$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa File: cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa (raw, json) Hash identifier: 37O6pjc1srqiqCffXIiy1oEq6KTjI29XgO4JVxDwYFA= Subject key identifier: 53:4A:11:4E:D9:EB:57:CE:81:05:D1:77:0B:01:91:73:5F:14:FC:91 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4C54688CBCF984F0DFFD7DACB03E2EE063833CE9 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa Signing time: Fri 11 Jul 2025 18:20:16 +0000 ROA not before: Fri 11 Jul 2025 18:20:16 +0000 ROA not after: Fri 15 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:5518::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 05 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:54:68:8c:bc:f9:84:f0:df:fd:7d:ac:b0:3e:2e:e0:63:83:3c:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 11 18:20:16 2025 GMT Not After : Aug 15 23:59:59 2025 GMT Subject: serialNumber=72bab2efed5991ac11eeaacbe5ecc5b26de450f5354e14b9508a20a4f433e16f, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:86:63:fc:64:c4:fb:57:12:aa:4a:db:99:6e: e9:0c:75:ce:e9:55:db:e0:bc:44:d2:e2:2b:ad:b7: a1:23:e9:99:97:fa:43:4f:37:a0:d0:bb:aa:58:67: 55:55:f3:a4:3c:20:7e:6f:94:89:a2:1f:15:6a:54: 0a:c4:a4:6a:f5:16:96:d4:c9:d6:8e:92:e4:cb:99: ad:f6:98:c0:70:1a:97:91:60:54:c1:71:eb:6b:25: b7:03:27:d6:7d:f6:12:b6:13:47:98:62:e6:ce:e1: ff:7a:b7:46:66:8a:2c:f2:de:f1:df:71:01:bc:fb: 27:5f:64:ce:6f:ea:2f:17:f6:17:77:da:06:fa:ed: aa:b2:7b:4e:ac:dc:94:4d:75:1a:4a:a8:4e:37:2e: 2f:ef:e2:22:5a:28:e3:5e:7d:57:6e:28:b0:9b:fa: 0a:a9:c5:4f:e0:22:7d:ee:d1:5f:0f:b2:b7:39:5d: 1e:51:23:d9:ad:7e:2e:32:42:da:a5:fe:af:b3:35: b0:8f:27:f0:2f:5e:7f:cb:1d:d1:47:01:34:df:66: e6:d3:c4:2a:90:1c:6c:0d:71:a4:f8:39:c2:fe:31: ad:2a:4b:1a:71:6e:d1:bb:97:78:09:23:27:fc:cb: cd:7f:98:75:06:09:33:77:4c:ca:6e:ff:93:f0:f1: e2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:4A:11:4E:D9:EB:57:CE:81:05:D1:77:0B:01:91:73:5F:14:FC:91 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cbf43d99-4d01-4d24-ada9-6e34368d1d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:5518::/48 Signature Algorithm: sha256WithRSAEncryption 9e:13:8b:87:49:db:9c:92:07:0a:b6:cf:e7:95:9a:be:f5:d4: 8f:ef:62:a5:be:28:ba:d6:01:2d:24:dc:d6:17:03:cc:0f:d3: 3e:7f:47:b8:ef:2b:71:19:ea:0a:f0:42:a2:9e:f1:20:d6:7f: 15:92:f0:73:7c:b3:ab:98:93:59:9c:f3:d0:ba:c0:da:bc:d9: 60:db:c6:47:f5:1e:5c:71:2c:ef:bc:c0:16:42:b4:83:59:bc: ca:90:e2:a0:1c:fe:b0:18:59:2d:0b:0b:59:b1:5d:0f:ba:67: b9:9f:d1:ee:72:cd:c3:71:27:c8:65:a5:cd:2c:1c:65:51:f8: 15:02:00:73:3b:d5:a5:81:1e:8f:1f:7c:8a:3c:4b:1f:5c:9e: 44:a1:42:65:77:95:7c:4b:6a:80:2b:9c:ad:d8:ab:a4:12:50: df:ed:a1:32:34:4b:36:0c:4e:8c:2d:cf:ad:22:7b:6f:00:c8: a3:b1:b3:3c:ba:f2:59:04:24:77:88:bf:a2:d8:ca:96:1d:8d: 47:86:ef:15:5e:7a:9e:ee:ec:e9:4b:43:94:7c:e6:fe:17:e6: 9b:4a:b8:ca:8d:fe:3a:3d:ea:8d:34:42:9c:fa:38:c3:1d:e0: 6e:2b:a5:96:9a:4c:38:8e:10:80:77:8a:b2:60:8f:e7:ff:84: 26:0e:cc:91 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTFRojLz5hPDf/X2ssD4u4GODPOkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzExMTgyMDE2WhcNMjUwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmJhYjJlZmVkNTk5MWFjMTFlZWFhY2JlNWVjYzViMjZk ZTQ1MGY1MzU0ZTE0Yjk1MDhhMjBhNGY0MzNlMTZmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDghmP8ZMT7VxKqStuZbukMdc7pVdvgvETS4iutt6Ej6ZmX +kNPN6DQu6pYZ1VV86Q8IH5vlImiHxVqVArEpGr1FpbUydaOkuTLma32mMBwGpeR YFTBcetrJbcDJ9Z99hK2E0eYYubO4f96t0Zmiizy3vHfcQG8+ydfZM5v6i8X9hd3 2gb67aqye06s3JRNdRpKqE43Li/v4iJaKONefVduKLCb+gqpxU/gIn3u0V8Psrc5 XR5RI9mtfi4yQtql/q+zNbCPJ/AvXn/LHdFHATTfZubTxCqQHGwNcaT4OcL+Ma0q SxpxbtG7l3gJIyf8y81/mHUGCTN3TMpu/5Pw8eItAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUU0oRTtnrV86BBdF3CwGRc18U/JEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NiZjQzZDk5LTRkMDEtNGQyNC1hZGE5LTZlMzQzNjhkMWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVRgwDQYJKoZIhvcNAQELBQADggEBAJ4Ti4dJ25ySBwq2z+eVmr71 1I/vYqW+KLrWAS0k3NYXA8wP0z5/R7jvK3EZ6grwQqKe8SDWfxWS8HN8s6uYk1mc 89C6wNq82WDbxkf1HlxxLO+8wBZCtINZvMqQ4qAc/rAYWS0LC1mxXQ+6Z7mf0e5y zcNxJ8hlpc0sHGVR+BUCAHM71aWBHo8ffIo8Sx9cnkShQmV3lXxLaoArnK3Yq6QS UN/toTI0SzYMTowtz60ie28AyKOxszy68lkEJHeIv6LYypYdjUeG7xVeep7u7OlL Q5R85v4X5ptKuMqN/jo96o00Qpz6OMMd4G4rpZaaTDiOEIB3irJgj+f/hCYOzJE= -----END CERTIFICATE-----Generated at Mon Aug 4 22:17:33 2025 by rpki-client