$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa File: 1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa (raw, json) Hash identifier: keBIaJx5qCkcE2e7sTrR0XWKghujC/XW91VY+oUjZeM= Subject key identifier: 64:3A:0D:51:4A:C1:CA:63:24:40:74:B9:D0:90:89:64:B1:63:91:73 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 33F97C136451600411AC881A420DDF77F2248A68 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa Signing time: Fri 08 Aug 2025 00:30:39 +0000 ROA not before: Fri 08 Aug 2025 00:30:39 +0000 ROA not after: Fri 12 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f1:8800::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f9:7c:13:64:51:60:04:11:ac:88:1a:42:0d:df:77:f2:24:8a:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 8 00:30:39 2025 GMT Not After : Sep 12 23:59:59 2025 GMT Subject: serialNumber=8559bb98a08680f83dbfd1f7dcdd5237a6ee43dd482e9b28111eff8fd206a712, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:44:ac:29:fb:33:62:89:f2:bd:8b:df:d7:06: d4:77:f7:cb:e0:2f:9a:f0:b1:da:93:3c:98:29:d6: 58:29:a8:c6:7b:a9:dc:de:e6:8c:61:22:da:e5:fb: 34:65:7a:98:0b:e6:f2:b3:fa:79:26:2d:a5:a4:4f: e2:56:7c:ce:53:57:74:78:ed:94:d3:f0:fc:97:07: 9c:76:bb:00:6c:c7:a3:94:a7:63:3b:77:59:a3:e6: 52:3a:dc:5d:04:7c:a8:10:5d:44:a7:57:d7:9c:04: f7:ae:01:e4:5a:11:5e:06:81:90:41:24:3a:dc:a7: 0d:cb:e5:f9:7f:c8:1d:22:67:fa:67:6b:1c:d5:46: 65:59:16:75:1f:55:c0:19:02:7d:f5:48:57:87:fb: 53:ea:ee:b8:d7:d7:fd:ba:c8:b3:e4:3d:33:46:53: 79:52:0f:a9:29:3f:55:ef:cf:05:93:1b:b8:8c:82: 26:42:7a:5e:5e:11:1a:1e:37:c4:93:c0:96:cb:59: b9:43:11:22:31:e1:d6:a1:77:12:33:99:d4:34:7d: 5f:5c:3c:35:60:d4:38:08:15:23:56:06:ab:f5:c7: 19:fe:50:1a:8e:ef:0b:21:71:07:75:b7:36:96:5b: f7:7f:bf:0e:71:83:a2:96:5e:2f:34:b1:b8:89:db: 34:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3A:0D:51:4A:C1:CA:63:24:40:74:B9:D0:90:89:64:B1:63:91:73 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/1df4a82a-0875-47b6-9fc0-b67c097bc45c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f1:8800::/40 Signature Algorithm: sha256WithRSAEncryption 1c:8f:23:3f:57:60:00:2d:b4:10:0e:d1:01:35:0a:c1:50:f3: ce:5f:6e:3c:1e:8c:e7:4c:d1:d3:10:cd:68:c7:cd:72:f1:56: 37:d2:66:92:c6:f9:d0:4c:5e:bf:0d:c5:ed:1d:db:64:12:31: 28:11:f0:18:74:ba:a8:3d:b9:69:9c:cd:c2:9e:1f:51:5d:97: 03:13:da:6d:95:1d:1a:25:f8:2b:5f:57:40:80:ef:7b:f9:b0: ed:ea:01:e4:aa:a1:86:fa:96:c0:3b:70:63:53:d7:97:42:62: f7:4d:56:17:74:a4:06:71:13:8d:00:1a:20:e9:52:e0:bf:11: e9:70:76:42:06:d8:97:96:b1:33:14:80:dc:16:49:f9:84:58: d3:ed:9b:13:23:af:26:77:a5:0c:bb:06:c9:cf:c2:2f:f9:70: 76:8b:bb:1a:9e:9c:6e:25:a5:1a:ba:28:20:3a:15:ac:f8:5a: 09:89:b2:0c:f7:57:73:9e:dc:20:47:97:19:32:b7:66:5f:0d: b1:78:dd:de:5d:bb:a8:e6:2b:31:d3:df:32:46:70:7b:d6:4c: c6:86:da:01:c6:61:f4:76:6f:5e:e0:dd:a8:20:3d:09:81:62: 13:e1:e2:32:04:18:cc:73:f9:9a:d5:f9:a5:60:8c:4d:6c:fa: 45:37:bb:b1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUM/l8E2RRYAQRrIgaQg3fd/IkimgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA4MDAzMDM5WhcNMjUwOTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTU5YmI5OGEwODY4MGY4M2RiZmQxZjdkY2RkNTIzN2E2 ZWU0M2RkNDgyZTliMjgxMTFlZmY4ZmQyMDZhNzEyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnRKwp+zNiifK9i9/XBtR398vgL5rwsdqTPJgp1lgpqMZ7 qdze5oxhItrl+zRlepgL5vKz+nkmLaWkT+JWfM5TV3R47ZTT8PyXB5x2uwBsx6OU p2M7d1mj5lI63F0EfKgQXUSnV9ecBPeuAeRaEV4GgZBBJDrcpw3L5fl/yB0iZ/pn axzVRmVZFnUfVcAZAn31SFeH+1Pq7rjX1/26yLPkPTNGU3lSD6kpP1XvzwWTG7iM giZCel5eERoeN8STwJbLWblDESIx4dahdxIzmdQ0fV9cPDVg1DgIFSNWBqv1xxn+ UBqO7wshcQd1tzaWW/d/vw5xg6KWXi80sbiJ2zRnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUZDoNUUrBymMkQHS50JCJZLFjkXMwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzFkZjRhODJhLTA4NzUtNDdiNi05ZmMwLWI2N2MwOTdiYzQ1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDxiDANBgkqhkiG9w0BAQsFAAOCAQEAHI8jP1dgAC20EA7RATUKwVDz zl9uPB6M50zR0xDNaMfNcvFWN9Jmksb50Exevw3F7R3bZBIxKBHwGHS6qD25aZzN wp4fUV2XAxPabZUdGiX4K19XQIDve/mw7eoB5KqhhvqWwDtwY1PXl0Ji901WF3Sk BnETjQAaIOlS4L8R6XB2QgbYl5axMxSA3BZJ+YRY0+2bEyOvJnelDLsGyc/CL/lw dou7Gp6cbiWlGrooIDoVrPhaCYmyDPdXc57cIEeXGTK3Zl8NsXjd3l27qOYrMdPf MkZwe9ZMxobaAcZh9HZvXuDdqCA9CYFiE+HiMgQYzHP5mtX5pWCMTWz6RTe7sQ== -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:14 2025 by rpki-client