$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa File: 7200dfa9-d36f-44de-852a-1adda1bbb99c.roa (raw, json) Hash identifier: GazX8J7M61sLrdAIYde3TAUYQ1b6y8eTYxUu8OQql08= Subject key identifier: A6:17:8C:0B:24:31:0B:50:09:34:A0:0F:0B:B4:3A:1A:F3:99:D9:BC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 0A47191DCD53EE2F6C921ACD51BD82099E5D9407 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa Signing time: Tue 05 Aug 2025 18:21:05 +0000 ROA not before: Tue 05 Aug 2025 18:21:05 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:1000::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:47:19:1d:cd:53:ee:2f:6c:92:1a:cd:51:bd:82:09:9e:5d:94:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:21:05 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=a2160e5a78ce539c6b63424ce90969edf11c540a5668c2045cd9d7e60d7451c3, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:69:19:9a:ea:1e:93:60:db:5e:0a:30:57:ad: b5:c2:fc:86:a2:73:4a:e5:d0:87:bf:f4:56:54:21: e3:dd:40:1c:f3:4a:08:f6:23:3e:b5:1f:49:40:43: f0:c0:35:81:76:d5:ee:30:dc:06:fb:20:3a:b3:f0: c4:93:c1:50:d1:5c:42:41:ec:30:d4:c3:cb:bd:62: cc:af:56:91:a1:e3:4c:d7:9e:d7:ca:b2:fc:44:f6: 6c:20:36:23:1a:ae:b4:63:8d:65:a4:8d:bb:6a:24: 88:61:e9:79:06:7e:a3:2a:ba:3d:1c:76:38:54:ef: 5d:be:7a:94:b5:97:53:4e:f8:0e:76:e6:6b:16:92: 93:19:94:e6:bd:dc:72:b0:65:c4:a8:1c:87:23:0e: 49:3f:e1:d0:53:b4:f0:99:51:c7:b4:7d:bb:84:85: be:f7:98:bb:b6:a2:ed:14:32:81:50:8d:a0:d5:2b: 2a:e9:62:08:2b:45:97:33:32:61:2b:fe:02:0c:bc: 0d:b1:e1:b0:79:05:54:bb:ba:44:59:bd:92:32:0d: 8e:5c:ef:8d:94:83:01:db:84:1a:af:a9:b2:a9:8d: 63:f5:c5:43:a9:84:fa:e6:7a:d4:5b:f2:fb:41:b3: 5e:4e:5d:3f:26:c7:d5:54:c8:14:f9:84:fa:ad:c2: 6d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:17:8C:0B:24:31:0B:50:09:34:A0:0F:0B:B4:3A:1A:F3:99:D9:BC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7200dfa9-d36f-44de-852a-1adda1bbb99c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:1000::/44 Signature Algorithm: sha256WithRSAEncryption 59:52:0a:8a:02:f6:1e:d9:cc:9b:b3:57:bd:c4:f8:1e:3d:bc: bb:85:f1:ca:6a:ac:69:43:2f:ce:10:3d:b3:2c:39:48:7a:ce: 9d:a6:c0:16:08:68:ef:4a:d2:7a:44:1b:27:f1:15:6b:86:be: 34:b9:99:a5:f8:7e:77:ff:8b:c3:55:62:3d:42:b1:7c:fc:5b: d5:27:a1:42:76:cb:bc:8f:1e:8f:bf:40:5f:03:c1:87:46:9a: 82:ad:61:a1:e0:fb:69:04:0b:cc:68:fe:b1:47:30:53:6a:8b: 10:65:b1:2d:82:f6:54:a3:2a:a2:2c:87:dc:28:60:f9:c6:95: 57:86:e0:54:42:b7:a7:5e:cf:a7:75:c2:c9:a0:db:53:bb:8f: cf:f3:11:8b:1e:ab:aa:be:94:46:d1:22:e7:f0:be:3c:9c:08: 20:d2:51:21:13:4e:a4:9b:3c:09:2e:0a:96:30:7b:f4:91:1d: 9a:73:39:f7:50:56:32:62:ec:c5:5b:52:1d:68:58:ea:c3:d1: e2:c6:c1:3c:c3:f1:29:db:b0:f7:9e:17:29:8a:a3:ab:c6:21: 93:c3:6a:2b:c4:c2:f0:50:57:0e:3d:89:30:ab:51:e2:6c:d7: 96:8a:43:41:dd:12:11:45:67:3f:7d:19:35:91:ef:38:5d:00: 23:91:48:e0 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUCkcZHc1T7i9skhrNUb2CCZ5dlAcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgyMTA1WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjE2MGU1YTc4Y2U1MzljNmI2MzQyNGNlOTA5NjllZGYx MWM1NDBhNTY2OGMyMDQ1Y2Q5ZDdlNjBkNzQ1MWMzMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQaRma6h6TYNteCjBXrbXC/Iaic0rl0Ie/9FZUIePdQBzz Sgj2Iz61H0lAQ/DANYF21e4w3Ab7IDqz8MSTwVDRXEJB7DDUw8u9YsyvVpGh40zX ntfKsvxE9mwgNiMarrRjjWWkjbtqJIhh6XkGfqMquj0cdjhU712+epS1l1NO+A52 5msWkpMZlOa93HKwZcSoHIcjDkk/4dBTtPCZUce0fbuEhb73mLu2ou0UMoFQjaDV KyrpYggrRZczMmEr/gIMvA2x4bB5BVS7ukRZvZIyDY5c742UgwHbhBqvqbKpjWP1 xUOphPrmetRb8vtBs15OXT8mx9VUyBT5hPqtwm2BAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUpheMCyQxC1AJNKAPC7Q6GvOZ2bwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzcyMDBkZmE5LWQzNmYtNDRkZS04NTJhLTFhZGRhMWJiYjk5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPDwEAAwDQYJKoZIhvcNAQELBQADggEBAFlSCooC9h7ZzJuzV73E+B49 vLuF8cpqrGlDL84QPbMsOUh6zp2mwBYIaO9K0npEGyfxFWuGvjS5maX4fnf/i8NV Yj1CsXz8W9UnoUJ2y7yPHo+/QF8DwYdGmoKtYaHg+2kEC8xo/rFHMFNqixBlsS2C 9lSjKqIsh9woYPnGlVeG4FRCt6dez6d1wsmg21O7j8/zEYseq6q+lEbRIufwvjyc CCDSUSETTqSbPAkuCpYwe/SRHZpzOfdQVjJi7MVbUh1oWOrD0eLGwTzD8SnbsPee FymKo6vGIZPDaivEwvBQVw49iTCrUeJs15aKQ0HdEhFFZz99GTWR7zhdACORSOA= -----END CERTIFICATE-----Generated at Thu Aug 21 03:01:48 2025 by rpki-client