$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa File: 3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa (raw, json) Hash identifier: lLxQxz+Q4PZCH8IwGwZAUyu9QkmBLMwYarYoXqGLlqU= Subject key identifier: 31:18:C9:7C:70:01:DD:DA:D1:28:AF:60:1A:56:EF:C9:A7:1C:82:3E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3DB0CDA7C7540FC3EF9DED74531BDECB44A2D316 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa Signing time: Fri 15 Aug 2025 21:22:14 +0000 ROA not before: Fri 15 Aug 2025 21:22:14 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:610b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:b0:cd:a7:c7:54:0f:c3:ef:9d:ed:74:53:1b:de:cb:44:a2:d3:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:14 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=83b20dca596438e66987daed914f8c35f9b71f3b5d9fbe046175edc49449b5b8, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:41:e4:74:32:47:93:ab:ea:6d:e2:1f:2c:60: c7:f3:11:9e:78:df:f4:cc:e9:a7:bd:a3:39:88:51: bd:ab:77:e4:10:11:70:14:c0:cf:49:11:f4:a9:78: f7:02:4e:34:ba:cf:88:20:53:49:72:a7:41:56:24: 58:30:50:1b:eb:a5:fb:51:ca:8e:a6:b8:8e:ee:17: 8c:8f:ea:48:cf:f9:e8:15:7e:f7:14:d2:0d:ac:c7: 56:cc:64:8b:f6:51:ee:8a:81:9c:2a:b1:ff:fa:4f: dc:16:af:90:98:c1:b4:50:5d:25:24:f9:ac:20:d7: f9:be:8f:f7:76:bd:72:39:4c:dc:e6:9c:20:37:83: 4a:c3:e4:6e:31:0a:76:39:07:d7:56:2c:87:12:9a: c4:cc:72:77:dc:6c:34:2e:62:df:98:25:0e:2a:1e: cf:cd:35:6c:c9:cc:7a:13:5f:e6:1c:22:4b:1d:bd: 11:b0:24:a5:05:62:44:77:7f:da:5a:26:cb:b5:04: 7f:2f:1e:36:52:f1:4d:14:b8:5d:4f:81:8e:70:1f: 51:0a:a3:49:8b:76:a2:a7:c6:9b:fb:a8:53:0a:d6: 85:cb:9e:76:f0:99:5b:d9:44:ac:68:7e:f7:87:35: 0a:33:b5:a8:58:d1:b8:74:c1:0d:43:08:6a:d8:5b: 3f:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:18:C9:7C:70:01:DD:DA:D1:28:AF:60:1A:56:EF:C9:A7:1C:82:3E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/3d4602c0-9599-4325-ba8d-dc8b19c6c24f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610b::/48 Signature Algorithm: sha256WithRSAEncryption 96:a2:0b:8a:8c:76:38:c6:bc:08:bf:3a:11:d2:8b:af:f9:20: 86:8b:8b:4d:a5:9d:44:d6:3e:09:44:a6:e7:98:93:a8:ac:73: 54:47:5f:85:24:eb:84:b4:25:2e:aa:da:1c:67:bc:5b:b9:1f: 9d:56:a5:e4:af:2f:75:69:5f:b4:77:19:9e:01:65:38:b8:5a: f9:93:49:9e:68:a9:9c:44:5a:d5:7e:56:e9:67:09:22:1d:5c: ee:6b:96:97:51:78:94:0c:03:3e:1a:66:e0:5e:2d:28:91:2d: 0b:51:ec:af:fd:b3:99:6e:1a:48:0c:04:4f:bd:cd:6c:1a:a5: c3:e4:45:eb:e0:e6:b4:d4:43:c1:b3:a2:55:41:38:7e:94:5f: 76:ba:79:30:04:72:88:22:60:f4:12:26:7d:e2:f1:91:25:b6: f5:e6:5c:56:e7:97:3f:55:24:6a:f9:20:42:96:6c:d5:9d:3b: a4:10:e4:68:76:b9:10:91:2f:65:22:46:7e:44:35:41:9b:cc: a3:24:2c:39:ba:c1:dc:2b:5b:de:ff:61:46:d7:eb:1d:7b:09: 3a:b7:fa:18:0c:50:ec:59:1c:5f:ea:bd:ff:64:35:8e:f3:5a: 7b:0e:c9:d3:6a:6f:f1:28:8c:31:f8:93:c2:7d:a7:de:67:97: f7:76:89:fb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPbDNp8dUD8Pvne10Uxvey0Si0xYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjE0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2IyMGRjYTU5NjQzOGU2Njk4N2RhZWQ5MTRmOGMzNWY5 YjcxZjNiNWQ5ZmJlMDQ2MTc1ZWRjNDk0NDliNWI4MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUQeR0MkeTq+pt4h8sYMfzEZ543/TM6ae9ozmIUb2rd+QQ EXAUwM9JEfSpePcCTjS6z4ggU0lyp0FWJFgwUBvrpftRyo6muI7uF4yP6kjP+egV fvcU0g2sx1bMZIv2Ue6KgZwqsf/6T9wWr5CYwbRQXSUk+awg1/m+j/d2vXI5TNzm nCA3g0rD5G4xCnY5B9dWLIcSmsTMcnfcbDQuYt+YJQ4qHs/NNWzJzHoTX+YcIksd vRGwJKUFYkR3f9paJsu1BH8vHjZS8U0UuF1PgY5wH1EKo0mLdqKnxpv7qFMK1oXL nnbwmVvZRKxofveHNQoztahY0bh0wQ1DCGrYWz/lAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMRjJfHAB3drRKK9gGlbvyaccgj4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzNkNDYwMmMwLTk1OTktNDMyNS1iYThkLWRjOGIxOWM2YzI0Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQswDQYJKoZIhvcNAQELBQADggEBAJaiC4qMdjjGvAi/OhHSi6/5 IIaLi02lnUTWPglEpueYk6isc1RHX4Uk64S0JS6q2hxnvFu5H51WpeSvL3VpX7R3 GZ4BZTi4WvmTSZ5oqZxEWtV+VulnCSIdXO5rlpdReJQMAz4aZuBeLSiRLQtR7K/9 s5luGkgMBE+9zWwapcPkRevg5rTUQ8GzolVBOH6UX3a6eTAEcogiYPQSJn3i8ZEl tvXmXFbnlz9VJGr5IEKWbNWdO6QQ5Gh2uRCRL2UiRn5ENUGbzKMkLDm6wdwrW97/ YUbX6x17CTq3+hgMUOxZHF/qvf9kNY7zWnsOydNqb/EojDH4k8J9p95nl/d2ifs= -----END CERTIFICATE-----Generated at Wed Aug 20 13:18:42 2025 by rpki-client