$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa File: f6cf58cb-08de-4e22-be98-43e3537a793b.roa (raw, json) Hash identifier: rsrgioVSQ+verJR8JBJsCsW4Hn65oj6s3/xy6089arg= Subject key identifier: 48:CC:44:B4:00:37:48:4A:76:3F:BB:D4:A2:93:C3:16:2B:4F:F5:77 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A64CF8F71D7F1D9C7A35510AD2C18265C4B0F6E Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa Signing time: Tue 05 Aug 2025 18:31:23 +0000 ROA not before: Tue 05 Aug 2025 18:31:23 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 08 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:64:cf:8f:71:d7:f1:d9:c7:a3:55:10:ad:2c:18:26:5c:4b:0f:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:23 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=a82d8bd151e94cc2aec79f376175d7a973a2d50be66c63ec35c22c6159c62d88, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5c:d5:6d:bb:af:cd:2f:00:c3:01:20:0e:f1: c4:02:c6:a4:d2:3b:f4:07:5b:d2:f3:f8:8f:e0:f5: 02:bf:73:0c:23:a6:a1:63:1b:e4:90:af:10:32:4a: dd:3c:2b:1a:3f:b7:40:b5:46:9c:b0:c3:00:f4:0b: a4:62:16:0e:df:97:bf:a4:c2:fb:31:5f:35:49:af: df:38:b5:fb:f7:18:86:c7:16:c3:af:ac:26:19:3d: de:6b:69:f9:22:74:69:8d:84:90:70:f1:a3:ad:4a: 7f:e6:55:48:3a:cd:04:fd:9c:91:fd:6e:23:ae:b3: fb:cb:4a:c1:7f:99:0c:d3:ea:c6:b9:f2:32:5f:bc: 5f:c3:53:f7:a4:69:8a:4e:48:8f:c7:c0:70:27:6e: 99:87:70:ef:db:ec:11:93:d6:02:f5:ee:96:e3:29: 9f:6b:b3:c0:2d:d5:3d:35:33:92:68:cc:a6:b7:cd: 91:33:a6:ff:92:7d:38:de:ed:43:a6:55:ed:d1:8a: c4:26:85:26:a8:9b:e2:1c:79:ea:51:37:4e:f8:2a: 95:a0:ab:31:9e:ba:bf:f6:97:e7:54:6e:31:8e:81: 34:41:76:c4:8d:16:01:75:3a:7f:33:11:0d:8a:48: 2d:90:4a:f2:73:fc:33:e2:84:58:96:c5:0f:79:53: 4f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:CC:44:B4:00:37:48:4A:76:3F:BB:D4:A2:93:C3:16:2B:4F:F5:77 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f6cf58cb-08de-4e22-be98-43e3537a793b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e100::/40 Signature Algorithm: sha256WithRSAEncryption 80:c7:44:09:f9:0b:fd:b1:e0:4a:9b:43:36:4b:1b:4b:f4:28: fb:fc:1c:e2:da:1a:cc:35:42:e0:ad:44:64:cb:74:cc:bf:b4: f7:54:6a:ac:61:36:7b:68:9b:ce:57:19:a6:52:ed:ca:6c:9a: e0:88:06:3e:64:39:5e:1c:c7:ca:dc:ed:bb:a2:5a:8a:74:34: 4b:07:69:07:85:2d:8d:72:33:2d:70:13:d2:d9:bd:31:45:24: 95:e3:df:13:24:eb:99:2e:59:cb:ba:2f:17:15:23:f8:5a:54: 75:48:1f:bd:93:c5:48:df:34:54:e0:41:e2:cd:fe:2c:d2:4e: eb:18:7d:34:fb:eb:a9:41:21:c4:09:d5:f3:87:d0:87:1a:9f: 16:be:3c:e0:a5:28:9f:e9:86:cb:cd:b6:8f:87:87:0b:e2:8a: 85:5f:35:86:b4:1f:78:ea:9b:5e:e5:55:99:fe:af:b4:ec:b4: dd:3f:92:cc:f7:36:f0:5c:86:fa:d6:f5:97:28:15:79:a5:df: 3a:00:6b:fc:d5:15:97:b9:ab:79:6a:74:68:2c:fa:24:fa:df: 69:ab:84:50:9e:e3:37:68:98:b6:e3:4b:a4:7e:0e:16:96:17: 24:26:49:3c:d7:86:db:8d:3e:f3:92:e7:8a:97:3e:b8:0f:d2: 45:50:82:67 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUCmTPj3HX8dnHo1UQrSwYJlxLD24wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTIzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODJkOGJkMTUxZTk0Y2MyYWVjNzlmMzc2MTc1ZDdhOTcz YTJkNTBiZTY2YzYzZWMzNWMyMmM2MTU5YzYyZDg4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9XNVtu6/NLwDDASAO8cQCxqTSO/QHW9Lz+I/g9QK/cwwj pqFjG+SQrxAySt08Kxo/t0C1RpywwwD0C6RiFg7fl7+kwvsxXzVJr984tfv3GIbH FsOvrCYZPd5rafkidGmNhJBw8aOtSn/mVUg6zQT9nJH9biOus/vLSsF/mQzT6sa5 8jJfvF/DU/ekaYpOSI/HwHAnbpmHcO/b7BGT1gL17pbjKZ9rs8At1T01M5JozKa3 zZEzpv+SfTje7UOmVe3RisQmhSaom+IceepRN074KpWgqzGeur/2l+dUbjGOgTRB dsSNFgF1On8zEQ2KSC2QSvJz/DPihFiWxQ95U0+lAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSMxEtAA3SEp2P7vUopPDFitP9XcwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y2Y2Y1OGNiLTA4ZGUtNGUyMi1iZTk4LTQzZTM1MzdhNzkzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74TANBgkqhkiG9w0BAQsFAAOCAQEAgMdECfkL/bHgSptDNksbS/Qo +/wc4toazDVC4K1EZMt0zL+091RqrGE2e2ibzlcZplLtymya4IgGPmQ5XhzHytzt u6JainQ0SwdpB4UtjXIzLXAT0tm9MUUklePfEyTrmS5Zy7ovFxUj+FpUdUgfvZPF SN80VOBB4s3+LNJO6xh9NPvrqUEhxAnV84fQhxqfFr484KUon+mGy822j4eHC+KK hV81hrQfeOqbXuVVmf6vtOy03T+SzPc28FyG+tb1lygVeaXfOgBr/NUVl7mreWp0 aCz6JPrfaauEUJ7jN2iYtuNLpH4OFpYXJCZJPNeG240+85Lnipc+uA/SRVCCZw== -----END CERTIFICATE-----Generated at Thu Aug 7 05:05:35 2025 by rpki-client