$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa File: 710c8ea0-f6b4-4fbe-9653-22174e063099.roa (raw, json) Hash identifier: ACaJCzoxanpAhrUkZo/3MsJEmaNT0NbXQAIBA8BkkSc= Subject key identifier: 70:9B:2E:37:2E:E7:C0:74:78:FA:AB:82:BD:4E:2E:91:33:BB:C0:C6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 2F3508F25DE7D5FCD4BB16300F20C907E3547501 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa Signing time: Mon 11 Aug 2025 15:31:00 +0000 ROA not before: Mon 11 Aug 2025 15:31:00 +0000 ROA not after: Mon 15 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:90::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:35:08:f2:5d:e7:d5:fc:d4:bb:16:30:0f:20:c9:07:e3:54:75:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 11 15:31:00 2025 GMT Not After : Sep 15 23:59:59 2025 GMT Subject: serialNumber=cc98d055398f313156e24085df3e19d43637554c42fa34ffcf751767281f6b46, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:9d:11:9b:95:be:3c:12:5d:f9:c1:56:97: c0:a6:fc:16:62:a8:c7:74:5a:b9:58:69:c8:83:e0: f6:0e:b3:f4:b6:cd:20:78:01:83:7b:a7:93:f7:d3: 52:44:c9:d2:99:29:5e:24:12:35:1c:97:47:fe:ea: 82:8c:ac:45:45:ad:3b:fc:eb:c8:c5:c2:49:2c:ac: a5:17:36:90:11:0a:a7:93:be:cd:8a:1c:d9:e3:0d: 4d:83:20:2e:6b:27:32:a0:30:39:b4:5d:a7:2a:cb: 67:20:8d:0f:19:0b:2a:1a:b7:6b:eb:2f:0b:13:1c: 81:fc:6a:3a:12:a5:d0:5d:7c:3f:00:f2:21:60:37: 91:e7:37:03:1d:4b:55:b6:99:28:a4:fd:c6:fb:c5: fe:49:cf:39:a4:e8:5b:92:b2:55:a4:05:af:5b:ad: 2b:da:94:60:53:e5:25:93:50:c5:5b:de:9f:ea:55: b0:75:87:fa:51:97:e3:92:99:16:4c:90:6e:55:32: 31:de:66:74:08:fc:f5:8f:ca:17:0d:0d:47:04:86: 2e:60:80:76:5b:f8:ea:31:f2:6e:33:4f:8a:29:b8: 5f:82:a4:2b:cc:fe:e3:68:a5:88:b7:7a:2b:b5:1b: 21:c1:5d:7b:fd:f8:af:38:22:ad:1b:3f:d3:4e:a0: 84:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:9B:2E:37:2E:E7:C0:74:78:FA:AB:82:BD:4E:2E:91:33:BB:C0:C6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/710c8ea0-f6b4-4fbe-9653-22174e063099.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:90::/44 Signature Algorithm: sha256WithRSAEncryption 55:bf:0a:60:83:3c:a9:a7:19:60:6b:57:2d:b1:8c:0f:aa:09: c2:00:89:13:68:ec:37:d8:5e:d0:ce:1d:a7:20:cb:13:e7:e2: 8a:cd:73:cd:bb:8c:e1:e8:b0:58:02:9a:13:5a:dc:8a:54:46: 7b:d5:fd:84:cb:7c:f6:18:9b:e8:9b:9b:bb:7b:37:24:f4:50: 61:8f:e4:1c:ea:11:53:e7:e0:0b:06:ef:6c:67:10:00:52:57: f0:c8:f8:ec:42:61:c8:ae:0d:c8:5f:20:17:28:73:97:ed:36: 45:6c:c5:15:24:01:5d:f1:4f:48:0e:9c:8e:f9:b3:d8:b8:0a: a3:e1:a7:6a:da:57:58:a5:5e:fe:cb:55:ce:23:e2:1b:03:4e: 75:b2:e6:08:ab:b5:52:7b:0b:45:b4:b5:12:8d:0a:c3:3a:89: 2d:4c:0a:6b:4e:31:aa:a7:2e:2c:88:5a:b5:88:21:f9:85:f4: 81:ce:99:cc:79:c1:17:f7:3a:2b:3b:70:4a:8d:c9:38:6a:a6: cf:21:0e:4c:be:c7:c8:61:36:77:9b:57:ee:b7:0b:9a:e9:56: 67:bb:73:b6:5e:c2:fe:d0:26:34:66:33:06:ca:98:b9:0f:11: 8a:3a:80:20:38:78:9b:73:e2:39:82:10:d0:2e:74:fb:e1:13: ca:f1:59:db -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIULzUI8l3n1fzUuxYwDyDJB+NUdQEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODExMTUzMTAwWhcNMjUwOTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzk4ZDA1NTM5OGYzMTMxNTZlMjQwODVkZjNlMTlkNDM2 Mzc1NTRjNDJmYTM0ZmZjZjc1MTc2NzI4MWY2YjQ2MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1D50Rm5W+PBJd+cFWl8Cm/BZiqMd0WrlYaciD4PYOs/S2 zSB4AYN7p5P301JEydKZKV4kEjUcl0f+6oKMrEVFrTv868jFwkksrKUXNpARCqeT vs2KHNnjDU2DIC5rJzKgMDm0Xacqy2cgjQ8ZCyoat2vrLwsTHIH8ajoSpdBdfD8A 8iFgN5HnNwMdS1W2mSik/cb7xf5Jzzmk6FuSslWkBa9brSvalGBT5SWTUMVb3p/q VbB1h/pRl+OSmRZMkG5VMjHeZnQI/PWPyhcNDUcEhi5ggHZb+Oox8m4zT4opuF+C pCvM/uNopYi3eiu1GyHBXXv9+K84Iq0bP9NOoIQFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcJsuNy7nwHR4+quCvU4ukTO7wMYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcxMGM4ZWEwLWY2YjQtNGZiZS05NjUzLTIyMTc0ZTA2MzA5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwAJAwDQYJKoZIhvcNAQELBQADggEBAFW/CmCDPKmnGWBrVy2xjA+q CcIAiRNo7DfYXtDOHacgyxPn4orNc827jOHosFgCmhNa3IpURnvV/YTLfPYYm+ib m7t7NyT0UGGP5BzqEVPn4AsG72xnEABSV/DI+OxCYciuDchfIBcoc5ftNkVsxRUk AV3xT0gOnI75s9i4CqPhp2raV1ilXv7LVc4j4hsDTnWy5girtVJ7C0W0tRKNCsM6 iS1MCmtOMaqnLiyIWrWIIfmF9IHOmcx5wRf3Ois7cEqNyThqps8hDky+x8hhNneb V+63C5rpVme7c7Zewv7QJjRmMwbKmLkPEYo6gCA4eJtz4jmCENAudPvhE8rxWds= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:39 2025 by rpki-client