$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/942359be-660a-411d-a2eb-7723143d6fd3.roa File: 942359be-660a-411d-a2eb-7723143d6fd3.roa (raw, json) Hash identifier: Ek3coVJr98cAgPfbuvL5WKCALoO4iuwq7y0LZNaU1ok= Subject key identifier: 02:C6:F3:FA:C0:82:7F:D6:36:B7:61:C7:76:89:AE:61:7B:81:A5:4A Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 3429913F9E806518B4750CDDB0EE9DFAE50E2E99 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/942359be-660a-411d-a2eb-7723143d6fd3.roa Signing time: Fri 15 Aug 2025 21:22:04 +0000 ROA not before: Fri 15 Aug 2025 21:22:04 +0000 ROA not after: Fri 19 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0f0:611e::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:29:91:3f:9e:80:65:18:b4:75:0c:dd:b0:ee:9d:fa:e5:0e:2e:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 15 21:22:04 2025 GMT Not After : Sep 19 23:59:59 2025 GMT Subject: serialNumber=8e9175b0fed685a8172153d492f9b2d81dce7396330acb575a2fd1575db898a1, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:e7:09:4a:70:de:97:15:61:e3:29:46:f0: b0:d2:32:fb:c9:d6:69:4b:36:43:76:37:af:d8:10: ed:97:1b:65:df:4b:a7:e6:8b:db:3f:da:70:d7:9e: c9:a1:d9:f8:e4:3e:54:2b:c2:9a:c3:70:28:01:24: f5:cb:6d:f4:9f:66:a1:da:7c:4d:55:f7:5d:cb:24: 69:52:c1:2f:e9:43:9a:86:cb:78:de:f7:2e:44:44: 82:89:c9:88:0d:66:ef:da:96:2f:5a:3e:a9:fc:04: 7c:ad:7f:16:1c:81:3c:8f:82:84:67:64:6c:84:2f: 94:e5:f3:f4:46:a5:df:f2:4d:11:2f:53:2d:83:2e: d7:b1:05:2d:34:bd:9f:bd:7d:ff:d6:e6:9e:43:4a: 9e:d6:4f:2c:c5:44:d8:38:e1:5b:77:15:62:61:b0: 9b:30:df:90:f1:34:7c:d4:8a:76:fb:08:07:b0:89: 95:4b:d8:a2:5e:d8:5c:9b:56:51:d2:a7:9a:2c:bb: 58:17:8f:65:e8:58:65:42:90:5f:54:a5:d6:f3:e6: 8c:b4:f2:fa:e7:0b:bc:c3:ac:21:de:31:15:84:12: 16:64:b1:7f:3e:ce:1b:be:24:4c:e0:86:f6:7e:b5: 92:de:d6:1e:d7:d1:19:6b:55:8b:36:e2:b1:a5:33: d9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C6:F3:FA:C0:82:7F:D6:36:B7:61:C7:76:89:AE:61:7B:81:A5:4A X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/942359be-660a-411d-a2eb-7723143d6fd3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0f0:611e::/48 Signature Algorithm: sha256WithRSAEncryption 0c:00:f2:06:62:07:9b:cb:58:05:74:22:46:2d:fa:50:2e:53: 2b:bf:2f:55:7d:11:25:f1:f6:d2:69:f2:cd:50:dc:6b:ab:5c: 46:de:b6:63:27:72:1f:27:83:9c:94:a9:7e:5b:a5:e8:cc:d2: d3:fd:e0:05:f0:3e:83:2b:2e:71:23:8f:cf:cb:eb:77:4c:fe: 5b:a5:fb:93:03:c1:75:38:f1:65:73:8e:c9:03:db:c9:dc:9f: bf:ef:75:b3:22:84:29:c5:07:ae:df:9a:18:62:82:7d:c0:7b: ee:b1:50:05:cc:10:34:90:22:15:fe:e4:ca:db:d3:ac:7c:f3: df:84:04:c8:c4:a3:1b:5c:32:57:61:c2:19:b2:f3:7b:20:1a: a2:b6:9d:d7:73:ba:48:af:f7:fb:60:95:7b:08:29:8d:a8:10: 26:12:db:63:f3:57:37:b6:d9:5c:22:9e:eb:0f:c2:c7:09:41: b5:16:74:e8:cd:21:8c:d6:9b:06:fb:15:6c:37:fc:97:01:c4: 52:ac:6f:d6:93:1c:a1:f8:7f:a4:4f:e3:c2:6a:5f:2c:04:80: 74:02:ac:b6:b6:30:4b:2c:26:38:ae:ab:c0:bd:81:2b:3d:01: 44:9b:78:55:44:f2:24:de:d8:66:f0:d2:f8:f6:75:39:c6:c4: 42:0e:e4:b8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNCmRP56AZRi0dQzdsO6d+uUOLpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODE1MjEyMjA0WhcNMjUwOTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTkxNzViMGZlZDY4NWE4MTcyMTUzZDQ5MmY5YjJkODFk Y2U3Mzk2MzMwYWNiNTc1YTJmZDE1NzVkYjg5OGExMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzu+cJSnDelxVh4ylG8LDSMvvJ1mlLNkN2N6/YEO2XG2Xf S6fmi9s/2nDXnsmh2fjkPlQrwprDcCgBJPXLbfSfZqHafE1V913LJGlSwS/pQ5qG y3je9y5ERIKJyYgNZu/ali9aPqn8BHytfxYcgTyPgoRnZGyEL5Tl8/RGpd/yTREv Uy2DLtexBS00vZ+9ff/W5p5DSp7WTyzFRNg44Vt3FWJhsJsw35DxNHzUinb7CAew iZVL2KJe2FybVlHSp5osu1gXj2XoWGVCkF9Updbz5oy08vrnC7zDrCHeMRWEEhZk sX8+zhu+JEzghvZ+tZLe1h7X0RlrVYs24rGlM9nnAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUAsbz+sCCf9Y2t2HHdomuYXuBpUowHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2Lzk0MjM1OWJlLTY2MGEtNDExZC1hMmViLTc3MjMxNDNkNmZkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPDwYR4wDQYJKoZIhvcNAQELBQADggEBAAwA8gZiB5vLWAV0IkYt+lAu Uyu/L1V9ESXx9tJp8s1Q3GurXEbetmMnch8ng5yUqX5bpejM0tP94AXwPoMrLnEj j8/L63dM/lul+5MDwXU48WVzjskD28ncn7/vdbMihCnFB67fmhhign3Ae+6xUAXM EDSQIhX+5Mrb06x889+EBMjEoxtcMldhwhmy83sgGqK2nddzukiv9/tglXsIKY2o ECYS22PzVze22VwinusPwscJQbUWdOjNIYzWmwb7FWw3/JcBxFKsb9aTHKH4f6RP 48JqXywEgHQCrLa2MEssJjiuq8C9gSs9AUSbeFVE8iTe2Gbw0vj2dTnGxEIO5Lg= -----END CERTIFICATE-----Generated at Wed Aug 20 10:48:29 2025 by rpki-client