:5f:b0:95:c6:3f: 1b:06:9d:15 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMjZmuv7za1ex7s3r8K3pYypark8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDE4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMmQwNTI4YTM4OTBkZmI3Yzc3ZDFkOTVlOGRiMWJiNmUz ZWE1OWZlNjdhY2Y1M2JkNDBiNjBiZTBmZGEwZjA0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChh2ECz2UWmW0CNcCRrUZ7epqB9i9mN+8F8Zed2RVdMBSi bNo0obwCC85GUH2quzEcXNj1aNkkTgRjGDmcwMGDfNYwU/mKhm7tn4SiSPh85Xgk YvWLHTEvadwAp3Pl7sYNeUGcXHY8pdzHDOSyH/naz2J5/GIl7Z5hIwnQteLC9mdA Hes83vDqkg9Yu4Ojhd2m02X3g8Zu4FFe2EvpNRW6Qx6F7Ry7dogrmvxZnG95B3MP kYUP55IHTpctYoFkttIV8nBoC74H6SEgeTi3RD3HMzjyyF/uCY1m8naOfdPpNyGR a7BvXPwV0lWDVABoHfvN9OnxDo+Lpo1uHIgesH3bAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6MiqQHv/3NXV62nz0AhBwx+pe4UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M4YTIyNDYwLTFjMTItNDMxNC04YjEzLTZhNTg2ZWRhYzI3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEABoQjKR9oCBK1v7PlJvTUk9Qs sTF6Gubl5riTjGtZN88QKH0QvHFqg6yjvuGTsii07ObqfmVoaS//qlRXpEzipgDV OOLg+Wx+DtB6q6B4rrY+AZZqpAYEwUQ7mWfbWIsTAnODR8beb1ciNiF1yStsKvCb Ye7fRkFrXaenLo7MYrcqZremH6QssBFh39xz5jM/gQvNyyVc79eQTqvfFd72MB/A +c1MgfXyiSYW43vfeiefIXzmPzmMDSDDqMMRc4vT7DhPkUcYzS5jn+5cuoogxBmX 1F75Hyb3cOksjVuWPMdNqlVQj5d6S9Rcrx1J7b7r7WQ2Pcq8K1+wlcY/GwadFQ== -----END CERTIFICATE-----Generated at Wed Aug 6 16:12:39 2025 by rpki-client