$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa File: 4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa (raw, json) Hash identifier: OpYxk7v05a3ry0dpNhZh1osOEDkJCk0lm8Po5dzRF5Y= Subject key identifier: 65:31:19:4E:3A:F2:F5:2C:AB:40:48:7B:50:06:CB:26:F5:74:00:66 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 25628718CA076D9A76A4EC6089002A502E6B3F Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa Signing time: Tue 05 Aug 2025 18:31:19 +0000 ROA not before: Tue 05 Aug 2025 18:31:19 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e500::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:62:87:18:ca:07:6d:9a:76:a4:ec:60:89:00:2a:50:2e:6b:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:19 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=59dd8d00a5d68e8ebf0ee5a6f1397e21404d02f49a2e081863e60431aceb7d41, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:96:cc:b8:dd:5c:67:6c:ff:c8:c3:6a:a1:af: eb:a5:0a:d9:81:01:e8:e0:fc:6f:b8:dc:ff:2e:33: e8:45:68:88:45:28:4b:76:41:2b:73:19:36:21:4b: 7a:7b:bb:d9:d1:5b:36:6d:1b:a1:3c:33:39:6a:7c: ac:2d:6d:34:85:3f:63:fa:07:cf:ac:c7:87:2a:22: 2a:59:7a:8b:79:87:d6:0f:8f:b7:3e:f9:72:cf:12: 88:e4:ab:61:6e:67:bd:5e:c6:91:28:77:d3:64:42: 54:5e:29:ef:14:c7:4d:94:20:f1:7d:b2:8b:fe:5a: b1:f4:1d:0b:a9:0c:08:cd:74:3e:75:44:b9:c8:94: db:8d:34:b9:0c:5d:02:26:a2:38:32:65:36:41:69: b3:5f:b1:e3:d8:cb:7e:85:03:21:39:ae:5f:91:f5: 7d:0e:0c:79:6f:a5:eb:d7:0d:db:b2:c0:92:89:37: d1:55:4b:c6:62:81:bf:c1:0c:50:e6:98:95:86:a3: da:75:c2:77:77:5f:b6:1c:c8:1f:03:3b:99:1e:86: 4f:bd:24:e1:32:75:3f:23:25:41:a5:59:44:78:c6: 9c:14:fa:f4:43:d7:81:c9:dc:08:71:83:e7:00:45: df:05:0c:ef:36:ca:66:5f:30:51:55:53:67:2b:b8: 18:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:31:19:4E:3A:F2:F5:2C:AB:40:48:7B:50:06:CB:26:F5:74:00:66 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/4c7c26d0-0e62-4cc8-ad3c-3c15ffe314e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e500::/42 Signature Algorithm: sha256WithRSAEncryption 40:1a:72:c7:4a:ff:7f:9e:32:26:6f:94:bb:12:04:49:03:26: 69:15:08:24:73:fc:ed:84:00:b3:29:dc:89:72:bc:e1:79:6d: 20:53:57:7d:9a:fc:ec:44:44:3c:a2:ce:7d:49:04:7a:86:0e: 19:ad:28:7f:80:67:c6:22:10:11:bc:94:9c:8e:a5:ad:42:a9: ec:e9:18:0b:42:7a:78:61:e3:57:b0:fb:78:11:ad:eb:72:3c: fb:9c:44:91:3f:f6:16:b8:26:2d:ea:c2:62:28:9a:07:1d:82: 99:9d:0b:a3:0a:41:fb:62:45:16:eb:26:7e:df:e9:d7:a7:2a: 