$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa File: d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa (raw, json) Hash identifier: VIjMzZpvgLY9tpbS5o7Mxj7LiLENZrwCx0MvMdo+6pc= Subject key identifier: B0:5F:F9:D7:88:8B:A7:C0:C2:F8:DF:23:1F:81:10:87:5B:AC:D6:61 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3ABB73257F43CBD123641658237A6133135E151F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa Signing time: Tue 15 Jul 2025 00:10:24 +0000 ROA not before: Tue 15 Jul 2025 00:10:24 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bb:73:25:7f:43:cb:d1:23:64:16:58:23:7a:61:33:13:5e:15:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 15 00:10:24 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=6165f0fc08e23f96bb06565325d0efd202d7609fc4f00aeb5afcb2fff1faf217, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:04:a1:96:df:58:3c:c8:16:a0:fc:07:d9:de: 2a:5f:ee:aa:eb:98:f0:f8:a6:68:2b:88:5c:2d:56: 85:6e:c7:11:e8:f7:03:75:14:8c:c9:96:3a:b1:e1: d9:bf:7f:3b:0a:19:1f:24:9f:0d:44:54:73:a7:f9: 25:6c:3d:72:50:7e:62:7c:cc:03:7e:ed:24:21:b9: 47:68:3c:58:bd:c2:a7:0f:d9:7c:02:67:3a:c9:76: e2:42:24:c9:14:7a:38:0f:17:1d:71:3c:30:8c:cc: 9a:ea:5b:fc:57:00:1f:9e:d9:42:d9:6a:e0:0a:ad: 0d:70:dc:b8:e7:96:5a:24:f4:19:3b:6a:76:c2:9a: 86:dd:39:be:2d:ed:73:b5:85:63:5f:f8:5d:62:e3: 31:99:83:10:e3:26:29:65:f8:a2:a2:61:de:94:1b: f2:c8:38:c6:72:fa:b3:2d:61:92:1f:da:ee:12:f0: 66:d5:fe:70:be:6b:92:ec:3b:a7:64:03:23:fc:cb: e1:3a:7a:c5:74:60:37:a3:fa:8e:0c:e3:95:05:18: 0b:3d:e4:84:4f:24:f8:9c:e8:26:bc:f5:82:f3:97: d2:dd:74:ff:97:f5:97:97:ad:bf:26:f5:81:de:66: c6:e3:c2:25:10:9b:48:8f:8c:6e:b3:9c:c2:dc:ed: 7a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5F:F9:D7:88:8B:A7:C0:C2:F8:DF:23:1F:81:10:87:5B:AC:D6:61 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/d2e3c99e-3e03-4115-856b-b25d7e97c4f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 46:3a:5f:94:bf:49:21:34:6e:1d:e5:9f:fa:f6:f4:2f:6a:64: e1:82:0b:85:13:38:ce:e4:b2:1b:a8:e7:23:53:d5:8e:34:a6: b7:ba:1b:b5:be:18:6d:54:01:82:fb:6e:f8:14:20:65:05:56: 11:c5:b7:3d:2b:27:18:bf:d0:b6:06:e4:74:0d:77:59:1f:87: 3f:c5:90:c1:d0:97:26:26:d2:d0:38:f9:94:90:26:06:59:95: d3:7f:f5:ce:98:80:f5:c2:83:b8:13:c5:39:e7:0e:30:0a:09: dc:04:ad:f0:33:b3:2c:a9:a9:12:90:10:63:aa:87:8d:a2:a8: c4:cd:b3:45:d2:20:df:ff:ea:40:b8:cb:47:3e:5d:83:3b:89: d7:10:25:a9:9e:c9:36:07:c8:22:7f:96:24:6b:40:a4:47:f3: 1b:04:35:26:a7:d0:e9:d1:59:99:0f:95:45:6c:d7:e4:91:5d: a6:86:e8:a0:ef:03:e6:56:f6:8b:19:98:1e:ef:72:1a:dc:18: 57:f2:96:85:da:c1:04:91:94:31:70:15:c5:d5:80:8d:ee:dc: a8:d5:29:43:67:f0:06:63:b2:8a:13:19:12:4a:b2:3e:3f:a9: 9e:12:c8:38:10:2d:25:5c:34:8a:14:94:64:e0:c7:c2:69:eb: 3b:4d:14:18 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUOrtzJX9Dy9EjZBZYI3phMxNeFR8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE1MDAxMDI0WhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MTY1ZjBmYzA4ZTIzZjk2YmIwNjU2NTMyNWQwZWZkMjAy ZDc2MDlmYzRmMDBhZWI1YWZjYjJmZmYxZmFmMjE3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDABKGW31g8yBag/AfZ3ipf7qrrmPD4pmgriFwtVoVuxxHo 9wN1FIzJljqx4dm/fzsKGR8knw1EVHOn+SVsPXJQfmJ8zAN+7SQhuUdoPFi9wqcP 2XwCZzrJduJCJMkUejgPFx1xPDCMzJrqW/xXAB+e2ULZauAKrQ1w3Ljnllok9Bk7 anbCmobdOb4t7XO1hWNf+F1i4zGZgxDjJill+KKiYd6UG/LIOMZy+rMtYZIf2u4S 8GbV/nC+a5LsO6dkAyP8y+E6esV0YDej+o4M45UFGAs95IRPJPic6Ca89YLzl9Ld dP+X9ZeXrb8m9YHeZsbjwiUQm0iPjG6znMLc7XrHAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsF/514iLp8DC+N8jH4EQh1us1mEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2QyZTNjOTllLTNlMDMtNDExNS04NTZiLWIyNWQ3ZTk3YzRmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBAEY6X5S/SSE0bh3ln/r29C9q ZOGCC4UTOM7kshuo5yNT1Y40pre6G7W+GG1UAYL7bvgUIGUFVhHFtz0rJxi/0LYG 5HQNd1kfhz/FkMHQlyYm0tA4+ZSQJgZZldN/9c6YgPXCg7gTxTnnDjAKCdwErfAz syypqRKQEGOqh42iqMTNs0XSIN//6kC4y0c+XYM7idcQJameyTYHyCJ/liRrQKRH 8xsENSan0OnRWZkPlUVs1+SRXaaG6KDvA+ZW9osZmB7vchrcGFfyloXawQSRlDFw FcXVgI3u3KjVKUNn8AZjsooTGRJKsj4/qZ4SyDgQLSVcNIoUlGTgx8Jp6ztNFBg= -----END CERTIFICATE-----Generated at Tue Aug 5 16:41:05 2025 by rpki-client