$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa File: e44f32b3-ff36-487e-b814-9b622650bde3.roa (raw, json) Hash identifier: 2oKg90X3hCbcY20FdOSsy5bRn18svwfZ5yW8lnRWr+w= Subject key identifier: D4:EC:BD:2E:BC:1A:25:BD:86:A1:27:DB:7B:28:0D:94:6E:BD:6B:85 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 694B967DFC0FBD08711725FF4A7FF999F0C598C1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa Signing time: Fri 25 Jul 2025 16:50:11 +0000 ROA not before: Fri 25 Jul 2025 16:50:11 +0000 ROA not after: Fri 29 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:1100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:4b:96:7d:fc:0f:bd:08:71:17:25:ff:4a:7f:f9:99:f0:c5:98:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 25 16:50:11 2025 GMT Not After : Aug 29 23:59:59 2025 GMT Subject: serialNumber=e755e08638d98109fe8f33a271bfb7d7209fa7813dad2b581a68856e71c6c528, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ba:61:c2:81:67:55:b7:57:4b:3c:4d:4d:d0: 4a:bd:6b:54:eb:51:7d:08:75:e2:66:6f:96:88:9d: 81:b0:61:8d:eb:e2:3e:10:7a:bf:bf:f5:c8:bf:b7: 4b:c6:00:84:49:ac:7e:50:4d:9b:a5:35:49:f2:be: 3e:c9:33:66:2d:af:a2:43:03:2f:f1:1f:1b:8d:a5: 9c:75:c0:16:95:a1:dc:8d:3b:ae:92:c9:fd:81:4d: 20:e1:c3:73:56:eb:0a:f6:02:73:f0:20:59:56:25: cd:cd:94:22:e2:64:57:3a:c1:84:9b:4c:da:de:6f: 79:2c:66:31:00:00:51:f3:18:b1:fa:31:d5:cd:6b: c7:97:33:f5:27:ff:cd:64:17:19:db:05:10:7f:a5: d4:98:ba:25:1e:23:48:55:95:00:ae:b9:57:57:75: 0b:75:54:44:ec:1c:de:2c:ac:11:1f:af:6e:ff:8f: e5:ac:f1:9e:0d:9e:9e:18:dc:8b:3e:1a:98:fb:ec: aa:be:18:d8:de:53:5d:22:f2:59:c6:4f:11:e5:0d: 42:1e:d2:3b:3c:40:82:3b:c3:49:30:52:7f:50:b4: b4:f8:f2:3a:fa:7e:f1:d5:79:2c:ca:06:4e:ef:d0: a6:cb:1e:00:13:4d:0f:2d:5d:0b:2e:ba:b5:06:4c: 94:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:EC:BD:2E:BC:1A:25:BD:86:A1:27:DB:7B:28:0D:94:6E:BD:6B:85 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/e44f32b3-ff36-487e-b814-9b622650bde3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1100::/40 Signature Algorithm: sha256WithRSAEncryption 6e:43:b1:20:da:3a:96:2a:bf:fa:63:03:bd:c0:27:67:09:d3: 9d:3d:94:8a:5e:84:04:2f:77:b9:a0:c7:f1:9e:6f:88:0b:90: 93:6b:25:86:d3:c2:b5:48:b9:cb:6b:ef:a9:3e:8f:b1:6e:f9: 19:a2:24:a4:0a:bf:37:27:91:41:19:ec:a1:58:db:e1:21:8b: 16:95:4e:f4:b3:5e:3d:f2:36:34:2f:6c:f8:5c:da:e0:2b:11: 54:fd:ae:ed:54:20:ad:94:ec:90:51:55:ac:3a:dc:d3:eb:62: 44:0e:c9:57:6d:68:08:2a:9b:98:88:2e:69:00:e8:61:94:22: b1:d7:f4:81:da:68:8b:ec:16:8c:1a:4a:03:64:cc:bf:4e:2b: f5:00:84:5f:1f:bf:f0:d1:ec:b3:39:d0:6d:38:20:27:e0:8d: df:f4:42:ba:75:41:ba:8a:30:ec:ae:94:14:af:26:07:32:6c: 23:8e:f5:63:42:b9:77:20:28:1c:5b:3c:c1:b2:f4:53:dd:23: 1c:40:bb:46:fe:9c:fc:a9:08:61:92:dc:01:d8:06:7b:fc:1c: be:c7:06:19:a5:f6:c9:73:e4:f8:26:48:fa:1d:88:b5:66:21: 65:ee:f0:47:4b:ce:5b:8a:52:e2:8c:21:fc:43:cf:e2:e7:c0: b7:b2:f3:72 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUaUuWffwPvQhxFyX/Sn/5mfDFmMEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzI1MTY1MDExWhcNMjUwODI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNzU1ZTA4NjM4ZDk4MTA5ZmU4ZjMzYTI3MWJmYjdkNzIw OWZhNzgxM2RhZDJiNTgxYTY4ODU2ZTcxYzZjNTI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEumHCgWdVt1dLPE1N0Eq9a1TrUX0IdeJmb5aInYGwYY3r 4j4Qer+/9ci/t0vGAIRJrH5QTZulNUnyvj7JM2Ytr6JDAy/xHxuNpZx1wBaVodyN O66Syf2BTSDhw3NW6wr2AnPwIFlWJc3NlCLiZFc6wYSbTNreb3ksZjEAAFHzGLH6 MdXNa8eXM/Un/81kFxnbBRB/pdSYuiUeI0hVlQCuuVdXdQt1VETsHN4srBEfr27/ j+Ws8Z4Nnp4Y3Is+Gpj77Kq+GNjeU10i8lnGTxHlDUIe0js8QII7w0kwUn9QtLT4 8jr6fvHVeSzKBk7v0KbLHgATTQ8tXQsuurUGTJTvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU1Oy9LrwaJb2GoSfbeygNlG69a4UwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2U0NGYzMmIzLWZmMzYtNDg3ZS1iODE0LTliNjIyNjUwYmRlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwETANBgkqhkiG9w0BAQsFAAOCAQEAbkOxINo6liq/+mMDvcAnZwnT nT2Uil6EBC93uaDH8Z5viAuQk2slhtPCtUi5y2vvqT6PsW75GaIkpAq/NyeRQRns oVjb4SGLFpVO9LNePfI2NC9s+Fza4CsRVP2u7VQgrZTskFFVrDrc0+tiRA7JV21o CCqbmIguaQDoYZQisdf0gdpoi+wWjBpKA2TMv04r9QCEXx+/8NHssznQbTggJ+CN 3/RCunVBuoow7K6UFK8mBzJsI471Y0K5dyAoHFs8wbL0U90jHEC7Rv6c/KkIYZLc AdgGe/wcvscGGaX2yXPk+CZI+h2ItWYhZe7wR0vOW4pS4owh/EPP4ufAt7Lzcg== -----END CERTIFICATE-----Generated at Wed Aug 6 04:01:01 2025 by rpki-client