$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa File: 77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa (raw, json) Hash identifier: 4+I5GJPg8eI4T25CB52WNEoRCyEbowKA1qiwqS4aXXo= Subject key identifier: B6:DB:BC:39:53:35:C8:AB:07:1B:B1:B0:12:8B:4E:2E:07:55:F2:C7 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 7D517FF59917D97D436601C2F6D0301EB1D7157C Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa Signing time: Tue 05 Aug 2025 18:30:53 +0000 ROA not before: Tue 05 Aug 2025 18:30:53 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:e800::/42 maxlen: 42 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:51:7f:f5:99:17:d9:7d:43:66:01:c2:f6:d0:30:1e:b1:d7:15:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:30:53 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=a1fa4511080af4ecd0def3871b55399f4b4856ac2edcc2a8e438682bb09785df, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:45:ac:bf:58:42:19:7a:ba:fc:dd:9a:aa:f0: e0:36:12:75:7b:dd:69:af:fd:39:d3:d5:2d:6e:b4: 1d:4e:f8:68:42:1a:fe:a9:0e:c8:df:c7:9a:44:22: 20:ca:35:c2:02:0b:cf:30:b2:a9:cb:21:f2:89:76: 40:cc:99:09:b7:99:b5:1c:66:64:d6:38:e9:1c:08: b1:cd:2b:42:2f:40:27:a8:88:69:eb:60:2d:d6:1c: db:12:bf:54:ab:db:de:4d:07:8c:be:7b:2f:8e:09: 36:a3:de:ae:07:dd:8a:58:2d:d9:bb:32:4a:f9:9e: e9:de:0d:0c:6d:9a:4e:cc:5e:1f:cf:7e:36:12:6c: f3:44:d0:0d:6e:01:a5:9e:cb:59:8c:72:7f:eb:e2: a5:e9:ea:37:35:de:01:82:c4:9b:04:af:7d:b4:f6: a5:b3:b1:a7:bc:43:f0:2f:e5:05:ef:f6:bb:1a:1d: d7:6c:2a:8d:59:e7:94:5a:07:53:64:04:61:db:5e: c8:6b:49:fa:06:b4:f9:ea:ca:a5:57:73:4b:71:79: 19:34:33:cf:78:3e:90:ab:eb:dc:4c:a2:b5:17:32: 0b:79:b6:83:4e:eb:0a:66:ae:17:7d:5f:ad:5d:fb: 33:33:47:6a:cf:59:5e:36:07:78:44:c8:72:bd:ad: 58:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:DB:BC:39:53:35:C8:AB:07:1B:B1:B0:12:8B:4E:2E:07:55:F2:C7 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/77071dba-3d71-409d-bec3-e6ee4d8fc9dc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e800::/42 Signature Algorithm: sha256WithRSAEncryption a6:71:57:00:c0:29:6c:12:6d:a2:1b:dd:80:d2:cf:1d:78:55: 17:74:38:3e:ae:b7:07:87:38:be:72:4b:cc:a8:30:f8:74:74: 22:cf:e8:be:67:17:f2:64:07:bf:10:7d:a2:32:36:8e:a6:4d: f6:3d:58:d8:0a:9b:cd:ff:8d:01:90:41:dc:85:5a:b5:c9:b2: 0b:bb:c0:80:df:e5:df:86:de:a7:a6:1a:e8:ee:2e:98:89:d8: a9:19:f4:f5:c8:3a:5f:67:99:d0:5f:09:e1:8c:65:39:0f:c5: 05:00:e5:ff:35:55:ae:55:7f:ec:26:ee:89:3a:20:68:71:48: d0:45:68:42:75:9e:b4:58:ab:85:96:31:aa:4f:0f:82:4f:05: ac:19:01:da:10:52:47:93:77:4b:9d:9f:eb:cb:9c:ca:1d:c2: bd:89:e2:27:a1:9b:7b:d5:97:4d:d1:36:ce:53:9e:0f:d7:79: eb:9c:c7:2d:da:d5:38:6d:d0:7d:2a:c8:5c:ba:49:8b:42:d1: 91:a0:91:28:88:2f:0c:99:74:54:94:5a:73:1a:68:4e:f7:f2: 9a:c1:a0:7e:e2:32:ea:81:0b:24:69:d0:d6:bf:9f:09:77:04: 88:c9:2a:c6:76:5f:7a:b8:fb:ca:b1:2a:cb:2d:3b:5d:f9:69: d9:11:33:26 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfVF/9ZkX2X1DZgHC9tAwHrHXFXwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMDUzWhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWZhNDUxMTA4MGFmNGVjZDBkZWYzODcxYjU1Mzk5ZjRi NDg1NmFjMmVkY2MyYThlNDM4NjgyYmIwOTc4NWRmMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNRay/WEIZerr83Zqq8OA2EnV73Wmv/TnT1S1utB1O+GhC Gv6pDsjfx5pEIiDKNcICC88wsqnLIfKJdkDMmQm3mbUcZmTWOOkcCLHNK0IvQCeo iGnrYC3WHNsSv1Sr295NB4y+ey+OCTaj3q4H3YpYLdm7Mkr5nuneDQxtmk7MXh/P fjYSbPNE0A1uAaWey1mMcn/r4qXp6jc13gGCxJsEr3209qWzsae8Q/Av5QXv9rsa HddsKo1Z55RaB1NkBGHbXshrSfoGtPnqyqVXc0txeRk0M894PpCr69xMorUXMgt5 toNO6wpmrhd9X61d+zMzR2rPWV42B3hEyHK9rVjFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUttu8OVM1yKsHG7GwEotOLgdV8scwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzc3MDcxZGJhLTNkNzEtNDA5ZC1iZWMzLWU2ZWU0ZDhmYzlkYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwYmAPD76AAwDQYJKoZIhvcNAQELBQADggEBAKZxVwDAKWwSbaIb3YDSzx14 VRd0OD6utweHOL5yS8yoMPh0dCLP6L5nF/JkB78QfaIyNo6mTfY9WNgKm83/jQGQ QdyFWrXJsgu7wIDf5d+G3qemGujuLpiJ2KkZ9PXIOl9nmdBfCeGMZTkPxQUA5f81 Va5Vf+wm7ok6IGhxSNBFaEJ1nrRYq4WWMapPD4JPBawZAdoQUkeTd0udn+vLnMod wr2J4iehm3vVl03RNs5Tng/Xeeucxy3a1Tht0H0qyFy6SYtC0ZGgkSiILwyZdFSU WnMaaE738prBoH7iMuqBCyRp0Na/nwl3BIjJKsZ2X3q4+8qxKsstO135adkRMyY= -----END CERTIFICATE-----Generated at Wed Aug 20 10:41:07 2025 by rpki-client