$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa File: 7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa (raw, json) Hash identifier: C2ZGoA7cujxgXCqYAvhUBlmiP/PXU7JgI75LsAYvMtc= Subject key identifier: 4E:0A:DF:9A:AA:ED:1E:73:B7:71:E6:35:82:98:88:18:ED:19:85:DC Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3B6120722F37B192FB6DC8AD2FE197C43FCE54F2 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa Signing time: Tue 19 Aug 2025 16:50:07 +0000 ROA not before: Tue 19 Aug 2025 16:50:07 +0000 ROA not after: Tue 23 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f010::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:61:20:72:2f:37:b1:92:fb:6d:c8:ad:2f:e1:97:c4:3f:ce:54:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 19 16:50:07 2025 GMT Not After : Sep 23 23:59:59 2025 GMT Subject: serialNumber=4d0653839a3a8fc922da20832a138daa924b68e06745aaee6f007b6ec27e4a5e, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bb:aa:63:08:78:d1:07:d1:76:5d:05:74:31: 38:09:6a:20:49:b2:62:7d:95:45:95:44:aa:3b:c3: 16:dd:fe:4f:d8:fa:df:e4:f9:47:51:45:37:a5:93: a2:ba:9c:3a:da:54:f7:9d:66:19:4f:94:5a:a4:7c: 3d:d9:c1:30:9b:e6:22:de:50:88:be:41:0b:d4:28: 02:f8:1e:d6:6f:c8:33:c3:f3:d2:b3:56:30:c6:d7: 5e:5e:b2:db:be:b6:93:0d:12:0b:02:af:aa:98:f7: 78:27:9f:8c:3b:84:9c:b7:4e:14:6d:bc:a2:c4:b7: 48:93:60:44:de:fd:dc:6b:57:15:37:b8:d1:1b:f9: ac:29:02:2e:d0:13:75:37:80:d5:2a:f1:f7:2b:a4: 24:82:15:ea:24:97:0c:a5:82:ab:dd:7f:5d:cc:70: 2a:4d:30:a8:bf:1a:8f:26:66:db:6f:c0:f1:0c:7c: 98:b9:71:68:36:23:d9:22:d3:08:da:d5:f2:35:74: 29:93:bc:43:fd:1c:dc:e7:bd:a6:92:4c:d8:4a:97: 3d:1d:40:3c:30:77:65:80:80:a2:39:cb:6a:64:d4: 54:99:18:9d:26:b8:65:62:02:91:1f:8f:bc:aa:d4: 13:53:47:fa:79:38:bb:12:0c:f9:dd:00:db:b2:33: 42:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0A:DF:9A:AA:ED:1E:73:B7:71:E6:35:82:98:88:18:ED:19:85:DC X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/7dddd7bf-5dfc-4a20-9b8d-dffc023c9850.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f010::/44 Signature Algorithm: sha256WithRSAEncryption 76:77:11:76:d0:a3:02:a8:9a:f8:a6:52:62:d4:d3:a5:2f:39: e3:df:d4:66:d6:55:a8:90:a9:ea:08:d1:bd:a8:4a:a0:b2:8e: 68:cf:b6:7d:a7:64:d9:c4:ec:42:70:24:ef:01:9e:bc:90:db: 28:61:42:a2:4a:df:75:5e:ef:0d:a1:12:2d:b7:97:3e:a8:8d: b6:d1:66:b2:ac:95:d9:45:cb:12:56:2a:b0:9c:5b:55:ec:24: 3c:32:ab:fd:b7:72:df:e2:84:13:11:89:9b:96:f4:1c:70:e6: 01:62:a4:5c:76:71:fd:ea:eb:e9:bb:1a:70:55:a1:e9:9f:33: 1f:31:c5:0b:3c:1e:df:01:e2:c9:be:6a:79:a8:77:3e:55:2e: c2:18:a7:7c:7e:02:af:5e:4a:c4:cf:94:d4:68:39:a2:b1:97: 18:99:64:b5:88:66:55:a8:57:35:d4:a4:f1:08:01:14:f5:56: 8d:dd:72:4f:cd:4a:f2:6e:96:cc:5c:3e:6b:9c:b8:e0:1b:01: 2c:0f:65:63:01:3f:8e:f4:b8:7e:86:05:b9:2b:44:54:25:dc: 45:61:e9:cd:78:e5:25:e0:cb:e9:48:90:01:81:e2:fe:26:45: 5f:ce:fc:15:44:dd:81:c4:81:7b:64:c8:f0:01:c1:d5:c2:b3: fa:01:b4:bb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUO2Egci83sZL7bcitL+GXxD/OVPIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE5MTY1MDA3WhcNMjUwOTIzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZDA2NTM4MzlhM2E4ZmM5MjJkYTIwODMyYTEzOGRhYTky NGI2OGUwNjc0NWFhZWU2ZjAwN2I2ZWMyN2U0YTVlMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdu6pjCHjRB9F2XQV0MTgJaiBJsmJ9lUWVRKo7wxbd/k/Y +t/k+UdRRTelk6K6nDraVPedZhlPlFqkfD3ZwTCb5iLeUIi+QQvUKAL4HtZvyDPD 89KzVjDG115estu+tpMNEgsCr6qY93gnn4w7hJy3ThRtvKLEt0iTYETe/dxrVxU3 uNEb+awpAi7QE3U3gNUq8fcrpCSCFeoklwylgqvdf13McCpNMKi/Go8mZttvwPEM fJi5cWg2I9ki0wja1fI1dCmTvEP9HNznvaaSTNhKlz0dQDwwd2WAgKI5y2pk1FSZ GJ0muGViApEfj7yq1BNTR/p5OLsSDPndANuyM0J1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUTgrfmqrtHnO3ceY1gpiIGO0ZhdwwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzdkZGRkN2JmLTVkZmMtNGEyMC05YjhkLWRmZmMwMjNjOTg1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78BAwDQYJKoZIhvcNAQELBQADggEBAHZ3EXbQowKomvimUmLU06Uv OePf1GbWVaiQqeoI0b2oSqCyjmjPtn2nZNnE7EJwJO8BnryQ2yhhQqJK33Ve7w2h Ei23lz6ojbbRZrKsldlFyxJWKrCcW1XsJDwyq/23ct/ihBMRiZuW9Bxw5gFipFx2 cf3q6+m7GnBVoemfMx8xxQs8Ht8B4sm+anmodz5VLsIYp3x+Aq9eSsTPlNRoOaKx lxiZZLWIZlWoVzXUpPEIART1Vo3dck/NSvJulsxcPmucuOAbASwPZWMBP470uH6G BbkrRFQl3EVh6c145SXgy+lIkAGB4v4mRV/O/BVE3YHEgXtkyPABwdXCs/oBtLs= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:27 2025 by rpki-client