$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa File: af93e150-9469-47eb-8185-3ff03d87db06.roa (raw, json) Hash identifier: xO6slhBzddXNPj1MncW/yGesh7YixqSrHdatGhI/doE= Subject key identifier: 29:1F:56:E7:EB:B6:B1:F4:30:A9:DE:7C:38:76:E0:F1:1B:82:CF:A8 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 34FA205CF580BF81E78DF85BDC3355B19F4E76D8 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa Signing time: Sat 09 Aug 2025 00:10:50 +0000 ROA not before: Sat 09 Aug 2025 00:10:50 +0000 ROA not after: Sat 13 Sep 2025 23:59:59 +0000 asID: 16509 IP address blocks: 2600:f0fb:f000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 21 Aug 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:fa:20:5c:f5:80:bf:81:e7:8d:f8:5b:dc:33:55:b1:9f:4e:76:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 9 00:10:50 2025 GMT Not After : Sep 13 23:59:59 2025 GMT Subject: serialNumber=645fc95b18eb1874850c9f4ec8854b0d914a9f496e70ee672045bc1d0319ff79, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:dd:91:e4:8f:a4:cd:9a:79:c5:e1:a4:e1:3b: 69:23:6b:e7:fc:f6:c9:96:3f:0c:b1:a9:c8:f7:d9: c2:91:9a:60:8a:71:53:3f:58:d0:4e:24:a1:1e:84: ff:3f:a8:8f:3c:ac:69:44:cd:ae:6b:c2:83:88:02: 5d:22:24:8b:43:72:8a:73:a8:74:45:2e:8d:29:a4: b5:02:35:b1:28:3f:23:ae:78:cd:4d:14:8e:ff:c7: d2:8a:45:a5:04:99:b9:03:33:70:5a:94:cd:d7:43: ce:62:ef:38:6e:4c:8f:ab:4f:08:3c:55:25:f1:5e: 5d:9e:8b:cd:e8:92:60:3f:20:ce:c0:75:3f:f6:3d: 2e:fa:b4:7b:5e:f5:3d:a2:68:64:2d:84:0f:4d:5e: ef:e8:99:c7:cc:4f:7c:fd:95:39:49:04:97:d1:5a: a4:9c:cb:36:5f:91:ac:6c:6d:68:45:df:1f:0f:9e: ec:c0:04:d6:e1:ac:92:cb:ca:14:a7:75:31:e5:77: 4a:b6:48:2c:32:43:98:f5:49:b1:36:7c:13:bf:67: 48:2e:aa:82:d1:8d:50:eb:67:3f:fb:c7:9b:97:25: 29:be:28:85:ae:d5:f6:5c:08:82:8a:ea:11:90:ad: 8d:e4:27:ef:3b:90:5a:1b:44:1d:fe:7a:10:5a:a5: 06:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:1F:56:E7:EB:B6:B1:F4:30:A9:DE:7C:38:76:E0:F1:1B:82:CF:A8 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/af93e150-9469-47eb-8185-3ff03d87db06.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f000::/44 Signature Algorithm: sha256WithRSAEncryption 7c:9c:3e:37:dd:b6:9d:48:66:53:9f:b0:6a:3f:b6:68:f5:81: 3a:10:5f:af:24:d3:88:a3:41:f7:30:44:74:95:de:04:f2:46: 65:e3:de:08:e7:dd:d9:93:12:91:b4:59:8d:3b:dc:d4:e1:7c: a3:26:0b:33:89:cf:81:50:f5:ba:77:e1:4a:ca:27:8f:1a:0e: 36:3a:1b:7a:e3:02:88:28:6e:bd:81:47:0a:27:24:25:ec:9b: ef:85:68:e4:54:1d:b6:42:5d:45:f5:8d:f1:b3:01:20:71:ad: 90:5f:66:8b:ba:e2:04:a4:3a:7f:7d:17:7c:da:c8:cf:97:84: 03:db:36:15:33:50:11:2c:e8:f4:8e:a7:1b:b0:cd:42:f9:92: e1:73:66:f9:83:52:8a:2d:44:a3:e2:0f:55:e3:2a:dc:6c:72: 68:ba:12:5b:f7:c9:9a:41:ec:79:0c:82:62:21:3b:d1:b6:99: 01:5a:56:86:21:eb:2f:ad:8b:cc:09:0f:af:21:88:72:ec:2a: a1:79:f8:17:98:d3:a1:cc:67:e0:18:0d:46:e0:ee:b9:4b:9e: 85:77:66:6c:06:66:96:d3:bf:2e:7d:db:2c:5d:05:90:d6:db: 12:b2:f8:d9:ef:3b:c6:67:5a:80:50:9d:2b:2b:c6:1a:a2:3f: 74:f5:d2:3e -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNPogXPWAv4Hnjfhb3DNVsZ9OdtgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA5MDAxMDUwWhcNMjUwOTEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDVmYzk1YjE4ZWIxODc0ODUwYzlmNGVjODg1NGIwZDkx NGE5ZjQ5NmU3MGVlNjcyMDQ1YmMxZDAzMTlmZjc5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDm3ZHkj6TNmnnF4aThO2kja+f89smWPwyxqcj32cKRmmCK cVM/WNBOJKEehP8/qI88rGlEza5rwoOIAl0iJItDcopzqHRFLo0ppLUCNbEoPyOu eM1NFI7/x9KKRaUEmbkDM3BalM3XQ85i7zhuTI+rTwg8VSXxXl2ei83okmA/IM7A dT/2PS76tHte9T2iaGQthA9NXu/omcfMT3z9lTlJBJfRWqScyzZfkaxsbWhF3x8P nuzABNbhrJLLyhSndTHld0q2SCwyQ5j1SbE2fBO/Z0guqoLRjVDrZz/7x5uXJSm+ KIWu1fZcCIKK6hGQrY3kJ+87kFobRB3+ehBapQYXAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUKR9W5+u2sfQwqd58OHbg8RuCz6gwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2FmOTNlMTUwLTk0NjktNDdlYi04MTg1LTNmZjAzZDg3ZGIwNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwQmAPD78AAwDQYJKoZIhvcNAQELBQADggEBAHycPjfdtp1IZlOfsGo/tmj1 gToQX68k04ijQfcwRHSV3gTyRmXj3gjn3dmTEpG0WY073NThfKMmCzOJz4FQ9bp3 4UrKJ48aDjY6G3rjAogobr2BRwonJCXsm++FaORUHbZCXUX1jfGzASBxrZBfZou6 4gSkOn99F3zayM+XhAPbNhUzUBEs6PSOpxuwzUL5kuFzZvmDUootRKPiD1XjKtxs cmi6Elv3yZpB7HkMgmIhO9G2mQFaVoYh6y+ti8wJD68hiHLsKqF5+BeY06HMZ+AY DUbg7rlLnoV3ZmwGZpbTvy592yxdBZDW2xKy+NnvO8ZnWoBQnSsrxhqiP3T10j4= -----END CERTIFICATE-----Generated at Wed Aug 20 10:45:08 2025 by rpki-client