$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d9d03af-42d8-4cd2-b702-c5ecd6988e83.roa File: 0d9d03af-42d8-4cd2-b702-c5ecd6988e83.roa (raw, json) Hash identifier: pct9g9ZSR9Jga+j/gQwosYJRRO7e52uVvof2sVt87q8= Subject key identifier: 26:38:6C:90:94:4D:6E:64:9B:3A:D1:4B:AB:11:BD:20:23:72:CB:13 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 747A5C320AE0DBC338660B82388CC96FF01A10C1 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d9d03af-42d8-4cd2-b702-c5ecd6988e83.roa Signing time: Fri 15 Aug 2025 21:22:17 +0000 ROA not before: Fri 15 Aug 2025 21:22:17 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:610d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:7a:5c:32:0a:e0:db:c3:38:66:0b:82:38:8c:c9:6f:f0:1a:10:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:17 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=8077be4b2c5c1d5c0d67968cb6b196997ce209b64f3b3c48f87a6cd542754416, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:03:37:ca:82:52:34:a1:d6:74:13:62:57:51: 06:06:2b:d6:ab:bc:d2:15:1d:dd:70:c2:9d:10:c1: 2e:46:84:58:d5:c7:cb:9b:a7:44:a0:ff:7e:e3:6e: 04:aa:d0:fc:c6:12:c0:39:36:0b:cd:b7:d6:70:92: 32:7d:4f:21:68:cc:cf:10:07:05:87:3d:f8:17:dd: e3:6c:26:2c:5d:48:69:4c:4f:87:5d:f7:83:97:d7: 56:b9:85:6a:5d:a7:26:81:e6:51:a8:c2:7b:37:71: 44:f3:00:21:07:c5:04:c6:d4:b7:8f:c5:63:e9:72: 35:1b:a0:2a:61:d4:da:97:bd:46:36:14:7d:dc:9e: 50:29:05:22:6c:2e:b1:8a:b7:22:01:af:71:9d:b9: 75:56:e8:ed:3d:92:b0:60:82:c3:0d:69:50:f5:c9: 8c:7f:c2:1f:7f:ff:c3:d8:6a:37:ee:2e:2e:7d:92: 4c:e4:81:a1:c7:71:54:38:bc:df:b4:14:0a:25:79: cc:40:f7:71:92:ed:93:fe:69:21:58:38:f1:73:37: 39:fd:41:ba:19:30:c6:25:19:ed:5a:ad:03:0a:82: 11:7b:39:7a:de:1d:55:52:7f:b1:5f:b4:7c:f8:24: a0:61:6c:21:6e:a0:03:c4:02:94:04:ab:d2:d0:a9: 21:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:38:6C:90:94:4D:6E:64:9B:3A:D1:4B:AB:11:BD:20:23:72:CB:13 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/0d9d03af-42d8-4cd2-b702-c5ecd6988e83.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610d::/48 Signature Algorithm: sha256WithRSAEncryption 0f:49:50:cc:64:11:ca:cf:e4:9c:5a:2b:b9:81:7e:47:02:5b: 4d:40:7c:68:de:04:52:7a:2b:c7:17:3b:02:64:cd:54:cd:69: 5f:b9:08:15:6a:1f:03:87:27:a8:df:26:06:96:67:97:b2:e9: 6e:b7:5a:ba:80:a8:30:9e:2b:cb:39:d0:9f:8c:7a:39:f5:08: 1e:10:5c:62:1f:60:06:52:fa:8a:08:bb:6e:2d:b8:4f:d7:cd: 2c:22:ca:41:81:40:3a:80:86:7b:f8:10:b8:e8:7a:8e:41:33: e8:2a:1d:13:7e:70:20:e7:52:09:75:99:c9:a5:9d:5c:2f:74: db:61:65:f0:d4:90:85:08:db:98:23:1a:97:d6:26:d6:29:ef: 70:d8:59:d2:59:9f:64:e2:76:99:7c:18:e6:63:1c:27:ff:66: b8:1c:9f:e6:1e:89:18:03:ec:ed:f2:ff:f4:d3:2f:ca:1f:d2: dd:e5:25:f2:a4:8d:01:48:76:f7:65:27:3b:4b:5d:76:fe:a0: ff:df:90:bc:3a:95:65:4b:bc:78:7e:1c:e0:f7:49:06:1c:30: 22:a8:ae:0e:ca:b1:54:02:11:21:3f:e6:fb:3c:56:ce:10:aa: 9b:d6:bf:17:fe:e4:65:4a:73:e0:fa:42:2b:88:65:d0:1a:24: a6:42:19:db -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUdHpcMgrg28M4ZguCOIzJb/AaEMEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjE3WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDc3YmU0YjJjNWMxZDVjMGQ2Nzk2OGNiNmIxOTY5OTdj ZTIwOWI2NGYzYjNjNDhmODdhNmNkNTQyNzU0NDE2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfAzfKglI0odZ0E2JXUQYGK9arvNIVHd1wwp0QwS5GhFjV x8ubp0Sg/37jbgSq0PzGEsA5NgvNt9ZwkjJ9TyFozM8QBwWHPfgX3eNsJixdSGlM T4dd94OX11a5hWpdpyaB5lGowns3cUTzACEHxQTG1LePxWPpcjUboCph1NqXvUY2 FH3cnlApBSJsLrGKtyIBr3GduXVW6O09krBggsMNaVD1yYx/wh9//8PYajfuLi59 kkzkgaHHcVQ4vN+0FAolecxA93GS7ZP+aSFYOPFzNzn9QboZMMYlGe1arQMKghF7 OXreHVVSf7FftHz4JKBhbCFuoAPEApQEq9LQqSFNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJjhskJRNbmSbOtFLqxG9ICNyyxMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzBkOWQwM2FmLTQyZDgtNGNkMi1iNzAyLWM1ZWNkNjk4OGU4My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ0wDQYJKoZIhvcNAQELBQADggEBAA9JUMxkEcrP5JxaK7mBfkcC W01AfGjeBFJ6K8cXOwJkzVTNaV+5CBVqHwOHJ6jfJgaWZ5ey6W63WrqAqDCeK8s5 0J+Mejn1CB4QXGIfYAZS+ooIu24tuE/XzSwiykGBQDqAhnv4ELjoeo5BM+gqHRN+ cCDnUgl1mcmlnVwvdNthZfDUkIUI25gjGpfWJtYp73DYWdJZn2Tidpl8GOZjHCf/ Zrgcn+YeiRgD7O3y//TTL8of0t3lJfKkjQFIdvdlJztLXXb+oP/fkLw6lWVLvHh+ HOD3SQYcMCKorg7KsVQCESE/5vs8Vs4QqpvWvxf+5GVKc+D6QiuIZdAaJKZCGds= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:34 2025 by rpki-client