$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa File: bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa (raw, json) Hash identifier: 99fgh5klQhGVjdxkP+N4/NOGSPCokChuxhk/cVfUG+Y= Subject key identifier: CF:E8:24:E2:2A:24:F2:11:C0:95:6D:F7:0E:80:6D:71:A4:10:28:FF Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0FD987C3BCA77B65DF4E782ED108735952030AFB Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa Signing time: Mon 14 Jul 2025 15:30:54 +0000 ROA not before: Mon 14 Jul 2025 15:30:54 +0000 ROA not after: Mon 18 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f2:7000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 22 Jul 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:d9:87:c3:bc:a7:7b:65:df:4e:78:2e:d1:08:73:59:52:03:0a:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 14 15:30:54 2025 GMT Not After : Aug 18 23:59:59 2025 GMT Subject: serialNumber=70162107ee1219442bb72dabb7e54aee95c5b93c4efb7c95cc8f9aa50b8cf8b7, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:90:cb:c7:6f:d2:f9:f8:e3:63:9b:47:d9:b2: 84:bf:8e:d1:08:a4:ee:a1:4a:f5:6a:61:33:5d:da: fd:fd:9c:06:c2:c1:3c:07:81:1e:9f:35:71:bf:45: 7f:18:af:e6:61:27:0e:3e:6b:4b:cd:a0:56:f7:1a: 91:70:18:e5:42:e8:be:2c:8b:a0:4a:70:f5:30:d5: 66:da:eb:1f:36:87:b4:a6:9a:a4:a3:38:10:4f:6b: 3d:46:97:d9:98:6c:6b:90:93:27:9e:e2:af:da:79: 89:d1:c1:52:cc:7b:0a:c6:e3:aa:61:9c:69:e3:f6: a9:e5:4b:b6:af:35:ce:5b:d0:11:9a:fb:04:af:83: 61:a8:93:92:a9:39:d4:ce:db:54:07:e1:0c:c7:b0: 3f:88:09:2f:3d:ac:6d:a0:6c:8f:65:74:52:32:a0: 5d:ea:e4:f1:a1:42:48:49:24:77:93:4f:12:a7:e5: 0d:1f:3a:b2:a9:fe:bc:a1:d5:5f:81:ee:2a:e6:e2: ee:2e:9f:a6:e8:ab:74:9a:65:67:f9:22:09:e8:2c: 64:00:62:6a:47:d6:f9:99:94:0e:5c:10:ec:55:35: 21:cc:40:fc:1e:dc:76:1b:2e:4f:c4:f3:0a:d1:2a: f0:28:d9:71:e5:39:e6:e4:e1:ac:f5:54:af:f7:99: 40:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E8:24:E2:2A:24:F2:11:C0:95:6D:F7:0E:80:6D:71:A4:10:28:FF X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/bd7d2b15-718f-43fb-b91d-c0bc7f75e8dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f2:7000::/44 Signature Algorithm: sha256WithRSAEncryption 5c:86:99:fa:a2:1b:d0:46:7a:a6:4b:9f:29:4e:91:77:23:d1: 8f:13:b0:32:fe:70:b5:e0:d1:a0:46:8d:82:b3:9c:63:73:cf: 7d:24:e5:09:bb:7a:d5:6c:7a:c4:15:b3:87:8a:2f:49:bc:72: e1:d7:01:85:a3:e8:04:62:a6:a0:18:43:4f:2a:44:fd:43:77: 25:a2:4c:b7:9c:62:77:23:e9:0c:12:d9:7c:23:66:67:86:48: 6b:1c:fd:1c:2c:20:e1:61:30:ce:5c:53:cb:8b:5d:62:d7:3d: c0:2a:af:ea:84:2c:fc:15:4e:a2:e6:23:e6:2d:9b:2d:d3:b7: c8:80:ef:e7:9e:80:8d:e8:29:ca:86:7a:84:f3:7f:69:90:fe: 3a:de:92:d7:4a:e7:d1:06:4b:56:b7:58:ea:53:78:70:31:9e: c4:45:a8:a0:fa:be:bc:ac:62:b4:79:f2:02:0f:55:c6:5a:e3: b3:30:65:cc:1c:c8:c3:11:1d:13:91:1d:f6:58:b2:ff:e3:a6: ba:cd:9d:93:68:bb:42:49:72:1a:8d:87:3e:de:bf:7a:73:33: 8b:fb:fc:6e:01:58:73:68:8f:41:84:e6:72:f6:9e:54:05:f6: 31:ef:db:66:9b:45:d9:e9:33:05:2a:10:d3:c2:df:8d:df:8d: cc:78:1d:cd -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUD9mHw7yne2XfTngu0QhzWVIDCvswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE0MTUzMDU0WhcNMjUwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDE2MjEwN2VlMTIxOTQ0MmJiNzJkYWJiN2U1NGFlZTk1 YzViOTNjNGVmYjdjOTVjYzhmOWFhNTBiOGNmOGI3MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpkMvHb9L5+ONjm0fZsoS/jtEIpO6hSvVqYTNd2v39nAbC wTwHgR6fNXG/RX8Yr+ZhJw4+a0vNoFb3GpFwGOVC6L4si6BKcPUw1Wba6x82h7Sm mqSjOBBPaz1Gl9mYbGuQkyee4q/aeYnRwVLMewrG46phnGnj9qnlS7avNc5b0BGa +wSvg2Gok5KpOdTO21QH4QzHsD+ICS89rG2gbI9ldFIyoF3q5PGhQkhJJHeTTxKn 5Q0fOrKp/ryh1V+B7irm4u4un6boq3SaZWf5IgnoLGQAYmpH1vmZlA5cEOxVNSHM QPwe3HYbLk/E8wrRKvAo2XHlOebk4az1VK/3mUD9AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUz+gk4iok8hHAlW33DoBtcaQQKP8wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2JkN2QyYjE1LTcxOGYtNDNmYi1iOTFkLWMwYmM3Zjc1ZThkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDycAAwDQYJKoZIhvcNAQELBQADggEBAFyGmfqiG9BGeqZLnylOkXcj 0Y8TsDL+cLXg0aBGjYKznGNzz30k5Qm7etVsesQVs4eKL0m8cuHXAYWj6ARipqAY Q08qRP1DdyWiTLecYncj6QwS2XwjZmeGSGsc/RwsIOFhMM5cU8uLXWLXPcAqr+qE LPwVTqLmI+Ytmy3Tt8iA7+eegI3oKcqGeoTzf2mQ/jrektdK59EGS1a3WOpTeHAx nsRFqKD6vrysYrR58gIPVcZa47MwZcwcyMMRHRORHfZYsv/jprrNnZNou0JJchqN hz7ev3pzM4v7/G4BWHNoj0GE5nL2nlQF9jHv22abRdnpMwUqENPC343fjcx4Hc0= -----END CERTIFICATE-----Generated at Mon Jul 21 23:18:23 2025 by rpki-client