$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa File: 657ed07e-fe87-4071-8960-e0b18e49fe3c.roa (raw, json) Hash identifier: KREhIudl4n0Xb1N0Ue81AsPCWhXyVU40K6i4EqJmsrQ= Subject key identifier: FA:32:B8:C9:D0:67:90:A2:05:71:B0:5F:2A:06:8F:98:AF:40:9C:4E Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 1D43A80C27C2449FE5C842262A3B3FDD8BAF76C0 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa Signing time: Tue 15 Jul 2025 00:10:22 +0000 ROA not before: Tue 15 Jul 2025 00:10:22 +0000 ROA not after: Tue 19 Aug 2025 23:59:59 +0000 asID: 8987 IP address blocks: 2600:f0f0:4100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 01 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:43:a8:0c:27:c2:44:9f:e5:c8:42:26:2a:3b:3f:dd:8b:af:76:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Jul 15 00:10:22 2025 GMT Not After : Aug 19 23:59:59 2025 GMT Subject: serialNumber=0dcc94a9bdce0806de30477faae70aa5f28bc347e7d532dcabab6e78d9bda03c, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:90:17:5f:06:3d:52:cd:a0:d1:43:a4:a4:7b: af:b4:08:22:a6:20:43:db:59:5b:e3:23:fa:2e:af: 1f:75:a1:85:f8:6f:72:78:7c:bb:8c:d7:c8:5e:e9: 34:e2:a2:24:39:b3:0f:e2:97:60:1b:20:04:de:da: 7c:bb:aa:92:a9:4d:3b:41:8e:10:13:53:8e:d5:8b: 73:4c:c1:e7:f8:98:4f:cd:82:e1:6c:cb:07:77:f7: 1d:d1:1e:d0:1f:3b:34:9f:1e:dd:b6:ce:d6:cf:2b: 87:28:9c:2b:76:11:aa:1b:0b:05:cd:22:df:18:ac: d0:d6:7b:12:10:95:64:30:d8:dc:45:b5:04:dc:4b: be:51:fa:2c:bb:39:f6:ab:f6:79:31:f8:83:5c:e5: e6:49:cc:0c:ff:64:af:1d:dc:4a:51:ae:d7:1f:0d: ab:9a:a0:27:cf:fa:80:ad:11:e3:13:72:7c:79:53: 0d:4e:c7:f7:52:4e:2e:4e:db:4b:a6:f7:3a:72:85: 82:ec:4d:8b:f0:b8:10:bc:1f:fb:00:e8:a6:61:9d: c0:08:9b:75:6f:6a:56:df:7e:e5:a5:d9:55:58:c4: 14:09:ca:0e:1a:51:6f:48:29:df:42:96:79:53:ca: 8b:24:30:f4:26:f8:48:e3:8b:c3:f1:f5:1b:8c:0d: b8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:32:B8:C9:D0:67:90:A2:05:71:B0:5F:2A:06:8F:98:AF:40:9C:4E X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/657ed07e-fe87-4071-8960-e0b18e49fe3c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:4100::/40 Signature Algorithm: sha256WithRSAEncryption 7b:d6:0b:13:cd:2e:a0:cb:66:08:18:98:d7:f8:fa:c7:7f:45: c1:55:ef:ae:f6:34:81:a7:a7:54:8e:f4:83:12:0d:84:aa:ff: 3b:e9:dc:60:9a:80:f3:f1:fb:c7:88:80:c8:71:3e:0c:80:e6: de:b4:b2:5c:16:60:d5:7e:d9:15:da:26:60:22:aa:77:78:62: ed:c2:7f:b6:42:4c:7f:5d:81:a6:06:65:49:c6:c4:c2:50:4e: 99:1f:2f:7c:8d:ea:ff:d8:53:e9:b6:21:f6:ab:2f:24:09:5f: a8:10:30:7a:8e:0e:dc:2c:04:de:d4:bc:eb:d1:8c:c2:85:1e: ae:a9:42:67:81:b0:41:09:8e:ab:4f:c5:3f:ea:f3:0d:5d:1f: eb:ff:6e:4d:14:f1:6d:4d:0e:80:d0:79:42:72:c1:63:d7:81: bf:a3:bc:dd:5c:60:b1:91:6a:b2:9b:9a:2a:9e:a0:d5:15:d4: 2f:b3:21:6f:ce:c7:cd:a4:31:93:e7:f6:06:de:67:85:f1:68: b2:84:f9:9f:47:7e:68:a5:9b:f8:0b:34:96:7c:ab:32:46:fd: 77:5d:46:8d:c9:a4:5f:fa:e4:65:eb:96:a4:b1:00:d5:f0:a5: 42:e3:28:c9:91:61:08:c6:53:8f:f3:00:e9:3d:f2:d3:8f:74: 78:c6:24:af -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUHUOoDCfCRJ/lyEImKjs/3YuvdsAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwNzE1MDAxMDIyWhcNMjUwODE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZGNjOTRhOWJkY2UwODA2ZGUzMDQ3N2ZhYWU3MGFhNWYy OGJjMzQ3ZTdkNTMyZGNhYmFiNmU3OGQ5YmRhMDNjMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGkBdfBj1SzaDRQ6Ske6+0CCKmIEPbWVvjI/ourx91oYX4 b3J4fLuM18he6TTioiQ5sw/il2AbIATe2ny7qpKpTTtBjhATU47Vi3NMwef4mE/N guFsywd39x3RHtAfOzSfHt22ztbPK4conCt2EaobCwXNIt8YrNDWexIQlWQw2NxF tQTcS75R+iy7Ofar9nkx+INc5eZJzAz/ZK8d3EpRrtcfDauaoCfP+oCtEeMTcnx5 Uw1Ox/dSTi5O20um9zpyhYLsTYvwuBC8H/sA6KZhncAIm3VvalbffuWl2VVYxBQJ yg4aUW9IKd9ClnlTyoskMPQm+Ejji8Px9RuMDbj9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU+jK4ydBnkKIFcbBfKgaPmK9AnE4wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzY1N2VkMDdlLWZlODctNDA3MS04OTYwLWUwYjE4ZTQ5ZmUzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPDwQTANBgkqhkiG9w0BAQsFAAOCAQEAe9YLE80uoMtmCBiY1/j6x39F wVXvrvY0gaenVI70gxINhKr/O+ncYJqA8/H7x4iAyHE+DIDm3rSyXBZg1X7ZFdom YCKqd3hi7cJ/tkJMf12BpgZlScbEwlBOmR8vfI3q/9hT6bYh9qsvJAlfqBAweo4O 3CwE3tS869GMwoUerqlCZ4GwQQmOq0/FP+rzDV0f6/9uTRTxbU0OgNB5QnLBY9eB v6O83VxgsZFqspuaKp6g1RXUL7Mhb87HzaQxk+f2Bt5nhfFosoT5n0d+aKWb+As0 lnyrMkb9d11GjcmkX/rkZeuWpLEA1fClQuMoyZFhCMZTj/MA6T3y0490eMYkrw== -----END CERTIFICATE-----Generated at Wed Jul 30 18:48:45 2025 by rpki-client