$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa File: f30a276d-715e-46ee-8158-fd4576a10978.roa (raw, json) Hash identifier: BrZs7nUCCC2CnJBG/uR1UUhrAL7PYcS6EN2nnZGolNI= Subject key identifier: 98:FA:7E:52:74:B6:19:5F:AF:CA:CA:45:25:16:3B:C0:9E:9B:48:29 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4BECB4BFE1316A12E8A0323B1E301F6EB530EAEF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa Signing time: Tue 05 Aug 2025 18:30:17 +0000 ROA not before: Tue 05 Aug 2025 18:30:17 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:ec00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ec:b4:bf:e1:31:6a:12:e8:a0:32:3b:1e:30:1f:6e:b5:30:ea:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:17 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=598576bdd021614a875c40e642d8bbc5d432cfe16e0de7c47231379c867b6578, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:20:83:88:0b:77:6e:27:ed:03:0a:3b:b2:57: 9f:99:6b:f2:e7:55:89:74:e7:bd:44:eb:8e:8c:47: 3b:33:ef:21:68:a8:37:30:a3:9a:8a:a9:59:ed:16: 95:1a:8f:0b:d8:0b:dd:c7:88:f6:1d:d1:dc:aa:1e: f5:7d:b1:cf:4d:7b:0a:94:32:7e:81:61:15:50:c8: e0:d5:a0:d4:43:c4:bf:61:26:70:f6:16:f7:f4:37: 02:2b:a2:01:ef:d7:47:72:64:7a:af:19:18:b8:a1: 79:74:1e:9c:b3:da:ba:b0:cd:1b:b6:4a:87:a8:7d: 1a:2d:41:68:48:f2:bf:d4:e3:53:11:75:1c:93:8f: 5a:fd:ae:64:7b:c9:17:d3:03:4e:43:37:c7:fa:0b: 7a:b3:6b:4e:17:2e:fd:82:ce:be:5f:21:f0:8f:57: bd:e7:51:a5:24:eb:7a:e8:9c:59:e5:70:39:1c:64: 26:25:03:70:fe:12:e9:c2:97:c5:2f:41:11:7d:5e: 48:eb:69:cd:f8:51:5f:cb:41:1a:e4:d7:74:09:d6: e0:53:a2:ec:34:43:c0:d1:7f:ac:5e:a6:64:f6:2b: 7d:23:fa:19:8a:30:7c:04:81:be:26:77:02:14:07: 02:bc:ac:ab:1e:b1:7c:9a:be:5c:e8:0e:03:00:5b: 4c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FA:7E:52:74:B6:19:5F:AF:CA:CA:45:25:16:3B:C0:9E:9B:48:29 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f30a276d-715e-46ee-8158-fd4576a10978.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/40 Signature Algorithm: sha256WithRSAEncryption 1b:8b:72:6a:12:26:75:15:87:7c:37:c1:00:42:ad:52:48:fe: 6d:4f:a3:b5:d4:6f:02:8d:e6:53:d1:fe:c9:52:89:9d:33:5b: 1d:3c:69:45:5f:aa:3b:c5:cd:0f:d2:00:d3:b4:ec:9f:6a:92: 86:23:8a:4d:91:4e:3b:93:ee:21:01:b7:3d:0a:f8:bc:17:5b: 4b:bd:b2:13:26:e7:8e:92:9a:a0:f7:37:37:7b:c6:6d:c1:d7: ec:31:ab:87:fb:b5:fb:76:a0:13:c4:03:7c:e6:f3:4c:47:26: ee:bb:f0:72:c6:a5:1d:c6:12:a5:84:41:18:8c:1c:8f:a6:e5: 50:ad:7e:b8:7d:b7:da:70:d7:d9:97:80:d2:af:c1:53:b8:c3: e2:74:f9:3a:6c:42:9b:4b:f5:4d:ed:fe:4f:1f:5e:8b:b9:0f: 18:4f:91:5c:b7:4d:8e:a1:6f:94:96:52:22:83:0c:88:29:18: 59:43:c7:33:df:16:4b:5f:93:7f:d6:c8:d4:d5:18:64:aa:db: 5d:94:01:8b:7f:64:30:08:f5:92:ad:7f:46:bb:6b:a8:5a:4c: 12:36:bd:08:42:2d:19:ab:f6:09:7d:bb:32:85:89:0f:87:a2: 2b:d1:56:35:5f:d5:26:05:56:d0:67:30:a6:42:b2:9a:17:5e: e5:be:ae:f3 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUS+y0v+ExahLooDI7HjAfbrUw6u8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDE3WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTg1NzZiZGQwMjE2MTRhODc1YzQwZTY0MmQ4YmJjNWQ0 MzJjZmUxNmUwZGU3YzQ3MjMxMzc5Yzg2N2I2NTc4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIIIOIC3duJ+0DCjuyV5+Za/LnVYl0571E646MRzsz7yFo qDcwo5qKqVntFpUajwvYC93HiPYd0dyqHvV9sc9NewqUMn6BYRVQyODVoNRDxL9h JnD2Fvf0NwIrogHv10dyZHqvGRi4oXl0Hpyz2rqwzRu2SoeofRotQWhI8r/U41MR dRyTj1r9rmR7yRfTA05DN8f6C3qza04XLv2Czr5fIfCPV73nUaUk63ronFnlcDkc ZCYlA3D+EunCl8UvQRF9Xkjrac34UV/LQRrk13QJ1uBTouw0Q8DRf6xepmT2K30j +hmKMHwEgb4mdwIUBwK8rKsesXyavlzoDgMAW0z9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUmPp+UnS2GV+vyspFJRY7wJ6bSCkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2YzMGEyNzZkLTcxNWUtNDZlZS04MTU4LWZkNDU3NmExMDk3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD77DANBgkqhkiG9w0BAQsFAAOCAQEAG4tyahImdRWHfDfBAEKtUkj+ bU+jtdRvAo3mU9H+yVKJnTNbHTxpRV+qO8XND9IA07Tsn2qShiOKTZFOO5PuIQG3 PQr4vBdbS72yEybnjpKaoPc3N3vGbcHX7DGrh/u1+3agE8QDfObzTEcm7rvwcsal HcYSpYRBGIwcj6blUK1+uH232nDX2ZeA0q/BU7jD4nT5OmxCm0v1Te3+Tx9ei7kP GE+RXLdNjqFvlJZSIoMMiCkYWUPHM98WS1+Tf9bI1NUYZKrbXZQBi39kMAj1kq1/ RrtrqFpMEja9CEItGav2CX27MoWJD4eiK9FWNV/VJgVW0GcwpkKymhde5b6u8w== -----END CERTIFICATE-----Generated at Wed Aug 6 09:29:48 2025 by rpki-client