$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa File: f1746927-d9c4-41c2-8abc-289ecb180bdc.roa (raw, json) Hash identifier: 0hjlD38Id1+CcUSLHvX45VYzpr2SSDYM8i5RlQa3kVY= Subject key identifier: CB:36:7B:89:41:9D:A5:CE:0D:49:98:AF:0C:26:C9:45:47:1E:36:DE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 26D0436E6F3231BD0C36F2E680431688F3F87082 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa Signing time: Tue 05 Aug 2025 18:31:20 +0000 ROA not before: Tue 05 Aug 2025 18:31:20 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e500::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:d0:43:6e:6f:32:31:bd:0c:36:f2:e6:80:43:16:88:f3:f8:70:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:20 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=2cfb354e0d2c63420d959f2c1b5b9d7032b926c0c7173c09f80587b3652489ac, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cd:d4:30:15:3f:a6:3f:8a:22:4c:a8:37:6e: 57:1f:35:58:22:b1:85:5e:5f:ef:a6:1a:21:42:11: cf:32:46:41:df:72:85:f6:3c:c8:44:e7:a5:b3:e4: 16:8e:6e:54:5e:e3:46:a4:ce:e7:c8:52:f6:db:15: c6:e4:48:c9:40:07:e8:a8:12:23:37:c2:4f:4f:3e: 25:e2:d1:33:09:ca:02:b4:67:2d:0c:12:e9:81:48: 3d:9c:62:8a:05:17:9b:0a:55:5d:0e:7b:3d:7e:88: b2:49:bf:55:4d:8c:52:6b:4d:fa:88:9e:b9:9c:53: 44:8b:30:2c:29:3c:47:57:55:eb:3a:03:cd:52:39: 35:82:78:04:8f:be:37:c9:ac:f0:64:ea:6b:b0:c6: 77:7d:03:e2:dc:39:eb:4b:18:e4:c9:58:85:11:23: 10:cd:3e:c0:3f:58:0f:4f:d6:c8:a4:b2:a1:88:67: 55:3b:a4:b3:8e:d6:5d:2e:f7:79:a5:cd:e2:74:26: 9e:31:c1:b0:a8:2e:db:08:df:96:e8:2f:08:74:91: 76:84:e7:52:f6:b0:7c:61:58:83:ac:f1:08:2b:d7: 3c:a7:75:d7:e0:1c:59:88:14:f8:4f:bb:07:2c:5b: 46:2f:06:44:81:4f:05:d8:b1:50:ab:5e:a8:29:b0: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:36:7B:89:41:9D:A5:CE:0D:49:98:AF:0C:26:C9:45:47:1E:36:DE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f1746927-d9c4-41c2-8abc-289ecb180bdc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/40 Signature Algorithm: sha256WithRSAEncryption 78:75:07:78:35:2b:d1:36:c9:58:44:18:da:a8:92:8a:7e:11: 11:f0:31:43:b1:2a:fe:4a:db:d5:bf:22:bf:9a:7f:78:5d:38: 5e:5e:d8:9a:ea:2f:c4:4b:9c:b4:11:13:8b:27:4a:ec:b2:4d: 8a:ae:20:7a:f9:cd:62:dc:d0:1e:84:2d:d4:90:57:a4:56:e6: 2d:c0:6a:75:20:06:59:ee:f2:53:d9:9e:19:b9:43:e4:03:81: fc:79:7e:e9:8c:a6:1a:4a:06:80:e2:95:94:60:68:ae:22:ef: 05:7e:63:cd:ec:1c:a2:2d:e5:a6:80:b7:6a:fb:61:96:b3:b9: 15:5c:99:b1:6f:2c:d5:ae:07:2b:32:3e:52:0a:ce:32:cd:55: 40:f5:ef:44:2c:04:24:d7:df:b6:08:59:6b:4f:42:fb:a5:73: 2f:13:3f:15:a2:bf:b5:a0:8d:b2:6e:bd:f0:1c:1d:b7:b6:37: dd:7e:ee:e2:c3:f4:89:d3:34:68:43:d0:31:09:60:d2:e4:fb: 30:56:65:4a:96:7f:fe:26:50:00:8b:86:6b:bf:d1:91:44:60: 70:17:5c:34:99:e7:bf:e3:e2:15:4d:98:08:16:37:1a:5d:20: e7:58:c6:a8:cb:2f:9a:f7:be:62:e2:95:82:bb:be:fd:e7:c0: 8c:35:af:96 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJtBDbm8yMb0MNvLmgEMWiPP4cIIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTIwWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyY2ZiMzU0ZTBkMmM2MzQyMGQ5NTlmMmMxYjViOWQ3MDMy YjkyNmMwYzcxNzNjMDlmODA1ODdiMzY1MjQ4OWFjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrzdQwFT+mP4oiTKg3blcfNVgisYVeX++mGiFCEc8yRkHf coX2PMhE56Wz5BaOblRe40akzufIUvbbFcbkSMlAB+ioEiM3wk9PPiXi0TMJygK0 Zy0MEumBSD2cYooFF5sKVV0Oez1+iLJJv1VNjFJrTfqInrmcU0SLMCwpPEdXVes6 A81SOTWCeASPvjfJrPBk6muwxnd9A+LcOetLGOTJWIURIxDNPsA/WA9P1siksqGI Z1U7pLOO1l0u93mlzeJ0Jp4xwbCoLtsI35boLwh0kXaE51L2sHxhWIOs8Qgr1zyn ddfgHFmIFPhPuwcsW0YvBkSBTwXYsVCrXqgpsBxFAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUyzZ7iUGdpc4NSZivDCbJRUceNt4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YxNzQ2OTI3LWQ5YzQtNDFjMi04YWJjLTI4OWVjYjE4MGJkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD75TANBgkqhkiG9w0BAQsFAAOCAQEAeHUHeDUr0TbJWEQY2qiSin4R EfAxQ7Eq/krb1b8iv5p/eF04Xl7YmuovxEuctBETiydK7LJNiq4gevnNYtzQHoQt 1JBXpFbmLcBqdSAGWe7yU9meGblD5AOB/Hl+6YymGkoGgOKVlGBoriLvBX5jzewc oi3lpoC3avthlrO5FVyZsW8s1a4HKzI+UgrOMs1VQPXvRCwEJNfftghZa09C+6Vz LxM/FaK/taCNsm698Bwdt7Y33X7u4sP0idM0aEPQMQlg0uT7MFZlSpZ//iZQAIuG a7/RkURgcBdcNJnnv+PiFU2YCBY3Gl0g51jGqMsvmve+YuKVgru+/efAjDWvlg== -----END CERTIFICATE-----Generated at Fri Aug 8 00:36:58 2025 by rpki-client