$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa File: 8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa (raw, json) Hash identifier: clCdccDfxixvpEboGvozu0JRNBAQxxtU2sCry+jukwc= Subject key identifier: B0:A6:F3:67:8D:8E:BA:51:8D:10:D5:16:0F:69:34:F4:08:B0:68:84 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 29E33456D226F59B49918C43B22C40370E430C42 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa Signing time: Fri 15 Aug 2025 15:30:21 +0000 ROA not before: Fri 15 Aug 2025 15:30:21 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f020::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:e3:34:56:d2:26:f5:9b:49:91:8c:43:b2:2c:40:37:0e:43:0c:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 15:30:21 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=38911b3415dd020a16d79524a4c58ce159a626a25ab33ec915c3b3b0d134ad64, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:45:c8:8c:42:3f:09:81:f3:7b:10:c3:6c:10: 62:b3:8b:c1:a2:5a:19:ff:8f:78:1f:01:92:5b:77: 21:c4:f7:c1:da:43:54:65:e7:57:1c:66:45:13:13: 55:1e:18:11:d3:46:8e:2f:20:b6:98:01:2e:2b:d0: 8d:f0:6a:15:60:d3:97:4c:ec:bd:bb:0d:4a:c6:f0: b1:b2:fd:f3:87:27:bc:19:ea:a0:9c:6a:96:80:2a: bc:aa:1c:85:7c:01:b5:92:cd:f6:d4:c5:e2:f3:94: da:e8:a0:df:d7:0b:61:5b:90:44:2d:21:30:7d:82: e0:2a:0c:29:49:52:29:b9:e5:95:e0:9b:26:6f:60: 2a:26:dd:39:ca:02:26:e1:37:f6:64:42:c2:3c:ff: 54:96:a8:35:98:d2:bd:06:d1:c9:16:6e:45:d2:94: f3:d6:68:dc:c6:5a:c9:0b:7e:5e:56:ff:88:41:ce: ce:cc:24:5b:8f:f6:88:ed:cf:65:56:47:68:7c:8d: 44:b9:99:0a:86:5f:2e:ba:6a:0e:a2:2f:cd:da:e6: a7:87:23:7d:9b:cc:8d:31:ab:d5:8f:c3:1d:c3:a7: d4:9a:fd:ae:80:ff:2e:e5:19:1a:1b:9c:10:57:22: ba:a3:0a:1a:43:04:fe:34:00:bb:4a:71:60:f2:dd: 63:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:A6:F3:67:8D:8E:BA:51:8D:10:D5:16:0F:69:34:F4:08:B0:68:84 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/8c0e65e5-4314-4c25-95ea-bd728ba417ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f020::/44 Signature Algorithm: sha256WithRSAEncryption 6e:f1:62:88:26:32:51:18:ac:2f:12:2e:63:fb:ab:8c:a6:5f: 83:47:6b:67:1f:54:d2:86:3e:50:5c:91:2a:6a:08:ed:cf:41: 5b:63:fb:62:2a:51:6e:ed:b6:10:ed:8d:6a:d1:7c:0c:62:2a: 36:ed:54:de:1f:bc:5a:bb:9c:27:6b:47:bf:9f:51:84:a1:77: 9f:34:b1:d8:81:94:51:7c:ca:d6:b2:0d:ac:86:16:00:2d:cb: 94:26:45:6c:5b:60:b6:8a:0f:07:70:db:29:01:93:d5:34:c0: 42:d9:e6:6f:03:8a:3c:d0:b5:83:e4:ec:06:c4:55:50:07:fd: 44:3d:37:7d:18:35:20:fe:04:7e:a9:f8:df:27:47:3c:83:a6: d3:eb:c1:40:c8:b4:18:16:61:d6:4a:bf:e4:c2:49:85:dc:ca: 7f:62:df:fa:20:5e:f6:bd:fe:bf:72:1e:22:2d:ba:9d:82:31: 32:57:b6:f3:97:6b:01:eb:bf:fc:94:c7:d4:5f:19:7c:2c:84: 7f:61:56:2e:05:44:a5:d1:28:8f:a5:32:59:3a:38:dd:e2:e5: fe:f8:99:8d:84:a9:e2:53:6a:c8:b1:a4:a5:dd:51:81:43:a7: 16:1c:13:a9:00:3a:3e:2e:5c:eb:96:82:51:c2:7e:6f:38:33: 44:cc:37:eb -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUKeM0VtIm9ZtJkYxDsixANw5DDEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MTUzMDIxWhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzODkxMWIzNDE1ZGQwMjBhMTZkNzk1MjRhNGM1OGNlMTU5 YTYyNmEyNWFiMzNlYzkxNWMzYjNiMGQxMzRhZDY0MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDERciMQj8JgfN7EMNsEGKzi8GiWhn/j3gfAZJbdyHE98Ha Q1Rl51ccZkUTE1UeGBHTRo4vILaYAS4r0I3wahVg05dM7L27DUrG8LGy/fOHJ7wZ 6qCcapaAKryqHIV8AbWSzfbUxeLzlNrooN/XC2FbkEQtITB9guAqDClJUim55ZXg myZvYCom3TnKAibhN/ZkQsI8/1SWqDWY0r0G0ckWbkXSlPPWaNzGWskLfl5W/4hB zs7MJFuP9ojtz2VWR2h8jUS5mQqGXy66ag6iL83a5qeHI32bzI0xq9WPwx3Dp9Sa /a6A/y7lGRobnBBXIrqjChpDBP40ALtKcWDy3WN7AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsKbzZ42OulGNENUWD2k09AiwaIQwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzhjMGU2NWU1LTQzMTQtNGMyNS05NWVhLWJkNzI4YmE0MTdmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78CAwDQYJKoZIhvcNAQELBQADggEBAG7xYogmMlEYrC8SLmP7q4ym X4NHa2cfVNKGPlBckSpqCO3PQVtj+2IqUW7tthDtjWrRfAxiKjbtVN4fvFq7nCdr R7+fUYShd580sdiBlFF8ytayDayGFgAty5QmRWxbYLaKDwdw2ykBk9U0wELZ5m8D ijzQtYPk7AbEVVAH/UQ9N30YNSD+BH6p+N8nRzyDptPrwUDItBgWYdZKv+TCSYXc yn9i3/ogXva9/r9yHiItup2CMTJXtvOXawHrv/yUx9RfGXwshH9hVi4FRKXRKI+l Mlk6ON3i5f74mY2EqeJTasixpKXdUYFDpxYcE6kAOj4uXOuWglHCfm84M0TMN+s= -----END CERTIFICATE-----Generated at Wed Aug 20 10:46:58 2025 by rpki-client