$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa File: 0b456d9a-b78d-45ba-9949-b00a9581f118.roa (raw, json) Hash identifier: 7zdpyWrxPoRXZj3zR+jeT4dKuw9vj7uHrnTwzkslqbQ= Subject key identifier: F8:CA:2E:06:4C:29:97:AE:FF:C6:73:6E:4A:3C:F2:2D:05:AA:CC:C1 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 439EA45EC2A8C90D082D942A18200409F6C773CF Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa Signing time: Tue 05 Aug 2025 18:30:16 +0000 ROA not before: Tue 05 Aug 2025 18:30:16 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:ec00::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:9e:a4:5e:c2:a8:c9:0d:08:2d:94:2a:18:20:04:09:f6:c7:73:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:16 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=76d84b89ce3aac0916a68d1df89cabf4566be5adc39c0d31419ab0ce19eba010, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:47:42:f3:de:dc:aa:be:ac:5e:15:16:17:60: a5:34:3b:e2:15:da:fb:67:6b:de:4b:9e:38:41:71: 2b:76:6d:b5:61:ee:fa:88:27:ea:96:d8:d9:8c:09: 24:ea:f9:22:f2:6a:1a:ed:cb:0f:55:6a:5c:d8:e1: f8:47:b7:b9:f4:16:d0:30:83:28:7b:c7:b3:fe:dd: 9c:9c:53:22:90:5f:9e:be:f6:16:d3:2b:22:7d:54: dc:17:26:21:d1:24:bb:f8:1c:73:29:f8:7d:1d:c2: 34:20:b5:5a:8a:f4:b2:15:e1:39:bf:e9:8e:ee:13: 90:5a:f3:8a:bb:21:49:a0:d5:eb:de:fd:c3:66:c8: 94:dd:7a:f6:a0:ff:92:73:fb:a1:16:f8:ad:05:aa: c2:92:d6:35:61:d8:b5:d8:2d:dd:81:48:6e:f5:c3: e0:c4:d2:86:72:df:7d:99:b8:07:c0:ef:71:54:31: d5:18:d1:96:56:ab:cb:9f:f4:6e:75:85:bd:c7:c2: 0b:7e:01:25:1b:56:1c:1a:36:fc:41:ea:83:db:02: 7f:4a:6f:a3:9e:e3:6f:9e:44:97:2c:53:9e:09:be: 5f:7e:2f:fc:ad:d6:cf:55:98:6e:ed:bc:fb:5f:18: a3:79:10:88:c8:0e:97:2a:0b:58:9b:5d:cb:1a:66: 97:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CA:2E:06:4C:29:97:AE:FF:C6:73:6E:4A:3C:F2:2D:05:AA:CC:C1 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0b456d9a-b78d-45ba-9949-b00a9581f118.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:ec00::/42 Signature Algorithm: sha256WithRSAEncryption 5e:b2:47:8f:ce:cb:02:de:a0:9e:11:17:b8:72:4e:83:83:f8: b8:cb:60:77:6a:40:39:be:bf:f4:1e:6a:87:79:97:d9:7d:cf: 02:3f:83:62:fe:45:71:79:c2:80:28:7a:94:4f:da:93:7d:aa: c2:63:2a:2b:b8:70:53:96:45:92:fb:29:82:dd:a3:a2:b2:8f: e1:d0:2b:96:22:ba:5f:57:be:45:8a:d6:27:06:96:7b:d0:e5: c5:17:1b:aa:22:eb:53:eb:be:e5:21:a7:54:be:fe:1c:57:02: e9:e4:08:ae:2b:98:cf:3d:dd:3a:94:92:41:90:18:64:70:b4: fb:f2:17:57:04:0f:ba:60:90:01:92:fd:c1:d2:b6:f7:c6:3d: 8c:40:44:7d:9b:c6:20:53:a6:6e:20:f9:01:ae:bd:d4:80:d7: 69:a0:42:c3:f4:20:9f:27:0f:5e:2c:a9:dd:db:3e:aa:00:ad: 3b:01:f0:6a:33:d7:0e:23:c8:93:46:61:56:38:17:66:cf:77: a9:e4:d4:94:e2:f7:9d:9e:0f:19:1c:a2:1d:5d:08:21:7b:28: e6:e1:da:a5:35:63:df:3a:df:54:fb:7b:48:94:55:6d:39:88: 96:06:96:d6:b9:66:5f:1c:b3:b9:e7:1a:f6:d4:1e:e4:f7:78: 7b:32:48:ba -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUQ56kXsKoyQ0ILZQqGCAECfbHc88wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDE2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmQ4NGI4OWNlM2FhYzA5MTZhNjhkMWRmODljYWJmNDU2 NmJlNWFkYzM5YzBkMzE0MTlhYjBjZTE5ZWJhMDEwMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3R0Lz3tyqvqxeFRYXYKU0O+IV2vtna95LnjhBcSt2bbVh 7vqIJ+qW2NmMCSTq+SLyahrtyw9ValzY4fhHt7n0FtAwgyh7x7P+3ZycUyKQX56+ 9hbTKyJ9VNwXJiHRJLv4HHMp+H0dwjQgtVqK9LIV4Tm/6Y7uE5Ba84q7IUmg1eve /cNmyJTdevag/5Jz+6EW+K0FqsKS1jVh2LXYLd2BSG71w+DE0oZy332ZuAfA73FU MdUY0ZZWq8uf9G51hb3Hwgt+ASUbVhwaNvxB6oPbAn9Kb6Oe42+eRJcsU54Jvl9+ L/yt1s9VmG7tvPtfGKN5EIjIDpcqC1ibXcsaZpfzAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU+MouBkwpl67/xnNuSjzyLQWqzMEwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBiNDU2ZDlhLWI3OGQtNDViYS05OTQ5LWIwMGE5NTgxZjExOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD77AAwDQYJKoZIhvcNAQELBQADggEBAF6yR4/OywLeoJ4RF7hyToOD +LjLYHdqQDm+v/Qeaod5l9l9zwI/g2L+RXF5woAoepRP2pN9qsJjKiu4cFOWRZL7 KYLdo6Kyj+HQK5Yiul9XvkWK1icGlnvQ5cUXG6oi61PrvuUhp1S+/hxXAunkCK4r mM893TqUkkGQGGRwtPvyF1cED7pgkAGS/cHStvfGPYxARH2bxiBTpm4g+QGuvdSA 12mgQsP0IJ8nD14sqd3bPqoArTsB8Goz1w4jyJNGYVY4F2bPd6nk1JTi952eDxkc oh1dCCF7KObh2qU1Y98631T7e0iUVW05iJYGlta5Zl8cs7nnGvbUHuT3eHsySLo= -----END CERTIFICATE-----Generated at Wed Aug 20 13:18:37 2025 by rpki-client