$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa File: b2bd076f-38fe-414c-adae-9c6f359542b7.roa (raw, json) Hash identifier: CIE0oO0EbQ244qeDv8SbeKn1hbHVADexO1iTwzBfirg= Subject key identifier: 05:5F:2E:CA:FA:5E:F0:97:50:B0:8E:90:BD:21:ED:94:3F:30:31:C6 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 6DA9909A6741F340BBEAEACB55959B6CF86FD39A Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa Signing time: Tue 05 Aug 2025 18:31:26 +0000 ROA not before: Tue 05 Aug 2025 18:31:26 +0000 ROA not after: Tue 09 Sep 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:e300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 22 Aug 2025 13:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:a9:90:9a:67:41:f3:40:bb:ea:ea:cb:55:95:9b:6c:f8:6f:d3:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Aug 5 18:31:26 2025 GMT Not After : Sep 9 23:59:59 2025 GMT Subject: serialNumber=1c5f150978d7d0059a7711c602da6dc6f475e9c93a9f8ff47e1ba51c95178b59, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e5:74:15:e0:91:b6:fb:54:77:60:8d:d4:cc: ca:0b:a1:2d:96:22:61:18:c7:50:55:26:37:18:4c: 48:e2:e8:5f:14:61:6b:4b:3c:8b:83:f6:a5:f6:66: f6:6e:73:2e:f0:70:71:d4:9c:af:65:cc:32:8f:8b: 2d:50:31:76:49:a6:8c:9f:ac:17:dc:2d:e1:4b:60: 45:21:9d:97:8c:df:c0:f8:e8:7a:13:66:61:53:f4: a9:5a:dd:52:a0:0a:5e:a5:da:56:6e:7f:d2:37:77: e7:59:c6:f4:ba:fc:93:c8:01:de:b7:e2:9c:f1:8c: be:81:ba:a8:1e:2d:31:a4:0d:c0:ca:de:76:c7:48: 58:63:5d:08:33:c2:8c:59:3e:f6:7c:04:30:d7:ac: e2:0e:d8:40:1d:e0:f6:06:62:d9:6a:80:b1:ce:98: 81:56:0c:67:16:64:db:8a:ab:97:db:cd:23:59:7e: b2:05:46:8c:34:7b:d2:11:21:ce:23:ad:5c:d3:00: da:99:c6:08:7d:f4:6e:28:d6:6e:8f:e4:86:30:14: fe:fa:c6:62:b4:df:da:b7:9d:8c:d3:9c:ba:de:da: fc:f8:ca:4e:65:2d:fa:34:a3:d4:b2:ad:ce:2d:c9: 4a:bb:55:5d:84:21:24:fa:65:3f:d3:e8:0b:ae:6a: 3f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:5F:2E:CA:FA:5E:F0:97:50:B0:8E:90:BD:21:ED:94:3F:30:31:C6 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/b2bd076f-38fe-414c-adae-9c6f359542b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:e300::/40 Signature Algorithm: sha256WithRSAEncryption 33:90:17:43:74:56:6d:3d:2e:7c:e0:11:c5:16:28:b6:96:2a: fc:9c:81:ac:44:be:47:fc:d4:fd:32:23:e2:15:da:d2:87:16: 56:16:a3:92:dc:31:96:08:3f:e2:c3:c6:5c:a4:81:6b:98:ee: da:f7:9a:47:45:2a:3d:e7:57:53:e8:03:a1:13:07:10:bd:d8: 45:b4:8d:4c:5b:38:b0:8b:9d:13:93:9c:2b:e4:b7:4e:68:76: f8:b2:7c:a0:b5:fd:da:ea:5c:18:26:6c:9d:5c:61:41:83:4a: 0b:02:89:c8:17:68:fb:ec:04:96:f8:04:ea:b4:b0:e1:18:7d: b5:d1:d2:03:de:ac:3a:42:b4:e5:31:57:92:b6:60:3d:3d:b2: 9e:82:87:8a:49:29:77:3d:f1:da:e4:21:8f:16:e4:80:2a:32: 87:c6:41:24:c8:71:b2:11:08:65:40:f4:d5:bd:f3:bf:49:7c: 45:c7:b2:e1:31:d1:c1:d3:22:82:40:2e:2e:b7:10:3f:80:b7: 6d:c5:1d:4e:0a:80:4a:43:78:13:9c:c0:92:c5:da:ba:19:12: 89:0c:68:ef:80:57:c2:60:a6:2f:78:25:2e:e9:9c:92:bb:94: dc:13:f4:25:07:fb:cd:f9:a0:b6:71:3c:a8:6f:3e:b1:90:4d: 22:bd:0a:d4 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUbamQmmdB80C76urLVZWbbPhv05owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwODA1MTgzMTI2WhcNMjUwOTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYzVmMTUwOTc4ZDdkMDA1OWE3NzExYzYwMmRhNmRjNmY0 NzVlOWM5M2E5ZjhmZjQ3ZTFiYTUxYzk1MTc4YjU5MS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM5XQV4JG2+1R3YI3UzMoLoS2WImEYx1BVJjcYTEji6F8U YWtLPIuD9qX2ZvZucy7wcHHUnK9lzDKPiy1QMXZJpoyfrBfcLeFLYEUhnZeM38D4 6HoTZmFT9Kla3VKgCl6l2lZuf9I3d+dZxvS6/JPIAd634pzxjL6BuqgeLTGkDcDK 3nbHSFhjXQgzwoxZPvZ8BDDXrOIO2EAd4PYGYtlqgLHOmIFWDGcWZNuKq5fbzSNZ frIFRow0e9IRIc4jrVzTANqZxgh99G4o1m6P5IYwFP76xmK039q3nYzTnLre2vz4 yk5lLfo0o9Syrc4tyUq7VV2EIST6ZT/T6Auuaj+9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUBV8uyvpe8JdQsI6QvSHtlD8wMcYwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2L2IyYmQwNzZmLTM4ZmUtNDE0Yy1hZGFlLTljNmYzNTk1NDJiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAPD74zANBgkqhkiG9w0BAQsFAAOCAQEAM5AXQ3RWbT0ufOARxRYotpYq /JyBrES+R/zU/TIj4hXa0ocWVhajktwxlgg/4sPGXKSBa5ju2veaR0UqPedXU+gD oRMHEL3YRbSNTFs4sIudE5OcK+S3Tmh2+LJ8oLX92upcGCZsnVxhQYNKCwKJyBdo ++wElvgE6rSw4Rh9tdHSA96sOkK05TFXkrZgPT2ynoKHikkpdz3x2uQhjxbkgCoy h8ZBJMhxshEIZUD01b3zv0l8Rcey4THRwdMigkAuLrcQP4C3bcUdTgqASkN4E5zA ksXauhkSiQxo74BXwmCmL3glLumckruU3BP0JQf7zfmgtnE8qG8+sZBNIr0K1A== -----END CERTIFICATE-----Generated at Thu Aug 21 03:01:40 2025 by rpki-client