$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa File: c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa (raw, json) Hash identifier: YyeipeqVFAjazDlFL+7R8kL5BggqtAteie7bIG4WzsQ= Subject key identifier: F7:AB:B2:CB:D0:AC:8B:3E:7E:2A:1C:82:B2:0D:EA:44:67:43:FB:C8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 703AA0880CD2E453F923F6FDA5524DC863C76E85 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa Signing time: Mon 21 Jul 2025 16:40:15 +0000 ROA not before: Mon 21 Jul 2025 16:40:15 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:3a:a0:88:0c:d2:e4:53:f9:23:f6:fd:a5:52:4d:c8:63:c7:6e:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 21 16:40:15 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=c7deb629c36a684e90d5cdd3d7a4e85a6669b7a1ffc70410eef6dd29b4be9ad0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:96:25:16:85:c2:1f:b1:bb:ef:13:09:ff:db: 55:86:02:f3:64:47:58:70:7c:d0:09:40:f1:7d:c6: 31:25:40:21:3c:f5:03:7e:48:de:8d:9e:82:da:1d: ea:8c:ec:39:7a:37:2e:f4:8e:ed:45:f2:bc:6a:12: a9:cd:3d:6b:a5:dd:52:fd:25:6e:aa:e8:1c:ce:18: 5f:60:55:62:4f:b4:06:54:21:9d:c8:dc:88:24:8b: de:2a:12:d3:67:ae:14:d4:e8:cf:67:b3:f1:ec:59: b2:ac:00:75:b9:d2:22:14:f3:81:3f:bb:44:8d:30: ea:c4:88:9b:19:15:f3:fe:09:cf:c3:b7:7d:ad:e8: d7:fb:56:f1:d0:b6:40:70:4d:01:ae:65:38:b0:83: 8a:64:41:fb:d1:51:db:0c:68:0f:4f:29:6c:af:50: 36:05:b4:14:42:18:be:ba:85:92:83:35:ba:51:bb: a0:db:da:90:ca:63:9a:72:6f:47:83:05:ce:15:c1: c2:15:60:87:00:0c:e2:b3:ff:16:3a:ba:64:37:ab: 76:15:6f:4a:fc:59:16:f3:61:f9:fe:d6:dd:91:d2: e9:8a:7e:b4:57:45:4a:35:e3:27:f8:c2:cd:58:c6: 30:10:3f:08:8c:1d:0d:e6:53:d0:ed:91:18:c8:d5: 0a:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AB:B2:CB:D0:AC:8B:3E:7E:2A:1C:82:B2:0D:EA:44:67:43:FB:C8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c91dc110-e4d6-4a78-90dc-94e4d2083c89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:100::/40 Signature Algorithm: sha256WithRSAEncryption 2a:35:c4:b8:ab:89:81:52:14:dd:6d:db:25:d3:05:e4:00:d7: 3d:a9:7e:c2:c4:c7:1a:16:59:8c:76:0d:83:4d:ea:01:49:08: 78:1d:6b:d1:23:f9:5d:91:3b:8c:6b:6a:07:e6:a9:5b:19:d4: 80:ab:37:8a:da:16:aa:89:70:52:59:68:c4:2a:a9:8a:dd:56: c9:f1:0f:40:07:ab:35:27:37:01:4f:71:7d:d0:e0:95:70:e1: b7:fb:f7:de:7d:cc:e5:9f:dd:d9:20:bd:39:d2:2d:a5:2a:eb: 18:4b:32:82:03:eb:7b:f0:ce:5d:1c:03:42:de:96:a0:9e:59: c9:02:1e:37:cc:4c:8c:45:f2:6e:6e:ed:08:5d:a8:59:85:79: 91:0e:85:ec:85:54:40:7e:76:b7:3a:a4:65:da:53:65:03:d7: f6:ec:56:45:2f:e2:5b:dc:ab:e3:ad:1f:b8:3d:1c:5a:93:7c: 99:12:57:09:8e:5f:37:04:20:67:c9:dd:40:de:4c:43:6a:aa: 5c:91:8e:95:fd:e4:de:26:fa:7e:1b:ec:2d:34:a9:da:66:a7: 6f:b8:65:b0:18:c7:9e:a7:12:10:6f:5d:e5:3a:f4:f8:25:68: 99:c6:d7:0f:03:da:33:b2:e6:e4:a5:4d:a2:fd:1b:dc:2d:2d: 75:0b:2c:93 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcDqgiAzS5FP5I/b9pVJNyGPHboUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzIxMTY0MDE1WhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2RlYjYyOWMzNmE2ODRlOTBkNWNkZDNkN2E0ZTg1YTY2 NjliN2ExZmZjNzA0MTBlZWY2ZGQyOWI0YmU5YWQwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3liUWhcIfsbvvEwn/21WGAvNkR1hwfNAJQPF9xjElQCE8 9QN+SN6NnoLaHeqM7Dl6Ny70ju1F8rxqEqnNPWul3VL9JW6q6BzOGF9gVWJPtAZU IZ3I3Igki94qEtNnrhTU6M9ns/HsWbKsAHW50iIU84E/u0SNMOrEiJsZFfP+Cc/D t32t6Nf7VvHQtkBwTQGuZTiwg4pkQfvRUdsMaA9PKWyvUDYFtBRCGL66hZKDNbpR u6Db2pDKY5pyb0eDBc4VwcIVYIcADOKz/xY6umQ3q3YVb0r8WRbzYfn+1t2R0umK frRXRUo14yf4ws1YxjAQPwiMHQ3mU9DtkRjI1QqHAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU96uyy9Csiz5+KhyCsg3qRGdD+8gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5MWRjMTEwLWU0ZDYtNGE3OC05MGRjLTk0ZTRkMjA4M2M4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwATANBgkqhkiG9w0BAQsFAAOCAQEAKjXEuKuJgVIU3W3bJdMF5ADX Pal+wsTHGhZZjHYNg03qAUkIeB1r0SP5XZE7jGtqB+apWxnUgKs3itoWqolwUllo xCqpit1WyfEPQAerNSc3AU9xfdDglXDht/v33n3M5Z/d2SC9OdItpSrrGEsyggPr e/DOXRwDQt6WoJ5ZyQIeN8xMjEXybm7tCF2oWYV5kQ6F7IVUQH52tzqkZdpTZQPX 9uxWRS/iW9yr460fuD0cWpN8mRJXCY5fNwQgZ8ndQN5MQ2qqXJGOlf3k3ib6fhvs LTSp2manb7hlsBjHnqcSEG9d5Tr0+CVomcbXDwPaM7Lm5KVNov0b3C0tdQsskw== -----END CERTIFICATE-----Generated at Tue Aug 5 08:24:42 2025 by rpki-client