$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa File: fc2b5e45-8344-4038-8f8f-6229cecec136.roa (raw, json) Hash identifier: t8BlLptz7gCjr3e/+2ayc9Y8KvLna5mOc8kUwqnVv0A= Subject key identifier: 4D:6F:BD:15:D6:01:FC:D7:E0:64:74:A1:13:D5:8D:26:28:FB:5F:48 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 226AA07574F0001EBD80D902491F3FE0DBD07F39 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa Signing time: Tue 15 Jul 2025 00:10:25 +0000 ROA not before: Tue 15 Jul 2025 00:10:25 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4141::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 09 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:6a:a0:75:74:f0:00:1e:bd:80:d9:02:49:1f:3f:e0:db:d0:7f:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 15 00:10:25 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=ecc8a1e270aadcfb3f9df7c52948e03f5457fa57f478632296c50a290bbb5b71, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:11:0c:d3:d3:4b:e9:ca:61:7d:8d:55:75:05: 34:cb:4d:a5:f3:23:8b:95:8a:c2:f3:e3:5f:f4:28: 18:a3:4c:ae:01:2f:d1:f3:3c:42:0f:51:71:a5:97: 85:bf:17:ee:7b:1b:71:c5:1a:d5:5c:48:1d:fd:d9: 71:48:b7:ed:a1:cc:bc:cd:dc:82:a6:d4:12:95:10: 62:10:7d:0d:69:84:6c:22:f8:3f:30:52:60:70:06: 9b:1a:8c:7c:49:da:be:aa:17:5e:eb:47:ce:83:ea: 85:af:f1:cc:9f:2c:af:c3:15:3b:22:89:37:b1:d5: 88:6b:2f:95:0c:15:8f:25:8b:60:5b:00:29:02:f2: 13:e4:df:7b:29:70:b8:83:80:dd:22:4d:8d:e5:68: 63:90:4e:56:21:b2:98:d6:b5:d3:4d:07:0b:89:24: 03:32:51:03:b8:b2:e8:cf:df:ae:00:f8:a4:ba:60: e0:03:a4:ae:8d:45:1b:9e:f2:1f:ea:7c:f1:8f:6e: e9:ea:d3:10:1f:c8:25:07:eb:b8:f3:b2:eb:36:72: cf:40:4e:d1:ec:05:8a:ff:68:81:b5:f3:52:d4:23: 40:10:5f:29:da:34:42:11:d1:02:48:0b:6e:36:f7: a2:0a:16:b4:5e:bf:be:62:0a:35:45:0a:7c:9d:0b: d6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:6F:BD:15:D6:01:FC:D7:E0:64:74:A1:13:D5:8D:26:28:FB:5F:48 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/fc2b5e45-8344-4038-8f8f-6229cecec136.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4141::/48 Signature Algorithm: sha256WithRSAEncryption 3b:f3:74:ab:66:2e:34:21:86:bf:fc:3a:50:6f:b9:a5:e7:24: ed:8d:c7:c7:c5:a0:89:25:b2:14:7c:ae:4b:fd:32:30:57:4f: 70:4e:39:e5:22:7c:05:37:38:fb:9a:62:45:e8:2b:7e:e7:f5: 05:cc:15:d0:5b:49:02:72:0c:b0:53:16:eb:56:29:92:fa:f1: b0:73:bf:b0:eb:fc:f1:c1:11:b4:cf:a5:ef:a4:18:51:62:27: 98:b2:74:52:a9:ab:22:3b:10:f7:ad:4d:2d:81:9e:2a:3e:86: f3:0d:6e:76:14:5e:4d:3d:ea:9d:4c:e6:55:5d:a2:cc:f7:d9: 2e:b4:d6:88:7b:37:62:87:46:76:cf:31:2e:40:06:12:ae:35: d1:2f:a2:e0:90:f1:5b:cb:37:04:4f:a2:72:2f:07:f2:5d:26: 56:51:88:a9:31:bd:9b:3b:f9:7f:23:51:59:4e:c3:a3:2b:d9: f0:29:a8:70:69:62:08:6f:2a:f4:77:d0:cb:47:8c:53:53:70: 9c:f1:9d:a6:bd:80:32:8d:3e:d7:0b:bb:e4:50:be:00:73:85: 41:07:0e:12:8a:9a:34:b3:f0:9a:91:4e:13:ad:4b:1e:3c:0d: b3:0d:7a:7c:24:18:c2:db:f6:33:ac:e4:40:79:fd:ab:f2:14: 27:cf:10:86 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUImqgdXTwAB69gNkCSR8/4NvQfzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE1MDAxMDI1WhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2M4YTFlMjcwYWFkY2ZiM2Y5ZGY3YzUyOTQ4ZTAzZjU0 NTdmYTU3ZjQ3ODYzMjI5NmM1MGEyOTBiYmI1YjcxMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGEQzT00vpymF9jVV1BTTLTaXzI4uVisLz41/0KBijTK4B L9HzPEIPUXGll4W/F+57G3HFGtVcSB392XFIt+2hzLzN3IKm1BKVEGIQfQ1phGwi +D8wUmBwBpsajHxJ2r6qF17rR86D6oWv8cyfLK/DFTsiiTex1YhrL5UMFY8li2Bb ACkC8hPk33spcLiDgN0iTY3laGOQTlYhspjWtdNNBwuJJAMyUQO4sujP364A+KS6 YOADpK6NRRue8h/qfPGPbunq0xAfyCUH67jzsus2cs9ATtHsBYr/aIG181LUI0AQ XynaNEIR0QJIC24296IKFrRev75iCjVFCnydC9YNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTW+9FdYB/NfgZHShE9WNJij7X0gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2ZjMmI1ZTQ1LTgzNDQtNDAzOC04ZjhmLTYyMjljZWNlYzEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwQUEwDQYJKoZIhvcNAQELBQADggEBADvzdKtmLjQhhr/8OlBvuaXn JO2Nx8fFoIklshR8rkv9MjBXT3BOOeUifAU3OPuaYkXoK37n9QXMFdBbSQJyDLBT FutWKZL68bBzv7Dr/PHBEbTPpe+kGFFiJ5iydFKpqyI7EPetTS2Bnio+hvMNbnYU Xk096p1M5lVdosz32S601oh7N2KHRnbPMS5ABhKuNdEvouCQ8VvLNwRPonIvB/Jd JlZRiKkxvZs7+X8jUVlOw6Mr2fApqHBpYghvKvR30MtHjFNTcJzxnaa9gDKNPtcL u+RQvgBzhUEHDhKKmjSz8JqRThOtSx48DbMNenwkGMLb9jOs5EB5/avyFCfPEIY= -----END CERTIFICATE-----Generated at Fri Aug 8 21:00:08 2025 by rpki-client