$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa File: cdcc47d5-338b-4adc-9bc7-703261ddd214.roa (raw, json) Hash identifier: 9fnF4QTKQaz0tsO+QuYAfoJwhQl90aE0F788+gxzNAk= Subject key identifier: 9D:B6:9F:DC:DA:21:E4:BB:42:00:20:AA:6A:89:CF:D0:17:F9:F9:F5 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7A869C652CFC6E25C06838030C5FA457852F2E74 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa Signing time: Tue 05 Aug 2025 18:30:44 +0000 ROA not before: Tue 05 Aug 2025 18:30:44 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:6000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:86:9c:65:2c:fc:6e:25:c0:68:38:03:0c:5f:a4:57:85:2f:2e:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:44 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=54b3287ada3460bc8a805718a5cfa30232c29e361d31de6fe9c835351376c4a0, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:db:b5:ed:7a:19:71:01:4a:fe:e3:80:28:23: 1a:46:84:20:4f:f9:b1:64:80:7c:51:71:24:12:5a: af:c9:4f:8c:93:f4:17:5f:90:d9:9e:29:44:ea:61: d8:e6:47:bd:00:aa:bc:9b:50:81:b4:e9:cd:98:de: 51:18:df:db:bf:81:90:28:b6:ea:1b:9e:6b:96:df: f3:68:d3:3d:ac:b2:98:ea:4d:0f:f8:b6:e9:55:c6: 41:fb:a6:8b:20:a1:d6:dd:95:89:be:57:ce:b7:68: 20:ad:b5:e1:3b:f5:7a:2e:f6:95:b6:63:ae:d3:eb: bb:94:2c:83:c9:8a:ee:85:9f:b8:be:97:af:3b:41: 20:9c:54:17:4d:0f:a7:57:35:c8:8b:ff:72:d9:07: ef:b1:35:0f:c0:39:6f:74:0a:11:c4:89:b6:15:0c: 98:95:d4:e1:a6:7d:b2:b9:5e:24:cd:57:d6:c9:68: f6:7b:d0:ba:f1:ff:2e:52:4e:b3:9f:e1:67:51:56: 6a:ee:af:e9:81:1a:42:0a:34:6a:e2:11:ed:66:fe: 55:23:97:f3:3c:c9:6c:86:be:91:24:09:cf:18:02: 84:d6:ed:dd:6a:3f:5b:d6:29:df:9a:9e:8b:3f:f0: ff:24:02:93:3d:4f:3b:25:01:9a:0e:d7:cf:c5:e7: 44:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B6:9F:DC:DA:21:E4:BB:42:00:20:AA:6A:89:CF:D0:17:F9:F9:F5 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/cdcc47d5-338b-4adc-9bc7-703261ddd214.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:6000::/44 Signature Algorithm: sha256WithRSAEncryption 76:45:f7:8c:ff:35:e5:dc:cc:06:85:8b:29:24:8c:12:a5:b8: 75:54:a0:2c:10:81:15:03:e4:dc:8f:0a:a0:66:0e:d0:f5:5a: bb:ae:2e:54:7a:07:bf:b7:a3:4e:1f:a4:2a:3b:5c:8a:69:c9: 1e:58:68:da:d5:7d:db:9e:d3:03:14:9d:53:2f:83:14:56:cd: c9:60:06:94:81:bc:f3:00:a0:61:23:45:e8:d5:1d:8a:3c:94: b1:ef:94:f8:8f:1b:a6:e8:2b:d0:a7:cc:59:97:f0:6d:13:4f: 7d:52:3a:42:20:24:e4:41:f9:fc:52:3b:3b:13:d2:70:1b:02: b2:c5:9c:67:28:1d:80:e6:c9:7a:37:d5:8e:95:41:77:ef:b9: 50:c8:f8:71:dc:06:97:6c:43:1e:8e:0b:ee:29:2e:b4:b2:9b: ef:e4:54:75:ad:6d:9d:d6:35:f6:f6:6a:03:2e:e0:f4:7d:ed: 76:b7:3c:c9:21:ed:60:b1:58:90:93:db:4a:cf:70:dd:c3:07: 11:75:3b:38:0a:7d:82:f4:67:72:e0:1a:56:81:fc:20:0e:eb: c6:25:48:c4:e7:c4:86:9a:1e:a4:9c:55:7c:90:05:67:5d:fb: 64:49:10:4c:b2:22:75:5b:6c:db:f2:be:ce:ca:25:f9:85:58: 32:f7:6d:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUeoacZSz8biXAaDgDDF+kV4UvLnQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDQ0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGIzMjg3YWRhMzQ2MGJjOGE4MDU3MThhNWNmYTMwMjMy YzI5ZTM2MWQzMWRlNmZlOWM4MzUzNTEzNzZjNGEwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDh27XtehlxAUr+44AoIxpGhCBP+bFkgHxRcSQSWq/JT4yT 9BdfkNmeKUTqYdjmR70AqrybUIG06c2Y3lEY39u/gZAotuobnmuW3/No0z2sspjq TQ/4tulVxkH7posgodbdlYm+V863aCCtteE79Xou9pW2Y67T67uULIPJiu6Fn7i+ l687QSCcVBdND6dXNciL/3LZB++xNQ/AOW90ChHEibYVDJiV1OGmfbK5XiTNV9bJ aPZ70Lrx/y5STrOf4WdRVmrur+mBGkIKNGriEe1m/lUjl/M8yWyGvpEkCc8YAoTW 7d1qP1vWKd+anos/8P8kApM9TzslAZoO18/F50QFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUnbaf3Noh5LtCACCqaonP0Bf5+fUwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2NkY2M0N2Q1LTMzOGItNGFkYy05YmM3LTcwMzI2MWRkZDIxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwYAAwDQYJKoZIhvcNAQELBQADggEBAHZF94z/NeXczAaFiykkjBKl uHVUoCwQgRUD5NyPCqBmDtD1WruuLlR6B7+3o04fpCo7XIppyR5YaNrVfdue0wMU nVMvgxRWzclgBpSBvPMAoGEjRejVHYo8lLHvlPiPG6boK9CnzFmX8G0TT31SOkIg JORB+fxSOzsT0nAbArLFnGcoHYDmyXo31Y6VQXfvuVDI+HHcBpdsQx6OC+4pLrSy m+/kVHWtbZ3WNfb2agMu4PR97Xa3PMkh7WCxWJCT20rPcN3DBxF1OzgKfYL0Z3Lg GlaB/CAO68YlSMTnxIaaHqScVXyQBWdd+2RJEEyyInVbbNvyvs7KJfmFWDL3bfE= -----END CERTIFICATE-----Generated at Wed Aug 6 04:01:06 2025 by rpki-client