$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa File: d17966f5-59b2-4e40-9068-579a0f07eb22.roa (raw, json) Hash identifier: g1LBbIKk/EpqOJ10xVC39DJjfQs/f8ia+X3PgMFJ5NA= Subject key identifier: 93:78:BB:37:A8:21:DD:4E:B6:14:55:82:06:82:43:68:9A:CA:6C:3F Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 42A3F4B514744F9D2DD8A97F82F1229C4CBAE0D4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa Signing time: Fri 01 Aug 2025 17:10:15 +0000 ROA not before: Fri 01 Aug 2025 17:10:15 +0000 ROA not after: Fri 05 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8b00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:a3:f4:b5:14:74:4f:9d:2d:d8:a9:7f:82:f1:22:9c:4c:ba:e0:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 1 17:10:15 2025 GMT Not After : Sep 5 23:59:59 2025 GMT Subject: serialNumber=0ade43acb6a9b45fed95670a19234be5d7e1ddbc0e426519d7e7fa2e2471a593, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ae:62:ba:92:76:aa:16:28:14:70:a4:4c:21: cc:93:0f:5c:18:39:82:e6:67:64:ea:ee:63:62:3e: 3f:56:ac:8d:fe:20:2d:66:fa:a6:e9:16:de:8c:c9: c7:ad:8c:07:b3:99:d2:a6:d1:03:7e:09:0a:1d:c3: bb:57:b0:98:00:1e:7d:60:cb:9e:ac:af:92:75:51: f7:e5:cd:60:c1:41:b8:f0:a0:b2:a7:42:73:85:4c: 68:ef:ac:92:54:21:21:69:f3:c2:0f:c5:32:27:3c: 29:b1:65:c2:2b:88:62:50:48:75:36:8c:ef:01:7e: 75:bb:5c:77:a0:34:20:4a:c3:ee:8b:5c:33:09:62: ec:15:51:9a:b2:e3:32:04:5b:7a:4a:50:96:71:74: 16:ee:ec:d6:fe:d3:34:c8:eb:33:9f:40:95:eb:e5: d9:ef:b8:34:eb:f8:ae:87:0e:37:59:d9:dc:89:5e: c4:27:21:27:5c:d0:b8:80:46:ff:a5:76:82:90:32: e3:f0:8c:15:d8:88:55:fd:90:be:2f:ba:4f:68:37: 01:23:13:03:49:ae:8d:7c:46:15:ee:df:e7:01:a8: 99:8d:4a:1b:0d:4c:07:18:74:cc:da:79:e9:42:29: 59:4d:a2:83:01:5c:d6:67:47:6c:30:70:43:bb:74: 0f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:78:BB:37:A8:21:DD:4E:B6:14:55:82:06:82:43:68:9A:CA:6C:3F X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d17966f5-59b2-4e40-9068-579a0f07eb22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8b00::/48 Signature Algorithm: sha256WithRSAEncryption 37:87:6f:f2:49:8d:44:3f:2e:51:f8:f0:85:e1:64:37:cc:39: dd:4d:43:91:6d:eb:80:49:59:c0:c7:3f:12:34:2b:9b:7c:a3: 3a:62:67:18:b7:b1:59:5c:4d:17:d6:57:41:a7:82:5e:6c:f1: 75:d8:7c:5d:6b:bb:a6:20:c7:25:58:39:4d:c2:21:11:a8:40: f4:29:1f:99:9c:41:3a:db:73:0a:7a:68:e4:d7:2a:3f:e5:7a: f1:3a:bd:ab:c9:0b:84:d9:0c:db:16:05:21:74:9e:5b:18:8e: 13:31:28:60:b0:87:89:5f:83:4c:8c:2f:8f:3c:54:9a:b1:dd: 9a:4c:de:fd:fe:ce:8f:3c:6a:a9:9f:db:b1:ac:af:ac:6f:cd: 20:e6:3c:95:32:1e:4a:79:ed:92:be:6a:18:3d:3a:8e:6a:32: 87:d5:46:a4:99:ed:9b:c7:6f:f7:f6:15:10:62:82:ba:5f:25: da:3e:3e:11:d0:07:ee:02:af:46:5b:5e:24:b6:24:1d:1a:5b: 04:68:49:cc:7e:fb:94:62:da:e1:d2:96:82:4a:e2:55:2f:27: 34:dd:90:c8:37:81:54:b7:88:8e:4b:cb:71:09:a8:b1:62:29: 27:1a:63:0b:86:13:46:82:21:bf:66:c9:61:93:b9:3f:ea:16: f1:28:04:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQqP0tRR0T50t2Kl/gvEinEy64NQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODAxMTcxMDE1WhcNMjUwOTA1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYWRlNDNhY2I2YTliNDVmZWQ5NTY3MGExOTIzNGJlNWQ3 ZTFkZGJjMGU0MjY1MTlkN2U3ZmEyZTI0NzFhNTkzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCurmK6knaqFigUcKRMIcyTD1wYOYLmZ2Tq7mNiPj9WrI3+ IC1m+qbpFt6MycetjAezmdKm0QN+CQodw7tXsJgAHn1gy56sr5J1UfflzWDBQbjw oLKnQnOFTGjvrJJUISFp88IPxTInPCmxZcIriGJQSHU2jO8BfnW7XHegNCBKw+6L XDMJYuwVUZqy4zIEW3pKUJZxdBbu7Nb+0zTI6zOfQJXr5dnvuDTr+K6HDjdZ2dyJ XsQnISdc0LiARv+ldoKQMuPwjBXYiFX9kL4vuk9oNwEjEwNJro18RhXu3+cBqJmN ShsNTAcYdMzaeelCKVlNooMBXNZnR2wwcEO7dA+bAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUk3i7N6gh3U62FFWCBoJDaJrKbD8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QxNzk2NmY1LTU5YjItNGU0MC05MDY4LTU3OWEwZjA3ZWIyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDxiwAwDQYJKoZIhvcNAQELBQADggEBADeHb/JJjUQ/LlH48IXhZDfM Od1NQ5Ft64BJWcDHPxI0K5t8ozpiZxi3sVlcTRfWV0Gngl5s8XXYfF1ru6YgxyVY OU3CIRGoQPQpH5mcQTrbcwp6aOTXKj/levE6vavJC4TZDNsWBSF0nlsYjhMxKGCw h4lfg0yML488VJqx3ZpM3v3+zo88aqmf27Gsr6xvzSDmPJUyHkp57ZK+ahg9Oo5q MofVRqSZ7ZvHb/f2FRBigrpfJdo+PhHQB+4Cr0ZbXiS2JB0aWwRoScx++5Ri2uHS loJK4lUvJzTdkMg3gVS3iI5Ly3EJqLFiKScaYwuGE0aCIb9myWGTuT/qFvEoBPs= -----END CERTIFICATE-----Generated at Wed Aug 6 07:56:54 2025 by rpki-client