$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa File: d040f02c-c962-433b-9282-37c1d283eaeb.roa (raw, json) Hash identifier: iO3HRDw5qcVtabndeDIvvVsY5uDtEQtmyUMdokwVNGY= Subject key identifier: DB:E0:8D:12:C8:96:2E:37:67:5A:A8:88:81:39:E4:44:1C:66:10:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 50C7D74922121AE309A1240823A88BFDECC6EED2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa Signing time: Tue 05 Aug 2025 18:31:13 +0000 ROA not before: Tue 05 Aug 2025 18:31:13 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:eb00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:c7:d7:49:22:12:1a:e3:09:a1:24:08:23:a8:8b:fd:ec:c6:ee:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:13 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=ae05cc163d3499735241fce66a892a8fe67faa33f1a742ce80f877d05fdcfc59, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6e:32:a9:4f:9b:3c:c7:e5:90:07:8c:74:e2: 81:8a:60:98:bb:9e:79:27:f1:0c:31:a9:7f:11:07: 1d:be:a8:de:5a:1b:0e:5f:26:fb:06:89:75:a5:2b: 18:8d:b4:27:ed:2c:5e:5c:64:ab:ef:6e:83:83:16: 4f:8d:6f:3f:ff:1d:9e:ca:72:8c:b2:43:36:a4:ee: dc:99:46:be:e8:18:42:91:e0:10:29:60:35:08:e2: 4a:3e:62:e6:11:b2:e6:b3:29:4e:f6:93:2c:fc:82: fd:e6:95:09:51:63:1f:bf:64:51:9e:ab:d4:84:9e: c7:6c:c0:24:90:37:80:a2:3e:3f:5d:f5:94:06:d5: 9b:83:83:65:4f:b4:97:67:ff:d9:fb:c7:1f:1f:d5: 6b:b4:09:b0:19:64:7f:1c:ba:7e:ce:83:a9:a5:3a: 97:67:1b:3f:65:e5:76:78:b3:c4:ba:f5:97:42:f7: 82:35:be:fa:03:58:1c:dd:ca:39:c1:57:a5:b2:ba: 0d:12:30:9b:86:cc:99:35:45:b6:88:e5:ba:af:00: 4d:38:0d:44:74:ac:1a:3a:bc:f5:a8:dc:d9:9b:a9: 8d:3f:9d:d3:33:36:55:32:0c:0c:c0:8e:91:45:4b: ac:6b:77:61:27:d7:bf:fa:19:c8:50:9b:57:fb:f7: ab:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E0:8D:12:C8:96:2E:37:67:5A:A8:88:81:39:E4:44:1C:66:10:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d040f02c-c962-433b-9282-37c1d283eaeb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:eb00::/40 Signature Algorithm: sha256WithRSAEncryption 40:6a:37:60:43:21:27:da:2f:d5:90:88:5c:14:7c:a6:4b:fe: 71:a0:88:d8:32:51:4d:72:5b:4f:02:f3:6e:b6:39:dc:2f:23: 25:68:4d:51:9d:ce:20:b4:b3:19:b2:77:ac:eb:68:dd:4f:94: 9b:73:ca:eb:08:a5:90:0f:55:7f:2c:28:0a:72:06:1c:d8:7e: 92:f1:4a:04:9f:d7:d1:fa:b6:bb:a1:75:11:d2:b5:c1:89:38: 5a:89:19:0c:8c:63:9a:62:0c:6f:8c:1b:59:cc:2e:0a:2a:57: 61:cb:9b:2a:86:ce:a3:bc:c5:bc:e5:ee:61:4a:7d:b1:5c:b1: 1b:0d:f8:f5:0e:b2:67:e2:bc:15:bf:90:26:11:ba:3a:2c:c2: de:0e:07:f5:d3:22:bc:ec:a0:d4:07:cc:07:56:c8:c1:3c:18: 95:19:cd:1f:b6:c0:a8:16:fb:55:8b:ac:fe:8f:03:10:db:19: 1b:b3:f8:a6:02:af:fc:5c:ae:4b:50:2c:4e:de:d4:0b:9b:03: 1e:3e:0f:76:0d:a8:4c:93:df:70:97:fa:da:f6:55:e8:be:6c: 69:ff:9b:6e:7a:8e:fd:65:46:4b:d3:10:e3:12:93:a9:25:e6: 03:0c:6a:97:65:e9:72:fb:92:f3:67:35:9a:de:6e:ec:9d:a0: e6:1f:47:d8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUMfXSSISGuMJoSQII6iL/ezG7tIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTEzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZTA1Y2MxNjNkMzQ5OTczNTI0MWZjZTY2YTg5MmE4ZmU2 N2ZhYTMzZjFhNzQyY2U4MGY4NzdkMDVmZGNmYzU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRbjKpT5s8x+WQB4x04oGKYJi7nnkn8QwxqX8RBx2+qN5a Gw5fJvsGiXWlKxiNtCftLF5cZKvvboODFk+Nbz//HZ7KcoyyQzak7tyZRr7oGEKR 4BApYDUI4ko+YuYRsuazKU72kyz8gv3mlQlRYx+/ZFGeq9SEnsdswCSQN4CiPj9d 9ZQG1ZuDg2VPtJdn/9n7xx8f1Wu0CbAZZH8cun7Og6mlOpdnGz9l5XZ4s8S69ZdC 94I1vvoDWBzdyjnBV6Wyug0SMJuGzJk1RbaI5bqvAE04DUR0rBo6vPWo3NmbqY0/ ndMzNlUyDAzAjpFFS6xrd2En17/6GchQm1f796uDAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU2+CNEsiWLjdnWqiIgTnkRBxmEHcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QwNDBmMDJjLWM5NjItNDMzYi05MjgyLTM3YzFkMjgzZWFlYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD76zANBgkqhkiG9w0BAQsFAAOCAQEAQGo3YEMhJ9ov1ZCIXBR8pkv+ caCI2DJRTXJbTwLzbrY53C8jJWhNUZ3OILSzGbJ3rOto3U+Um3PK6wilkA9Vfywo CnIGHNh+kvFKBJ/X0fq2u6F1EdK1wYk4WokZDIxjmmIMb4wbWcwuCipXYcubKobO o7zFvOXuYUp9sVyxGw349Q6yZ+K8Fb+QJhG6OizC3g4H9dMivOyg1AfMB1bIwTwY lRnNH7bAqBb7VYus/o8DENsZG7P4pgKv/FyuS1AsTt7UC5sDHj4Pdg2oTJPfcJf6 2vZV6L5saf+bbnqO/WVGS9MQ4xKTqSXmAwxql2XpcvuS82c1mt5u7J2g5h9H2A== -----END CERTIFICATE-----Generated at Wed Aug 6 05:18:01 2025 by rpki-client