$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa File: 03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa (raw, json) Hash identifier: lPVWzqbeMk89E/w45HGv0SLXfQz208DUvcME7kV0OSc= Subject key identifier: 00:3C:BB:31:1A:2D:F8:2B:9E:98:92:EE:CE:6D:08:A0:62:EA:F6:3C Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 4D3756C610556DBBB61E7866A616837365CAA4CC Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa Signing time: Tue 05 Aug 2025 18:20:08 +0000 ROA not before: Tue 05 Aug 2025 18:20:08 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:551d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:37:56:c6:10:55:6d:bb:b6:1e:78:66:a6:16:83:73:65:ca:a4:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:08 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=38fba0a1d2c9885117ef2e6cd67f7237006995fed2e9a3ef5cb8587d99700f18, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9d:24:f5:89:bb:a9:40:89:76:d6:1e:a6:0e: 5b:b6:4c:27:af:cf:0e:ec:ad:7b:20:b4:84:a2:de: 69:8f:41:62:4b:39:88:be:b2:b7:60:ad:0e:a3:8d: 73:67:a9:34:c6:bd:40:1d:42:69:98:64:78:ed:dc: 42:6b:82:07:55:99:e0:d5:00:1f:8f:5d:0e:51:b6: 54:cd:bb:6a:88:f6:f1:9b:62:ab:e9:b0:bf:a5:1b: 24:b6:51:d3:d7:d0:d5:c1:c0:fd:dc:f4:e6:81:44: b8:58:3d:a6:40:19:d7:ed:28:c3:0c:2a:9a:04:c0: 1a:20:fe:a5:d1:0d:60:be:b8:85:dd:59:8a:de:69: 6e:6e:f1:5e:25:50:0b:1b:5e:c1:34:97:91:db:9e: 0b:96:28:c1:44:72:b0:b9:b9:b6:64:6c:ee:9a:87: 98:90:42:84:58:f4:0f:6f:de:99:59:79:55:a5:23: dd:24:33:3a:31:58:8e:29:cc:de:de:86:91:83:13: 73:fe:f1:eb:de:51:47:d0:a2:5f:93:f3:34:7f:d8: 5e:1b:b3:c5:ab:3d:86:78:79:5d:62:d1:b0:da:4a: 36:9b:94:aa:d4:c6:8c:ba:21:95:2d:a4:2c:67:d6: f0:e2:16:1c:a5:0f:0f:2b:4f:80:a3:52:3e:2f:70: 46:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:3C:BB:31:1A:2D:F8:2B:9E:98:92:EE:CE:6D:08:A0:62:EA:F6:3C X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/03b59a1e-6268-4607-a6c1-69e6de80cf4a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:551d::/48 Signature Algorithm: sha256WithRSAEncryption 03:e9:a5:ac:72:a4:16:61:b3:69:dd:bc:fc:46:4d:61:3e:91: 99:57:8d:c6:57:8e:68:14:d8:21:0a:37:8f:69:6b:01:be:da: 66:cf:e2:55:94:cf:ed:26:09:c1:e7:b6:77:2c:49:92:f8:2b: 2f:a9:54:2a:1a:63:f4:68:0d:56:fc:6a:ec:07:35:fb:35:bc: 16:47:c8:90:91:19:b5:ff:f2:1d:e5:a3:16:cf:d5:fa:1c:99: 48:6e:f0:61:a4:f4:98:16:bb:22:fe:f4:3a:34:2d:36:c7:e4: 27:97:48:84:fb:24:42:f2:ee:ea:e7:1c:8b:c1:e9:aa:69:8b: c2:44:ef:39:28:d8:bb:93:3a:f8:a4:3d:80:52:6a:24:61:b7: fe:0f:b8:15:c9:cc:0e:9d:ca:7f:82:88:40:e9:45:da:b9:fd: 42:18:2b:3d:82:16:95:65:eb:e2:ff:e8:e7:ec:c5:99:c6:c8: 8b:31:91:f0:56:17:9d:5c:5d:aa:b4:e4:b3:79:6c:2d:a8:52: fd:7c:d4:ca:92:b5:75:8b:b2:db:4c:5d:b5:25:e0:96:ed:67: d6:19:58:ed:21:58:b2:d6:ac:3a:1d:ee:9f:36:76:9b:5c:d1: ce:5f:b1:ab:11:0d:5c:6a:fa:9d:48:03:83:d7:11:c3:2f:0d: 39:8d:e5:d4 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUTTdWxhBVbbu2HnhmphaDc2XKpMwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDA4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzOGZiYTBhMWQyYzk4ODUxMTdlZjJlNmNkNjdmNzIzNzAw Njk5NWZlZDJlOWEzZWY1Y2I4NTg3ZDk5NzAwZjE4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcnST1ibupQIl21h6mDlu2TCevzw7srXsgtISi3mmPQWJL OYi+srdgrQ6jjXNnqTTGvUAdQmmYZHjt3EJrggdVmeDVAB+PXQ5RtlTNu2qI9vGb YqvpsL+lGyS2UdPX0NXBwP3c9OaBRLhYPaZAGdftKMMMKpoEwBog/qXRDWC+uIXd WYreaW5u8V4lUAsbXsE0l5HbnguWKMFEcrC5ubZkbO6ah5iQQoRY9A9v3plZeVWl I90kMzoxWI4pzN7ehpGDE3P+8eveUUfQol+T8zR/2F4bs8WrPYZ4eV1i0bDaSjab lKrUxoy6IZUtpCxn1vDiFhylDw8rT4CjUj4vcEZ1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUADy7MRot+CuemJLuzm0IoGLq9jwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzAzYjU5YTFlLTYyNjgtNDYwNy1hNmMxLTY5ZTZkZTgwY2Y0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwVR0wDQYJKoZIhvcNAQELBQADggEBAAPppaxypBZhs2ndvPxGTWE+ kZlXjcZXjmgU2CEKN49pawG+2mbP4lWUz+0mCcHntncsSZL4Ky+pVCoaY/RoDVb8 auwHNfs1vBZHyJCRGbX/8h3loxbP1focmUhu8GGk9JgWuyL+9Do0LTbH5CeXSIT7 JELy7urnHIvB6appi8JE7zko2LuTOvikPYBSaiRht/4PuBXJzA6dyn+CiEDpRdq5 /UIYKz2CFpVl6+L/6OfsxZnGyIsxkfBWF51cXaq05LN5bC2oUv181MqStXWLsttM XbUl4JbtZ9YZWO0hWLLWrDod7p82dptc0c5fsasRDVxq+p1IA4PXEcMvDTmN5dQ= -----END CERTIFICATE-----Generated at Wed Aug 20 10:43:40 2025 by rpki-client