$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa File: f8738a51-4689-46b8-a472-d4d0afaca2d7.roa (raw, json) Hash identifier: UHS117NQjzNzyhcnVP6YBKhuAOYAFN8O7I4QZEesegE= Subject key identifier: 2A:B6:71:0D:5F:3C:9B:B7:B0:D0:F8:A0:5A:1E:B7:1E:BB:7D:BE:69 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 29A768D17414B3445A468F39E1B971F676FB1680 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa Signing time: Mon 21 Jul 2025 16:40:02 +0000 ROA not before: Mon 21 Jul 2025 16:40:02 +0000 ROA not after: Mon 25 Aug 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 07 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a7:68:d1:74:14:b3:44:5a:46:8f:39:e1:b9:71:f6:76:fb:16:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 21 16:40:02 2025 GMT Not After : Aug 25 23:59:59 2025 GMT Subject: serialNumber=096145a298cb51b96fdcc2e2f9bbec0eaabcb0cca6ecd00bfc9618d6ace11bb3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:44:ae:fa:5d:d7:5a:91:03:91:d9:75:5e:18: ca:78:9c:bb:40:ab:f5:82:39:fc:16:a6:db:72:e4: 4e:c3:4a:03:1a:a2:9a:85:75:b9:81:50:f6:21:b2: 2c:39:77:1a:05:0b:3f:64:f8:85:cd:4b:b6:ce:2c: e2:c6:13:7b:39:24:cd:26:c8:68:c3:a3:78:2c:5b: 2e:fb:01:b3:d6:c5:fe:db:c8:27:3c:ea:ec:28:a9: 79:58:6a:7f:48:98:6e:7c:fc:a5:e3:31:3f:d7:87: ff:0a:1b:2c:83:4b:b7:b2:9b:0b:c3:63:2e:4f:e0: ec:a1:54:09:90:91:65:b4:8c:ca:ef:d2:f1:7c:a9: c5:2b:b2:37:37:ca:7e:cd:99:d2:c1:24:45:b2:41: 17:9e:fc:5d:e3:43:ba:b8:e8:36:62:b7:70:ad:2c: cb:c8:e8:32:15:46:eb:42:f7:da:a7:60:35:06:3d: fc:24:81:0d:88:a9:45:db:5c:f4:0d:29:3d:a8:d6: 60:a9:ec:8f:a2:2a:b6:68:65:55:31:9a:36:c5:95: 8f:1c:10:e8:5d:e3:50:fe:eb:80:1f:49:b1:36:9e: e8:89:e4:0b:a8:2b:a9:51:a1:67:36:3f:3b:3c:8e: 00:b6:d9:2a:ab:72:3d:eb:40:6c:97:78:67:9e:a4: dc:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B6:71:0D:5F:3C:9B:B7:B0:D0:F8:A0:5A:1E:B7:1E:BB:7D:BE:69 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/f8738a51-4689-46b8-a472-d4d0afaca2d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4::/48 Signature Algorithm: sha256WithRSAEncryption 55:99:7a:5a:0e:05:36:ba:e7:82:3b:7f:b1:45:f4:24:a9:7c: cd:94:d9:c5:65:d4:97:70:84:ee:13:e6:ae:2d:8d:92:06:c0: a6:12:8f:5c:34:6f:fb:1b:99:1b:a6:73:8c:2c:b3:a5:64:48: 87:33:61:71:bc:11:23:14:09:d1:d1:b7:d9:b6:65:75:fc:c4: 95:6c:b5:13:5c:b8:97:1d:02:2a:6a:5b:22:e8:3d:24:28:11: 84:e7:e8:ae:80:98:2f:07:41:18:20:8d:63:fe:b4:b6:bd:c4: 66:38:bb:ea:d5:ae:a0:0e:5b:2d:a9:8a:39:52:20:d3:e0:94: 42:fa:7d:04:6e:47:76:94:be:64:52:d1:22:29:15:a7:75:e2: 61:7a:d1:67:97:fa:8f:e7:54:97:b0:3d:6f:65:de:cb:76:f9: fe:6e:15:39:2c:ca:57:f7:e0:5f:ce:97:39:13:3a:41:1a:93: 56:ba:54:03:79:69:8f:06:9d:05:35:54:b7:38:73:5f:68:85: 35:03:e7:b6:7a:94:7e:ae:61:5a:73:e1:2f:88:0f:3c:9e:05: 26:1a:e6:27:8c:d8:85:f6:6f:ba:e2:32:f6:05:a4:63:a9:54: 14:08:20:f7:2c:1d:ad:56:14:51:57:32:83:00:e9:b2:8d:98: da:fc:2e:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKado0XQUs0RaRo854blx9nb7FoAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzIxMTY0MDAyWhcNMjUwODI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTYxNDVhMjk4Y2I1MWI5NmZkY2MyZTJmOWJiZWMwZWFh YmNiMGNjYTZlY2QwMGJmYzk2MThkNmFjZTExYmIzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxRK76XddakQOR2XVeGMp4nLtAq/WCOfwWptty5E7DSgMa opqFdbmBUPYhsiw5dxoFCz9k+IXNS7bOLOLGE3s5JM0myGjDo3gsWy77AbPWxf7b yCc86uwoqXlYan9ImG58/KXjMT/Xh/8KGyyDS7eymwvDYy5P4OyhVAmQkWW0jMrv 0vF8qcUrsjc3yn7NmdLBJEWyQRee/F3jQ7q46DZit3CtLMvI6DIVRutC99qnYDUG PfwkgQ2IqUXbXPQNKT2o1mCp7I+iKrZoZVUxmjbFlY8cEOhd41D+64AfSbE2nuiJ 5AuoK6lRoWc2Pzs8jgC22Sqrcj3rQGyXeGeepNy1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKrZxDV88m7ew0PigWh63Hrt9vmkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2Y4NzM4YTUxLTQ2ODktNDZiOC1hNDcyLWQ0ZDBhZmFjYTJkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAAQwDQYJKoZIhvcNAQELBQADggEBAFWZeloOBTa654I7f7FF9CSp fM2U2cVl1JdwhO4T5q4tjZIGwKYSj1w0b/sbmRumc4wss6VkSIczYXG8ESMUCdHR t9m2ZXX8xJVstRNcuJcdAipqWyLoPSQoEYTn6K6AmC8HQRggjWP+tLa9xGY4u+rV rqAOWy2pijlSINPglEL6fQRuR3aUvmRS0SIpFad14mF60WeX+o/nVJewPW9l3st2 +f5uFTksylf34F/OlzkTOkEak1a6VAN5aY8GnQU1VLc4c19ohTUD57Z6lH6uYVpz 4S+IDzyeBSYa5ieM2IX2b7riMvYFpGOpVBQIIPcsHa1WFFFXMoMA6bKNmNr8Lkc= -----END CERTIFICATE-----Generated at Wed Aug 6 09:30:57 2025 by rpki-client