$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa File: da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa (raw, json) Hash identifier: uOWrbZSITyhNNZsjpnSae2rD6GUPNSwreGvXucILSiw= Subject key identifier: E3:4A:E8:04:E2:ED:D2:77:EB:D7:1A:48:5A:AD:7F:07:7C:00:81:96 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7AD623E6345E4667AE18CC25FB545A5693E63B99 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa Signing time: Tue 05 Aug 2025 18:20:04 +0000 ROA not before: Tue 05 Aug 2025 18:20:04 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d6:23:e6:34:5e:46:67:ae:18:cc:25:fb:54:5a:56:93:e6:3b:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:04 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=297c1f1660d18e355bcbcff6718b49ce3ddaa2291c7169b5620a804c6b2131c3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:62:40:97:a7:cc:39:aa:22:c7:c0:f9:a6:99: 33:89:24:2c:ef:8f:90:07:12:8f:22:2d:c5:b3:29: 75:75:38:7b:fa:3e:20:45:d0:fa:c3:7f:ee:21:b1: ab:5f:66:a0:f2:9e:e3:1c:69:cd:e8:05:b8:b8:7a: be:1e:3a:43:ee:b4:75:5e:71:de:85:eb:c6:33:bb: 84:0e:86:cd:c7:82:94:37:1a:8a:9a:a5:75:1d:c9: 66:02:39:ce:45:76:56:1f:05:84:96:30:bf:14:09: 81:67:4d:d4:37:14:c9:4f:8b:69:fd:37:e8:15:2c: a8:6f:19:d0:22:49:b8:99:16:6c:b7:e0:63:8d:42: 95:9c:6c:db:2c:ec:90:1c:4b:c9:fa:f0:ce:5a:91: a0:a5:f7:6a:20:28:d7:e5:56:37:aa:85:4b:05:6c: 2c:6d:22:ba:76:5a:0e:80:2e:aa:61:62:e4:14:c7: fc:e9:e3:8f:e2:b6:d9:d0:ba:70:7b:00:8c:9d:58: 72:67:b1:cc:b2:ff:fe:fe:9e:53:2b:d9:ba:6c:12: 30:95:53:48:65:78:f4:64:39:dd:30:8f:a0:d2:6b: 70:f9:29:7c:20:05:07:49:41:83:d1:46:b7:4a:66: a6:28:a2:d6:c3:2d:cc:7a:dc:d2:e6:17:ae:60:04: 74:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:4A:E8:04:E2:ED:D2:77:EB:D7:1A:48:5A:AD:7F:07:7C:00:81:96 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/da0d0f1f-f82d-47bb-9ac7-ee09a51b3f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:500::/48 Signature Algorithm: sha256WithRSAEncryption 81:ee:42:84:58:27:81:49:dd:80:78:e7:ce:62:d4:1b:f6:f0: 64:3a:ff:0c:27:9a:5a:25:a4:58:35:63:ac:ef:bf:17:c8:54: d1:7c:9a:2b:ff:ed:d8:78:0c:dd:0f:fa:2a:66:bc:44:9b:b3: b8:79:2b:8e:7b:05:c3:44:a7:7a:12:41:8a:15:2e:fe:11:0f: ef:82:b3:f4:ff:2c:64:90:5a:56:78:2d:b1:ca:47:1a:c6:52: c4:16:63:93:c5:1f:d6:78:5a:3e:f3:9e:3f:ec:3e:df:4d:f8: 81:ed:7e:d6:7d:2a:df:c4:54:63:d7:3a:f1:17:c0:ec:6d:cf: e3:3d:b0:07:d5:fa:20:c0:02:e3:2d:b5:c4:79:26:4c:86:e0: 6d:c5:83:cc:75:ec:e3:76:3a:2c:24:27:a8:d1:60:74:6b:37: 5e:d5:f6:2b:db:cb:c5:4a:a9:0f:c9:10:b5:70:18:a2:05:53: 74:a3:99:9b:ea:b6:12:df:98:73:79:23:5b:3a:6b:37:40:9c: 02:e9:be:b1:db:b1:ba:df:6e:11:c9:4a:63:11:d4:01:00:76: 44:73:01:39:1f:23:02:58:b1:bf:32:ab:f8:dc:ee:ba:0c:54: 02:f7:6b:a5:08:cd:15:c4:85:ee:54:e2:bc:3e:4a:89:c3:2d: 0b:57:d6:da -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUetYj5jReRmeuGMwl+1RaVpPmO5kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDA0WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTdjMWYxNjYwZDE4ZTM1NWJjYmNmZjY3MThiNDljZTNk ZGFhMjI5MWM3MTY5YjU2MjBhODA0YzZiMjEzMWMzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKYkCXp8w5qiLHwPmmmTOJJCzvj5AHEo8iLcWzKXV1OHv6 PiBF0PrDf+4hsatfZqDynuMcac3oBbi4er4eOkPutHVecd6F68Yzu4QOhs3HgpQ3 GoqapXUdyWYCOc5FdlYfBYSWML8UCYFnTdQ3FMlPi2n9N+gVLKhvGdAiSbiZFmy3 4GONQpWcbNss7JAcS8n68M5akaCl92ogKNflVjeqhUsFbCxtIrp2Wg6ALqphYuQU x/zp44/ittnQunB7AIydWHJnscyy//7+nlMr2bpsEjCVU0hlePRkOd0wj6DSa3D5 KXwgBQdJQYPRRrdKZqYootbDLcx63NLmF65gBHTvAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU40roBOLt0nfr1xpIWq1/B3wAgZYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2RhMGQwZjFmLWY4MmQtNDdiYi05YWM3LWVlMDlhNTFiM2YyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwBQAwDQYJKoZIhvcNAQELBQADggEBAIHuQoRYJ4FJ3YB4585i1Bv2 8GQ6/wwnmlolpFg1Y6zvvxfIVNF8miv/7dh4DN0P+ipmvESbs7h5K457BcNEp3oS QYoVLv4RD++Cs/T/LGSQWlZ4LbHKRxrGUsQWY5PFH9Z4Wj7znj/sPt9N+IHtftZ9 Kt/EVGPXOvEXwOxtz+M9sAfV+iDAAuMttcR5JkyG4G3Fg8x17ON2OiwkJ6jRYHRr N17V9ivby8VKqQ/JELVwGKIFU3SjmZvqthLfmHN5I1s6azdAnALpvrHbsbrfbhHJ SmMR1AEAdkRzATkfIwJYsb8yq/jc7roMVAL3a6UIzRXEhe5U4rw+SonDLQtX1to= -----END CERTIFICATE-----Generated at Tue Aug 5 23:06:31 2025 by rpki-client