$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/75c1ad27-f269-4ce6-80db-a3279c123941.roa File: 75c1ad27-f269-4ce6-80db-a3279c123941.roa (raw, json) Hash identifier: 5RVSjH98J7IqhyWIOMvP1HrnM+QAFR9N9RtwCEfQoeM= Subject key identifier: 32:40:12:5C:F8:B0:4C:BA:C7:DD:5B:CA:60:A4:82:BC:89:D4:C1:CD Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 383C33D4F99445BF48B9570E22E25AE9BAE1B524 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/75c1ad27-f269-4ce6-80db-a3279c123941.roa Signing time: Mon 18 Aug 2025 18:22:21 +0000 ROA not before: Mon 18 Aug 2025 18:22:21 +0000 ROA not after: Mon 22 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0f0:610d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:3c:33:d4:f9:94:45:bf:48:b9:57:0e:22:e2:5a:e9:ba:e1:b5:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 18 18:22:21 2025 GMT Not After : Sep 22 23:59:59 2025 GMT Subject: serialNumber=41d896014dd8cb58759af06bb14192f598dfe01a25863350fd7d351f17338b9d, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f3:2b:0d:8d:15:1e:b8:81:2f:ca:3f:b0:94: 31:3c:dd:04:06:1c:32:f8:7d:17:a2:3e:7e:aa:25: 6a:93:30:33:85:05:7c:e9:4b:c7:75:bb:fd:66:bf: 90:a7:5e:1b:2b:ce:50:bc:09:4c:c2:f7:76:2b:9a: 7a:93:3a:b8:28:a3:bb:9c:f6:3c:33:5e:f1:2d:57: c5:25:f9:f7:3a:ef:2d:96:40:8b:e8:5f:13:0e:08: a9:98:e4:de:de:9e:60:74:e3:5a:01:8c:23:9f:67: 62:ea:d5:ce:ad:ae:df:f2:50:cf:d4:bd:d1:50:aa: 3e:23:21:b1:97:8f:64:11:72:cc:8d:bd:86:41:80: 47:70:e9:d8:93:32:57:2d:a7:c1:6a:00:67:ae:7e: fa:bb:f0:f4:9a:51:84:93:0d:8b:d7:75:85:72:b6: 27:48:8a:63:45:1c:36:71:75:f5:53:66:ef:b5:da: d3:b4:85:52:ff:bc:a1:f3:d9:61:a0:03:59:e3:81: 55:cf:c3:aa:cb:e0:f1:20:f5:93:b5:dc:ff:89:e5: 2e:b6:96:b1:3c:33:67:cc:df:b3:2f:e2:52:14:6c: 73:5a:09:3f:02:63:ec:a4:53:4d:89:6d:04:ee:8c: ea:9e:2e:3b:c9:b3:7c:5f:c2:9d:c4:d0:26:2a:de: 19:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:40:12:5C:F8:B0:4C:BA:C7:DD:5B:CA:60:A4:82:BC:89:D4:C1:CD X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/75c1ad27-f269-4ce6-80db-a3279c123941.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:610d::/48 Signature Algorithm: sha256WithRSAEncryption 95:11:5d:db:0e:ce:96:63:08:c4:1b:f8:5e:f9:43:15:17:03: b1:4e:e3:45:ca:c9:b3:37:4b:da:69:66:eb:c1:70:da:e4:a2: 1c:66:8f:2a:87:bf:c9:c0:e6:0b:b0:12:92:c7:00:ba:85:c3: 6d:99:5d:30:73:9b:72:b4:e3:39:40:0b:ea:83:9a:59:b0:b4: 28:e3:7b:d7:8b:24:a6:54:ff:a1:5d:4a:64:8a:88:9f:c3:16: 45:11:06:47:0f:16:f1:ca:1a:6f:d1:62:5a:98:9c:8a:6c:22: 51:30:ad:77:b7:1a:dc:8d:e2:3e:0d:fb:4a:d0:2a:96:36:7d: 94:a4:79:a7:f7:58:85:d0:40:51:7f:74:2f:d8:41:80:90:4d: 3b:76:40:ee:c1:07:fd:5c:a4:b5:bd:23:24:b8:ab:40:22:12: 0d:84:bc:92:ca:ec:2f:05:75:8d:86:6c:92:df:97:43:3d:98: 44:9c:57:f3:6c:b2:cd:87:74:8d:3b:d5:7e:4b:db:e9:bd:af: 2a:16:54:10:52:c4:1e:54:28:a3:1d:62:4b:5b:87:49:8d:2f: 5b:e1:a0:85:91:71:39:6f:96:f8:1e:6a:a7:84:83:a2:84:68: a6:b9:df:06:71:06:56:09:65:4f:a0:b3:39:93:72:44:1e:4f: 80:30:34:61 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUODwz1PmURb9IuVcOIuJa6brhtSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE4MTgyMjIxWhcNMjUwOTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MWQ4OTYwMTRkZDhjYjU4NzU5YWYwNmJiMTQxOTJmNTk4 ZGZlMDFhMjU4NjMzNTBmZDdkMzUxZjE3MzM4YjlkMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl8ysNjRUeuIEvyj+wlDE83QQGHDL4fReiPn6qJWqTMDOF BXzpS8d1u/1mv5CnXhsrzlC8CUzC93YrmnqTOrgoo7uc9jwzXvEtV8Ul+fc67y2W QIvoXxMOCKmY5N7enmB041oBjCOfZ2Lq1c6trt/yUM/UvdFQqj4jIbGXj2QRcsyN vYZBgEdw6diTMlctp8FqAGeufvq78PSaUYSTDYvXdYVytidIimNFHDZxdfVTZu+1 2tO0hVL/vKHz2WGgA1njgVXPw6rL4PEg9ZO13P+J5S62lrE8M2fM37Mv4lIUbHNa CT8CY+ykU02JbQTujOqeLjvJs3xfwp3E0CYq3hm1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMkASXPiwTLrH3VvKYKSCvInUwc0wHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc1YzFhZDI3LWYyNjktNGNlNi04MGRiLWEzMjc5YzEyMzk0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYQ0wDQYJKoZIhvcNAQELBQADggEBAJURXdsOzpZjCMQb+F75QxUX A7FO40XKybM3S9ppZuvBcNrkohxmjyqHv8nA5guwEpLHALqFw22ZXTBzm3K04zlA C+qDmlmwtCjje9eLJKZU/6FdSmSKiJ/DFkURBkcPFvHKGm/RYlqYnIpsIlEwrXe3 GtyN4j4N+0rQKpY2fZSkeaf3WIXQQFF/dC/YQYCQTTt2QO7BB/1cpLW9IyS4q0Ai Eg2EvJLK7C8FdY2GbJLfl0M9mEScV/Nsss2HdI071X5L2+m9ryoWVBBSxB5UKKMd Yktbh0mNL1vhoIWRcTlvlvgeaqeEg6KEaKa53wZxBlYJZU+gszmTckQeT4AwNGE= -----END CERTIFICATE-----Generated at Thu Aug 21 05:00:52 2025 by rpki-client