$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa File: 4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa (raw, json) Hash identifier: ZdTKCt+ee9tfEXYR7cKD4nFPj4rGvVluud92b0J6uo4= Subject key identifier: D5:3E:ED:59:47:10:16:B8:41:BC:19:88:AD:2C:D4:46:DF:F0:52:DE Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2874C1DC39B56C55DDF7351BE4330E511E4F4766 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa Signing time: Tue 05 Aug 2025 18:20:18 +0000 ROA not before: Tue 05 Aug 2025 18:20:18 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:74:c1:dc:39:b5:6c:55:dd:f7:35:1b:e4:33:0e:51:1e:4f:47:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:20:18 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=81256182ca6f6a778dbe40c409a8517890d8973f3cb1a7c03674e9a49ca24066, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:73:7d:a0:2f:3e:63:5f:36:32:69:a7:20:5f: 9e:02:09:d8:2d:e0:15:fe:71:d8:29:36:13:00:88: de:fa:83:6d:df:69:bc:66:6e:d2:0b:3b:a6:69:27: f5:10:25:d0:7c:32:db:3e:d2:93:f0:03:63:9e:37: 4e:c8:9a:dd:26:bd:ea:fb:ad:a0:83:7a:78:b4:71: 4d:98:80:60:39:e8:0b:e0:24:c4:1c:36:e1:d6:b2: 40:d7:79:cc:ed:9f:43:fb:e4:cb:27:93:cc:f5:64: 3d:d9:42:50:70:14:e5:f8:bc:d1:33:d0:14:db:be: f7:bd:dc:21:ec:e8:50:12:ce:99:cb:5b:bb:2c:10: 4e:7a:68:ca:f5:d7:c2:d9:4a:6b:31:17:57:7a:8b: 11:52:98:0b:3b:7c:31:7c:1a:27:b3:65:8f:32:96: 36:45:f8:72:8a:0d:e0:8d:40:87:e2:2b:73:93:44: 03:71:a1:88:98:bf:92:21:94:23:b1:b3:39:0b:04: b2:5d:26:f1:aa:ca:bc:81:0c:95:0f:56:2e:bb:82: 4c:e2:c1:46:2f:6c:f7:34:3a:2c:a6:37:55:13:84: 02:43:dd:33:a5:a8:35:1b:3a:64:c2:1d:50:37:8f: 8b:f6:89:c6:75:4a:4b:4e:ca:3b:62:21:79:72:e9: e5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:3E:ED:59:47:10:16:B8:41:BC:19:88:AD:2C:D4:46:DF:F0:52:DE X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4a8623c4-10a0-46b6-a5f5-c94e84c56867.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:a0::/48 Signature Algorithm: sha256WithRSAEncryption 0e:14:08:30:c5:e1:08:60:ac:7b:2b:11:79:3f:5e:aa:27:f8: dc:39:cd:da:14:aa:4d:c6:b6:6e:a1:13:53:ef:59:32:2a:e8: cb:2a:a3:d9:68:ef:71:c8:ff:93:b4:09:7f:d3:9b:12:26:81: 87:05:f4:80:23:78:8d:b0:f5:59:9c:0d:2c:ee:97:cb:98:16: c3:39:56:d7:90:57:74:ea:57:20:9b:8e:81:02:01:d3:b4:a4: 65:d4:88:08:6e:59:ce:af:4c:91:b9:56:c6:fc:96:f8:ed:61: 89:c3:f0:d0:60:f0:6b:0a:9c:19:3d:be:b2:63:23:b9:15:72: e3:0d:d5:eb:01:e3:37:20:ea:8c:6a:b4:73:99:7b:61:c0:64: 30:a2:5d:06:98:08:3e:d3:0f:b9:19:3f:52:08:13:34:15:00: 6e:a8:c3:c0:9c:3f:84:5c:be:62:67:58:8e:70:5b:de:ab:85: b0:42:f2:f6:6b:0c:02:95:ab:79:7b:bd:ca:7d:c5:88:71:18: 0d:f8:12:6b:fc:72:b6:ab:e6:ea:d4:ad:3b:d7:9a:8e:70:6b: 01:89:0e:9c:2c:9d:a5:ef:6c:50:7e:2d:c0:1f:67:6e:fd:a9: 1c:e5:d1:95:80:29:72:9f:5c:c2:e1:cc:a5:38:1c:09:3c:5c: cb:d5:6c:b3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKHTB3Dm1bFXd9zUb5DMOUR5PR2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMDE4WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTI1NjE4MmNhNmY2YTc3OGRiZTQwYzQwOWE4NTE3ODkw ZDg5NzNmM2NiMWE3YzAzNjc0ZTlhNDljYTI0MDY2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFc32gLz5jXzYyaacgX54CCdgt4BX+cdgpNhMAiN76g23f abxmbtILO6ZpJ/UQJdB8Mts+0pPwA2OeN07Imt0mver7raCDeni0cU2YgGA56Avg JMQcNuHWskDXecztn0P75Msnk8z1ZD3ZQlBwFOX4vNEz0BTbvve93CHs6FASzpnL W7ssEE56aMr118LZSmsxF1d6ixFSmAs7fDF8GiezZY8yljZF+HKKDeCNQIfiK3OT RANxoYiYv5IhlCOxszkLBLJdJvGqyryBDJUPVi67gkziwUYvbPc0OiymN1UThAJD 3TOlqDUbOmTCHVA3j4v2icZ1SktOyjtiIXly6eX3AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU1T7tWUcQFrhBvBmIrSzURt/wUt4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzRhODYyM2M0LTEwYTAtNDZiNi1hNWY1LWM5NGU4NGM1Njg2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwAKAwDQYJKoZIhvcNAQELBQADggEBAA4UCDDF4QhgrHsrEXk/Xqon +Nw5zdoUqk3Gtm6hE1PvWTIq6Msqo9lo73HI/5O0CX/TmxImgYcF9IAjeI2w9Vmc DSzul8uYFsM5VteQV3TqVyCbjoECAdO0pGXUiAhuWc6vTJG5Vsb8lvjtYYnD8NBg 8GsKnBk9vrJjI7kVcuMN1esB4zcg6oxqtHOZe2HAZDCiXQaYCD7TD7kZP1IIEzQV AG6ow8CcP4RcvmJnWI5wW96rhbBC8vZrDAKVq3l7vcp9xYhxGA34Emv8crar5urU rTvXmo5wawGJDpwsnaXvbFB+LcAfZ279qRzl0ZWAKXKfXMLhzKU4HAk8XMvVbLM= -----END CERTIFICATE-----Generated at Wed Aug 20 10:42:40 2025 by rpki-client