8f:ee:54:41:f3:3e:23:65:d2:9c:17:9e:0a:5c:3a:01:71:b4: fe:a5:15:3d:45:90:56:67:69:98:88:a3:18:46:60:42:3d:e2: 13:bd:92:71:ae:bd:67:18:e7:fb:71:64:48:74:c5:d1:ac:62: ab:d9:8b:bd:06:e8:c4:f2:c1:c8:62:87:b4:cd:b7:7b:bc:13: 81:c1:db:97:5f:16:13:74:fd:97:ac:2a:8c:54:23:ba:c4:59: 71:af:29:4a:3d:81:f1:dd:c0:f3:b7:ee:57:bb:83:6e:a2:6e: 06:58:d6:82:89:bb:a1:b3:70:a7:86:0d:1c:ce:78:54:f0:f7: d8:59:11:b4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITJWKHGMoHbZp2pOxgiQAqUC5rPzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzJiNTg0NWMzMDdkMGJmNjFiMTM0YjhhYjcxMTU0NTgyNmIx NzA3ZmQ1ZjBhZjg0ZGEwODAeFw0yNTA4MDUxODMxMTlaFw0yNTA5MDkyMzU5NTla MHoxSTBHBgNVBAUTQDU5ZGQ4ZDAwYTVkNjhlOGViZjBlZTVhNmYxMzk3ZTIxNDA0 ZDAyZjQ5YTJlMDgxODYzZTYwNDMxYWNlYjdkNDExLTArBgNVBAMTJGZiYjI3NTc2 LWNhYzItNDM4MS05YTUzLTZjMTVlMGRjMjZmZjCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMuWzLjdXGds/8jDaqGv66UK2YEB6OD8b7jc/y4z6EVoiEUo S3ZBK3MZNiFLenu72dFbNm0boTwzOWp8rC1tNIU/Y/oHz6zHhyoiKll6i3mH1g+P tz75cs8SiOSrYW5nvV7GkSh302RCVF4p7xTHTZQg8X2yi/5asfQdC6kMCM10PnVE uciU2400uQxdAiaiODJlNkFps1+x49jLfoUDITmuX5H1fQ4MeW+l69cN27LAkok3 0VVLxmKBv8EMUOaYlYaj2nXCd3dfthzIHwM7mR6GT70k4TJ1PyMlQaVZRHjGnBT6 9EPXgcncCHGD5wBF3wUM7zbKZl8wUVVTZyu4GDkCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBRlMRlOOvL1LKtASHtQBssm9XQAZjAfBgNVHSMEGDAWgBQuGOIIoYJXGwl9 0iOnFp5A6+mJPTAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv NTIxZWIzM2YtOTY3Mi00Y2Q5LWFjY2UtMTM3MjI3ZTk3MWFjLzZhOTUzN2E4LWE2 ODUtNGI0OC05ZmE4LTgzNjJlNGZjNDdhZS9iNTg0NWMzMDdkMGJmNjFiMTM0Yjhh YjcxMTU0NTgyNmIxNzA3ZmQ1ZjBhZjg0ZGEwOC5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS81MTdmM2VkNy01OGI1LTQ3OTYtYmUzNy0xNGQ2 MmU0OGYwNTYvNGM3YzI2ZDAtMGU2Mi00Y2M4LWFkM2MtM2MxNWZmZTMxNGUwLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzct MTRkNjJlNDhmMDU2L0NfWWJFMHVLdHhGVVdDYXhjSF9WOEstRTJnZy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHBiYA8PvlADANBgkqhkiG9w0BAQsFAAOCAQEAQBpyx0r/f54yJm+UuxIESQMm aRUIJHP87YQAsynciXK84XltIFNXfZr87EREPKLOfUkEeoYOGa0of4BnxiIQEbyU nI6lrUKp7OkYC0J6eGHjV7D7eBGt63I8+5xEkT/2FrgmLerCYiiaBx2CmZ0LowpB +2JFFusmft/p16cqj+5UQfM+I2XSnBeeClw6AXG0/qUVPUWQVmdpmIijGEZgQj3i E72Sca69Zxjn+3FkSHTF0axiq9mLvQboxPLByGKHtM23e7wTgcHbl18WE3T9l6wq jFQjusRZca8pSj2B8d3A87fuV7uDbqJuBljWgom7obNwp4YNHM54VPD32FkRtA== -----END CERTIFICATE-----Generated at Wed Aug 20 10:44:24 2025 by rpki-client