$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa File: c95d920e-7e95-4907-9edf-29509d14ad36.roa (raw, json) Hash identifier: D9FtcyGds05/mTNQ3mdS4jjGmF4q2dU1fRpgYkDjkrc= Subject key identifier: C8:C2:31:32:B3:21:F2:E2:DF:18:0B:7F:0D:FB:99:F6:83:91:DC:0C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 5005FD70D6090257FE625F44512B8501F23CB6B0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa Signing time: Tue 05 Aug 2025 18:31:09 +0000 ROA not before: Tue 05 Aug 2025 18:31:09 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:eb00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:05:fd:70:d6:09:02:57:fe:62:5f:44:51:2b:85:01:f2:3c:b6:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:09 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=5c94707c1ea6202069437d3f3ac310d6e238b057dece71983456b3a092ed8c9c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:3a:f2:59:62:9a:66:20:b9:b4:20:63:4f:11: a3:a0:94:5a:ec:7e:62:a6:4c:b3:09:83:94:24:78: 28:c3:2a:c4:11:39:56:e3:f1:7a:76:4f:af:b9:37: 0c:cc:46:05:c7:c4:a1:e3:b9:85:9d:ac:0b:b9:c9: 34:df:77:87:a6:a9:a7:3e:69:0d:ca:80:21:ab:02: a6:e0:ba:35:86:e7:b7:e4:6b:50:6b:b5:47:54:11: 1c:6d:02:2a:33:67:34:fd:de:6d:d1:dc:60:b1:40: 49:8e:0f:33:18:4a:59:1e:ab:41:45:44:f1:19:1a: 0a:bc:01:82:03:6d:cf:1a:30:8d:05:07:f3:3a:58: 68:c6:71:8c:95:dd:22:e6:ad:96:48:ce:16:54:d7: 68:83:95:d2:9d:62:99:e6:f4:26:6c:93:27:25:8f: 94:71:24:e4:e3:1f:dd:87:52:a7:d7:d8:d0:c8:ba: 95:10:b0:30:00:66:fe:ab:e4:d5:27:e0:bc:af:ac: a0:3c:ea:ed:18:27:9c:ed:fd:e4:3b:b3:08:13:36: 05:da:6e:28:7e:8e:61:13:ac:bd:2e:10:1c:60:1e: 4d:be:72:e9:c1:f6:08:65:85:a9:1f:f6:08:ed:74: a1:d8:aa:b6:15:de:72:31:7a:a8:f1:3b:3d:13:6b: 69:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:C2:31:32:B3:21:F2:E2:DF:18:0B:7F:0D:FB:99:F6:83:91:DC:0C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/c95d920e-7e95-4907-9edf-29509d14ad36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/42 Signature Algorithm: sha256WithRSAEncryption 0d:49:41:3c:6a:1f:6d:d3:ef:26:a2:57:ca:39:13:44:ae:c2: a8:80:89:2c:c0:bd:2e:75:5a:84:49:3c:06:5e:e9:b1:d0:be: 12:db:6b:fd:e3:0a:e8:0f:da:42:29:56:bd:c0:5b:69:68:d6: 1f:65:d6:99:a7:5f:0e:ae:32:19:a6:da:b7:1a:ca:2c:22:d2: ce:ef:0f:72:23:ee:34:80:ee:75:62:1b:e7:53:d1:e1:97:70: 6f:85:53:3c:98:53:b0:8e:74:55:a3:b2:02:94:2e:0b:51:b4: 21:e5:fd:bc:25:29:c9:ab:bf:dc:74:bb:8e:57:5d:77:90:73: 49:86:ae:42:bb:c4:ff:33:b6:df:4b:96:ef:e5:29:57:b0:db: bf:26:b7:7e:c4:33:dc:10:86:cc:c5:85:e5:44:9e:84:98:e7: 87:90:c5:13:41:bc:4c:90:21:25:9d:c0:33:3e:a7:d9:82:f0: 8e:b8:74:37:2e:a0:13:b0:28:a7:6f:d3:1b:17:65:c3:e4:85: 24:01:1c:d6:d2:c1:bd:dc:98:1d:08:d2:e7:5f:63:e2:82:f4: 44:cd:fd:63:4d:59:27:06:dc:f4:ba:d0:cc:44:e3:64:9f:ed: 04:57:8b:af:1d:a2:9e:5f:52:e5:8f:96:7f:95:3d:39:10:66: a1:4a:22:ad -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUUAX9cNYJAlf+Yl9EUSuFAfI8trAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTA5WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Yzk0NzA3YzFlYTYyMDIwNjk0MzdkM2YzYWMzMTBkNmUy MzhiMDU3ZGVjZTcxOTgzNDU2YjNhMDkyZWQ4YzljMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxOvJZYppmILm0IGNPEaOglFrsfmKmTLMJg5QkeCjDKsQR OVbj8Xp2T6+5NwzMRgXHxKHjuYWdrAu5yTTfd4emqac+aQ3KgCGrAqbgujWG57fk a1BrtUdUERxtAiozZzT93m3R3GCxQEmODzMYSlkeq0FFRPEZGgq8AYIDbc8aMI0F B/M6WGjGcYyV3SLmrZZIzhZU12iDldKdYpnm9CZskyclj5RxJOTjH92HUqfX2NDI upUQsDAAZv6r5NUn4LyvrKA86u0YJ5zt/eQ7swgTNgXabih+jmETrL0uEBxgHk2+ cunB9ghlhakf9gjtdKHYqrYV3nIxeqjxOz0Ta2lVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUyMIxMrMh8uLfGAt/DfuZ9oOR3AwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2M5NWQ5MjBlLTdlOTUtNDkwNy05ZWRmLTI5NTA5ZDE0YWQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76wAwDQYJKoZIhvcNAQELBQADggEBAA1JQTxqH23T7yaiV8o5E0Su wqiAiSzAvS51WoRJPAZe6bHQvhLba/3jCugP2kIpVr3AW2lo1h9l1pmnXw6uMhmm 2rcayiwi0s7vD3Ij7jSA7nViG+dT0eGXcG+FUzyYU7COdFWjsgKULgtRtCHl/bwl Kcmrv9x0u45XXXeQc0mGrkK7xP8ztt9Llu/lKVew278mt37EM9wQhszFheVEnoSY 54eQxRNBvEyQISWdwDM+p9mC8I64dDcuoBOwKKdv0xsXZcPkhSQBHNbSwb3cmB0I 0udfY+KC9ETN/WNNWScG3PS60MxE42Sf7QRXi68dop5fUuWPln+VPTkQZqFKIq0= -----END CERTIFICATE-----Generated at Fri Aug 8 20:48:28 2025 by rpki-client